VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosim o kontrolu

https://forum.viry.cz:443/viewtopic.php?t=157326

Stránka 1 z 1

Prosim o kontrolu

Napsal: 02 srp 2020 17:06
od cica18
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-08-2020
Ran by User (administrator) on DESKTOP-LREQCNC (Hewlett-Packard HP Compaq Pro 6300 SFF) (02-08-2020 17:56:18)
Running from C:\Users\User\Desktop
Loaded Profiles: User
Platform: Windows 10 Home Version 1909 18363.959 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Riot Games\Riot Client\RiotClientCrashHandler.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTunerService.exe
(Ashampoo GmbH & Co. KG -> Ashampoo Development GmbH & Co. KG) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTuner2.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Opera Software AS -> Opera Software) C:\Users\User\AppData\Local\Programs\Opera GX\68.0.3618.206\opera.exe <46>
(Opera Software AS -> Opera Software) C:\Users\User\AppData\Local\Programs\Opera GX\68.0.3618.206\opera_crashreporter.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueCrashHandler.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\League of Legends\LeagueClient.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\League of Legends\LeagueClientUx.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\League of Legends\LeagueClientUxRender.exe <2>
(Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\Riot Client\RiotClientServices.exe
(Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14071552 2015-08-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411328 2015-08-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner2] => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTuner2.exe [3611552 2017-08-24] (Ashampoo GmbH & Co. KG -> Ashampoo Development GmbH & Co. KG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30885360 2020-03-04] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1752408 2020-07-13] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5417008 2020-05-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\Run: [Opera Browser Assistant] => C:\Users\User\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3126296 2020-07-27] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {16333847-1692-11e9-87fc-10604b6c7c07} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {1a4f9c4f-2396-11e9-8809-10604b6c7c07} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {ef8d2a8b-7593-11ea-8872-10604b6c7c07} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {f5ca4268-8fa9-11ea-8873-10604b6c7c07} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\hpfpp70w: C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll [249856 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\hpf3l70w.dll: C:\WINDOWS\system32\hpf3l70w.dll [136704 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-29] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {10BB6820-E9E9-44C3-BF72-1A2877ED3232} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_403_pepper.exe [1471032 2020-07-14] (Adobe Inc. -> Adobe)
Task: {17AB6B17-1DAE-421A-BC10-773EFC1AF038} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1E6B17EB-663D-46C6-BC2E-37D4766631B5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {1EF627BE-E401-47FC-88AA-D7B7006115DF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {2A92B3AA-7EBB-4176-BBE0-532D6DBD9870} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2FC71CA9-A2F5-45D9-957E-9A576BE7D35D} - System32\Tasks\GoogleUpdateTaskMachineCore1d57d4ad7a9ba16 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {308D4987-2183-4035-A168-DBADC9614FB9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {36D1592A-EBD5-4077-B2CA-0CFD542080FA} - System32\Tasks\Opera scheduled Autoupdate 1540062010 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS -> Opera Software)
Task: {39F51350-52F0-4932-AC62-0A2F7F870135} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {45DCD7B3-A611-4DE3-8266-7955BCB84194} - System32\Tasks\Opera scheduled assistant Autoupdate 1547148215 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS -> Opera Software)
Task: {46B29C57-18D9-4B74-8785-338A7316D754} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4C099826-F806-4D2E-859A-3259F10A08F6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51A318C6-E65F-40D5-A66A-88C32B247FFB} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5499DB12-0901-4A67-9624-071FCCA4537B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {58818CB2-B08A-4DE8-B097-BF08EA5A8EDC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [170856 2020-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {6379AEEE-924C-49C7-BF3E-76E37AA0B01D} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_403_Plugin.exe [1475640 2020-07-14] (Adobe Inc. -> Adobe)
Task: {699F7157-998B-4442-BDDF-B02F598D0621} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\User\Downloads\esetonlinescanner (1).exe [14827616 2020-08-02] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {6D24D06A-2F65-4E57-9667-CA3E56CE211B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {72F794E6-8C64-461C-8D70-0170D6F3ECB4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7AAB94CE-60CD-4271-B6EE-82C4D5C74C74} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {83B3FE5B-17CB-4987-AF58-D7CA90FBBD03} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {868A7105-6EAA-45E4-ADAC-ABD616F241E4} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-03-04] (Garmin International, Inc. -> )
Task: {870C3EEF-9398-480A-8D70-EF7C5457ACA1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [170856 2020-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {8FEDBB8B-DC65-4C10-994B-B1DC9FBA0AC1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {9EE3C863-AC03-4B7A-9AB5-D9B816E9D331} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ABB2F54A-6791-4539-A297-17D0209AEBE9} - System32\Tasks\GoogleUpdateTaskMachineUA1d57d4ad7cfe074 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {B4D3CE57-B44C-4981-AF93-B7EDEADA4FF6} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B81F04D2-968E-4297-AE74-40E9341DF8B2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)
Task: {C3A9A100-3404-45E4-8267-639514B8727E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C47289DE-C006-4ACA-A300-4C20D684AB10} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\User\Downloads\esetonlinescanner (1).exe [14827616 2020-08-02] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {C64BAC72-E755-44F7-BD1A-2C95EE4D2077} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6064544 2020-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {CC138130-F26D-4D47-8328-957AA4D1DDD5} - System32\Tasks\Opera GX scheduled Autoupdate 1582580859 => C:\Users\User\AppData\Local\Programs\Opera GX\launcher.exe [1459224 2020-07-23] (Opera Software AS -> Opera Software)
Task: {D2F4F443-A7BF-4A16-AEAA-323FBD4F75E9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E4C06632-D72A-461D-9EBB-B640B42600F6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6064544 2020-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {E5808223-88DE-465E-9931-C5B98FED163B} - System32\Tasks\ProtonVPN Update => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-04-17] (ProtonVPN AG -> )
Task: {F7D431DA-D535-4E3D-8D72-2C6B46A2A131} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2478424 2020-07-13] (Overwolf Ltd -> Overwolf LTD)
Task: {F847897D-2317-4C1C-A66D-79E5AE289E4E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9FB1F3A-144E-4912-8404-5D563DF045F0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 192.168.1.1
Tcpip\..\Interfaces\{16728447-c489-4264-b487-7f14ec4bc099}: [DhcpNameServer] 10.0.0.138 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2211912579-2872572584-4186616133-1001 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/results.php?pr=vmn&id=webcompa&ent=ch_WCYID10463__181021&q={searchTerms}
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho_64.dll [2020-08-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho.dll [2020-08-02] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-10] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-02]

FireFox:
========
FF DefaultProfile: qgfchr35.default-1565710104031
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\qgfchr35.default-1565710104031 [2020-01-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_403.dll [2020-07-14] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_403.dll [2020-07-14] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2211912579-2872572584-4186616133-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\User\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-09] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2020-08-02]
CHR Notifications: Default -> hxxps://aternos.org; hxxps://cs.go-travels.com; hxxps://promocodius.com; hxxps://rallystore.ru; hxxps://sauwoaptain.com; hxxps://www.autohotarek.cz; hxxps://www.automobilovedily24.cz; hxxps://www.reddit.com; hxxps://www.tipli.cz
CHR Extension: (Prezentace) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-19]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-19]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-19]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-19]
CHR Extension: (Tabulky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-19]
CHR Extension: (Avira Browser Safety) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-04-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-29]
CHR Extension: (Unseen for Facebook) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiomcgpfgkeefipihnplhadgdoollmap [2020-03-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-15]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-23]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

Opera:
=======
OPR Extension: (Evernote Web Clipper) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\afgbccjghcnbcdjgogpckamibfkceahd [2019-10-13]
OPR Extension: (Amazon Assistant for Opera) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2020-05-11]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-05-11]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-06-01] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10574712 2020-07-02] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3729512 2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2019-12-30] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6933272 2020-04-04] (Malwarebytes Inc -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2478424 2020-07-13] (Overwolf Ltd -> Overwolf LTD)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2019-04-17] (Even Balance, Inc. -> )
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [100672 2020-04-17] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-04-17] (ProtonVPN AG -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited -> Windscribe Limited)
R2 WO_LiveService2; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTunerService.exe [250784 2017-08-24] (Ashampoo GmbH & Co. KG -> )

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2020-02-23] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-10-20] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-10-20] (Disc Soft Ltd -> Disc Soft Ltd)
R2 LiveTuner2PM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTuner64.sys [14320 2014-03-20] (Ashampoo GmbH & Co. KG -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-04-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-02 17:56 - 2020-08-02 18:00 - 000030243 _____ C:\Users\User\Desktop\FRST.txt
2020-08-02 17:55 - 2020-08-02 17:59 - 000000000 ____D C:\FRST
2020-08-02 17:55 - 2020-08-02 17:55 - 000000000 ____D C:\Users\User\Desktop\FRST-OlderVersion
2020-08-02 15:26 - 2020-08-02 15:26 - 000003808 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-08-02 15:26 - 2020-08-02 15:26 - 000003366 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-08-02 14:03 - 2020-06-18 10:30 - 000054196 _____ C:\Users\User\Downloads\PS_6131390411_0758953264.pdf
2020-08-02 11:18 - 2020-08-02 17:55 - 002295808 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2020-08-02 11:09 - 2020-08-02 11:09 - 000000797 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-08-02 11:09 - 2020-08-02 11:09 - 000000669 _____ C:\Users\User\Desktop\ESET Online Scanner.lnk
2020-08-02 11:06 - 2020-08-02 11:09 - 014827616 _____ (ESET spol. s r.o.) C:\Users\User\Downloads\esetonlinescanner (1).exe
2020-08-02 11:03 - 2020-08-02 11:03 - 000000000 ____D C:\Zaloha modemu
2020-07-28 19:03 - 2020-07-28 19:03 - 000000000 ____D C:\Users\User\Downloads\Berounka 2020
2020-07-28 15:52 - 2020-07-28 16:05 - 215928240 _____ C:\Users\User\Downloads\Berounka 2020.zip
2020-07-24 23:40 - 2020-07-25 00:07 - 000000000 ____D C:\Users\User\Desktop\Mötley Crüe - Discography (m4a)
2020-07-24 23:37 - 2020-07-24 23:39 - 000000000 ____D C:\Users\User\Desktop\Valkyrie - Fear (2020)
2020-07-24 23:35 - 2020-07-24 23:37 - 000000000 ____D C:\Users\User\Desktop\Buried Realm - Embodiment of the Divine (2020) [320]
2020-07-24 23:35 - 2020-07-24 23:37 - 000000000 ____D C:\Users\User\Desktop\Ahtme - Mephitic (2020)
2020-07-24 23:34 - 2020-07-24 23:35 - 000000000 ____D C:\Users\User\Desktop\Judicator - Let There Be Nothing (2020)
2020-07-24 23:32 - 2020-07-24 23:34 - 000000000 ____D C:\Users\User\Desktop\Let Us Prey - Virtues of the Vicious (2020)
2020-07-24 23:31 - 2020-07-24 23:32 - 000000000 ____D C:\Users\User\Desktop\Denominate - Isochron (2020) [320]
2020-07-24 23:31 - 2020-07-24 23:31 - 000000000 ____D C:\Users\User\Desktop\Volturyon - Xenogenesis (2020) [320]
2020-07-24 23:31 - 2020-07-24 23:31 - 000000000 ____D C:\Users\User\Desktop\Night In Gales - Dawnlight Garden (2020) [320]
2020-07-24 23:28 - 2020-07-24 23:30 - 000000000 ____D C:\Users\User\Desktop\Liquid Society - From Dreams To Reality (Deluxe Edition) 2014
2020-07-24 23:28 - 2020-07-24 23:28 - 000000000 ____D C:\Users\User\Desktop\Incantation - Fury's Manifesto (Single)
2020-07-24 23:28 - 2020-07-24 23:28 - 000000000 ____D C:\Users\User\Desktop\In Flames - Clayman 2020 (2020) EP
2020-07-24 23:26 - 2020-07-24 23:41 - 000000000 ____D C:\Users\User\Desktop\Anathema - We're Here Because We're Here (10th Anniversary Edition)
2020-07-24 23:26 - 2020-07-24 23:27 - 000000000 ____D C:\Users\User\Desktop\Primal Fear - Metal Commando (2CD Digipak) (2020)
2020-07-24 23:26 - 2020-07-24 23:27 - 000000000 ____D C:\Users\User\Desktop\Napalm Death - Backlash Just Because (Single)
2020-07-22 06:26 - 2020-07-23 13:45 - 008851845 _____ C:\Users\User\Desktop\Špióni v převleku.2019.Cz.Sk.En.1080pHD.mkv
2020-07-22 06:26 - 2020-07-22 10:39 - 1336709951 _____ C:\Users\User\Desktop\The Addams Family 2019 CZ SK.mkv
2020-07-22 06:25 - 2020-07-23 11:07 - 3340149134 _____ C:\Users\User\Desktop\The.Willoughbys.2020.CZ.EN.1080p.WEB.x264-KREON.mkv
2020-07-22 06:23 - 2020-07-22 07:49 - 000000000 ____D C:\Users\User\Desktop\Neviditelný
2020-07-18 14:20 - 2020-07-18 14:20 - 000002541 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio 2016.lnk
2020-07-18 14:20 - 2020-07-18 14:20 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2020-07-18 14:20 - 2020-07-18 14:20 - 000002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2020-07-18 14:20 - 2020-07-18 14:20 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2020-07-18 14:20 - 2020-07-18 14:20 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2020-07-18 14:20 - 2020-07-18 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2020-07-18 13:44 - 2020-07-18 13:47 - 000000000 ____D C:\Users\User\Desktop\The Dead Daisies - The Lockdown Sessions (Live)
2020-07-16 00:24 - 2020-07-16 00:24 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-16 00:24 - 2020-07-16 00:24 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-16 00:24 - 2020-07-16 00:24 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-16 00:24 - 2020-07-16 00:24 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-16 00:24 - 2020-07-16 00:24 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-16 00:24 - 2020-07-16 00:24 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-16 00:23 - 2020-07-16 00:23 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-16 00:23 - 2020-07-16 00:23 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-16 00:01 - 2020-07-16 00:01 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-16 00:01 - 2020-07-16 00:01 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-14 20:23 - 2020-07-14 21:18 - 008774200 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2020-07-12 14:06 - 2020-07-12 14:06 - 000244685 _____ C:\Users\User\Downloads\PDF1_B2_11.pdf
2020-07-11 00:33 - 2010-06-28 15:15 - 000000000 ____D C:\Users\User\Downloads\Mafia
2020-07-11 00:28 - 2020-07-11 00:28 - 000093910 _____ C:\Users\User\Downloads\WhatsApp Image 2020-07-11 at 00.27.36.jpeg
2020-07-11 00:28 - 2020-07-11 00:28 - 000093910 _____ C:\Users\User\Downloads\WhatsApp Image 2020-07-11 at 00.27.36 (1).jpeg
2020-07-10 21:34 - 2020-07-10 21:34 - 000000000 ____D C:\Program Files (x86)\R.G. Mechanics
2020-07-10 21:32 - 2020-07-10 21:32 - 000001040 _____ C:\Users\Public\Desktop\WinRAR.lnk
2020-07-10 21:32 - 2020-07-10 21:32 - 000001040 _____ C:\ProgramData\Desktop\WinRAR.lnk
2020-07-10 21:32 - 2020-07-10 21:32 - 000000000 ____D C:\Users\User\Downloads\Mafia 1 -TheGamesDownload
2020-07-10 21:32 - 2020-07-10 21:32 - 000000000 ____D C:\Users\User\Downloads\Game
2020-07-10 21:31 - 2020-07-10 21:31 - 003419088 _____ C:\Users\User\Downloads\winrar-x64-590cz.exe
2020-07-10 21:04 - 2020-07-10 21:22 - 1363438021 _____ C:\Users\User\Downloads\Mafia 1 -TheGamesDownload.zip
2020-07-10 20:45 - 2020-07-11 00:27 - 1603664111 _____ C:\Users\User\Downloads\Mafia 1.exe
2020-07-10 11:18 - 2020-07-10 11:18 - 000083998 _____ C:\Users\User\Downloads\UK-2011-version1-priloha_i___cast_sumarizacni.xlsx
2020-07-09 17:30 - 2020-07-09 17:30 - 000000000 ____D C:\Users\User\AppData\Local\Pineapple
2020-07-09 17:30 - 2020-07-09 17:30 - 000000000 ____D C:\Users\User\AppData\Local\Epic Games
2020-07-09 05:34 - 2020-07-09 05:34 - 000002150 _____ C:\Users\User\Desktop\SpongeBob SquarePants Battle for Bikini Bottom Rehydrated.lnk
2020-07-09 05:24 - 2020-07-09 05:29 - 000000000 ____D C:\Users\User\Desktop\SB
2020-07-08 20:02 - 2020-07-08 20:02 - 000000000 ____D C:\Users\User\Desktop\SpongeBob_SquarePants_Battle_for_Bikini_Bottom_Rehydrated-HOODLUM

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-02 17:54 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-02 17:06 - 2020-02-23 15:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-02 12:25 - 2019-07-03 22:04 - 000000000 ____D C:\ProgramData\NVIDIA
2020-08-02 09:12 - 2019-01-04 10:22 - 000000000 ____D C:\Users\User\AppData\Roaming\.minecraft
2020-08-02 09:11 - 2019-02-25 16:46 - 000000000 ____D C:\Users\User\AppData\Roaming\.tlauncher
2020-08-02 09:05 - 2020-06-07 13:12 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-02 09:05 - 2020-06-07 13:12 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-08-02 09:05 - 2020-06-07 13:12 - 000002274 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-08-01 13:43 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-01 09:27 - 2020-05-14 22:27 - 000004210 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1582580859
2020-08-01 09:27 - 2020-02-24 23:47 - 000001429 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera GX.lnk
2020-07-30 23:45 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-29 21:49 - 2018-11-19 15:24 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-29 11:16 - 2018-10-19 13:25 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2020-07-29 11:05 - 2020-02-23 15:50 - 000004202 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1540062010
2020-07-29 11:05 - 2018-10-20 21:00 - 000001406 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2020-07-28 23:49 - 2019-04-11 16:49 - 000000000 ____D C:\Users\User\AppData\Roaming\Discord
2020-07-28 20:03 - 2020-02-23 15:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-28 19:08 - 2019-01-26 17:00 - 000000000 ____D C:\Users\User\Desktop\Michal
2020-07-28 14:45 - 2020-02-23 15:50 - 000004454 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1547148215
2020-07-27 19:42 - 2018-10-23 23:03 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2020-07-25 00:08 - 2019-07-07 21:38 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2020-07-25 00:07 - 2018-10-19 23:48 - 000000000 ____D C:\Users\User\AppData\Roaming\uTorrent
2020-07-24 13:40 - 2018-10-21 19:42 - 000000000 ____D C:\ProgramData\Package Cache
2020-07-23 09:03 - 2020-02-23 15:50 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2211912579-2872572584-4186616133-1001
2020-07-23 09:03 - 2020-02-23 15:33 - 000002362 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-23 09:03 - 2018-09-12 14:14 - 000000000 ___RD C:\Users\User\OneDrive
2020-07-18 14:19 - 2018-10-20 21:04 - 000000000 ____D C:\Program Files\Microsoft Office
2020-07-18 10:43 - 2019-07-03 22:05 - 000000000 ____D C:\Users\User\AppData\Local\NVIDIA Corporation
2020-07-16 20:56 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-16 10:35 - 2020-04-28 10:59 - 000000000 ____D C:\Users\User\Downloads\opera autoupdate
2020-07-16 10:35 - 2020-02-23 15:43 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-16 10:35 - 2019-03-19 13:55 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-16 10:35 - 2019-03-19 13:55 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-16 10:31 - 2018-09-12 14:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-16 10:31 - 2018-09-12 14:12 - 000000000 ___RD C:\Users\User\3D Objects
2020-07-16 10:29 - 2020-02-23 15:23 - 000315600 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-16 10:28 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-16 10:24 - 2020-05-28 10:44 - 000000000 ____D C:\tatka nemazat
2020-07-16 00:30 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-15 11:28 - 2018-11-25 13:19 - 000000000 ____D C:\Program Files (x86)\Overwolf
2020-07-14 21:18 - 2020-02-23 15:50 - 000004664 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-07-14 21:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-07-14 21:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-07-14 20:23 - 2020-02-23 15:50 - 000004652 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-07-12 15:49 - 2020-06-12 14:54 - 000000000 ____D C:\Users\User\Desktop\Mafia
2020-07-12 08:33 - 2020-06-07 13:09 - 000003582 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-12 08:33 - 2020-06-07 13:09 - 000003458 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-10 21:32 - 2018-10-21 19:15 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-07-10 21:32 - 2018-10-21 19:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-07-10 21:32 - 2018-10-21 19:15 - 000000000 ____D C:\Program Files\WinRAR
2020-07-10 21:05 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-07-09 15:17 - 2019-05-01 08:57 - 000000000 ____D C:\Users\User\opera autoupdate
2020-07-09 05:29 - 2020-04-10 10:12 - 000000000 ____D C:\Games
2020-07-08 12:38 - 2020-02-23 15:50 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-08 12:37 - 2018-11-12 14:35 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-06 17:38 - 2018-09-12 14:12 - 000000000 ____D C:\Users\User\AppData\Local\Packages

==================== Files in the root of some directories ========

2018-10-19 13:26 - 2018-10-20 00:16 - 000007597 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Addition.zip
(14.26 KiB) Staženo 133 x

Re: Prosim o kontrolu

Napsal: 03 srp 2020 16:13
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Prosim o kontrolu

Napsal: 07 srp 2020 08:13
od cica18
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-07-2020
# Duration: 00:00:03
# OS: Windows 10 Home
# Cleaned: 7
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Trymedia Systems

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2036 octets] - [07/08/2020 09:05:04]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Re: Prosim o kontrolu

Napsal: 07 srp 2020 09:13
od Rudy
Dejte nové logy FRST+Addition.

Re: Prosim o kontrolu

Napsal: 07 srp 2020 22:22
od cica18
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-08-2020
Ran by User (administrator) on DESKTOP-LREQCNC (Hewlett-Packard HP Compaq Pro 6300 SFF) (07-08-2020 23:15:48)
Running from C:\Users\User\Desktop
Loaded Profiles: User
Platform: Windows 10 Home Version 1909 18363.959 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTunerService.exe
(Ashampoo GmbH & Co. KG -> Ashampoo Development GmbH & Co. KG) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTuner2.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14071552 2015-08-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411328 2015-08-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner2] => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTuner2.exe [3611552 2017-08-24] (Ashampoo GmbH & Co. KG -> Ashampoo Development GmbH & Co. KG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1752408 2020-07-13] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5417008 2020-05-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\Run: [Opera Browser Assistant] => C:\Users\User\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3126296 2020-08-05] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-07-31] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {16333847-1692-11e9-87fc-10604b6c7c07} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {1a4f9c4f-2396-11e9-8809-10604b6c7c07} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {ef8d2a8b-7593-11ea-8872-10604b6c7c07} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {f5ca4268-8fa9-11ea-8873-10604b6c7c07} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\hpfpp70w: C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll [249856 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\hpf3l70w.dll: C:\WINDOWS\system32\hpf3l70w.dll [136704 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-29] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {10BB6820-E9E9-44C3-BF72-1A2877ED3232} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_403_pepper.exe [1471032 2020-07-14] (Adobe Inc. -> Adobe)
Task: {11B9A9FF-AAC1-41C7-8430-A01B28A390F8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E6B17EB-663D-46C6-BC2E-37D4766631B5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {23A9A3F6-EE2B-48DE-98D1-75A65CA8548D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {2DD0DEC2-D0E3-407C-A31B-DBB3AF7BFC59} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2FC71CA9-A2F5-45D9-957E-9A576BE7D35D} - System32\Tasks\GoogleUpdateTaskMachineCore1d57d4ad7a9ba16 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {308D4987-2183-4035-A168-DBADC9614FB9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {36D1592A-EBD5-4077-B2CA-0CFD542080FA} - System32\Tasks\Opera scheduled Autoupdate 1540062010 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS -> Opera Software)
Task: {39F51350-52F0-4932-AC62-0A2F7F870135} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {4C099826-F806-4D2E-859A-3259F10A08F6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51A318C6-E65F-40D5-A66A-88C32B247FFB} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5499DB12-0901-4A67-9624-071FCCA4537B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6379AEEE-924C-49C7-BF3E-76E37AA0B01D} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_403_Plugin.exe [1475640 2020-07-14] (Adobe Inc. -> Adobe)
Task: {67138320-328A-4A24-9EE1-0F8B9D0FE1C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {699F7157-998B-4442-BDDF-B02F598D0621} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\User\Downloads\esetonlinescanner (1).exe [14827616 2020-08-02] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {6D24D06A-2F65-4E57-9667-CA3E56CE211B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {72F794E6-8C64-461C-8D70-0170D6F3ECB4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8836136B-23C5-44B0-A3E8-1B45DB667121} - System32\Tasks\Opera scheduled assistant Autoupdate 1547148215 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS -> Opera Software)
Task: {8FEDBB8B-DC65-4C10-994B-B1DC9FBA0AC1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {9EE3C863-AC03-4B7A-9AB5-D9B816E9D331} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ABB2F54A-6791-4539-A297-17D0209AEBE9} - System32\Tasks\GoogleUpdateTaskMachineUA1d57d4ad7cfe074 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {B4D3CE57-B44C-4981-AF93-B7EDEADA4FF6} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B81F04D2-968E-4297-AE74-40E9341DF8B2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)
Task: {B9B4E07B-33E3-44DA-B8BB-19A7E4086A56} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B9FC08DE-5C44-4583-A972-2E4ABF171C7E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {C3A9A100-3404-45E4-8267-639514B8727E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C47289DE-C006-4ACA-A300-4C20D684AB10} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\User\Downloads\esetonlinescanner (1).exe [14827616 2020-08-02] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {CA6A8E1E-2FCA-4A6D-8564-1157565316B7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {CC138130-F26D-4D47-8328-957AA4D1DDD5} - System32\Tasks\Opera GX scheduled Autoupdate 1582580859 => C:\Users\User\AppData\Local\Programs\Opera GX\launcher.exe [1459224 2020-07-23] (Opera Software AS -> Opera Software)
Task: {D2F4F443-A7BF-4A16-AEAA-323FBD4F75E9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E1F19308-E083-4EEE-8CA1-F8DB12917E91} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-07-31] (Garmin International, Inc. -> )
Task: {E5808223-88DE-465E-9931-C5B98FED163B} - System32\Tasks\ProtonVPN Update => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-04-17] (ProtonVPN AG -> )
Task: {F20FBA33-3DD2-4025-8B97-B8F062547B48} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819128 2020-07-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {F48AFC2A-6C83-421C-9C6F-AEC9333A1400} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819128 2020-07-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {F63B578A-B5C7-464F-8705-2C6717F17D09} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F7D431DA-D535-4E3D-8D72-2C6B46A2A131} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2478424 2020-07-13] (Overwolf Ltd -> Overwolf LTD)
Task: {F847897D-2317-4C1C-A66D-79E5AE289E4E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9FB1F3A-144E-4912-8404-5D563DF045F0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 192.168.1.1
Tcpip\..\Interfaces\{16728447-c489-4264-b487-7f14ec4bc099}: [DhcpNameServer] 10.0.0.138 192.168.1.1

Internet Explorer:
==================
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho_64.dll [2020-08-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho.dll [2020-08-02] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-04] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-02]

FireFox:
========
FF DefaultProfile: qgfchr35.default-1565710104031
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\qgfchr35.default-1565710104031 [2020-01-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_403.dll [2020-07-14] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_403.dll [2020-07-14] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2211912579-2872572584-4186616133-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\User\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-09] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2020-08-07]
CHR Notifications: Default -> hxxps://aternos.org; hxxps://cs.go-travels.com; hxxps://promocodius.com; hxxps://rallystore.ru; hxxps://sauwoaptain.com; hxxps://www.autohotarek.cz; hxxps://www.automobilovedily24.cz; hxxps://www.reddit.com; hxxps://www.tipli.cz
CHR Extension: (Prezentace) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-19]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-19]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-19]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-19]
CHR Extension: (Tabulky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-19]
CHR Extension: (Avira Browser Safety) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-04-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-07]
CHR Extension: (Unseen for Facebook) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiomcgpfgkeefipihnplhadgdoollmap [2020-03-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-15]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-23]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

Opera:
=======
OPR Extension: (Evernote Web Clipper) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\afgbccjghcnbcdjgogpckamibfkceahd [2019-10-13]
OPR Extension: (Amazon Assistant for Opera) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2020-05-11]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-05-11]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-06-01] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10566528 2020-07-22] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3729512 2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2019-12-30] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6933272 2020-04-04] (Malwarebytes Inc -> Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2478424 2020-07-13] (Overwolf Ltd -> Overwolf LTD)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2019-04-17] (Even Balance, Inc. -> )
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [100672 2020-04-17] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-04-17] (ProtonVPN AG -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\NisSrv.exe [2169568 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MsMpEng.exe [128376 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited -> Windscribe Limited)
R2 WO_LiveService2; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTunerService.exe [250784 2017-08-24] (Ashampoo GmbH & Co. KG -> )

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2020-02-23] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-10-20] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-10-20] (Disc Soft Ltd -> Disc Soft Ltd)
R2 LiveTuner2PM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 15\LiveTuner64.sys [14320 2014-03-20] (Ashampoo GmbH & Co. KG -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-08-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-08-02] (Malwarebytes Inc -> Malwarebytes)
R1 MpKslDrv; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E54F1F4D-87DE-4DEC-9956-D6BAE3C45704}\MpKslDrv.sys [73952 2020-08-07] (Microsoft Windows -> Microsoft Corporation)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [78216 2020-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [430320 2020-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98520 2020-08-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-07 18:21 - 2020-08-07 18:21 - 000001963 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2020-08-07 18:21 - 2020-08-07 18:21 - 000001963 _____ C:\ProgramData\Desktop\Garmin Express.lnk
2020-08-07 18:21 - 2020-08-07 18:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2020-08-07 09:04 - 2020-08-07 09:08 - 000000000 ____D C:\AdwCleaner
2020-08-07 09:02 - 2020-08-07 09:02 - 008414384 _____ (Malwarebytes) C:\Users\User\Desktop\adwcleaner_8.0.7.exe
2020-08-04 10:12 - 2020-08-04 10:12 - 000002541 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio 2016.lnk
2020-08-04 10:12 - 2020-08-04 10:12 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2020-08-04 10:12 - 2020-08-04 10:12 - 000002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2020-08-04 10:12 - 2020-08-04 10:12 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2020-08-04 10:12 - 2020-08-04 10:12 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2020-08-04 10:12 - 2020-08-04 10:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2020-08-02 18:09 - 2020-08-02 18:09 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-08-02 18:09 - 2020-08-02 18:09 - 000214496 ____N (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-08-02 18:04 - 2020-08-02 18:04 - 000014603 _____ C:\Users\User\Desktop\Addition.zip
2020-08-02 17:56 - 2020-08-07 23:18 - 000029551 _____ C:\Users\User\Desktop\FRST.txt
2020-08-02 17:55 - 2020-08-07 23:17 - 000000000 ____D C:\FRST
2020-08-02 17:55 - 2020-08-07 23:15 - 000000000 ____D C:\Users\User\Desktop\FRST-OlderVersion
2020-08-02 15:26 - 2020-08-02 15:26 - 000003808 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-08-02 15:26 - 2020-08-02 15:26 - 000003366 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-08-02 14:03 - 2020-06-18 10:30 - 000054196 _____ C:\Users\User\Downloads\PS_6131390411_0758953264.pdf
2020-08-02 11:18 - 2020-08-07 23:15 - 002296320 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2020-08-02 11:09 - 2020-08-02 11:09 - 000000797 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-08-02 11:09 - 2020-08-02 11:09 - 000000669 _____ C:\Users\User\Desktop\ESET Online Scanner.lnk
2020-08-02 11:06 - 2020-08-02 11:09 - 014827616 _____ (ESET spol. s r.o.) C:\Users\User\Downloads\esetonlinescanner (1).exe
2020-08-02 11:03 - 2020-08-02 11:03 - 000000000 ____D C:\Zaloha modemu
2020-07-28 19:03 - 2020-07-28 19:03 - 000000000 ____D C:\Users\User\Downloads\Berounka 2020
2020-07-28 15:52 - 2020-07-28 16:05 - 215928240 _____ C:\Users\User\Downloads\Berounka 2020.zip
2020-07-16 00:24 - 2020-07-16 00:24 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-16 00:24 - 2020-07-16 00:24 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-16 00:24 - 2020-07-16 00:24 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-16 00:24 - 2020-07-16 00:24 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-16 00:24 - 2020-07-16 00:24 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-16 00:24 - 2020-07-16 00:24 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-16 00:24 - 2020-07-16 00:24 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-16 00:24 - 2020-07-16 00:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-16 00:23 - 2020-07-16 00:23 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-16 00:23 - 2020-07-16 00:23 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-16 00:23 - 2020-07-16 00:23 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-16 00:23 - 2020-07-16 00:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-16 00:23 - 2020-07-16 00:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-16 00:01 - 2020-07-16 00:01 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-16 00:01 - 2020-07-16 00:01 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-14 20:23 - 2020-07-14 21:18 - 008774200 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2020-07-12 14:06 - 2020-07-12 14:06 - 000244685 _____ C:\Users\User\Downloads\PDF1_B2_11.pdf
2020-07-11 00:33 - 2010-06-28 15:15 - 000000000 ____D C:\Users\User\Downloads\Mafia
2020-07-11 00:28 - 2020-07-11 00:28 - 000093910 _____ C:\Users\User\Downloads\WhatsApp Image 2020-07-11 at 00.27.36.jpeg
2020-07-11 00:28 - 2020-07-11 00:28 - 000093910 _____ C:\Users\User\Downloads\WhatsApp Image 2020-07-11 at 00.27.36 (1).jpeg
2020-07-10 21:34 - 2020-07-10 21:34 - 000000000 ____D C:\Program Files (x86)\R.G. Mechanics
2020-07-10 21:32 - 2020-07-10 21:32 - 000001040 _____ C:\Users\Public\Desktop\WinRAR.lnk
2020-07-10 21:32 - 2020-07-10 21:32 - 000001040 _____ C:\ProgramData\Desktop\WinRAR.lnk
2020-07-10 21:32 - 2020-07-10 21:32 - 000000000 ____D C:\Users\User\Downloads\Mafia 1 -TheGamesDownload
2020-07-10 21:32 - 2020-07-10 21:32 - 000000000 ____D C:\Users\User\Downloads\Game
2020-07-10 11:18 - 2020-07-10 11:18 - 000083998 _____ C:\Users\User\Downloads\UK-2011-version1-priloha_i___cast_sumarizacni.xlsx
2020-07-09 17:30 - 2020-07-09 17:30 - 000000000 ____D C:\Users\User\AppData\Local\Pineapple
2020-07-09 17:30 - 2020-07-09 17:30 - 000000000 ____D C:\Users\User\AppData\Local\Epic Games
2020-07-09 05:34 - 2020-07-09 05:34 - 000002150 _____ C:\Users\User\Desktop\SpongeBob SquarePants Battle for Bikini Bottom Rehydrated.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-07 23:16 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-07 23:05 - 2020-02-23 15:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-07 18:24 - 2020-04-07 15:50 - 000000000 ____D C:\ProgramData\Garmin
2020-08-07 18:21 - 2020-04-07 15:50 - 000003624 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2020-08-07 18:21 - 2020-04-07 15:50 - 000000000 ____D C:\Users\User\AppData\Local\Garmin
2020-08-07 18:21 - 2020-04-07 15:50 - 000000000 ____D C:\Program Files (x86)\Garmin
2020-08-07 18:21 - 2018-10-21 19:42 - 000000000 ____D C:\ProgramData\Package Cache
2020-08-07 17:07 - 2019-02-25 16:46 - 000000000 ____D C:\Users\User\AppData\Roaming\.tlauncher
2020-08-07 17:07 - 2019-01-04 10:22 - 000000000 ____D C:\Users\User\AppData\Roaming\.minecraft
2020-08-07 12:25 - 2019-07-03 22:04 - 000000000 ____D C:\ProgramData\NVIDIA
2020-08-07 09:10 - 2020-02-23 15:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-07 09:10 - 2019-03-12 11:20 - 000000000 ____D C:\Users\User\AppData\Local\ESET
2020-08-07 09:09 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-08-06 23:57 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-06 23:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-06 11:10 - 2020-02-23 15:50 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2211912579-2872572584-4186616133-1001
2020-08-06 11:10 - 2020-02-23 15:33 - 000002362 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-08-06 11:10 - 2018-09-12 14:14 - 000000000 ___RD C:\Users\User\OneDrive
2020-08-05 15:37 - 2018-11-25 13:19 - 000000000 ____D C:\Program Files (x86)\Overwolf
2020-08-05 15:34 - 2020-05-14 11:27 - 000002174 _____ C:\Users\User\Desktop\Porofessor.gg.lnk
2020-08-05 15:32 - 2018-11-25 13:17 - 000000000 ____D C:\Users\User\AppData\Local\Overwolf
2020-08-05 14:45 - 2020-02-23 15:50 - 000004454 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1547148215
2020-08-05 10:27 - 2018-09-12 14:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-08-05 03:04 - 2019-04-11 16:49 - 000000000 ____D C:\Users\User\AppData\Roaming\Discord
2020-08-04 10:11 - 2018-10-20 21:04 - 000000000 ____D C:\Program Files\Microsoft Office
2020-08-03 09:46 - 2018-10-19 13:26 - 000007597 _____ C:\Users\User\AppData\Local\Resmon.ResmonCfg
2020-08-02 19:37 - 2019-07-18 07:26 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-08-02 18:07 - 2020-05-28 10:44 - 000000000 ____D C:\tatka nemazat
2020-08-02 18:06 - 2019-07-07 21:38 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2020-08-02 18:06 - 2018-10-19 23:48 - 000000000 ____D C:\Users\User\AppData\Roaming\uTorrent
2020-08-02 09:05 - 2020-06-07 13:12 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-02 09:05 - 2020-06-07 13:12 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-08-02 09:05 - 2020-06-07 13:12 - 000002274 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-08-01 09:27 - 2020-05-14 22:27 - 000004210 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1582580859
2020-08-01 09:27 - 2020-02-24 23:47 - 000001429 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera GX.lnk
2020-07-29 21:49 - 2018-11-19 15:24 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-29 11:16 - 2018-10-19 13:25 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2020-07-29 11:05 - 2020-02-23 15:50 - 000004202 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1540062010
2020-07-29 11:05 - 2018-10-20 21:00 - 000001406 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2020-07-28 19:08 - 2019-01-26 17:00 - 000000000 ____D C:\Users\User\Desktop\Michal
2020-07-27 19:42 - 2018-10-23 23:03 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2020-07-18 10:43 - 2019-07-03 22:05 - 000000000 ____D C:\Users\User\AppData\Local\NVIDIA Corporation
2020-07-16 20:56 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-16 10:35 - 2020-04-28 10:59 - 000000000 ____D C:\Users\User\Downloads\opera autoupdate
2020-07-16 10:35 - 2020-02-23 15:43 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-16 10:35 - 2019-03-19 13:55 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-16 10:35 - 2019-03-19 13:55 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-16 10:31 - 2018-09-12 14:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-16 10:31 - 2018-09-12 14:12 - 000000000 ___RD C:\Users\User\3D Objects
2020-07-16 10:29 - 2020-02-23 15:23 - 000315600 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-16 10:26 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-16 00:30 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-14 21:18 - 2020-02-23 15:50 - 000004664 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-07-14 21:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-07-14 21:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-07-14 20:23 - 2020-02-23 15:50 - 000004652 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-07-12 08:33 - 2020-06-07 13:09 - 000003582 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-12 08:33 - 2020-06-07 13:09 - 000003458 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-10 21:32 - 2018-10-21 19:15 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-07-10 21:32 - 2018-10-21 19:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-07-10 21:32 - 2018-10-21 19:15 - 000000000 ____D C:\Program Files\WinRAR
2020-07-10 21:05 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-07-09 15:17 - 2019-05-01 08:57 - 000000000 ____D C:\Users\User\opera autoupdate
2020-07-09 05:29 - 2020-04-10 10:12 - 000000000 ____D C:\Games
2020-07-08 12:38 - 2020-02-23 15:50 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-08 12:37 - 2018-11-12 14:35 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories ========

2018-10-19 13:26 - 2020-08-03 09:46 - 000007597 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Addition.zip
(14.33 KiB) Staženo 101 x

Re: Prosim o kontrolu

Napsal: 08 srp 2020 10:34
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {16333847-1692-11e9-87fc-10604b6c7c07} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {1a4f9c4f-2396-11e9-8809-10604b6c7c07} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {ef8d2a8b-7593-11ea-8872-10604b6c7c07} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {f5ca4268-8fa9-11ea-8873-10604b6c7c07} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {2FC71CA9-A2F5-45D9-957E-9A576BE7D35D} - System32\Tasks\GoogleUpdateTaskMachineCore1d57d4ad7a9ba16 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {39F51350-52F0-4932-AC62-0A2F7F870135} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {8FEDBB8B-DC65-4C10-994B-B1DC9FBA0AC1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {ABB2F54A-6791-4539-A297-17D0209AEBE9} - System32\Tasks\GoogleUpdateTaskMachineUA1d57d4ad7cfe074 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [466]
FirewallRules: [{F8A02600-EC17-4E26-AF28-7A6E472DCCA6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{91F26CD7-A494-44DD-956E-BE98B0861E2E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [UDP Query User{215079F8-6138-479D-949D-8D5FE43BAC8F}C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe => No File
FirewallRules: [TCP Query User{576A112C-7540-4828-AE12-C8203D35A997}C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe => No File
FirewallRules: [{2E143AA0-1099-4214-AE2A-7D2DE7722B06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe => No File
FirewallRules: [{11961369-8030-4777-853C-F0EFC4D2DDEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe => No File
FirewallRules: [TCP Query User{E3FADB7C-D5D5-41D8-95B2-C0DEEFBB9AE5}C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe => No File
FirewallRules: [UDP Query User{FE4F0AC7-7369-4C34-89B8-890BE57C85D8}C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe => No File
FirewallRules: [TCP Query User{0DF60472-73D5-45C6-A51F-66D9ED992B83}C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe => No File
FirewallRules: [UDP Query User{8DF76234-0FAB-47F4-9B2C-6422BB59D38E}C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe => No File
FirewallRules: [TCP Query User{AA6EC546-F5E1-4839-937B-98502A070073}C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe => No File
FirewallRules: [UDP Query User{55F37321-132F-43CF-ABF4-93B46B2C089C}C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe => No File
FirewallRules: [TCP Query User{0C523E2C-25B7-4C7A-A7EE-F35ACB67354C}C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe => No File
FirewallRules: [UDP Query User{D00240A5-069E-4E22-897C-BB3C57E9425E}C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe => No File
FirewallRules: [{2BE93705-ABA9-42D2-A2D4-9C08DDE0D290}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe => No File
C:\Program Files\KMSpico

EmptyTemp:
Hosts:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Prosim o kontrolu

Napsal: 10 srp 2020 23:15
od cica18
Fix result of Farbar Recovery Scan Tool (x64) Version: 09-08-2020
Ran by User (10-08-2020 23:57:40) Run:1
Running from C:\Users\User\Desktop
Loaded Profiles: User
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {16333847-1692-11e9-87fc-10604b6c7c07} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {1a4f9c4f-2396-11e9-8809-10604b6c7c07} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {ef8d2a8b-7593-11ea-8872-10604b6c7c07} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\...\MountPoints2: {f5ca4268-8fa9-11ea-8873-10604b6c7c07} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {2FC71CA9-A2F5-45D9-957E-9A576BE7D35D} - System32\Tasks\GoogleUpdateTaskMachineCore1d57d4ad7a9ba16 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {39F51350-52F0-4932-AC62-0A2F7F870135} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {8FEDBB8B-DC65-4C10-994B-B1DC9FBA0AC1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
Task: {ABB2F54A-6791-4539-A297-17D0209AEBE9} - System32\Tasks\GoogleUpdateTaskMachineUA1d57d4ad7cfe074 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-19] (Google Inc -> Google Inc.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [466]
FirewallRules: [{F8A02600-EC17-4E26-AF28-7A6E472DCCA6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{91F26CD7-A494-44DD-956E-BE98B0861E2E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [UDP Query User{215079F8-6138-479D-949D-8D5FE43BAC8F}C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe => No File
FirewallRules: [TCP Query User{576A112C-7540-4828-AE12-C8203D35A997}C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe => No File
FirewallRules: [{2E143AA0-1099-4214-AE2A-7D2DE7722B06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe => No File
FirewallRules: [{11961369-8030-4777-853C-F0EFC4D2DDEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe => No File
FirewallRules: [TCP Query User{E3FADB7C-D5D5-41D8-95B2-C0DEEFBB9AE5}C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe => No File
FirewallRules: [UDP Query User{FE4F0AC7-7369-4C34-89B8-890BE57C85D8}C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe => No File
FirewallRules: [TCP Query User{0DF60472-73D5-45C6-A51F-66D9ED992B83}C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe => No File
FirewallRules: [UDP Query User{8DF76234-0FAB-47F4-9B2C-6422BB59D38E}C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe => No File
FirewallRules: [TCP Query User{AA6EC546-F5E1-4839-937B-98502A070073}C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe => No File
FirewallRules: [UDP Query User{55F37321-132F-43CF-ABF4-93B46B2C089C}C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe => No File
FirewallRules: [TCP Query User{0C523E2C-25B7-4C7A-A7EE-F35ACB67354C}C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe => No File
FirewallRules: [UDP Query User{D00240A5-069E-4E22-897C-BB3C57E9425E}C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe => No File
FirewallRules: [{2BE93705-ABA9-42D2-A2D4-9C08DDE0D290}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe => No File
C:\Program Files\KMSpico

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{16333847-1692-11e9-87fc-10604b6c7c07} => removed successfully
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1a4f9c4f-2396-11e9-8809-10604b6c7c07} => removed successfully
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef8d2a8b-7593-11ea-8872-10604b6c7c07} => removed successfully
HKU\S-1-5-21-2211912579-2872572584-4186616133-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f5ca4268-8fa9-11ea-8873-10604b6c7c07} => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2FC71CA9-A2F5-45D9-957E-9A576BE7D35D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2FC71CA9-A2F5-45D9-957E-9A576BE7D35D}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d57d4ad7a9ba16 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1d57d4ad7a9ba16" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{39F51350-52F0-4932-AC62-0A2F7F870135}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{39F51350-52F0-4932-AC62-0A2F7F870135}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8FEDBB8B-DC65-4C10-994B-B1DC9FBA0AC1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8FEDBB8B-DC65-4C10-994B-B1DC9FBA0AC1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ABB2F54A-6791-4539-A297-17D0209AEBE9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABB2F54A-6791-4539-A297-17D0209AEBE9}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d57d4ad7cfe074 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d57d4ad7cfe074" => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxDTCM => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F8A02600-EC17-4E26-AF28-7A6E472DCCA6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{91F26CD7-A494-44DD-956E-BE98B0861E2E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{215079F8-6138-479D-949D-8D5FE43BAC8F}C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{576A112C-7540-4828-AE12-C8203D35A997}C:\program files (x86)\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2E143AA0-1099-4214-AE2A-7D2DE7722B06}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{11961369-8030-4777-853C-F0EFC4D2DDEC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E3FADB7C-D5D5-41D8-95B2-C0DEEFBB9AE5}C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FE4F0AC7-7369-4C34-89B8-890BE57C85D8}C:\users\user\appdata\local\programs\opera gx\66.0.3515.111\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0DF60472-73D5-45C6-A51F-66D9ED992B83}C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8DF76234-0FAB-47F4-9B2C-6422BB59D38E}C:\users\user\appdata\local\programs\opera gx\67.0.3575.78\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AA6EC546-F5E1-4839-937B-98502A070073}C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{55F37321-132F-43CF-ABF4-93B46B2C089C}C:\users\user\appdata\local\programs\opera gx\67.0.3575.87\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0C523E2C-25B7-4C7A-A7EE-F35ACB67354C}C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D00240A5-069E-4E22-897C-BB3C57E9425E}C:\users\user\appdata\local\programs\opera gx\67.0.3575.130\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2BE93705-ABA9-42D2-A2D4-9C08DDE0D290}" => removed successfully
C:\Program Files\KMSpico => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 11034624 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 361325899 B
Java, Flash, Steam htmlcache => 20398849 B
Windows/system/drivers => 9821318 B
Edge => 1302459 B
Chrome => 458764161 B
Firefox => 29978555 B
Opera => 6737792 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 7456 B
NetworkService => 280488 B
User => 21528500 B

RecycleBin => 861123707 B
EmptyTemp: => 1.7 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 23:59:51 ====

Re: Prosim o kontrolu

Napsal: 11 srp 2020 09:25
od Rudy
Smazáno, log by již měl být OK.

Re: Prosim o kontrolu

Napsal: 19 srp 2020 07:09
od cica18
ok diky

Re: Prosim o kontrolu

Napsal: 19 srp 2020 09:17
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz