VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

přesměrování na jinou (spam) stránku

https://forum.viry.cz:443/viewtopic.php?t=157330

Stránka 1 z 1

přesměrování na jinou (spam) stránku

Napsal: 05 srp 2020 17:44
od wegel
Zdravím, pokračuji z topicu všehochuť

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-08-2020
Ran by Milan (administrator) on DESKTOP-NLA8MQV (MSI MS-7673) (05-08-2020 18:22:49)
Running from C:\Users\Milan\Desktop
Loaded Profiles: Milan
Platform: Windows 10 Home Version 1903 18362.959 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1"
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.5.245.0\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.5.245.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Hewlett-Packard Company -> HP) C:\Windows\System32\HPSIsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Milan\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-12-15] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] => "C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-424461927-3594105730-1145684912-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3375904 2020-06-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-424461927-3594105730-1145684912-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-10-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-424461927-3594105730-1145684912-1001\...\MountPoints2: {4b29568a-ff38-11e9-8b17-6c626de9a39d} - "J:\SISetup.exe"
HKLM\...\Windows x64\Print Processors\HPM1210PrintProc: C:\Windows\System32\spool\prtprocs\x64\HPM1210PP.dll [74240 2010-03-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPM1210LM: C:\Windows\system32\HPM1210LM.DLL [407040 2010-03-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-29] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\83.1.4977.117\Installer\chrmstp.exe [2020-07-17] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2020-04-14]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00F0C69D-0CA4-4D77-A6AA-D5D68A8C0540} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0828EACB-E28B-4E2E-AE02-CCF5B28F5AAB} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {20AB2AE9-27BB-4AAE-8B30-DE12B73AC538} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3BBFCD30-AA8F-4931-8C89-AF3E62379C35} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-11-04] (AVAST Software s.r.o. -> AVAST Software)
Task: {48BF7ADF-59CE-4100-AFDD-ED667A1BA5E5} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5AB1B5FB-DA89-4A0F-8460-1F43D754D1F9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5F952A1E-F353-4DFD-BFF5-3DE45496AE3C} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-11-04] (AVAST Software s.r.o. -> AVAST Software)
Task: {798059B6-4CED-416C-9B90-A6A847986330} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8CA635D5-8133-4ED6-8673-B1A4D290EFDF} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3810408 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
Task: {8E5D3BE6-8753-4A87-A387-24D17C57D3C9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B39D10D9-8EFF-4CF0-A446-914F238CE5EF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-05] (Google Inc -> Google LLC)
Task: {C2C10E7B-CF75-4C92-B624-28D6CCF6DB8F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-29] (Avast Software s.r.o. -> Avast Software)
Task: {F0CC79E3-B005-4B87-8CDD-0822D8AD1ADE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-05] (Google Inc -> Google LLC)
Task: {F86A21F7-20E5-4CEE-9B80-E0C02E454609} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2124576 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
Task: {FD19E96E-B273-4159-8BD5-B35E1CC0BE10} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2124576 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
Task: {FFE4955B-90EC-4253-A63A-A0DCFA0FA88D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{dc61a637-28aa-4358-a9d6-ccc0764701fd}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{e7faf531-5861-4c7b-b57d-95e377bd8072}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho_64.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
DownloadDir: C:\Users\Milan\Downloads
Edge Extension: (Avast Online Security) -> EdgeExtension_51CA791EAvastOnlineSecurity_s1d0xtrs8dx04 => C:\Program Files\WindowsApps\51CA791E.AvastOnlineSecurity_19.4.444.0_neutral__s1d0xtrs8dx04 [2020-01-15]
Edge Profile: C:\Users\Milan\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-13]
Edge DownloadDir: C:\Users\Milan\Downloads

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]

Chrome:
=======
CHR Profile: C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default [2020-08-05]
CHR Notifications: Default -> hxxps://www.media.io
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-05]
CHR Extension: (Dokumenty) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-05]
CHR Extension: (Disk Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-12-05]
CHR Extension: (YouTube) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-05]
CHR Extension: (uBlock Origin) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-07-25]
CHR Extension: (Dark Reader) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2020-07-29]
CHR Extension: (Tabulky) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-05]
CHR Extension: (IBA Opt-out (by Google)) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2019-12-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-30]
CHR Extension: (Disconnect) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2020-03-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-05]
CHR Extension: (Ochrana hesla) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\noondiphcddnnabmjcihcjfbhfklnnep [2019-12-05]
CHR Extension: (uMatrix) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfcmafjalglgifnmanfmnieipoejdcf [2019-12-05]
CHR Extension: (Gmail) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-12-05]
CHR Extension: (Chrome Media Router) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-23]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7776160 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-11-04] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [353696 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1072800 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-11-04] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\83.1.4977.117\elevation_service.exe [1310024 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R2 HPSIService; C:\Windows\system32\HPSIsvc.exe [127800 2010-04-30] (Hewlett-Packard Company -> HP)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205888 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235592 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195656 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60488 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16824 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42776 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175200 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [515544 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [466752 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-07-31] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [323784 2020-08-04] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [231936 2019-11-01] (Microsoft Corporation) [File not signed]
R2 mi2c; C:\Windows\system32\drivers\mi2c.sys [20784 2019-11-06] (AOC International (Europe) GmbH -> Nicomsoft Ltd.)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2010-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [46472 2019-11-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [351968 2019-11-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [53984 2019-11-01] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-05 18:22 - 2020-08-05 18:23 - 000019900 _____ C:\Users\Milan\Desktop\FRST.txt
2020-08-05 18:22 - 2020-08-05 18:22 - 000000000 ____D C:\Users\Milan\Desktop\FRST-OlderVersion
2020-08-05 18:21 - 2020-08-05 18:23 - 000000000 ____D C:\FRST
2020-08-04 23:09 - 2020-08-05 13:43 - 000000378 _____ C:\Windows\ntbtlog.txt
2020-08-04 09:35 - 2020-08-04 09:36 - 000000000 ____D C:\AdwCleaner
2020-08-04 09:23 - 2020-08-05 18:22 - 002296320 _____ (Farbar) C:\Users\Milan\Desktop\FRST64.exe
2020-08-04 09:20 - 2020-08-04 09:20 - 008414384 _____ (Malwarebytes) C:\Users\Milan\Downloads\adwcleaner_8.0.7.exe
2020-08-04 09:12 - 2020-08-04 09:12 - 000000000 ____D C:\NPE
2020-08-04 09:05 - 2020-08-04 09:05 - 009047080 _____ C:\Users\Milan\Downloads\chc.zip
2020-08-04 08:59 - 2020-08-04 09:14 - 000000000 ____D C:\Users\Milan\AppData\Local\NPE
2020-08-04 08:59 - 2020-08-04 08:59 - 009615808 _____ (NortonLifeLock Inc.) C:\Users\Milan\Downloads\NPE.exe
2020-08-04 08:59 - 2020-08-04 08:59 - 000000000 ____D C:\ProgramData\Norton
2020-07-31 18:18 - 2020-07-31 18:18 - 000335968 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-07-31 18:18 - 2020-07-31 18:18 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-07-31 18:18 - 2020-07-31 18:18 - 000175200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-07-29 20:25 - 2020-07-29 20:25 - 000002323 _____ C:\Users\Milan\AppData\Local\recently-used.xbel
2020-07-29 19:28 - 2020-07-29 19:34 - 121499249 _____ C:\Users\Milan\Downloads\DesignOptimal.com - 41 Decorative & Ornament Elements Set in Vector.zip
2020-07-29 18:38 - 2020-07-29 20:24 - 000000000 ____D C:\Users\Milan\AppData\Local\gtk-2.0
2020-07-29 18:36 - 2020-07-29 20:26 - 000000000 ____D C:\Users\Milan\AppData\Local\babl-0.1
2020-07-29 18:36 - 2020-07-29 18:36 - 000000000 ____D C:\Users\Milan\AppData\Roaming\GIMP
2020-07-29 18:36 - 2020-07-29 18:36 - 000000000 ____D C:\Users\Milan\AppData\Local\GIMP
2020-07-29 18:36 - 2020-07-29 18:36 - 000000000 ____D C:\Users\Milan\AppData\Local\gegl-0.4
2020-07-29 18:36 - 2020-07-29 18:36 - 000000000 ____D C:\Users\Milan\.cache
2020-07-29 18:34 - 2020-07-29 18:34 - 000000946 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.20.lnk
2020-07-29 18:34 - 2020-07-29 18:34 - 000000934 _____ C:\Users\Public\Desktop\GIMP 2.10.20.lnk
2020-07-29 18:31 - 2020-07-29 18:32 - 000000000 ____D C:\Program Files\GIMP 2
2020-07-29 18:26 - 2020-07-29 18:30 - 224559784 _____ (The GIMP Team ) C:\Users\Milan\Downloads\gimp-2.10.20-setup-1.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 025902592 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 022641664 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 019851776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 019812864 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 018031104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 014820352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 008015872 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 007823912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 007269376 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 007012864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 006523856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 006292992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 006089512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 005946368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 005765648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 005111808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 005099384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 004129424 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 003974368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 003748352 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 003743048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 002799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-07-18 14:22 - 2020-07-18 14:22 - 002576896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 002494744 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001991592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001952880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001737728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001665728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001655472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001581568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001550336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001512960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001484384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001477632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001463808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001420328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001397568 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 001371136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001357824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001346048 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001344512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001307136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001284608 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001265152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001223168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001195008 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001151816 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001125376 _____ (Microsoft Corporation) C:\Windows\system32\CBDHSvc.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001077048 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001048992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001014784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 001009152 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000995840 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000967680 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000950272 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000945176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000913408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000912896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000898048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000895600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000892928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000891392 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000882176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000875008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000867840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000865280 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000848384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000844096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000814080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000793320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputHost.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000783488 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000782848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000779080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000778872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000750080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000695208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000689664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000685384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000673448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000669184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000653824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000628416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000628024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000614912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000614912 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000600064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000594992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000593408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000584704 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000582056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000570368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000542288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000540672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000538664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000522240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000521728 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000518656 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000513024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000502784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000484352 _____ (Microsoft Corporation) C:\Windows\system32\MixedReality.Broker.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000478296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000467456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000462848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000453944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000452096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000444416 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000442096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000432128 _____ (Microsoft Corporation) C:\Windows\system32\WalletService.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000430592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000419328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000416768 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000410112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000406992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000406992 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000405944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Payments.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000388096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000387584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000382976 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000380224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\APHostService.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000345560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000338944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-07-18 14:22 - 2020-07-18 14:22 - 000317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000311440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\CXHProvisioningServer.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnclient.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000287744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Preview.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PickerPlatform.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000268552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000266552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemSettings.DataModel.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConsoleLogon.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\HoloShellRuntime.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-07-18 14:22 - 2020-07-18 14:22 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2020-07-18 14:22 - 2020-07-18 14:22 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000211256 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000199496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000196096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000193600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000190056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000188928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000188928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-07-18 14:22 - 2020-07-18 14:22 - 000186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\dialserver.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Clipboard.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\PrintWorkflowService.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000176952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Management.Workplace.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HoloShellRuntime.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dialclient.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\PrintWSDAHost.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\useractivitybroker.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000150336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000147968 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintWorkflowService.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppExtension.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\StorageUsage.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintWSDAHost.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentActivation.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000107520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\Family.Authentication.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraCaptureUI.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EaseOfAccessDialog.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000093184 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000089328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000086272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\Print.Workflow.Source.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sethc.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DiagnosticInvoker.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiverExt.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keyiso.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemUWPLauncher.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Print.Workflow.Source.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiverExt.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000052152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ResourcePolicyClient.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2020-07-18 14:22 - 2020-07-18 14:22 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\PrintWorkflowProxy.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemEventsBrokerClient.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintWorkflowProxy.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-07-18 14:22 - 2020-07-18 14:22 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-07-18 14:21 - 2020-07-18 14:21 - 017792512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 009931576 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 007917408 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 007850288 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 007604584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 007297536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 007268640 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 006437376 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 006233080 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 006169088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 004625192 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 004565264 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 004014592 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 003800576 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 003727360 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-07-18 14:21 - 2020-07-18 14:21 - 003712000 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 003084800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002768984 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002737664 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-07-18 14:21 - 2020-07-18 14:21 - 002552120 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002505496 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002467840 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002448712 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002357248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002285056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002264064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002237096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002161664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002087168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002074112 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 002060288 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001946144 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001918464 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001885184 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001877504 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001827328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001821696 _____ (Microsoft Corporation) C:\Windows\system32\CoreShell.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001787392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001764336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001745728 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001743680 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001723392 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001658368 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001656904 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001654304 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001640448 _____ (Microsoft Corporation) C:\Windows\system32\TaskFlowDataEngine.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001612800 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001604608 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001540608 _____ (Microsoft Corporation) C:\Windows\system32\WindowManagement.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001500160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001486848 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 001392128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001385696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001374208 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001337856 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001335296 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001290192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001284608 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001271296 _____ (Microsoft Corporation) C:\Windows\system32\SEMgrSvc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001183744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001159168 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001151304 _____ (Microsoft Corporation) C:\Windows\system32\InputHost.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 001121792 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001100800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001086776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Services.TargetedContent.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001081344 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001059840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001055232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001028336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Perception.Stub.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001008960 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 001007616 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000958608 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000949760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000931840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000922624 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000919880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000917504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000904192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000899584 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000889416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000882184 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000827904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000822200 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000821232 _____ (Microsoft Corporation) C:\Windows\system32\windows.applicationmodel.datatransfer.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000797448 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000750592 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000742712 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000737792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000722072 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000716288 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\LockController.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000684864 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000678720 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000656696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2020-07-18 14:21 - 2020-07-18 14:21 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000639488 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000638464 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000630784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000624640 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000616960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000608256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000605896 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000602112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Payments.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-07-18 14:21 - 2020-07-18 14:21 - 000549048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000544256 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000534016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000526848 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000524784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000518464 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000513024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Activities.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000502784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000490496 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000477184 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountWAMExtension.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000475136 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000467960 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000467456 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000461112 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000458240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000444416 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000434176 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000432128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000419328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000416768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000412672 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000411640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000399672 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DataModel.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000397824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000395264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Preview.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000392504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000381152 _____ (Microsoft Corporation) C:\Windows\system32\CredentialEnrollmentManager.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000375296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000374272 _____ (Microsoft Corporation) C:\Windows\system32\PickerPlatform.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\QuickActionsDataModel.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000355840 _____ (Microsoft Corporation) C:\Windows\system32\wpnclient.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000355840 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000340328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000334336 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Cortana.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000311608 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000306688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\TDLMigration.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000290304 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000283136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000274432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000265728 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2020-07-18 14:21 - 2020-07-18 14:21 - 000260288 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000248832 _____ (Microsoft Corporation) C:\Windows\system32\PasswordEnrollmentManager.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000247864 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000239928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Workplace.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000220992 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\MtcModel.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\PeopleBand.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000210944 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\useractivitybroker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000204608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2020-07-18 14:21 - 2020-07-18 14:21 - 000200704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000179512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2020-07-18 14:21 - 2020-07-18 14:21 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\AppExtension.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.CapturePicker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000165840 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000165376 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000146232 _____ (Microsoft Corporation) C:\Windows\system32\ResourcePolicyServer.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Storage.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000132408 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingExperienceMEM.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\CredDialogBroker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\CameraCaptureUI.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\CaptureService.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000118272 _____ (Microsoft Corporation) C:\Windows\system32\EaseOfAccessDialog.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000110040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticInvoker.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\keyiso.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicAgent.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\SystemUWPLauncher.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000076952 _____ (Microsoft Corporation) C:\Windows\system32\CredentialEnrollmentManagerForUser.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000070248 _____ (Microsoft Corporation) C:\Windows\system32\ResourcePolicyClient.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000040248 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkPS.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\UIMgrBroker.exe
2020-07-18 14:21 - 2020-07-18 14:21 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerClient.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicPS.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\CSystemEventsBrokerClient.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\UIManagerBrokerps.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2020-07-18 14:21 - 2020-07-18 14:21 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2020-07-18 14:16 - 2020-06-30 06:32 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-07-18 14:16 - 2020-06-30 06:26 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-07-18 06:48 - 2020-07-18 06:48 - 000000000 ____D C:\Users\Milan\AppData\Roaming\Skype

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-05 18:09 - 2020-06-13 12:54 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-08-05 18:09 - 2020-06-13 12:54 - 000003286 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-08-05 18:09 - 2020-05-10 11:34 - 000003352 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{AE2B90DD-0C61-4AFB-95B1-30F05DCC019E}
2020-08-05 18:09 - 2019-12-05 15:17 - 000003402 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-08-05 18:09 - 2019-12-05 15:17 - 000003178 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-08-05 18:09 - 2019-11-01 14:52 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-05 18:09 - 2019-11-01 14:52 - 000003176 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-05 18:09 - 2019-11-01 14:52 - 000003140 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-05 18:09 - 2019-11-01 14:52 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-05 18:09 - 2019-11-01 14:52 - 000002956 _____ C:\Windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-05 18:09 - 2019-11-01 14:52 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-05 18:09 - 2019-11-01 14:52 - 000002838 _____ C:\Windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-05 18:09 - 2019-11-01 14:52 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-05 18:09 - 2019-11-01 14:06 - 000002858 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-424461927-3594105730-1145684912-1001
2020-08-05 18:08 - 2019-11-04 19:08 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-08-05 18:06 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-05 17:59 - 2019-11-01 14:00 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-08-05 15:49 - 2019-11-01 14:29 - 000000000 ____D C:\ProgramData\NVIDIA
2020-08-05 15:49 - 2019-11-01 14:06 - 000000000 ___RD C:\Users\Milan\OneDrive
2020-08-04 18:19 - 2019-11-04 19:07 - 000323784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-08-04 09:27 - 2019-11-04 19:06 - 000000000 ____D C:\ProgramData\AVAST Software
2020-08-04 09:18 - 2019-11-01 14:09 - 001694640 _____ C:\Windows\system32\PerfStringBackup.INI
2020-08-04 09:18 - 2019-03-19 13:55 - 000717182 _____ C:\Windows\system32\perfh005.dat
2020-08-04 09:18 - 2019-03-19 13:55 - 000145262 _____ C:\Windows\system32\perfc005.dat
2020-08-04 09:18 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2020-08-04 09:12 - 2019-11-01 14:00 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-08-04 09:11 - 2019-03-19 06:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-08-04 07:42 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-04 07:42 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\AppReadiness
2020-08-04 07:41 - 2019-11-01 14:03 - 000002361 _____ C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-08-03 18:29 - 2019-11-04 19:07 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-08-02 08:05 - 2020-06-13 12:54 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-02 08:05 - 2020-06-13 12:54 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-08-01 17:10 - 2019-11-06 21:11 - 000000000 ____D C:\Users\Milan\AppData\Local\CrashDumps
2020-07-31 18:18 - 2020-04-05 20:25 - 000515544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-07-31 18:18 - 2019-11-04 19:07 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-07-31 18:18 - 2019-11-04 19:07 - 000466752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-07-31 18:18 - 2019-11-04 19:07 - 000235592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-07-31 18:18 - 2019-11-04 19:07 - 000205888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-07-31 18:18 - 2019-11-04 19:07 - 000195656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-07-31 18:18 - 2019-11-04 19:07 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-07-31 18:18 - 2019-11-04 19:07 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-07-31 18:18 - 2019-11-04 19:07 - 000060488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-07-31 18:18 - 2019-11-04 19:07 - 000042776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-07-31 18:18 - 2019-03-19 06:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-07-29 18:36 - 2019-11-01 14:03 - 000000000 ____D C:\Users\Milan
2020-07-29 08:47 - 2020-03-08 12:24 - 000000000 ____D C:\Users\Milan\AppData\Roaming\foobar2000
2020-07-29 07:35 - 2019-12-05 15:17 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-25 18:31 - 2020-03-07 11:40 - 000000000 ____D C:\Users\Milan\Desktop\games
2020-07-23 09:52 - 2019-11-04 19:07 - 000016824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2020-07-19 07:18 - 2019-11-01 14:03 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-19 07:18 - 2019-11-01 14:03 - 000000000 ___RD C:\Users\Milan\3D Objects
2020-07-19 07:18 - 2019-11-01 14:00 - 000446080 _____ C:\Windows\system32\FNTCACHE.DAT
2020-07-18 22:43 - 2019-03-19 06:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2020-07-18 22:43 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SystemResources
2020-07-18 22:43 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\oobe
2020-07-18 22:42 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-07-18 22:42 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\bcastdvr
2020-07-18 22:42 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-18 14:25 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\CbsTemp
2020-07-17 19:00 - 2020-05-13 18:41 - 000000000 ____D C:\Users\Milan\Desktop\Opce
2020-07-17 15:42 - 2019-11-04 19:59 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-07-06 14:25 - 2019-11-04 19:09 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Security.lnk
2020-07-06 14:25 - 2019-11-04 19:09 - 000002076 _____ C:\Users\Public\Desktop\Avast Premium Security.lnk

==================== Files in the root of some directories ========

2020-05-13 12:09 - 2020-05-13 12:09 - 024166400 _____ () C:\Program Files (x86)\GUTBBEA.tmp
2020-07-29 20:25 - 2020-07-29 20:25 - 000002323 _____ () C:\Users\Milan\AppData\Local\recently-used.xbel
2020-01-09 23:04 - 2020-02-29 21:19 - 000007620 _____ () C:\Users\Milan\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: přesměrování na jinou (spam) stránku

Napsal: 05 srp 2020 17:52
od wegel
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-08-2020
Ran by Milan (05-08-2020 18:23:57)
Running from C:\Users\Milan\Desktop
Windows 10 Home Version 1903 18362.959 (X64) (2019-11-01 12:03:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-424461927-3594105730-1145684912-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-424461927-3594105730-1145684912-503 - Limited - Disabled)
Guest (S-1-5-21-424461927-3594105730-1145684912-501 - Limited - Disabled)
Milan (S-1-5-21-424461927-3594105730-1145684912-1001 - Administrator - Enabled) => C:\Users\Milan
WDAGUtilityAccount (S-1-5-21-424461927-3594105730-1145684912-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aktualizace NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 20.6.2420 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 83.1.4977.117 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.5.245.0 - AVAST Software) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.35 - NVIDIA Corporation) Hidden
FlashBack Express 5 (HKLM-x32\...\FlashBack Express 5) (Version: 5.41.0.4534 - Blueberry Software (UK) Ltd.)
foobar2000 v1.5.2 (HKLM-x32\...\foobar2000) (Version: 1.5.2 - Peter Pawlowski)
GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - )
iCloud (HKLM\...\{576BC8FA-1891-47C8-8A23-F3DDB78C06DE}) (Version: 7.15.0.10 - Apple Inc.)
LG CyberLink Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.2.4009 - CyberLink Corp.) Hidden
LG CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.2.4009 - CyberLink Corp.)
LG Power Tools (HKLM-x32\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.3316 - CyberLink Corp.) Hidden
LG Power Tools (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.3316 - CyberLink Corp.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.52 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-424461927-3594105730-1145684912-1001\...\OneDriveSetup.exe) (Version: 20.124.0621.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Ovládací panel NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{BED24701-751B-41C5-8888-A8EABAB9FE8C}) (Version: 8.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{88F21C94-88AF-4665-AF4F-FECB1FA059B9}) (Version: 8.1 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8010 - Realtek Semiconductor Corp.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
SmartControl-4.3.10 (HKLM-x32\...\{3ED13E98-8840-4218-A25E-B0F2A53EA06F}) (Version: 4.3.10 - PHL)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
TP-LINK Archer T6E Driver (HKLM-x32\...\{2716E9BF-1A34-45DE-B657-541F4AED9858}) (Version: 1.3.1 - TP-LINK)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden

Packages:
=========
Any Player -> C:\Program Files\WindowsApps\15191PeakPlayer.50533F9B98293_3.1.9.0_x64__y5c4dfz5b21fm [2020-06-01] (Any DVD &amp; Office App)
Avast Online Security -> C:\Program Files\WindowsApps\51CA791E.AvastOnlineSecurity_19.4.444.0_neutral__s1d0xtrs8dx04 [2020-01-15] (AVAST Software)
CCPlayer Pro -> C:\Program Files\WindowsApps\D3DB5ACE.CCPlayerPro_2017.820.146.0_x64__gt1c0ekgxeeqr [2019-11-29] (L:me)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-06] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-12-17] (Microsoft Corporation)
foobar2000 -> C:\Program Files\WindowsApps\Resolute.foobar2000_1.5.5.0_x86__cg7j1awqsza28 [2020-07-17] (Resolute)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-06] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-06] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-07-23] (Microsoft Studios) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.23.31994.0_x64__8wekyb3d8bbwe [2020-07-31] (Microsoft Corporation)
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-17] (Netflix, Inc.)
Photo Cropper - Photo Aide -> C:\Program Files\WindowsApps\NeweraSoftwareTechnologyI.PhotoCropperPlus_5.61.0.0_x86__4c1znmvt0khkg [2020-06-21] (Newera Software Technology Inc.)
Telegram Desktop -> C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_2.2.0.0_x64__t4vj0pshhgkwm [2020-07-29] (Telegram Messenger LLP)
Watermark Photos - Photo Aide -> C:\Program Files\WindowsApps\NeweraSoftwareTechnologyI.WatermarkPhotos-PhotoAid_4.60.0.0_x86__4c1znmvt0khkg [2020-06-23] (Newera Software Technology Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BB FlashBack 2] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-10-26] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [QuickShare] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-31] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-11-01 14:51 - 2018-03-24 01:05 - 000880024 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2019-11-01 14:51 - 2018-03-24 01:05 - 000343728 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

2019-11-04 19:17 - 2019-11-04 19:17 - 000000446 _____ C:\Windows\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-424461927-3594105730-1145684912-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-424461927-3594105730-1145684912-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-424461927-3594105730-1145684912-1001\...\StartupApproved\Run: => "iCloudServices"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C325E98E-A7A1-4D47-B349-FFFB2FB481AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CEA465BF-D9B5-4476-86E0-A239FE96B582}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6544719F-9388-4EC7-8759-88125A2A3781}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{00DAA70F-50F8-4537-A93F-8DF4E718F57B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{41570361-00BF-46A6-B353-B5D6257DFB35}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{12D94515-3304-4E96-97EE-B35EBB1F7B04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3EA0591A-918A-4C69-B5BA-48EA966ADF66}] => (Allow) C:\Windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9B9CAF74-DF88-4564-AEEC-B5FDB80F8534}] => (Allow) C:\Windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{18FB9214-060C-4DB7-AEB6-CE31B0E08C7D}] => (Allow) C:\Windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{2AE709C6-C51D-49CB-9917-D49897FC9D2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{3ACC9666-32C6-49CF-AD22-D83031B83E63}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{536BFCF9-EFAE-41BF-A5AE-AACE9046E473}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{645DD04B-A8BC-47A4-9CBE-A2F50D7DD7B1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A0EDC9E6-84D6-4600-A79F-6F76FB1A053E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44782747-7F60-4BFB-96F3-49A12EFE159F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5386BA8C-4F26-4D60-941E-4273160DF5DB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{81C53B03-FF90-40A9-B07D-379B8DD49FE6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{236C956F-DB4D-40A5-8EFF-A3A3EA14D66C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{1FC72D69-FC23-4728-8CC3-CB8CFDC7B98D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout New Vegas enplczru\FalloutNVLauncher.exe (Bethesda Softworks, Obsidian Entertainment) [File not signed]
FirewallRules: [{7D4E2B5D-E62B-40E3-83DD-8F6DC1783D26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout New Vegas enplczru\FalloutNVLauncher.exe (Bethesda Softworks, Obsidian Entertainment) [File not signed]
FirewallRules: [{AD86E0FC-51A1-4FAB-8ABB-D2307445F91E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{44A6C2CD-C0A0-4741-B380-74F0232EFD47}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DE050BD2-CEA8-4889-8389-96FE3D0C06FE}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6BE0FDAB-15C9-4057-9C2A-333DAC24CBD0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{22907DC4-06B6-4222-809D-9565F42739F8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CE888EF3-0DDA-455F-B2DE-379F39D391C2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{98FA7E52-AFB0-4F2E-B1E7-3FE3BCF05AF6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ABDA4AF9-E47E-4ECD-A880-B7648286D8EB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

17-07-2020 16:02:30 Windows Update
26-07-2020 12:14:30 Naplánovaný kontrolní bod
04-08-2020 15:12:05 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (08/01/2020 05:10:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CCPlayer.UWP.Pro.exe, verze: 1.0.0.0, časové razítko: 0x59995709
Název chybujícího modulu: swresample-2.dll, verze: 0.0.0.0, časové razítko: 0x5995d22b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000001d1e
ID chybujícího procesu: 0xcf8
Čas spuštění chybující aplikace: 0x01d6680ee861fefc
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\D3DB5ACE.CCPlayerPro_2017.820.146.0_x64__gt1c0ekgxeeqr\CCPlayer.UWP.Pro.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\D3DB5ACE.CCPlayerPro_2017.820.146.0_x64__gt1c0ekgxeeqr\swresample-2.dll
ID zprávy: f8477788-491a-421b-b7a5-5073100662c6
Úplný název chybujícího balíčku: D3DB5ACE.CCPlayerPro_2017.820.146.0_x64__gt1c0ekgxeeqr
ID aplikace související s chybujícím balíčkem: App

Error: (07/29/2020 08:25:38 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-NLA8MQV)
Description: C:\Users\Milan\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809

Error: (07/29/2020 08:10:38 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-NLA8MQV)
Description: C:\Users\Milan\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809

Error: (07/29/2020 07:55:07 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-NLA8MQV)
Description: C:\Users\Milan\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809

Error: (07/29/2020 07:35:49 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-NLA8MQV)
Description: C:\Users\Milan\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809

Error: (07/29/2020 07:10:38 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-NLA8MQV)
Description: C:\Users\Milan\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809

Error: (07/29/2020 06:55:07 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-NLA8MQV)
Description: C:\Users\Milan\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809

Error: (07/19/2020 10:03:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CCPlayer.UWP.Pro.exe, verze: 1.0.0.0, časové razítko: 0x59995709
Název chybujícího modulu: swresample-2.dll, verze: 0.0.0.0, časové razítko: 0x5995d22b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000001d1e
ID chybujícího procesu: 0x2dbc
Čas spuštění chybující aplikace: 0x01d65e0792240934
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\D3DB5ACE.CCPlayerPro_2017.820.146.0_x64__gt1c0ekgxeeqr\CCPlayer.UWP.Pro.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\D3DB5ACE.CCPlayerPro_2017.820.146.0_x64__gt1c0ekgxeeqr\swresample-2.dll
ID zprávy: 29761857-fdfa-4331-909a-2431a3dec7c1
Úplný název chybujícího balíčku: D3DB5ACE.CCPlayerPro_2017.820.146.0_x64__gt1c0ekgxeeqr
ID aplikace související s chybujícím balíčkem: App


System errors:
=============
Error: (08/04/2020 09:11:29 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba NPEService je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (08/03/2020 06:26:04 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:43:15, ‎02.‎08.‎2020) bylo neočekávané.

Error: (08/03/2020 06:25:57 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221226513Při zpracování obnovovacích dat došlo k závažné chybě.

Error: (08/01/2020 08:34:02 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221226513Při zpracování obnovovacích dat došlo k závažné chybě.

Error: (08/01/2020 08:34:08 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (22:08:12, ‎31.‎07.‎2020) bylo neočekávané.

Error: (07/29/2020 07:25:37 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:56:49, ‎27.‎07.‎2020) bylo neočekávané.

Error: (07/29/2020 07:25:29 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221226513Při zpracování obnovovacích dat došlo k závažné chybě.

Error: (07/25/2020 06:49:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Uživatelská služba nabízených oznámení Windows_128806d byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.


CodeIntegrity:
===================================

Date: 2020-08-05 18:24:32.537
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-05 18:24:32.536
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-05 18:22:37.505
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-05 18:22:37.502
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-05 18:22:36.176
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-05 18:22:36.171
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-05 18:22:36.086
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-05 18:22:36.082
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V1.11 04/14/2011
Motherboard: MSI P67A-C43 (MS-7673)
Processor: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz
Percentage of memory in use: 19%
Total physical RAM: 16355.36 MB
Available physical RAM: 13118.89 MB
Total Virtual: 18787.36 MB
Available Virtual: 15195.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.26 GB) (Free:138.01 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:86.49 GB) NTFS

\\?\Volume{aa862275-764b-4635-b150-1d5e906652be}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.14 GB) NTFS
\\?\Volume{b437d6b7-0d5a-4a37-aa20-9afece819c9a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: B9024B53)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Re: přesměrování na jinou (spam) stránku

Napsal: 05 srp 2020 18:00
od Rudy
Zdravím!
Proč jate tedy dával původní vlákno do Všehochuti? Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: přesměrování na jinou (spam) stránku

Napsal: 05 srp 2020 18:04
od wegel
Protože mám dojem, že se nejedná o havět v pc... Jak jsem psal projel jsem PC i adwcleaner i norton power eraser a vše v pořádku.

Re: přesměrování na jinou (spam) stránku

Napsal: 05 srp 2020 19:00
od Rudy
OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ContextMenuHandlers1: [BB FlashBack 2] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
ContextMenuHandlers1: [QuickShare] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
FirewallRules: [{5386BA8C-4F26-4D60-941E-4273160DF5DB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{81C53B03-FF90-40A9-B07D-379B8DD49FE6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{236C956F-DB4D-40A5-8EFF-A3A3EA14D66C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
C:\Program Files (x86)\Bonjour
HKU\S-1-5-21-424461927-3594105730-1145684912-1001\...\MountPoints2: {4b29568a-ff38-11e9-8b17-6c626de9a39d} - "J:\SISetup.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {B39D10D9-8EFF-4CF0-A446-914F238CE5EF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-05] (Google Inc -> Google LLC)
Task: {F0CC79E3-B005-4B87-8CDD-0822D8AD1ADE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-05] (Google Inc -> Google LLC)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUTBBEA.tmp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: přesměrování na jinou (spam) stránku

Napsal: 06 srp 2020 18:31
od wegel
zde je fixlog, chtěl bych se zeptat ohledně toho googlu o co se jednalo ? v chrome to odstranilo veškeré otevřené okna a historii a pravděpodobně zresetovalo nastavení. Ale budu pozorovat jestli to už bude v pořádku, díky

Fix result of Farbar Recovery Scan Tool (x64) Version: 05-08-2020
Ran by Milan (06-08-2020 19:23:03) Run:1
Running from C:\Users\Milan\Desktop
Loaded Profiles: Milan
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [BB FlashBack 2] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
ContextMenuHandlers1: [QuickShare] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
FirewallRules: [{5386BA8C-4F26-4D60-941E-4273160DF5DB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{81C53B03-FF90-40A9-B07D-379B8DD49FE6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{236C956F-DB4D-40A5-8EFF-A3A3EA14D66C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
C:\Program Files (x86)\Bonjour
HKU\S-1-5-21-424461927-3594105730-1145684912-1001\...\MountPoints2: {4b29568a-ff38-11e9-8b17-6c626de9a39d} - "J:\SISetup.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {B39D10D9-8EFF-4CF0-A446-914F238CE5EF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-05] (Google Inc -> Google LLC)
Task: {F0CC79E3-B005-4B87-8CDD-0822D8AD1ADE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-05] (Google Inc -> Google LLC)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUTBBEA.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BB FlashBack 2 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\QuickShare => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5386BA8C-4F26-4D60-941E-4273160DF5DB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{81C53B03-FF90-40A9-B07D-379B8DD49FE6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{236C956F-DB4D-40A5-8EFF-A3A3EA14D66C}" => removed successfully
C:\Program Files (x86)\Bonjour => moved successfully
HKU\S-1-5-21-424461927-3594105730-1145684912-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4b29568a-ff38-11e9-8b17-6c626de9a39d} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B39D10D9-8EFF-4CF0-A446-914F238CE5EF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B39D10D9-8EFF-4CF0-A446-914F238CE5EF}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F0CC79E3-B005-4B87-8CDD-0822D8AD1ADE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0CC79E3-B005-4B87-8CDD-0822D8AD1ADE}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Program Files (x86)\GUTBBEA.tmp => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 384277727 B
Java, Flash, Steam htmlcache => 376598345 B
Windows/system/drivers => 3619057 B
Edge => 6476404 B
Chrome => 420355944 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 751928 B
NetworkService => 756668 B
Milan => 13130079 B

RecycleBin => 149307571 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:24:03 ====

Re: přesměrování na jinou (spam) stránku

Napsal: 06 srp 2020 19:01
od Rudy
Pravděpodobně něco v dočasných souborech. V transparentních jsou pouze zbytečnosti. Reset nastavení je průvodní jev čištění.

Re: přesměrování na jinou (spam) stránku

Napsal: 06 srp 2020 19:52
od wegel
Rudy píše: 06 srp 2020 19:01 Pravděpodobně něco v dočasných souborech. V transparentních jsou pouze zbytečnosti. Reset nastavení je průvodní jev čištění.
Ok, a ještě se zeptám, co tedy mohlo z toho výše uvedeného nejpravděpodobněji způsobovat to přesměrování?

Re: přesměrování na jinou (spam) stránku

Napsal: 06 srp 2020 20:59
od Rudy
Nevím. Mazání dočasných souborů internetu log zobrazí pouze tímto hlášením:
EmptyTemp: => 1.3 GB temporary data Removed.
Jinak řečeno log pouze zobrazí velikost všech dočasných souborů celkem a fakt, že byly smazány. Jednotlivě ne, takže nemohu říci, který konkrétně měnil nastavení prohlížeče. V transparntně uvedených souborech:
ContextMenuHandlers1: [BB FlashBack 2] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
ContextMenuHandlers1: [QuickShare] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
FirewallRules: [{5386BA8C-4F26-4D60-941E-4273160DF5DB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{81C53B03-FF90-40A9-B07D-379B8DD49FE6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{236C956F-DB4D-40A5-8EFF-A3A3EA14D66C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
C:\Program Files (x86)\Bonjour
HKU\S-1-5-21-424461927-3594105730-1145684912-1001\...\MountPoints2: {4b29568a-ff38-11e9-8b17-6c626de9a39d} - "J:\SISetup.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {B39D10D9-8EFF-4CF0-A446-914F238CE5EF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-05] (Google Inc -> Google LLC)
Task: {F0CC79E3-B005-4B87-8CDD-0822D8AD1ADE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-05] (Google Inc -> Google LLC)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUTBBEA.tmp
Jsou pouze zbytečnosti, které zpomalují chod PC, popř další dočasné soubory.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz