Stale vyskakujú 2 okná
Napsal: 12 led 2022 18:05
Zdravím,neviem prečo vyskakujú okna,Avast to blokne ale stále pri ďalšom zapnutí alebo reštarte vyskočia,tu je screen:
https://ibb.co/nLJ25yk
https://ibb.co/jyJkq76
LOG
Logfile of random's system information tool 1.10 (written by random/random)
Run by vlado at 2022-01-12 17:44:41
Microsoft Windows 11 Home
System drive C: has 384 GB (79%) free of 487 GB
Total RAM: 5996 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:44:48, on 12. 1. 2022
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.22000.0120)
Boot mode: Normal
Running processes:
C:\WINDOWS\SysWOW64\NahimicSvc32.exe
C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.x86.exe
C:\WINDOWS\Lenovo\iMController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
C:\WINDOWS\Lenovo\iMController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
C:\Program Files\trend micro\vlado.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.55\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O4 - HKCU\..\Run: [OneDrive] "C:\Users\vlado\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Avast Browser] C:\Users\vlado\AppData\Local\AVAST Software\Browser\Update\1.8.1189.1\AvastBrowserUpdateCore.exe
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_C537507AFD12E8ED9D3AB69BA0B11664] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - Global Startup: update.bat
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlansp_c.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD Crash Defender Service - Unknown owner - C:\WINDOWS\System32\amdfendrsr.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\u0372283.inf_amd64_5add093cdf0072b1\B372145\atiesrxx.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Avast Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Avast Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\Avast Software\Avast\afwServ.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\Avast Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_43e38 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: @oem4.inf,%ImcSvcDisplayName%;System Interface Foundation Service (ImControllerService) - Lenovo Group Ltd. - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @oem5.inf,%ServiceName%;Lenovo Fn and function keys service (LenovoFnAndFunctionKeys) - Lenovo(beijing) Limited - C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_b9fd1528982e300f\LenovoUtilityService.exe
O23 - Service: LenovoVantageService - Lenovo Group Ltd. - C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @oem60.inf,%SERVICE_FRIENDLY_NAME%;Nahimic service (NahimicService) - Unknown owner - C:\WINDOWS\system32\NahimicService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Realtek Semiconductor - C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTrap) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @oem28.inf,%UdcSvcDisplayName%;Universal Device Client Service (UDCService) - Unknown owner - C:\WINDOWS\System32\drivers\Lenovo\udc\Service\UDClientService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11787 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-dc5cd6b2-0e6d-49b8-ba7c-73a1e16c5600 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2941aa17-29b9-4201-8518-b3377c5cac10 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a8ee39d2-da33-4002-943d-512e3eb9415c -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-00bd3ad1-f86a-4655-9c00-fbd5a43a6d14 -LifetimeId:56d11c2a-fd10-4969-90a6-6ee8e906bcb9 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-32f17609-2cd9-4a54-8c23-95ab129c7350 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-721d84de-885f-43b7-81a9-489ca34a0e7f -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b9570cf9-6450-43af-bf4c-278883f74219 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7753f231-b26a-414e-a157-42005aae2d97 -LifetimeId:aab73a1b-b4ce-4b81-b7b6-5ad19509a28f -DeviceGroupId: -HostArg:0
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\System32\svchost.exe -k netprofm -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k osprivacy -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
C:\WINDOWS\system32\svchost.exe -k NetworkService -p
dashost.exe {1657558e-1745-4cba-a85dd7ac746f7b93}
C:\WINDOWS\System32\amdfendrsr.exe
C:\WINDOWS\System32\DriverStore\FileRepository\u0372283.inf_amd64_5add093cdf0072b1\B372145\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
"C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
atieclxx
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\AUDIODG.EXE 0x00000000000005F8
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2207746137072
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Avast Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
sihost.exe
C:\WINDOWS\system32\svchost.exe -k BthAppGroup -p -s BluetoothUserService
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe"
"ctfmon.exe"
C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\Program Files\Avast Software\Avast\afwServ.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_b9fd1528982e300f\LenovoUtilityService.exe
"C:\WINDOWS\system32\NahimicService.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\WINDOWS\System32\drivers\Lenovo\udc\Service\UDClientService.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe"
"C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\GamingServices.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
AggregatorHost.exe
"C:\Program Files\Avast Software\Avast\aswEngSrv.exe" /pipename="18D227B1-FF4E-5DA2-DBA1-2A413E395C02" /binpath="C:\Program Files\Avast Software\Avast" /logpath="C:\ProgramData\Avast Software\Avast\log"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s DeviceInstall
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
C:\WINDOWS\system32\svchost.exe -k UdkSvcGroup -s UdkUserSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\System32\svchost.exe -k netprofm -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\system32\.\NahimicSvc64.exe /start all /product A-Volute.Nahimic /location C:\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64
C:\WINDOWS\system32\..\SysWOW64\NahimicSvc32.exe /start all /product A-Volute.Nahimic /location C:\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe" -name 1bb0ac79-d646-4df8-bf2a-b12ba4c2de47 -runas SYSTEM -pluginName LenovoGamingSystemPlugin -pluginVersion 3.10.0.15
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
-name 3b741d18-db25-4cc2-a3e3-e1900d259f58 -runas -pluginName LenovoVisionProtectionPlugin -pluginVersion 1.2.98.8
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" VantageCoreAddin C:\ProgramData\Lenovo\Vantage\Addins\\VantageCoreAddin\1.0.0.28\VantageCoreAddin.dll e35392d5d1e24c08884f2050a15eed3e 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" GenericTelemetryAddin C:\ProgramData\Lenovo\Vantage\Addins\\GenericTelemetryAddin\2.0.0.3\GenericTelemetryAddin.dll b9e8e426271740a08e1143158a44d65a 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"c:\windows\system32\rundll32.exe" "C:\PROGRA~3\Lenovo\IMCONT~1\Plugins\LE73F0~1\x64\HOTKEY~1.DLL",HotkeyMonitorEntry
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.x86.exe" DeviceSettingsHeartbeatAddin C:\ProgramData\Lenovo\Vantage\Addins\\DeviceSettingsHeartbeatAddin\1.0.0.21\DeviceSettingsHeartbeatAddin.dll 6a8a4d86a5a049edb54b8c41dab24f94 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" DeviceSettingsSystemAddin C:\ProgramData\Lenovo\Vantage\Addins\\DeviceSettingsSystemAddin\1.0.0.12\DeviceSettingsSystemAddin.dll 7716aa70b88a40d7b3b43224a4623e6c 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" LenovoServiceBridgeAddin C:\ProgramData\Lenovo\Vantage\Addins\\LenovoServiceBridgeAddin\1.0.0.54\LenovoServiceBridgeAddin.dll 1b64ab745f8b48a98171c2174415368b 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" LenovoSecurityAddin C:\ProgramData\Lenovo\Vantage\Addins\\LenovoSecurityAddin\1.0.0.31\LenovoSecurityAddin.dll 7133a1d5a4c8462fb907a7a7517a33e3 456fd9d1-4fea-4192-bcbb-e02af29f2d21
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\A-Volute.Nahimic_1.8.13.0_x64__w2gh52qy24etm\Nahimic3.exe" -ServerName:App.AppX9dn24zf64ax1mwzee7t1s1qcsx8vqbm4.mca
C:\WINDOWS\System32\LocationNotificationWindows.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
-name cea533e0-b2fc-4fbd-8cb4-67431206c540 -runas -pluginName LenovoGamingUserPlugin -pluginVersion 3.10.0.15
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe" -background
AvastUI.exe /nogui
"C:\Users\vlado\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.15.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe"
C:\WINDOWS\system32\svchost.exe -k AarSvcGroup -p -s AarSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s NPSMSvc
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe" /InvokerPRAID: App
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.GamingApp_2112.1001.10.0_x64__8wekyb3d8bbwe\XboxAppServices.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppX4325622ft6437f3xfywcfxgbedfvpn0x.mca
"C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe" ms-teams:system-initiated
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=2 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --mojo-named-platform-channel-pipe=15412.16452.8668639710058031270
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=97.0.4692.71 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=97.0.1072.55 --initial-client-data=0x10c,0x110,0x114,0xe8,0x11c,0x7ffdf87bdb60,0x7ffdf87bdb70,0x7ffdf87bdb80
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=gpu-process --field-trial-handle=1968,17354051075412298212,1356306622128237168,131072 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --noerrdialogs --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2004 /prefetch:2
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1968,17354051075412298212,1356306622128237168,131072 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --lang=sk --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2168 /prefetch:3
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1968,17354051075412298212,1356306622128237168,131072 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --lang=sk --service-sandbox-type=utility --noerrdialogs --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2704 /prefetch:8
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-client-side-phishing-detection --display-capture-permissions-policy-allowed --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc" --field-trial-handle=1968,17354051075412298212,1356306622128237168,131072 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --lang=sk --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --launch-time-ticks=39173021 --mojo-platform-channel-handle=3484 /prefetch:1
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=9132,4607951189207164385,17399373614385920683,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=sk-SK --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=9164 /prefetch:2
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=9132,4607951189207164385,17399373614385920683,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=sk --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=sk-SK --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8808 /prefetch:8
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=9132,4607951189207164385,17399373614385920683,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=sk --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=sk-SK --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8460 /prefetch:8
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=9132,4607951189207164385,17399373614385920683,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=sk --service-sandbox-type=audio --no-sandbox --force-wave-audio --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=sk-SK --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=9824 /prefetch:8
"C:\Users\vlado\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe" /app nahimic /systray
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe" -ServerName:CortanaUI.AppXstmwaab17q5s3y22tp6apqz7a45vwv65.mca
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window /prefetch:5
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\vlado\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\vlado\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=97.0.4692.71 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=97.0.1072.55 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffdf87bdb60,0x7ffdf87bdb70,0x7ffdf87bdb80
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Browser
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.55\BHO\ie_to_edge_bho_64.dll [2022-01-06 532368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.55\BHO\ie_to_edge_bho.dll [2022-01-06 421776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-12-28 154944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2021-12-27 266240]
"RtkAudUService"=C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe [2021-08-26 1343072]
"AvastUI.exe"=C:\Program Files\Avast Software\Avast\AvLaunch.exe [2022-01-12 157464]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\vlado\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2022-01-08 2586472]
"Avast Browser"=C:\Users\vlado\AppData\Local\AVAST Software\Browser\Update\1.8.1189.1\AvastBrowserUpdateCore.exe [2021-12-27 518248]
"MicrosoftEdgeAutoLaunch_C537507AFD12E8ED9D3AB69BA0B11664"=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [2022-01-06 3427720]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
update.bat
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\nvdimm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{53966cb1-4d46-4166-bf23-c522403cd495}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nvdimm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{53966cb1-4d46-4166-bf23-c522403cd495}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave4"=wdmaud.drv
"aux2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv
"aux1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave5"=wdmaud.drv
======File associations======
.inf - open -
.inf - install -
.ini - open -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open -
======List of files/folders created in the last 1 month======
2022-01-12 17:44:41 ----D---- C:\rsit
2022-01-12 17:44:41 ----D---- C:\Program Files\trend micro
2022-01-12 16:59:21 ----A---- C:\WINDOWS\system32\aswBoot.exe
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswNetHub.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswElam.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswbuniv.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswbidsh.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswbidsdriver.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswArPot.sys
2022-01-12 16:59:18 ----D---- C:\Program Files\Common Files\Avast Software
2022-01-12 16:58:35 ----D---- C:\Program Files\Avast Software
2022-01-12 16:53:52 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2022-01-11 20:38:47 ----HD---- C:\$WinREAgent
2022-01-04 17:22:00 ----D---- C:\Users\vlado\AppData\Roaming\MediaInfo
2022-01-04 17:21:11 ----D---- C:\Program Files\MediaInfo
2022-01-04 17:09:11 ----D---- C:\Users\vlado\AppData\Roaming\vlc
2022-01-04 17:08:51 ----D---- C:\Program Files (x86)\VideoLAN
2022-01-04 17:01:40 ----D---- C:\Users\vlado\AppData\Roaming\BSplayer PRO
2022-01-04 17:01:40 ----D---- C:\Program Files (x86)\Webteh
2022-01-04 17:00:53 ----D---- C:\Users\vlado\AppData\Roaming\WinRAR
2022-01-04 16:56:50 ----D---- C:\Program Files (x86)\WinRAR
2022-01-02 19:29:00 ----D---- C:\Program Files (x86)\uTorrent
2022-01-02 19:28:21 ----D---- C:\Users\vlado\AppData\Roaming\uTorrent
2022-01-02 19:09:27 ----D---- C:\Program Files (x86)\Google
2021-12-31 11:56:01 ----A---- C:\WINDOWS\system32\SPITDevMft64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\RapidFireServer.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\Rapidfire.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\mcl32.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\GameManager32.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\RapidFireServer64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\Rapidfire64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\mcl64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\GameManager64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\EEURestart.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\dgtrayicon.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\detoured.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\clinfo.exe
2021-12-28 19:36:17 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2021-12-28 19:36:17 ----A---- C:\WINDOWS\system32\atisamu64.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2021-12-28 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atimuixx.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atimpc64.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atig6txx.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atieclxx.exe
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atieah64.exe
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atidxx64.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\amfrt32.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\amf-mft-mjpeg-decoder32.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\atidemgy.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\aticfx64.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\atiacm64.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\ati2erec.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\amfrt64.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2021-12-28 19:36:12 ----A---- C:\WINDOWS\SYSWOW64\amd_comgr32.dll
2021-12-28 19:36:11 ----A---- C:\WINDOWS\system32\amd_comgr.dll
2021-12-28 19:36:10 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2021-12-28 19:36:10 ----A---- C:\WINDOWS\system32\amdxc64.dll
2021-12-28 19:36:06 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2021-12-28 19:36:06 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2021-12-28 19:36:03 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll
2021-12-28 19:36:03 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2021-12-28 19:36:03 ----A---- C:\WINDOWS\system32\amdlvr64.dll
2021-12-28 19:36:03 ----A---- C:\WINDOWS\system32\amdlogum.exe
2021-12-28 19:36:02 ----A---- C:\WINDOWS\SYSWOW64\amdihk32.dll
2021-12-28 19:36:01 ----A---- C:\WINDOWS\system32\amdhip64.dll
2021-12-28 19:36:01 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2021-12-28 19:36:00 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2021-12-28 19:36:00 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2021-12-28 19:36:00 ----A---- C:\WINDOWS\system32\drivers\amdfendrmgr.sys
2021-12-28 19:36:00 ----A---- C:\WINDOWS\system32\amdave64.dll
2021-12-28 19:35:18 ----A---- C:\WINDOWS\system32\RtEventLog.dll
2021-12-28 19:35:17 ----A---- C:\WINDOWS\system32\NhNotifSys.exe
2021-12-28 19:35:17 ----A---- C:\WINDOWS\system32\NhNotifSys.dll
2021-12-28 19:35:17 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2021-12-28 19:35:17 ----A---- C:\WINDOWS\system32\drivers\NahimicBTLink.sys
2021-12-28 19:34:48 ----A---- C:\WINDOWS\system32\WdfCoInstaller01011.dll
2021-12-28 19:34:48 ----A---- C:\WINDOWS\system32\drivers\NvModuleTracker.sys
2021-12-28 19:33:30 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2021-12-28 19:33:30 ----A---- C:\WINDOWS\system32\OpenCL.dll
2021-12-28 19:33:12 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2021-12-28 19:33:12 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2021-12-28 19:33:12 ----A---- C:\WINDOWS\system32\nvml.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\system32\nvidia-smi.exe
2021-12-28 19:33:09 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2021-12-28 19:33:09 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2021-12-28 19:33:09 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2021-12-28 19:33:09 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-12-28 19:33:09 ----A---- C:\WINDOWS\system32\nvdebugdump.exe
2021-12-28 19:33:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2021-12-28 19:33:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2021-12-28 19:33:06 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2021-12-28 19:33:06 ----A---- C:\WINDOWS\system32\nvcuda.dll
2021-12-28 19:33:05 ----A---- C:\WINDOWS\system32\nvcpl.dll
2021-12-28 19:33:03 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2021-12-28 19:33:03 ----A---- C:\WINDOWS\system32\MCU.exe
2021-12-28 19:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdtee_api.dll
2021-12-28 19:32:14 ----A---- C:\WINDOWS\system32\drivers\amdpsp.sys
2021-12-28 19:32:14 ----A---- C:\WINDOWS\system32\amdtee_api.dll
2021-12-27 09:30:59 ----D---- C:\Users\vlado\AppData\Roaming\Avast Software
2021-12-27 09:30:31 ----A---- C:\WINDOWS\system32\drivers\lpsport.sys
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\aswe445d86d21b8b139.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\aswc56e34d959ecae7b.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\aswa4fc77c18e3f7f6d.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw7d3bbcc9fa550dec.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw769a3e5d8e80cfe7.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw6c40ed53efb63937.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw6a2ec412a4605cab.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw6a188230048e3518.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw5ddf4ae20aae96c7.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw59b25ed5e7ae5bfe.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw54e299254f2acd9f.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw453168ee6aac542d.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw3e906bd43e219989.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw1dc123c6a1b63905.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw0bb99456ec56507a.tmp
2021-12-27 09:29:55 ----D---- C:\ProgramData\Avast Software
2021-12-27 09:28:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-27 09:28:01 ----D---- C:\ProgramData\Microsoft OneDrive
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Templates
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Start Menu
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Documents
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Desktop
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Application Data
2021-12-27 09:25:45 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2021-12-27 09:22:29 ----D---- C:\WINDOWS\system32\SleepStudy
2021-12-27 09:22:28 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2021-12-27 09:22:27 ----D---- C:\WINDOWS\Prefetch
2021-12-27 09:21:36 ----A---- C:\WINDOWS\system32\drivers\WinSetupBoot.sys
2021-12-27 09:13:44 ----SD---- C:\Users\vlado\AppData\Roaming\Microsoft
2021-12-27 09:13:20 ----D---- C:\WINDOWS\Lenovo
2021-12-27 09:13:20 ----AS---- C:\WINDOWS\bootstat.dat
2021-12-27 09:13:19 ----D---- C:\WINDOWS\system32\drivers\Lenovo
2021-12-27 09:13:15 ----D---- C:\WINDOWS\system32\AMD
2021-12-27 09:13:14 ----D---- C:\WINDOWS\system32\A-Volute
2021-12-27 09:12:46 ----D---- C:\WINDOWS\system32\Microsoft
2021-12-27 09:12:46 ----D---- C:\WINDOWS\ServiceProfiles
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\WinFax.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\FXSRESM.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\FXSCOM.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\WinFax.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXST30.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSRESM.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSCOM.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\sdchange.exe
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\raserver.exe
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\racpldlg.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\msra.exe
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\FXSXP32.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\wmpps.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\wmploc.DLL
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\wmp.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\spwmp.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\FXSCOMPOSE.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\dxmasf.dll
2021-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2021-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2021-12-27 09:09:10 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2021-12-27 09:09:10 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2021-12-27 09:09:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.XamlHost.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\SYSWOW64\ConsoleLogon.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\sdchange.exe
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\raserver.exe
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\racpldlg.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\msrahc.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\msra.exe
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\bdesvc.dll
2021-12-27 09:09:08 ----A---- C:\WINDOWS\system32\WalletService.dll
2021-12-27 09:09:08 ----A---- C:\WINDOWS\system32\cdp.dll
2021-12-27 09:09:08 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2021-12-27 09:06:11 ----A---- C:\WINDOWS\SYSWOW64\quickassist.exe
2021-12-27 09:06:11 ----A---- C:\WINDOWS\system32\quickassist.exe
2021-12-27 09:06:10 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2021-12-27 09:06:10 ----A---- C:\WINDOWS\system32\SyncController.dll
2021-12-27 09:06:10 ----A---- C:\WINDOWS\system32\securekernella57.exe
2021-12-27 09:06:10 ----A---- C:\WINDOWS\system32\ntkrla57.exe
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMNetMgr.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfaudiocnv.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMNetMgr.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\MSAC3ENC.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfsvr.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfds.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfaudiocnv.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\HoloSHExtensions.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\DMRServer.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2021-12-27 09:05:56 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\msvproc.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfps.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfpmp.exe
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfplat.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mf.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.HardwareId.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\vfwwdm32.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\signdrv.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\serialui.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\RdpSaUacHelper.exe
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\MsRdpWebAccess.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msdadiag.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\CheckNetIsolation.exe
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\fwcfg.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\authfwcfg.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2021-12-27 09:05:53 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2021-12-27 09:05:53 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2021-12-27 09:05:53 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\XInput9_1_0.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\XInput1_4.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\spacebridge.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\qasf.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\playtomenu.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\PayloadRestrictions.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\jscript9Legacy.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\HelpPaneProxy.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\FirewallControlPanel.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\dsauth.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\dpapiprovider.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\adsldp.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\system32\wslapi.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\WebClnt.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\sysmain.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\Spectrum.exe
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\signdrv.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\msinfo32.exe
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\inetppui.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\inetpp.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhtask.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsvc.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhshl.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhevents.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhengine.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhcfg.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhcat.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\wkspbroker.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\termsrv.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\SIHClient.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\SettingsHandlers_Troubleshoot.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\serialui.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\sbeio.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\sbe.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\RdpSaUacHelper.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\rdpclip.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\PktMonApi.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\PktMon.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\pcwutl.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\mstsc.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\MsRdpWebAccess.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\drivers\PktMon.sys
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\CPFilters.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\AcGenral.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\Windows.System.Profile.HardwareId.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\windlp.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\systemreset.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\ssText3d.scr
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\rdpudd.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\pdhui.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\opengl32.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\offreg.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\nshwfp.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\nltest.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msisip.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msi.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msdadiag.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msconfig.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\McpManagementService.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\McpManagementProxy.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\klist.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\CheckNetIsolation.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\glu32.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\fwcfg.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\FsIso.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\FrameServerMonitor.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\FrameServer.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\fodhelper.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\DAFMCP.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\DAFIPP.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\ContactHarvesterDS.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\authfwcfg.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\jscript9.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\ieproxy.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\Chakra.dll
2021-12-27 09:05:46 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-12-27 09:05:46 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-12-27 09:05:46 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\wiatrace.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\wiaservc.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\wiarpc.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\vbsapi.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\StorSvc.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\sti.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\jscript9Legacy.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\jscript.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\iesetup.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\iernonce.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\ie4ushowIE.exe
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\HelpPaneProxy.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\gameux.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\FirewallControlPanel.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\EsclWiaDriver.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\HelpPane.exe
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\XInput9_1_0.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\XInput1_4.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\UserDataSource.exe
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\sud.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\spacebridge.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\RandomAccessStreamDataSource.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\qasf.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\playtomenu.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\MsixDataSourceExtensionPS.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\energy.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\dsauth.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\dpapiprovider.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\defragsvc.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\defragres.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\defragproxy.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\DAFESCL.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\computestorage.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\computenetwork.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\computecore.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\ClipUp.exe
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\adsldp.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\wsplib.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\vid.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\vertdll.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\tcbloader.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\skci.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\SettingsHandlers_SharedExperiences_Rome.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\securekernel.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\resutils.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\PenService.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\PayloadRestrictions.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\NgcIsoCtnr.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\hvloader.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\hvix64.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\hvax64.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\fsutil.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\dusmtask.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\clusapi.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\BioIso.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\wowreg32.exe
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.FileExplorer.Common.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\uxlibres.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\uxlib.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\setupcln.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\SensApi.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\prxyqry.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\printui.exe
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\ntprint.exe
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\nlmgp.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\drivers\afunix.sys
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\shpafact.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\sfc.exe
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\msdart.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\LockScreenData.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\xmllite.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\wmsgapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Dialogs.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\WerEnc.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\utcapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\userinitext.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\userinit.exe
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\sscore.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\ntlanman.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\nrtapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\LocationFrameworkPS.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\LocationFrameworkInternalPS.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\KeyCredMgr.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\FontGlyphAnimator.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\feclient.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dsuiext.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dssenh.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\diagnosticdataquery.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\devicengccredprov.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\credprovslegacy.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wutrust.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wuceffects.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\WinMsoIrmProtector.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wevtutil.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\tzautoupdate.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\tdhres.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SensorsUtilsV2.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\LaunchTM.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\D3D12Core.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\appidtel.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\Apphlpdm.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\wpnclient.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\WinSync.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.OneCore.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\profext.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\kernel.appcore.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\BCP47mrm.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataTypeHelperUtil.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataPlatformHelperUtil.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataLanguageUtil.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccessRes.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\POSyncServices.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\ExtrasXmlParser.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\ContactActivation.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\AddressParser.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\ztrace_maps.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Display.DisplayEnhancementOverride.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\webauthn.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\TextInputMethodFormatter.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\PhoneOm.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mobilenetworking.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\fidocredprov.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\D3DSCache.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\d3d9on12.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\d3d11on12.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\windows.applicationmodel.datatransfer.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\TextShaping.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\SEMgrPS.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\embeddedmodesvcapi.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\wsmprovhost.exe
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\wsmplpxy.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Controls.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\AppxApplicabilityEngine.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmRes.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WSManMigrationPlugin.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\wksprtPS.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\windowsudk.shellcommon.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\vds_ps.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\sppcomapi.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\softkbd.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\ServicingCommon.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\sas.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\msutb.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\msctfui.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\mscandui.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\mapistub.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\mapi32.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\InputSwitchToastHandler.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\fixmapi.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeHelper.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmutil.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmintf.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmdskres2.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmdskres.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmdlgs.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\DeviceReactivation.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\CoreShellAPI.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wlancfg.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wcmapi.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TtlsCfg.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TtlsAuth.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TpmTool.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TpmCertResources.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\SystemSettings.DataModel.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\secproc_isv.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\secproc.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\RMActivate_ssp_isv.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\RMActivate_ssp.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\RMActivate_isv.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\RMActivate.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\PSHED.DLL
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\LanguageOverlayUtil.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\EapTeapConfig.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eapputil.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eappprxy.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\control.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\CallButtons.ProxyStub.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\bidispl.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\amsi.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\PlaySndSrv.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\PhonePlatformAbstraction.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
https://ibb.co/nLJ25yk
https://ibb.co/jyJkq76
LOG
Logfile of random's system information tool 1.10 (written by random/random)
Run by vlado at 2022-01-12 17:44:41
Microsoft Windows 11 Home
System drive C: has 384 GB (79%) free of 487 GB
Total RAM: 5996 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:44:48, on 12. 1. 2022
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.22000.0120)
Boot mode: Normal
Running processes:
C:\WINDOWS\SysWOW64\NahimicSvc32.exe
C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.x86.exe
C:\WINDOWS\Lenovo\iMController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
C:\WINDOWS\Lenovo\iMController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
C:\Program Files\trend micro\vlado.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.55\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O4 - HKCU\..\Run: [OneDrive] "C:\Users\vlado\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Avast Browser] C:\Users\vlado\AppData\Local\AVAST Software\Browser\Update\1.8.1189.1\AvastBrowserUpdateCore.exe
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_C537507AFD12E8ED9D3AB69BA0B11664] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - Global Startup: update.bat
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlansp_c.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD Crash Defender Service - Unknown owner - C:\WINDOWS\System32\amdfendrsr.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\u0372283.inf_amd64_5add093cdf0072b1\B372145\atiesrxx.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Avast Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Avast Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\Avast Software\Avast\afwServ.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\Avast Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_43e38 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: @oem4.inf,%ImcSvcDisplayName%;System Interface Foundation Service (ImControllerService) - Lenovo Group Ltd. - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @oem5.inf,%ServiceName%;Lenovo Fn and function keys service (LenovoFnAndFunctionKeys) - Lenovo(beijing) Limited - C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_b9fd1528982e300f\LenovoUtilityService.exe
O23 - Service: LenovoVantageService - Lenovo Group Ltd. - C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @oem60.inf,%SERVICE_FRIENDLY_NAME%;Nahimic service (NahimicService) - Unknown owner - C:\WINDOWS\system32\NahimicService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Realtek Semiconductor - C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTrap) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @oem28.inf,%UdcSvcDisplayName%;Universal Device Client Service (UDCService) - Unknown owner - C:\WINDOWS\System32\drivers\Lenovo\udc\Service\UDClientService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11787 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-dc5cd6b2-0e6d-49b8-ba7c-73a1e16c5600 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2941aa17-29b9-4201-8518-b3377c5cac10 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a8ee39d2-da33-4002-943d-512e3eb9415c -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-00bd3ad1-f86a-4655-9c00-fbd5a43a6d14 -LifetimeId:56d11c2a-fd10-4969-90a6-6ee8e906bcb9 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-32f17609-2cd9-4a54-8c23-95ab129c7350 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-721d84de-885f-43b7-81a9-489ca34a0e7f -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b9570cf9-6450-43af-bf4c-278883f74219 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7753f231-b26a-414e-a157-42005aae2d97 -LifetimeId:aab73a1b-b4ce-4b81-b7b6-5ad19509a28f -DeviceGroupId: -HostArg:0
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\System32\svchost.exe -k netprofm -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k osprivacy -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
C:\WINDOWS\system32\svchost.exe -k NetworkService -p
dashost.exe {1657558e-1745-4cba-a85dd7ac746f7b93}
C:\WINDOWS\System32\amdfendrsr.exe
C:\WINDOWS\System32\DriverStore\FileRepository\u0372283.inf_amd64_5add093cdf0072b1\B372145\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
"C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_30f5125c831ecfca\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
atieclxx
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\AUDIODG.EXE 0x00000000000005F8
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2207746137072
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Avast Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
sihost.exe
C:\WINDOWS\system32\svchost.exe -k BthAppGroup -p -s BluetoothUserService
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe"
"ctfmon.exe"
C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\Program Files\Avast Software\Avast\afwServ.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_b9fd1528982e300f\LenovoUtilityService.exe
"C:\WINDOWS\system32\NahimicService.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\WINDOWS\System32\drivers\Lenovo\udc\Service\UDClientService.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe"
"C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\GamingServices.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
AggregatorHost.exe
"C:\Program Files\Avast Software\Avast\aswEngSrv.exe" /pipename="18D227B1-FF4E-5DA2-DBA1-2A413E395C02" /binpath="C:\Program Files\Avast Software\Avast" /logpath="C:\ProgramData\Avast Software\Avast\log"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s DeviceInstall
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
C:\WINDOWS\system32\svchost.exe -k UdkSvcGroup -s UdkUserSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\System32\svchost.exe -k netprofm -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\system32\.\NahimicSvc64.exe /start all /product A-Volute.Nahimic /location C:\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64
C:\WINDOWS\system32\..\SysWOW64\NahimicSvc32.exe /start all /product A-Volute.Nahimic /location C:\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe" -name 1bb0ac79-d646-4df8-bf2a-b12ba4c2de47 -runas SYSTEM -pluginName LenovoGamingSystemPlugin -pluginVersion 3.10.0.15
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
-name 3b741d18-db25-4cc2-a3e3-e1900d259f58 -runas -pluginName LenovoVisionProtectionPlugin -pluginVersion 1.2.98.8
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" VantageCoreAddin C:\ProgramData\Lenovo\Vantage\Addins\\VantageCoreAddin\1.0.0.28\VantageCoreAddin.dll e35392d5d1e24c08884f2050a15eed3e 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" GenericTelemetryAddin C:\ProgramData\Lenovo\Vantage\Addins\\GenericTelemetryAddin\2.0.0.3\GenericTelemetryAddin.dll b9e8e426271740a08e1143158a44d65a 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"c:\windows\system32\rundll32.exe" "C:\PROGRA~3\Lenovo\IMCONT~1\Plugins\LE73F0~1\x64\HOTKEY~1.DLL",HotkeyMonitorEntry
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.x86.exe" DeviceSettingsHeartbeatAddin C:\ProgramData\Lenovo\Vantage\Addins\\DeviceSettingsHeartbeatAddin\1.0.0.21\DeviceSettingsHeartbeatAddin.dll 6a8a4d86a5a049edb54b8c41dab24f94 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" DeviceSettingsSystemAddin C:\ProgramData\Lenovo\Vantage\Addins\\DeviceSettingsSystemAddin\1.0.0.12\DeviceSettingsSystemAddin.dll 7716aa70b88a40d7b3b43224a4623e6c 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" LenovoServiceBridgeAddin C:\ProgramData\Lenovo\Vantage\Addins\\LenovoServiceBridgeAddin\1.0.0.54\LenovoServiceBridgeAddin.dll 1b64ab745f8b48a98171c2174415368b 456fd9d1-4fea-4192-bcbb-e02af29f2d21
"C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe" LenovoSecurityAddin C:\ProgramData\Lenovo\Vantage\Addins\\LenovoSecurityAddin\1.0.0.31\LenovoSecurityAddin.dll 7133a1d5a4c8462fb907a7a7517a33e3 456fd9d1-4fea-4192-bcbb-e02af29f2d21
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\A-Volute.Nahimic_1.8.13.0_x64__w2gh52qy24etm\Nahimic3.exe" -ServerName:App.AppX9dn24zf64ax1mwzee7t1s1qcsx8vqbm4.mca
C:\WINDOWS\System32\LocationNotificationWindows.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
-name cea533e0-b2fc-4fbd-8cb4-67431206c540 -runas -pluginName LenovoGamingUserPlugin -pluginVersion 3.10.0.15
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe" -background
AvastUI.exe /nogui
"C:\Users\vlado\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.15.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe"
C:\WINDOWS\system32\svchost.exe -k AarSvcGroup -p -s AarSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s NPSMSvc
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe" /InvokerPRAID: App
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.GamingApp_2112.1001.10.0_x64__8wekyb3d8bbwe\XboxAppServices.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppX4325622ft6437f3xfywcfxgbedfvpn0x.mca
"C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe" ms-teams:system-initiated
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=2 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --mojo-named-platform-channel-pipe=15412.16452.8668639710058031270
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=97.0.4692.71 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=97.0.1072.55 --initial-client-data=0x10c,0x110,0x114,0xe8,0x11c,0x7ffdf87bdb60,0x7ffdf87bdb70,0x7ffdf87bdb80
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=gpu-process --field-trial-handle=1968,17354051075412298212,1356306622128237168,131072 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --noerrdialogs --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2004 /prefetch:2
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1968,17354051075412298212,1356306622128237168,131072 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --lang=sk --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2168 /prefetch:3
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1968,17354051075412298212,1356306622128237168,131072 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --lang=sk --service-sandbox-type=utility --noerrdialogs --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2704 /prefetch:8
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\vlado\AppData\Local\Packages\MicrosoftTeams_8wekyb3d8bbwe\LocalCache\Microsoft\MSTeams\EBWebView" --webview-exe-name=msteams.exe --webview-exe-version=21354.200.1118.3091 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-client-side-phishing-detection --display-capture-permissions-policy-allowed --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc" --field-trial-handle=1968,17354051075412298212,1356306622128237168,131072 --enable-features=msSingleSignOnOSForPrimaryAccountIsShared --lang=sk --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --launch-time-ticks=39173021 --mojo-platform-channel-handle=3484 /prefetch:1
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=9132,4607951189207164385,17399373614385920683,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=sk-SK --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=9164 /prefetch:2
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=9132,4607951189207164385,17399373614385920683,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=sk --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=sk-SK --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8808 /prefetch:8
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=9132,4607951189207164385,17399373614385920683,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=sk --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=sk-SK --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8460 /prefetch:8
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=9132,4607951189207164385,17399373614385920683,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=sk --service-sandbox-type=audio --no-sandbox --force-wave-audio --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=sk-SK --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --log-file="C:\Users\vlado\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=9824 /prefetch:8
"C:\Users\vlado\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe" /app nahimic /systray
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe" -ServerName:CortanaUI.AppXstmwaab17q5s3y22tp6apqz7a45vwv65.mca
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window /prefetch:5
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\vlado\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\vlado\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=97.0.4692.71 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=97.0.1072.55 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffdf87bdb60,0x7ffdf87bdb70,0x7ffdf87bdb80
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Browser
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.55\BHO\ie_to_edge_bho_64.dll [2022-01-06 532368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.55\BHO\ie_to_edge_bho.dll [2022-01-06 421776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-12-28 154944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2021-12-27 266240]
"RtkAudUService"=C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe [2021-08-26 1343072]
"AvastUI.exe"=C:\Program Files\Avast Software\Avast\AvLaunch.exe [2022-01-12 157464]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\vlado\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2022-01-08 2586472]
"Avast Browser"=C:\Users\vlado\AppData\Local\AVAST Software\Browser\Update\1.8.1189.1\AvastBrowserUpdateCore.exe [2021-12-27 518248]
"MicrosoftEdgeAutoLaunch_C537507AFD12E8ED9D3AB69BA0B11664"=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [2022-01-06 3427720]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
update.bat
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\nvdimm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{53966cb1-4d46-4166-bf23-c522403cd495}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nvdimm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{53966cb1-4d46-4166-bf23-c522403cd495}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave4"=wdmaud.drv
"aux2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv
"aux1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave5"=wdmaud.drv
======File associations======
.inf - open -
.inf - install -
.ini - open -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open -
======List of files/folders created in the last 1 month======
2022-01-12 17:44:41 ----D---- C:\rsit
2022-01-12 17:44:41 ----D---- C:\Program Files\trend micro
2022-01-12 16:59:21 ----A---- C:\WINDOWS\system32\aswBoot.exe
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswNetHub.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswElam.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswbuniv.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswbidsh.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswbidsdriver.sys
2022-01-12 16:59:19 ----A---- C:\WINDOWS\system32\drivers\aswArPot.sys
2022-01-12 16:59:18 ----D---- C:\Program Files\Common Files\Avast Software
2022-01-12 16:58:35 ----D---- C:\Program Files\Avast Software
2022-01-12 16:53:52 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2022-01-11 20:38:47 ----HD---- C:\$WinREAgent
2022-01-04 17:22:00 ----D---- C:\Users\vlado\AppData\Roaming\MediaInfo
2022-01-04 17:21:11 ----D---- C:\Program Files\MediaInfo
2022-01-04 17:09:11 ----D---- C:\Users\vlado\AppData\Roaming\vlc
2022-01-04 17:08:51 ----D---- C:\Program Files (x86)\VideoLAN
2022-01-04 17:01:40 ----D---- C:\Users\vlado\AppData\Roaming\BSplayer PRO
2022-01-04 17:01:40 ----D---- C:\Program Files (x86)\Webteh
2022-01-04 17:00:53 ----D---- C:\Users\vlado\AppData\Roaming\WinRAR
2022-01-04 16:56:50 ----D---- C:\Program Files (x86)\WinRAR
2022-01-02 19:29:00 ----D---- C:\Program Files (x86)\uTorrent
2022-01-02 19:28:21 ----D---- C:\Users\vlado\AppData\Roaming\uTorrent
2022-01-02 19:09:27 ----D---- C:\Program Files (x86)\Google
2021-12-31 11:56:01 ----A---- C:\WINDOWS\system32\SPITDevMft64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\RapidFireServer.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\Rapidfire.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\mcl32.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\GameManager32.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\RapidFireServer64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\Rapidfire64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\mcl64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\GameManager64.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\EEURestart.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\dgtrayicon.exe
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\detoured.dll
2021-12-28 19:36:18 ----A---- C:\WINDOWS\system32\clinfo.exe
2021-12-28 19:36:17 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2021-12-28 19:36:17 ----A---- C:\WINDOWS\system32\atisamu64.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2021-12-28 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atimuixx.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atimpc64.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atig6txx.dll
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atieclxx.exe
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atieah64.exe
2021-12-28 19:36:15 ----A---- C:\WINDOWS\system32\atidxx64.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\amfrt32.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\amf-mft-mjpeg-decoder32.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\atidemgy.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\aticfx64.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\atiacm64.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\ati2erec.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\amfrt64.dll
2021-12-28 19:36:14 ----A---- C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2021-12-28 19:36:12 ----A---- C:\WINDOWS\SYSWOW64\amd_comgr32.dll
2021-12-28 19:36:11 ----A---- C:\WINDOWS\system32\amd_comgr.dll
2021-12-28 19:36:10 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2021-12-28 19:36:10 ----A---- C:\WINDOWS\system32\amdxc64.dll
2021-12-28 19:36:06 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2021-12-28 19:36:06 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2021-12-28 19:36:03 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll
2021-12-28 19:36:03 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2021-12-28 19:36:03 ----A---- C:\WINDOWS\system32\amdlvr64.dll
2021-12-28 19:36:03 ----A---- C:\WINDOWS\system32\amdlogum.exe
2021-12-28 19:36:02 ----A---- C:\WINDOWS\SYSWOW64\amdihk32.dll
2021-12-28 19:36:01 ----A---- C:\WINDOWS\system32\amdhip64.dll
2021-12-28 19:36:01 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2021-12-28 19:36:00 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2021-12-28 19:36:00 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2021-12-28 19:36:00 ----A---- C:\WINDOWS\system32\drivers\amdfendrmgr.sys
2021-12-28 19:36:00 ----A---- C:\WINDOWS\system32\amdave64.dll
2021-12-28 19:35:18 ----A---- C:\WINDOWS\system32\RtEventLog.dll
2021-12-28 19:35:17 ----A---- C:\WINDOWS\system32\NhNotifSys.exe
2021-12-28 19:35:17 ----A---- C:\WINDOWS\system32\NhNotifSys.dll
2021-12-28 19:35:17 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2021-12-28 19:35:17 ----A---- C:\WINDOWS\system32\drivers\NahimicBTLink.sys
2021-12-28 19:34:48 ----A---- C:\WINDOWS\system32\WdfCoInstaller01011.dll
2021-12-28 19:34:48 ----A---- C:\WINDOWS\system32\drivers\NvModuleTracker.sys
2021-12-28 19:33:30 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2021-12-28 19:33:30 ----A---- C:\WINDOWS\system32\OpenCL.dll
2021-12-28 19:33:12 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2021-12-28 19:33:12 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2021-12-28 19:33:12 ----A---- C:\WINDOWS\system32\nvml.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2021-12-28 19:33:10 ----A---- C:\WINDOWS\system32\nvidia-smi.exe
2021-12-28 19:33:09 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2021-12-28 19:33:09 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2021-12-28 19:33:09 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2021-12-28 19:33:09 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-12-28 19:33:09 ----A---- C:\WINDOWS\system32\nvdebugdump.exe
2021-12-28 19:33:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2021-12-28 19:33:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2021-12-28 19:33:06 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2021-12-28 19:33:06 ----A---- C:\WINDOWS\system32\nvcuda.dll
2021-12-28 19:33:05 ----A---- C:\WINDOWS\system32\nvcpl.dll
2021-12-28 19:33:03 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2021-12-28 19:33:03 ----A---- C:\WINDOWS\system32\MCU.exe
2021-12-28 19:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdtee_api.dll
2021-12-28 19:32:14 ----A---- C:\WINDOWS\system32\drivers\amdpsp.sys
2021-12-28 19:32:14 ----A---- C:\WINDOWS\system32\amdtee_api.dll
2021-12-27 09:30:59 ----D---- C:\Users\vlado\AppData\Roaming\Avast Software
2021-12-27 09:30:31 ----A---- C:\WINDOWS\system32\drivers\lpsport.sys
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\aswe445d86d21b8b139.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\aswc56e34d959ecae7b.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\aswa4fc77c18e3f7f6d.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw7d3bbcc9fa550dec.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw769a3e5d8e80cfe7.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw6c40ed53efb63937.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw6a2ec412a4605cab.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw6a188230048e3518.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw5ddf4ae20aae96c7.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw59b25ed5e7ae5bfe.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw54e299254f2acd9f.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw453168ee6aac542d.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw3e906bd43e219989.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw1dc123c6a1b63905.tmp
2021-12-27 09:30:27 ----A---- C:\WINDOWS\system32\drivers\asw0bb99456ec56507a.tmp
2021-12-27 09:29:55 ----D---- C:\ProgramData\Avast Software
2021-12-27 09:28:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-27 09:28:01 ----D---- C:\ProgramData\Microsoft OneDrive
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Templates
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Start Menu
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Documents
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Desktop
2021-12-27 09:26:06 ----SHD---- C:\ProgramData\Application Data
2021-12-27 09:25:45 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2021-12-27 09:22:29 ----D---- C:\WINDOWS\system32\SleepStudy
2021-12-27 09:22:28 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2021-12-27 09:22:27 ----D---- C:\WINDOWS\Prefetch
2021-12-27 09:21:36 ----A---- C:\WINDOWS\system32\drivers\WinSetupBoot.sys
2021-12-27 09:13:44 ----SD---- C:\Users\vlado\AppData\Roaming\Microsoft
2021-12-27 09:13:20 ----D---- C:\WINDOWS\Lenovo
2021-12-27 09:13:20 ----AS---- C:\WINDOWS\bootstat.dat
2021-12-27 09:13:19 ----D---- C:\WINDOWS\system32\drivers\Lenovo
2021-12-27 09:13:15 ----D---- C:\WINDOWS\system32\AMD
2021-12-27 09:13:14 ----D---- C:\WINDOWS\system32\A-Volute
2021-12-27 09:12:46 ----D---- C:\WINDOWS\system32\Microsoft
2021-12-27 09:12:46 ----D---- C:\WINDOWS\ServiceProfiles
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\WinFax.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\FXSRESM.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\FXSCOM.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\WinFax.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXST30.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSRESM.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSCOM.dll
2021-12-27 09:09:12 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\sdchange.exe
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\raserver.exe
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\racpldlg.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\msra.exe
2021-12-27 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\FXSXP32.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\wmpps.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\wmploc.DLL
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\wmp.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\spwmp.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\FXSCOMPOSE.dll
2021-12-27 09:09:11 ----A---- C:\WINDOWS\system32\dxmasf.dll
2021-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2021-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2021-12-27 09:09:10 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2021-12-27 09:09:10 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2021-12-27 09:09:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.XamlHost.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\SYSWOW64\ConsoleLogon.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\sdchange.exe
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\raserver.exe
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\racpldlg.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\msrahc.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\msra.exe
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2021-12-27 09:09:09 ----A---- C:\WINDOWS\system32\bdesvc.dll
2021-12-27 09:09:08 ----A---- C:\WINDOWS\system32\WalletService.dll
2021-12-27 09:09:08 ----A---- C:\WINDOWS\system32\cdp.dll
2021-12-27 09:09:08 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2021-12-27 09:06:11 ----A---- C:\WINDOWS\SYSWOW64\quickassist.exe
2021-12-27 09:06:11 ----A---- C:\WINDOWS\system32\quickassist.exe
2021-12-27 09:06:10 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2021-12-27 09:06:10 ----A---- C:\WINDOWS\system32\SyncController.dll
2021-12-27 09:06:10 ----A---- C:\WINDOWS\system32\securekernella57.exe
2021-12-27 09:06:10 ----A---- C:\WINDOWS\system32\ntkrla57.exe
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMNetMgr.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfaudiocnv.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2021-12-27 09:05:58 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMNetMgr.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\MSAC3ENC.DLL
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfsvr.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfds.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\mfaudiocnv.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\HoloSHExtensions.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\DMRServer.dll
2021-12-27 09:05:57 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2021-12-27 09:05:56 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\msvproc.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfps.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfpmp.exe
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfplat.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2021-12-27 09:05:56 ----A---- C:\WINDOWS\system32\mf.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.HardwareId.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\vfwwdm32.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\signdrv.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\serialui.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\RdpSaUacHelper.exe
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\MsRdpWebAccess.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\msdadiag.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\CheckNetIsolation.exe
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\fwcfg.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\authfwcfg.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2021-12-27 09:05:55 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2021-12-27 09:05:54 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2021-12-27 09:05:53 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2021-12-27 09:05:53 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2021-12-27 09:05:53 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\XInput9_1_0.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\XInput1_4.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\spacebridge.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\qasf.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\playtomenu.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\PayloadRestrictions.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\jscript9Legacy.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\HelpPaneProxy.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\FirewallControlPanel.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\dsauth.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\dpapiprovider.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\SYSWOW64\adsldp.dll
2021-12-27 09:05:52 ----A---- C:\WINDOWS\system32\wslapi.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\WebClnt.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\sysmain.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\Spectrum.exe
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\signdrv.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\msinfo32.exe
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\inetppui.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\inetpp.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhtask.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsvc.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhshl.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhevents.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhengine.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhcfg.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\fhcat.dll
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2021-12-27 09:05:51 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\wkspbroker.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\termsrv.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\SIHClient.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\SettingsHandlers_Troubleshoot.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\serialui.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\sbeio.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\sbe.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\RdpSaUacHelper.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\rdpclip.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\PktMonApi.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\PktMon.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\pcwutl.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\mstsc.exe
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\MsRdpWebAccess.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\drivers\PktMon.sys
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\CPFilters.dll
2021-12-27 09:05:49 ----A---- C:\WINDOWS\system32\AcGenral.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\Windows.System.Profile.HardwareId.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\windlp.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\systemreset.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\ssText3d.scr
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\rdpudd.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\pdhui.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\opengl32.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\offreg.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\nshwfp.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\nltest.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msisip.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msi.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msdadiag.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\msconfig.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\McpManagementService.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\McpManagementProxy.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\klist.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\CheckNetIsolation.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\glu32.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\fwcfg.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\FsIso.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\FrameServerMonitor.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\FrameServer.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\fodhelper.exe
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\DAFMCP.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\DAFIPP.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\ContactHarvesterDS.dll
2021-12-27 09:05:48 ----A---- C:\WINDOWS\system32\authfwcfg.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\jscript9.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\ieproxy.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2021-12-27 09:05:47 ----A---- C:\WINDOWS\system32\Chakra.dll
2021-12-27 09:05:46 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-12-27 09:05:46 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-12-27 09:05:46 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\wiatrace.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\wiaservc.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\wiarpc.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\vbsapi.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\StorSvc.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\sti.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\jscript9Legacy.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\jscript.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\iesetup.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\iernonce.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\ie4ushowIE.exe
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\HelpPaneProxy.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\gameux.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\FirewallControlPanel.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\EsclWiaDriver.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-12-27 09:05:45 ----A---- C:\WINDOWS\HelpPane.exe
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\XInput9_1_0.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\XInput1_4.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\UserDataSource.exe
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\sud.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\spacebridge.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\RandomAccessStreamDataSource.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\qasf.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\playtomenu.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\MsixDataSourceExtensionPS.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\energy.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\dsauth.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\dpapiprovider.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\defragsvc.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\defragres.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\defragproxy.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\DAFESCL.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\computestorage.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\computenetwork.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\computecore.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\ClipUp.exe
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2021-12-27 09:05:44 ----A---- C:\WINDOWS\system32\adsldp.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\wsplib.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\vid.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\vertdll.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\tcbloader.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\skci.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\SettingsHandlers_SharedExperiences_Rome.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\securekernel.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\resutils.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\PenService.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\PayloadRestrictions.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\NgcIsoCtnr.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\hvloader.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\hvix64.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\hvax64.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\fsutil.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\dusmtask.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\clusapi.dll
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\BioIso.exe
2021-12-27 09:05:43 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\wowreg32.exe
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.FileExplorer.Common.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\uxlibres.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\uxlib.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\setupcln.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\SensApi.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\prxyqry.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\printui.exe
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\ntprint.exe
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\nlmgp.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\drivers\afunix.sys
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2021-12-27 09:05:42 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\shpafact.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\sfc.exe
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\msdart.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\LockScreenData.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2021-12-27 09:05:39 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\xmllite.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\wmsgapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Dialogs.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\WerEnc.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\utcapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\userinitext.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\userinit.exe
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\sscore.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\ntlanman.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\nrtapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\LocationFrameworkPS.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\LocationFrameworkInternalPS.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\KeyCredMgr.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\FontGlyphAnimator.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\feclient.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dsuiext.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dssenh.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\diagnosticdataquery.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\devicengccredprov.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\credprovslegacy.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2021-12-27 09:05:38 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wutrust.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wuceffects.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\WinMsoIrmProtector.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wevtutil.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\tzautoupdate.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\tdhres.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SensorsUtilsV2.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\LaunchTM.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\D3D12Core.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\appidtel.exe
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\Apphlpdm.dll
2021-12-27 09:05:37 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\wpnclient.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\WinSync.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.OneCore.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\profext.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\kernel.appcore.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\BCP47mrm.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2021-12-27 09:05:36 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataTypeHelperUtil.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataPlatformHelperUtil.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataLanguageUtil.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccessRes.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\POSyncServices.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\ExtrasXmlParser.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\ContactActivation.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2021-12-27 09:05:34 ----A---- C:\WINDOWS\SYSWOW64\AddressParser.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\ztrace_maps.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Display.DisplayEnhancementOverride.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\webauthn.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\TextInputMethodFormatter.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\PhoneOm.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\mobilenetworking.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\fidocredprov.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\D3DSCache.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\d3d9on12.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\d3d11on12.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2021-12-27 09:05:33 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\windows.applicationmodel.datatransfer.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\TextShaping.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\SEMgrPS.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\embeddedmodesvcapi.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2021-12-27 09:05:32 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\wsmprovhost.exe
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\wsmplpxy.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Controls.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2021-12-27 09:05:31 ----A---- C:\WINDOWS\SYSWOW64\AppxApplicabilityEngine.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmRes.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WSManMigrationPlugin.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\wksprtPS.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\windowsudk.shellcommon.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\vds_ps.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\sppcomapi.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\softkbd.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\ServicingCommon.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\sas.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\msutb.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\msctfui.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\mscandui.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\mapistub.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\mapi32.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\InputSwitchToastHandler.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\fixmapi.exe
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeHelper.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmutil.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmintf.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmdskres2.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmdskres.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\dmdlgs.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\DeviceReactivation.dll
2021-12-27 09:05:30 ----A---- C:\WINDOWS\SYSWOW64\CoreShellAPI.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wlancfg.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\wcmapi.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TtlsCfg.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TtlsAuth.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TpmTool.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\TpmCertResources.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\SystemSettings.DataModel.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\secproc_isv.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\secproc.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\RMActivate_ssp_isv.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\RMActivate_ssp.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\RMActivate_isv.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\RMActivate.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\PSHED.DLL
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\LanguageOverlayUtil.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\EapTeapConfig.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eapputil.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eappprxy.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\control.exe
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\CallButtons.ProxyStub.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\bidispl.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\amsi.dll
2021-12-27 09:05:29 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\PlaySndSrv.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\PhonePlatformAbstraction.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2021-12-27 09:05:28 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
