Prosím o kontrolu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 22 pro 2019 22:38

proč mi u hitjaktis hází červeně Host
win hází modrou smrt, sem zvědav jestli to bude v pohodě
jinak disk není na 100% je v klidu

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:35:32, on 22.12.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)


Boot mode: Normal

Running processes:
C:\Users\virtu\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\virtu\AppData\Local\Discord\app-0.0.305\Discord.exe
C:\Users\virtu\AppData\Local\Discord\app-0.0.305\Discord.exe
C:\Users\virtu\AppData\Local\Discord\app-0.0.305\Discord.exe
C:\Users\virtu\AppData\Local\Discord\app-0.0.305\Discord.exe
C:\Users\virtu\AppData\Local\Microsoft\OneDrive\19.192.0926.0012\FileCoAuth.exe
C:\Users\virtu\OneDrive\Plocha\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Norton Password Manager - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security\Engine32\22.19.9.63\coIEPlg.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.19.9.63\coIEPlg.dll
O4 - HKCU\..\Run: [OneDrive] "C:\Users\virtu\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Steam] "E:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Discord] C:\Users\virtu\AppData\Local\Discord\app-0.0.305\Discord.exe
O4 - HKCU\..\Run: [NZXT.CAM] C:\Program Files\NZXT CAM\NZXT CAM.exe --startup
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atiesrxx.exe
O23 - Service: ASUS Com Service (asComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
O23 - Service: AsusFanControlService - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.77\AsusFanControlService.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_104f5f - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: DTS APO3 Service (DTSAPO3Service) - Unknown owner - C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Unknown owner - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Security (NortonSecurity) - Symantec Corporation - C:\Program Files\Norton Security\Engine\22.19.9.63\NortonSecurity.exe
O23 - Service: Norton WSC Service (nsWscSvc) - Symantec Corporation - C:\Program Files\Norton Security\Engine\22.19.9.63\nsWscSvc.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Unknown owner - C:\Windows\System32\RtkAudUService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\Windows\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8442 bytes


B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W

Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40419
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod jaro3 » 22 pro 2019 23:36

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O1 - Hosts: ::1 localhost



HJt spouštíš jako správce?

Stáhni si a nainstaluj WhoCrashed
otevři ho a klikni na Analyze.
Program vytvoří zprávu , zkopíruj celou a vlož prosím sem.

Vypni antivir i firewall.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
další odkaz:
http://www.bleepingcomputer.com/downloa ... scan-tool/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

zítra , pokud bude čas..
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 22 pro 2019 23:52

System Information (local)
--------------------------------------------------------------------------------

Computer name: DESKTOP-2GO46T4
Windows version: Windows 10 , 10.0, build: 18363
Windows dir: C:\Windows
Hardware: ASUSTeK COMPUTER INC., TUF B450-PRO GAMING
CPU: AuthenticAMD AMD Ryzen 7 2700 Eight-Core Processor AMD8664, level: 23
16 logical processors, active mask: 65535
RAM: 17101860864 bytes (15,9GB)




--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dumps are enabled on your computer. This system is not configured for complete or automatic crash dumps. For best results, configure your system to write out complete or automatic crash dumps. Select Tools->Crash Dump Configuration from the main menu to configure your system to write out complete memory dumps.

Crash dump directories:
C:\Windows
C:\Windows\Minidump

On Sun 22.12.2019 21:32:49 your computer crashed or a problem was reported
crash dump file: C:\Windows\Minidump\122219-9671-01.dmp
This was probably caused by the following module: atikmdag.sys (0xFFFFF8066B35C03F)
Bugcheck code: 0x1E (0xFFFFFFFF80000003, 0xFFFFF8066B35C03F, 0x0, 0xFFFFF8065F66EAB8)
Error: KMODE_EXCEPTION_NOT_HANDLED
file path: C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atikmdag.sys
product: ATI Radeon Family
company: Advanced Micro Devices, Inc.
description: ATI Radeon Kernel Mode Driver
Bug check description: This indicates that a kernel-mode program generated an exception which the error handler did not catch.
This might be a case of memory corruption. This may be because of a hardware issue such as faulty RAM, overheating (thermal issue) or because of a buggy driver.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: atikmdag.sys (ATI Radeon Kernel Mode Driver, Advanced Micro Devices, Inc.).
Google query: atikmdag.sys Advanced Micro Devices, Inc. KMODE_EXCEPTION_NOT_HANDLED



On Sun 22.12.2019 21:32:49 your computer crashed or a problem was reported
crash dump file: C:\Windows\MEMORY.DMP
This was probably caused by the following module: atikmdag.sys (0xFFFFF8066B35C03F)
Bugcheck code: 0x1E (0xFFFFFFFF80000003, 0xFFFFF8066B35C03F, 0x0, 0xFFFFF8065F66EAB8)
Error: KMODE_EXCEPTION_NOT_HANDLED
file path: C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atikmdag.sys
product: ATI Radeon Family
company: Advanced Micro Devices, Inc.
description: ATI Radeon Kernel Mode Driver
Bug check description: This indicates that a kernel-mode program generated an exception which the error handler did not catch.
This might be a case of memory corruption. This may be because of a hardware issue such as faulty RAM, overheating (thermal issue) or because of a buggy driver.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: atikmdag.sys (ATI Radeon Kernel Mode Driver, Advanced Micro Devices, Inc.).
Google query: atikmdag.sys Advanced Micro Devices, Inc. KMODE_EXCEPTION_NOT_HANDLED



On Sun 22.12.2019 14:29:42 your computer crashed or a problem was reported
crash dump file: C:\Windows\Minidump\122219-9687-01.dmp
This was probably caused by the following module: usbxhci.sys (0xFFFFF80560DA84FD)
Bugcheck code: 0x1E (0xFFFFFFFFC0000005, 0xFFFFF80560DA84FD, 0x0, 0xFFFFFFFFFFFFFFFF)
Error: KMODE_EXCEPTION_NOT_HANDLED
file path: C:\Windows\system32\drivers\usbxhci.sys
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: USB XHCI Driver
Bug check description: This indicates that a kernel-mode program generated an exception which the error handler did not catch.
This might be a case of memory corruption. This may be because of a hardware issue such as faulty RAM, overheating (thermal issue) or because of a buggy driver.
The crash took place in a storage driver or controller driver. Since there is no other responsible driver detected, this could be pointing to a malfunctioning drive or corrupted disk. It's suggested that you run CHKDSK.



On Sun 22.12.2019 1:25:32 your computer crashed or a problem was reported
crash dump file: C:\Windows\Minidump\122219-9609-01.dmp
This was probably caused by the following module: fltmgr.sys (0xFFFFF80738CE91C0)
Bugcheck code: 0x3B (0xC0000005, 0xFFFFF80738CE91C0, 0xFFFF868AD12D0540, 0x0)
Error: SYSTEM_SERVICE_EXCEPTION
file path: C:\Windows\system32\drivers\fltmgr.sys
product: Operační systém Microsoft® Windows®
company: Microsoft Corporation
description: Microsoft Filesystem Filter Manager
Bug check description: This indicates that an exception happened while executing a routine that transitions from non-privileged code to privileged code.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in a file system driver. Since there is no other responsible driver detected, this could be pointing to a malfunctioning drive or corrupted disk. It's suggested that you run CHKDSK.





--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------

4 crash dumps have been found and analyzed. A third party driver has been identified to be causing system crashes on your computer. It is strongly suggested that you check for updates for these drivers on their company websites. Click on the links below to search with Google for updates for these drivers:

atikmdag.sys (ATI Radeon Kernel Mode Driver, Advanced Micro Devices, Inc.)

If no updates for these drivers are available, try searching with Google on the names of these drivers in combination with the errors that have been reported for these drivers. Include the brand and model name of your computer as well in the query. This often yields interesting results from discussions on the web by users who have been experiencing similar problems.


Read the topic general suggestions for troubleshooting system crashes for more information.

Note that it's not always possible to state with certainty whether a reported driver is responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.
B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 23 pro 2019 00:00

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-12-2019
Ran by virtu (administrator) on DESKTOP-2GO46T4 (22-12-2019 23:54:58)
Running from C:\Users\virtu\OneDrive\Plocha
Loaded Profiles: virtu (Available Profiles: virtu)
Platform: Windows 10 Pro Version 1909 18363.535 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atiesrxx.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.77\AsusFanControlService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe
(ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
(DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\virtu\AppData\Local\Microsoft\OneDrive\19.192.0926.0012\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\virtu\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11912.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.19.9.63\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.19.9.63\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.19.9.63\nsWscSvc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [838432 2019-03-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-804298758-3085959810-179064716-1001\...\Run: [Steam] => E:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-804298758-3085959810-179064716-1001\...\Run: [Discord] => C:\Users\virtu\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-804298758-3085959810-179064716-1001\...\Run: [NZXT.CAM] => C:\Program Files\NZXT CAM\NZXT CAM.exe --startup

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08C4FA63-A38C-4D51-A134-94E4F5CCAD9F} - System32\Tasks\Microsoft\Windows\RetailDemo\CleanupOfflineContent => {61f77d5e-afe9-400b-a5e6-e9e80fc8e601} C:\Windows\System32\RDXTaskFactory.dll [415744 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {2236222D-7610-42E2-9665-3FA81F2A020E} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.19.9.63\SymErr.exe [116392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {278740BB-BF8D-4309-8FC0-9A10D0DD2FE3} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1467752 2019-06-21] (ASUSTeK Computer Inc. -> )
Task: {3417A0BC-02FA-4BCE-8674-2D758CA90AE0} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe
Task: {3B6119E1-86C3-4E57-A6D8-D745A195CA02} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.19.9.63\SymErr.exe [116392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {714E8092-2846-45CD-99FA-9AC2FA593E82} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_virtu => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5658384 2019-07-10] (Janos Mathe -> H.D.S. Hungary)
Task: {946A8371-F5AF-4C42-93B4-3B6FEC00B26C} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [1929344 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {A4025049-D519-4C12-83B4-AFE8269939E9} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1509424 2019-06-14] (ASUSTeK Computer Inc. -> )
Task: {AE64FC22-E0A3-4182-ADC5-599A731D3364} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1551136 2016-01-14] (ASUSTeK Computer Inc. -> ) [File not signed]
Task: {B7A24335-6149-4B71-BDC2-1CBC7478B156} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2110000 2019-04-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {BBCA10E9-9F66-4000-9785-F27C2B617C3E} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4329008 2019-05-22] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {BF4072DB-484D-4FCC-A2EB-49E1A971BD0D} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.19.9.63\SymErr.exe [116392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {C56A1433-8B5B-4FA7-8C59-40046DB41FEB} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [659520 2019-11-04] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {CC0B907D-E8FD-4174-9569-571DE1BBCD04} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe
Task: {DC6F3285-7870-45E4-A2CE-A1B0516E74C2} - System32\Tasks\GPU Tweak II => C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe [12374968 2018-05-14] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {E408FB77-ABD9-49E8-9B1F-0801F383DF88} - System32\Tasks\Opera scheduled Autoupdate 1576949215 => C:\Users\virtu\AppData\Local\Programs\Opera\launcher.exe [1528344 2019-12-19] (Opera Software AS -> Opera Software)
Task: {F132E4AC-E9D1-4AA7-AF7C-13438AA4FA77} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.19.9.63\WSCStub.exe [570768 2019-11-16] (Symantec Corporation -> Symantec Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{d5c87f9a-3bd5-4af7-8d95-933a6fb3059d}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-804298758-3085959810-179064716-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-804298758-3085959810-179064716-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atiesrxx.exe [508000 2019-09-18] (Advanced Micro Devices, Inc. -> AMD)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2019-04-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.77\AsusFanControlService.exe [2061872 2019-05-14] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 DTSAPO3Service; C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe [206744 2018-11-02] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803952 2019-12-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.19.9.63\NortonSecurity.exe [227296 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.19.9.63\nsWscSvc.exe [938496 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [838432 2019-03-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S2 MBAMService; "C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [45832 2019-10-01] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [24528 2019-04-18] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [58136 2018-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 amdkmcsp; C:\Windows\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atikmdag.sys [55249504 2019-09-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atikmpag.sys [595040 2019-09-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [102832 2019-09-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [32760 2019-05-29] (Advanced Micro Devices INC. -> Advanced Micro Devices)
R0 amdpsp; C:\Windows\System32\DRIVERS\amdpsp.sys [138544 2019-05-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R2 AMDRyzenMasterDriver; C:\Program Files (x86)\ASUS\AI Suite III\DIP4\AMDRyzenMasterDriver\bin\AMDRyzenMasterDriver.sys [70304 2019-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 amsdk; C:\Windows\system32\drivers\amsdk.sys [232792 2019-12-22] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-06-01] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [25728 2019-06-14] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
S3 AtiDCM; C:\Users\virtu\AppData\Local\Temp\atdcm64a.sys [51104 2016-07-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) <==== ATTENTION
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [111112 2017-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\BASHDefs\20191217.001\BHDrvx64.sys [1952136 2019-12-17] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\1613090.03F\ccSetx64.sys [193392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516784 2019-12-20] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154288 2019-12-21] (Symantec Corporation -> Symantec Corporation)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\IPSDefs\20191220.061\IDSvia64.sys [1451016 2019-12-20] (Symantec Corporation -> Symantec Corporation)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [34064 2019-03-21] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-12-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1131024 2018-10-23] (Realtek Semiconductor Corp. -> Realtek )
R3 SRTSP; C:\Windows\System32\drivers\NGCx64\1613090.03F\SRTSP64.SYS [889008 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\1613090.03F\SRTSPX64.SYS [50864 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\1613090.03F\SYMEFASI64.SYS [1963400 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NGCx64\1613090.03F\SymELAM.sys [25744 2019-11-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-12-21] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; C:\Program Files\Norton Security\NortonData\22.16.1.4\SymPlatform\SymEvnt.sys [710536 2019-12-02] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\Windows\System32\drivers\NGCx64\1613090.03F\Ironx64.SYS [316656 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\Windows\System32\drivers\NGCx64\1613090.03F\symnets.sys [573448 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\1613090.03F\wpCtrlDrv.sys [1012120 2019-11-16] (Symantec Corporation -> Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-22 23:54 - 2019-12-22 23:55 - 000000000 ____D C:\FRST
2019-12-22 23:49 - 2019-12-22 23:52 - 000000000 ____D C:\Program Files\WhoCrashed
2019-12-22 23:49 - 2019-12-22 23:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2019-12-22 23:47 - 2019-12-22 23:47 - 000000000 ___HD C:\OneDriveTemp
2019-12-22 23:36 - 2019-09-18 18:05 - 003885152 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 003484256 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 001705568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 001237088 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 001237088 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 001010696 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 001010696 _____ C:\Windows\system32\vulkan-1.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000941152 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000873640 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000873640 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000768608 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000760928 _____ (AMD) C:\Windows\system32\atieclxx.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000574048 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000553568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000493152 _____ C:\Windows\system32\dgtrayicon.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000484960 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000480352 _____ C:\Windows\system32\GameManager64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000468576 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000466528 _____ C:\Windows\system32\amdlogum.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000439904 _____ C:\Windows\system32\atieah64.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000416864 _____ C:\Windows\system32\EEURestart.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000383584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000381536 _____ C:\Windows\SysWOW64\GameManager32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000352352 _____ C:\Windows\SysWOW64\atieah32.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000348768 _____ C:\Windows\system32\clinfo.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000304224 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000304224 _____ C:\Windows\system32\vulkaninfo.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000276064 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000276064 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-12-22 23:36 - 2019-09-18 18:05 - 000239200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000211552 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000183904 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000178752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000162912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000158816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000157592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000152672 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000138336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000135776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000134752 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000125536 _____ (AMD) C:\Windows\system32\atimuixx.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000124000 _____ C:\Windows\system32\atidxx64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000121440 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000120928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000107104 _____ C:\Windows\SysWOW64\atidxx32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000105568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000090720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000075360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000070240 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000046688 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000043616 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000019768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2019-12-22 23:36 - 2019-09-18 18:05 - 000019768 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 001686000 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 001365352 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 000554072 _____ C:\Windows\system32\amdmiracast.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 000472672 _____ C:\Windows\system32\amdgfxinfo64.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 000381536 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 000134824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 000128112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 000128112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 000119232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 000107728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2019-12-22 23:36 - 2019-09-18 18:04 - 000107728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2019-12-22 23:36 - 2019-09-18 17:33 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2019-12-22 23:36 - 2019-09-18 17:33 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2019-12-22 23:36 - 2019-09-18 17:33 - 000920680 _____ C:\Windows\SysWOW64\atiapfxx.blb
2019-12-22 23:36 - 2019-09-18 17:33 - 000920680 _____ C:\Windows\system32\atiapfxx.blb
2019-12-22 23:36 - 2019-09-18 17:33 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2019-12-22 23:36 - 2019-09-18 17:33 - 000204952 _____ C:\Windows\system32\ativvsvl.dat
2019-12-22 23:36 - 2019-09-18 17:33 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2019-12-22 23:36 - 2019-09-18 17:33 - 000157144 _____ C:\Windows\system32\ativvsva.dat
2019-12-22 23:36 - 2019-09-18 17:33 - 000154384 _____ C:\Windows\system32\samu_krnl_ci.sbin
2019-12-22 23:36 - 2019-09-18 17:33 - 000138832 _____ C:\Windows\system32\samu_krnl_isv_ci.sbin
2019-12-22 23:36 - 2019-09-18 17:33 - 000125488 _____ C:\Windows\system32\kapp_ci.sbin
2019-12-22 23:36 - 2019-09-18 17:33 - 000121168 _____ C:\Windows\system32\kapp_si.sbin
2019-12-22 23:36 - 2019-09-18 17:32 - 000034488 _____ C:\Windows\system32\AMDKernelEvents.man
2019-12-22 22:44 - 2019-12-22 22:44 - 000000000 ____D C:\Windows\system32\Tasks\Remediation
2019-12-22 22:17 - 2019-12-22 22:17 - 000000000 ____D C:\Users\virtu\AppData\Local\RadeonInstaller
2019-12-22 21:45 - 2019-12-22 23:55 - 000073252 _____ C:\Windows\ZAM.krnl.trace
2019-12-22 21:45 - 2019-12-22 21:54 - 000000000 ____D C:\Users\virtu\AppData\Local\AMSDK
2019-12-22 21:45 - 2019-12-22 21:45 - 012741568 _____ (Zemana Ltd. ) C:\Users\virtu\Downloads\AntiMalware_Setup.exe
2019-12-22 21:45 - 2019-12-22 21:45 - 000232792 _____ (Copyright 2018.) C:\Windows\system32\Drivers\amsdk.sys
2019-12-22 21:45 - 2019-12-22 21:45 - 000003558 _____ C:\Windows\system32\Tasks\AMHelper
2019-12-22 21:45 - 2019-12-22 21:45 - 000001329 _____ C:\ProgramData\Plocha\Zemana AntiMalware.lnk
2019-12-22 21:45 - 2019-12-22 21:45 - 000000000 ____D C:\Users\virtu\AppData\Local\Zemana
2019-12-22 21:45 - 2019-12-22 21:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2019-12-22 21:45 - 2019-12-22 21:45 - 000000000 ____D C:\Program Files (x86)\Zemana
2019-12-22 21:33 - 2019-12-22 21:34 - 001311388 _____ C:\Windows\Minidump\122219-9671-01.dmp
2019-12-22 21:27 - 2019-12-22 21:40 - 000000000 ____D C:\ProgramData\RogueKiller
2019-12-22 21:26 - 2019-12-22 21:26 - 037028920 _____ C:\Users\virtu\Downloads\RogueKiller_portable64.exe
2019-12-22 21:20 - 2019-12-22 21:22 - 000000000 ____D C:\Users\virtu\AppData\Roaming\Discord
2019-12-22 21:19 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2019-12-22 21:06 - 2019-12-22 21:17 - 000000000 ____D C:\zoek_backup
2019-12-22 20:45 - 2019-12-22 20:45 - 000002775 _____ C:\ProgramData\Plocha\Sophos Virus Removal Tool.lnk
2019-12-22 20:45 - 2019-12-22 20:45 - 000000000 ____D C:\ProgramData\Sophos
2019-12-22 20:45 - 2019-12-22 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2019-12-22 20:45 - 2019-12-22 20:45 - 000000000 ____D C:\Program Files (x86)\Sophos
2019-12-22 20:04 - 2019-12-22 20:04 - 000002021 _____ C:\ProgramData\Plocha\Malwarebytes.lnk
2019-12-22 20:04 - 2019-12-22 20:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-12-22 20:03 - 2019-12-22 20:03 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-12-22 20:03 - 2019-12-22 20:03 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-12-22 20:03 - 2019-12-22 20:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-12-22 20:02 - 2019-12-22 23:53 - 000000000 ____D C:\Windows\system32\Tasks\Norton Security
2019-12-22 19:57 - 2019-12-22 19:57 - 000003376 _____ C:\Windows\system32\Tasks\Norton WSC Integration
2019-12-22 19:57 - 2019-12-22 19:57 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2019-12-22 16:20 - 2019-12-22 19:53 - 000000000 ____D C:\Users\virtu\AppData\Local\Arma 3 Launcher
2019-12-22 16:20 - 2019-12-22 16:20 - 000000000 ____D C:\Users\virtu\AppData\Local\Bohemia_Interactive
2019-12-22 15:39 - 2019-12-22 15:44 - 000000000 ____D C:\Program Files\NZXT CAM
2019-12-22 15:29 - 2019-12-22 15:29 - 000000000 ____D C:\Users\virtu\AppData\Roaming\EasyAntiCheat
2019-12-22 15:29 - 2019-12-22 15:29 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2019-12-22 14:30 - 2019-12-22 14:30 - 001268380 _____ C:\Windows\Minidump\122219-9687-01.dmp
2019-12-22 14:24 - 2019-12-22 14:24 - 000022240 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_932846328276.dll
2019-12-22 14:24 - 2019-12-22 14:24 - 000000000 ____D C:\Users\virtu\AppData\Local\GameAnalytics
2019-12-22 14:23 - 2019-12-22 14:23 - 000000000 ____D C:\Users\virtu\AppData\LocalLow\Facepunch Studios LTD
2019-12-22 14:23 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2019-12-22 14:23 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2019-12-22 14:23 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2019-12-22 14:23 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2019-12-22 14:23 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2019-12-22 14:23 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2019-12-22 14:23 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2019-12-22 14:23 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2019-12-22 14:23 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2019-12-22 14:23 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2019-12-22 14:23 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2019-12-22 14:23 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2019-12-22 14:23 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2019-12-22 14:23 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2019-12-22 14:23 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2019-12-22 14:23 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2019-12-22 14:23 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2019-12-22 14:23 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2019-12-22 14:23 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2019-12-22 14:23 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2019-12-22 14:23 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2019-12-22 14:23 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2019-12-22 14:23 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2019-12-22 14:23 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2019-12-22 14:23 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2019-12-22 14:23 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2019-12-22 14:23 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2019-12-22 14:23 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2019-12-22 14:23 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2019-12-22 14:23 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2019-12-22 14:23 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2019-12-22 14:23 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2019-12-22 14:23 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2019-12-22 14:23 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2019-12-22 14:23 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2019-12-22 14:23 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2019-12-22 14:23 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2019-12-22 14:23 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2019-12-22 14:23 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2019-12-22 14:23 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2019-12-22 14:23 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2019-12-22 14:23 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2019-12-22 14:23 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2019-12-22 14:23 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2019-12-22 14:23 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2019-12-22 14:23 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2019-12-22 14:23 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2019-12-22 14:23 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2019-12-22 14:23 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2019-12-22 14:23 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2019-12-22 14:23 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2019-12-22 14:23 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2019-12-22 14:23 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2019-12-22 14:23 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2019-12-22 14:23 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2019-12-22 14:23 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2019-12-22 14:23 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2019-12-22 14:23 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2019-12-22 14:23 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2019-12-22 14:23 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2019-12-22 14:23 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2019-12-22 14:23 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2019-12-22 14:23 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2019-12-22 14:23 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2019-12-22 14:23 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2019-12-22 14:23 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2019-12-22 14:23 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2019-12-22 14:23 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2019-12-22 14:23 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2019-12-22 14:23 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2019-12-22 14:23 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2019-12-22 14:23 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2019-12-22 14:23 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2019-12-22 14:23 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2019-12-22 14:23 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2019-12-22 14:23 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2019-12-22 14:23 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2019-12-22 14:23 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2019-12-22 14:23 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2019-12-22 14:23 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2019-12-22 14:23 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2019-12-22 14:23 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2019-12-22 14:23 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2019-12-22 14:23 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2019-12-22 14:23 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2019-12-22 14:23 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2019-12-22 14:23 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2019-12-22 14:23 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2019-12-22 14:23 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2019-12-22 14:23 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2019-12-22 14:23 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2019-12-22 14:23 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2019-12-22 14:23 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2019-12-22 14:23 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2019-12-22 14:23 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2019-12-22 14:23 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2019-12-22 14:23 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2019-12-22 14:23 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2019-12-22 14:23 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2019-12-22 14:23 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2019-12-22 14:23 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2019-12-22 14:23 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2019-12-22 14:23 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2019-12-22 14:23 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2019-12-22 14:23 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2019-12-22 14:23 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2019-12-22 14:23 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2019-12-22 14:23 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2019-12-22 14:23 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2019-12-22 14:23 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2019-12-22 14:23 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2019-12-22 14:23 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2019-12-22 14:23 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2019-12-22 14:23 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2019-12-22 14:23 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2019-12-22 14:23 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2019-12-22 14:23 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2019-12-22 14:23 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2019-12-22 14:23 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2019-12-22 14:23 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2019-12-22 14:23 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2019-12-22 14:23 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2019-12-22 14:23 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2019-12-22 14:23 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2019-12-22 14:23 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2019-12-22 14:23 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2019-12-22 14:23 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2019-12-22 14:23 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2019-12-22 14:23 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2019-12-22 14:23 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2019-12-22 14:23 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2019-12-22 14:23 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2019-12-22 14:23 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2019-12-22 14:23 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2019-12-22 14:23 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2019-12-22 14:23 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2019-12-22 14:23 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2019-12-22 14:23 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2019-12-22 14:23 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2019-12-22 14:23 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2019-12-22 14:23 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2019-12-22 14:23 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2019-12-22 14:23 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2019-12-22 14:23 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2019-12-22 14:23 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2019-12-22 14:23 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2019-12-22 14:23 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2019-12-22 14:23 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2019-12-22 14:23 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2019-12-22 14:23 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2019-12-22 14:23 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2019-12-22 14:23 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2019-12-22 14:23 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2019-12-22 14:23 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2019-12-22 14:23 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2019-12-22 14:23 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2019-12-22 14:23 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2019-12-22 14:23 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2019-12-22 14:23 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2019-12-22 14:23 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2019-12-22 14:23 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2019-12-22 14:23 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2019-12-22 14:23 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2019-12-22 14:23 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2019-12-22 14:19 - 2019-12-22 14:19 - 000000000 ____D C:\Windows\pss
2019-12-22 14:19 - 2019-12-22 14:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2019-12-22 14:10 - 2019-12-22 14:10 - 002508282 _____ C:\Users\virtu\Downloads\5bc3098d-63f7-4b78-88a6-b8e84d0b97bf.tmp
2019-12-22 14:07 - 2019-12-22 14:07 - 000000000 ____D C:\Users\virtu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-12-22 14:07 - 2019-12-22 14:07 - 000000000 ____D C:\Users\virtu\AppData\Local\SquirrelTemp
2019-12-22 14:07 - 2019-12-22 14:07 - 000000000 ____D C:\Users\virtu\AppData\Local\Discord
2019-12-22 13:34 - 2019-12-22 13:34 - 000000731 _____ C:\ProgramData\Plocha\Steam.lnk
2019-12-22 13:34 - 2019-12-22 13:34 - 000000000 ____D C:\Users\virtu\AppData\Local\Steam
2019-12-22 13:34 - 2019-12-22 13:34 - 000000000 ____D C:\Users\virtu\AppData\Local\CEF
2019-12-22 13:34 - 2019-12-22 13:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-12-22 02:42 - 2019-12-22 02:42 - 000000000 ____D C:\AdwCleaner
2019-12-22 02:31 - 2019-12-22 22:16 - 000620378 _____ C:\Windows\ntbtlog.txt
2019-12-22 02:31 - 2019-12-22 22:14 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2019-12-22 02:24 - 2019-12-22 02:24 - 000000000 ____D C:\Users\virtu\AppData\Local\mbamtray
2019-12-22 02:24 - 2019-12-22 02:24 - 000000000 ____D C:\Users\virtu\AppData\Local\mbam
2019-12-22 01:26 - 2019-12-22 21:33 - 988889535 _____ C:\Windows\MEMORY.DMP
2019-12-22 01:26 - 2019-12-22 01:26 - 001352564 _____ C:\Windows\Minidump\122219-9609-01.dmp
2019-12-21 23:07 - 2019-12-22 13:35 - 000000000 ____D C:\Program Files (x86)\Hard Disk Sentinel
2019-12-21 23:07 - 2019-12-21 23:07 - 000000000 ____D C:\Windows\system32\Tasks\HardDiskSentinel
2019-12-21 23:07 - 2019-12-21 23:07 - 000000000 ____D C:\Users\virtu\AppData\Roaming\Hard Disk Sentinel
2019-12-21 23:07 - 2019-12-21 23:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Disk
B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 23 pro 2019 00:04

Sentinel
2019-12-21 23:06 - 2019-12-21 23:06 - 027091530 _____ C:\Users\virtu\Downloads\hdsentinel_pro_setup.zip
2019-12-21 23:06 - 2019-12-21 23:06 - 000000000 ____D C:\Users\virtu\AppData\Roaming\WinRAR
2019-12-21 19:39 - 2019-12-21 19:41 - 000000000 ____D C:\Windows\system32\MRT
2019-12-21 19:39 - 2019-12-21 19:39 - 129221664 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 025901056 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 025443840 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 022627840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 019849216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 018020352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 014816256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 009927992 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 009711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 008011264 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 007754240 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 007600448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 007195648 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 007015936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 006516648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 006435840 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 006232576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 006083832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 005943296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 005914112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 005764664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 005501952 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 005112320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 004578816 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 004307968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 004150272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AI.MachineLearning.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 003967920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 003791360 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 003752960 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 003742544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 003487232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 003371928 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002988344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 002956472 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002800640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 002772272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002762296 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002703872 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002698768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 002586816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002562048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002494432 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002399232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002369552 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002305536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002258848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002188816 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002158080 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002147328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 002082208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001916984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001866272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001856512 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001718584 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001697280 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001691648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001664904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001659192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001647072 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001616696 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001610752 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001539584 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001496080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001413840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001399312 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 001394168 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001387024 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001348096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001327064 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001283072 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001257472 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001189376 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001185792 _____ (Microsoft Corporation) C:\Windows\system32\AgentService.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 001182720 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CommonBridge.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001171704 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001154656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001126912 _____ (Microsoft Corporation) C:\Windows\system32\ApplySettingsTemplateCatalog.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 001098928 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001072952 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 001059840 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 001054864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001047352 _____ (Microsoft Corporation) C:\Windows\system32\AppVPolicy.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001017680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 001007616 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000982840 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000960040 _____ (Microsoft Corporation) C:\Windows\system32\AppVManifest.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000921600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000892696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000874936 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000844800 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000842552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000832000 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000827192 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000822416 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000822072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000816952 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000797112 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000774456 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000768528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000768488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000762880 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000743224 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000741376 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000700416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000689664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000679152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000674280 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000673456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000669696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000669352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000666640 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000632320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000618496 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000606720 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000599552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000598528 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000593128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000586768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000517432 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000516544 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000514576 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000513336 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000512512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000511000 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000496640 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000494904 _____ (Microsoft Corporation) C:\Windows\system32\TransportDSA.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.FileExplorer.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000477712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-12-21 19:37 - 2019-12-21 19:37 - 000477184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000466928 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000461320 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000455168 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000453632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000452920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000430080 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000429568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000423936 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CscUnpinTool.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000415544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000406480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000404904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000401920 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000396088 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000380944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000380928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcLayers.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000375720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000372752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000358400 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000342528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\AcLayers.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000287744 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ManagedEventLogging.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000283648 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000282112 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ConfigWrapper.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000259384 _____ (Microsoft Corporation) C:\Windows\system32\AppVFileSystemMetadata.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000251512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000249856 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000247856 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000230200 _____ (Microsoft Corporation) C:\Windows\system32\AppVStreamMap.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000225280 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2019-12-21 19:37 - 2019-12-21 19:37 - 000220472 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000214016 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CmUtil.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000210744 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\wincredui.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accessibilitycpl.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000199480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000193800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2019-12-21 19:37 - 2019-12-21 19:37 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000164776 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredui.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000136536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\omadmapi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwbase.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\WinHvPlatform.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000113160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000097080 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EaseOfAccessDialog.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000093496 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000089536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcXtrnal.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000084488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000084488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2019-12-21 19:37 - 2019-12-21 19:37 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.SyncController.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sethc.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000074240 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000073024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Common.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2019-12-21 19:37 - 2019-12-21 19:37 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AtBroker.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000061240 _____ (Microsoft Corporation) C:\Windows\system32\hvhostsvc.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\reg.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppCore.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\UevAppMonitor.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CabUtil.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000047616 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.EventLogMessages.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2010CustomActions.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\UevAgentPolicyGenerator.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000036368 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\winnsi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\posetup.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000032056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2019-12-21 19:37 - 2019-12-21 19:37 - 000030720 _____ C:\Windows\system32\uwfservicingapi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\nsisvc.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000028344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winnsi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000024792 _____ (Microsoft Corporation) C:\Windows\system32\nsi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Management.WmiAccess.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Management.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000021304 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppData.WinRT.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000020352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nsi.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.SyncCommon.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Common.WinRT.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.LocalSyncProvider.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\AcXtrnal.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernSync.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDJPN.DLL
2019-12-21 19:37 - 2019-12-21 19:37 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\UevTemplateBaselineGenerator.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\pacjsworker.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\UevTemplateConfigItemGenerator.exe
2019-12-21 19:37 - 2019-12-21 19:37 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.SmbSyncProvider.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.MonitorSyncProvider.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbd106.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.SyncConditions.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2019-12-21 19:37 - 2019-12-21 19:37 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2019-12-21 19:37 - 2019-12-21 19:37 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-12-21 19:37 - 2019-12-21 19:37 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 017787904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 007905000 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 007849424 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 007278592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 007263992 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 006227104 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 006166016 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 005890048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AI.MachineLearning.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 004615616 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 004140544 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 004047360 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 004005888 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 003968512 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 003729408 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 003703296 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 003591208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 003387392 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 003263488 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 003105792 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 003084800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 002871848 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 002870784 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 002284544 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 002126112 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 002120704 _____ (Microsoft Corporation) C:\Windows\system32\WpcDesktopMonSvc.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 002114048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001974824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 001942528 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001920512 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001757304 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-12-21 19:36 - 2019-12-21 19:36 - 001748480 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001743888 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001726480 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001687040 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001656600 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001512528 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 001451520 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 001428992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 001413912 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001366128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-12-21 19:36 - 2019-12-21 19:36 - 001261464 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001259416 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 001182448 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 001094656 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001070080 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001069064 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001066496 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001027000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 001006904 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000986936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000975872 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000911824 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000874536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000849920 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000826368 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000811536 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000747320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000708096 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000704000 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000657424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000642560 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000638264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000604984 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000598016 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000589592 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000563712 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000552448 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000551736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Vid.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000534528 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.UserService.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000530944 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000524800 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000524264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000522176 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000513536 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000465208 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000446464 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000422712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000416016 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000381952 _____ (Microsoft Corporation) C:\Windows\system32\AppLockerCSP.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000368128 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000359424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MbbCx.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000350720 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SpeechPrivacy.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000324624 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000322504 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000292664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000291256 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000280064 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000239104 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000204816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000202552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000184832 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000164368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000162304 _____ (Microsoft Corporation) C:\Windows\system32\fwbase.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000159232 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000132608 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\UtcDecoderHost.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000127272 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationControlCSP.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000118272 _____ (Microsoft Corporation) C:\Windows\system32\EaseOfAccessDialog.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000105488 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2019-12-21 19:36 - 2019-12-21 19:36 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000088568 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\ApiSetHost.AppExecutionAlias.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\AtBroker.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000071480 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000067112 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000047208 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS
2019-12-21 19:36 - 2019-12-21 19:36 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\DevQueryBroker.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\autopilotdiag.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\appidtel.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\wscproxystub.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\applockerfltr.sys
2019-12-21 19:36 - 2019-12-21 19:36 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\dstokenclean.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2019-12-21 19:36 - 2019-12-21 19:36 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\wscadminui.exe
2019-12-21 19:36 - 2019-12-21 19:36 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tier2punctuations.dll
2019-12-21 19:32 - 2019-10-17 07:17 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-12-21 19:32 - 2019-10-17 07:01 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-12-21 19:12 - 2019-12-22 14:19 - 000000000 ____D C:\Program Files\Core Temp
2019-12-21 19:09 - 2019-12-22 13:32 - 000007601 _____ C:\Users\virtu\AppData\Local\Resmon.ResmonCfg
2019-12-21 18:36 - 2019-12-21 18:36 - 000001291 _____ C:\ProgramData\Plocha\XSplit Gamecaster.lnk
2019-12-21 18:36 - 2019-12-21 18:36 - 000000000 ____D C:\Users\virtu\AppData\Roaming\SplitmediaLabs
2019-12-21 18:36 - 2019-12-21 18:36 - 000000000 ____D C:\ProgramData\SplitMediaLabs
2019-12-21 18:36 - 2019-12-21 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
2019-12-21 18:36 - 2019-12-21 18:36 - 000000000 ____D C:\Program Files (x86)\SplitmediaLabs
2019-12-21 18:35 - 2019-12-22 23:47 - 000003094 _____ C:\Windows\system32\Tasks\GPU Tweak II
2019-12-21 18:35 - 2019-12-21 18:35 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2019-12-21 18:35 - 2019-12-21 18:35 - 000003074 _____ C:\Windows\system32\Tasks\StartDVR
2019-12-21 18:35 - 2019-12-21 18:35 - 000001140 _____ C:\ProgramData\Plocha\ASUS GPU TweakII.lnk
2019-12-21 18:35 - 2019-12-21 18:35 - 000000000 ____D C:\Windows\Downloaded Installations
2019-12-21 18:35 - 2019-12-21 18:35 - 000000000 ____D C:\Users\virtu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
2019-12-21 18:35 - 2019-12-21 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon
B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 23 pro 2019 00:07

Settings
2019-12-21 18:35 - 2019-12-21 18:35 - 000000000 ____D C:\6749525315573233238
2019-12-21 18:34 - 2019-12-21 18:34 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2019-12-21 18:34 - 2018-05-22 15:53 - 000058136 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmafd.sys
2019-12-21 18:26 - 2019-12-21 18:26 - 000004206 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1576949215
2019-12-21 18:26 - 2019-12-21 18:26 - 000001393 _____ C:\Users\virtu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2019-12-21 18:22 - 2019-12-21 18:22 - 000000000 ____D C:\Users\virtu\AppData\Local\OneDrive
2019-12-21 15:52 - 2019-12-22 20:22 - 000000000 ____D C:\Program Files\Common Files\AV
2019-12-21 15:26 - 2019-03-21 21:49 - 000034064 ____N (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2019-12-21 15:20 - 2019-12-21 15:20 - 000000000 _____ C:\Windows\SysWOW64\Drivers\1043_ASUSTeK_TUF B450-PRO GAMING.alu
2019-12-21 15:16 - 2019-12-21 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-12-21 15:14 - 2019-12-22 23:53 - 000000000 ____D C:\ProgramData\ASUS
2019-12-21 15:14 - 2019-12-21 18:36 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2019-12-21 15:14 - 2019-12-21 15:14 - 000000000 ____D C:\Users\virtu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-12-21 15:14 - 2019-12-21 15:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-12-21 15:14 - 2019-12-21 15:14 - 000000000 ____D C:\Program Files\WinRAR
2019-12-21 15:14 - 2019-06-14 03:07 - 000025728 ____R C:\Windows\SysWOW64\Drivers\AsUpIO.sys
2019-12-21 15:14 - 2019-04-09 11:27 - 000033832 ____R C:\Windows\system32\Drivers\AsIO2.sys
2019-12-21 15:14 - 2019-04-09 10:22 - 000120880 ____R C:\Windows\system32\AsIO2.dll
2019-12-21 15:14 - 2019-04-09 10:22 - 000095280 ____R C:\Windows\SysWOW64\AsIO2.dll
2019-12-21 15:12 - 2019-12-22 19:57 - 000002408 _____ C:\ProgramData\Plocha\Norton Security.lnk
2019-12-21 15:08 - 2019-12-21 20:27 - 000100064 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2019-12-21 15:08 - 2019-12-21 20:27 - 000008585 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2019-12-21 15:08 - 2019-12-21 15:08 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2019-12-21 15:07 - 2019-12-22 19:57 - 000000000 ____D C:\Windows\system32\Drivers\NGCx64
2019-12-21 15:07 - 2019-12-21 17:25 - 000000000 ____D C:\ProgramData\Norton
2019-12-21 15:07 - 2019-12-21 15:08 - 000000000 ____D C:\Program Files\Norton Security
2019-12-21 15:07 - 2019-12-21 15:07 - 000000000 ____D C:\ProgramData\NortonInstaller
2019-12-21 15:07 - 2019-12-21 15:07 - 000000000 ____D C:\Program Files (x86)\NortonInstaller
2019-12-21 15:04 - 2018-10-23 13:24 - 001131024 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2019-12-21 15:02 - 2019-12-21 18:35 - 000000000 ____D C:\Program Files (x86)\AMD
2019-12-21 15:02 - 2019-12-21 15:02 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2019-12-21 15:01 - 2019-10-01 08:34 - 000045832 _____ (Advanced Micro Devices, Inc) C:\Windows\system32\Drivers\amdgpio2.sys
2019-12-21 15:01 - 2019-05-23 01:10 - 000482608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\tbaseregistry64.dll
2019-12-21 15:01 - 2019-05-23 01:10 - 000437552 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\t-base_client_api.dll
2019-12-21 15:01 - 2019-05-23 01:10 - 000384304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\tbaseregistry32.dll
2019-12-21 15:01 - 2019-05-23 01:10 - 000348976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\t-base_client_api.dll
2019-12-21 15:01 - 2019-05-23 01:10 - 000138544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\Drivers\amdpsp.sys
2019-12-21 14:58 - 2019-12-21 15:01 - 000000000 ____D C:\ProgramData\DTSAudio
2019-12-21 14:58 - 2019-12-21 14:58 - 000000000 ____D C:\Windows\system32\DTS
2019-12-21 14:56 - 2019-12-21 18:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-12-21 14:56 - 2019-12-21 15:04 - 000000000 ____D C:\Program Files (x86)\Realtek
2019-12-21 14:56 - 2019-12-21 14:58 - 000000000 ____D C:\ProgramData\UWP
2019-12-21 14:56 - 2019-03-27 21:25 - 006788088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2019-12-21 14:56 - 2019-03-27 18:32 - 000481888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2019-12-21 14:56 - 2019-03-27 18:31 - 005620696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPOU64.dll
2019-12-21 14:56 - 2019-03-27 18:31 - 001126344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtCOM64.dll
2019-12-21 14:56 - 2019-03-27 18:31 - 000838432 _____ (Realtek Semiconductor) C:\Windows\system32\RtkAudUService64.exe
2019-12-21 14:56 - 2019-03-27 18:31 - 000820824 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64U.dll
2019-12-21 14:56 - 2019-03-27 18:31 - 000261504 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2019-12-21 14:56 - 2019-03-27 18:31 - 000217984 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2019-12-21 14:56 - 2019-03-27 18:31 - 000215032 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2019-12-21 14:56 - 2019-03-27 18:17 - 030195619 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2019-12-21 14:55 - 2019-12-21 18:36 - 000000000 ____D C:\Program Files (x86)\ASUS
2019-12-21 14:55 - 2019-12-21 15:28 - 000019874 _____ C:\Windows\Ascd_tmp.ini
2019-12-21 14:55 - 2019-12-21 15:28 - 000001017 _____ C:\Windows\Ascd_ProcessLog.ini
2019-12-21 14:55 - 2019-12-21 14:56 - 000000000 ___HD C:\Program Files (x86)\Temp
2019-12-21 14:55 - 2018-01-15 07:40 - 002856800 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2019-12-21 14:55 - 2017-06-01 15:24 - 000028672 ____R (ASUSTek Computer Inc.) C:\Windows\SysWOW64\AsIO.dll
2019-12-21 14:55 - 2017-06-01 15:24 - 000015232 ____R C:\Windows\SysWOW64\Drivers\AsIO.sys
2019-12-21 14:17 - 2019-12-21 17:06 - 000000000 ____D C:\ProgramData\Packages
2019-12-21 14:17 - 2019-12-21 14:17 - 000000000 ____D C:\Users\virtu\AppData\Local\Comms
2019-12-21 14:03 - 2019-12-21 19:10 - 000000000 ____D C:\Users\virtu\AppData\LocalLow\AMD
2019-12-21 14:03 - 2019-12-21 18:27 - 000000000 ____D C:\Users\virtu\AppData\Local\Opera Software
2019-12-21 14:03 - 2019-12-21 18:26 - 000000000 ____D C:\Users\virtu\AppData\Roaming\Opera Software
2019-12-21 14:03 - 2019-05-08 10:41 - 000000120 ____R C:\Users\virtu\OneDrive\Dokumenty\Můj poznámkový blok.url
2019-12-21 14:02 - 2019-12-22 23:47 - 000000000 ___RD C:\Users\virtu\OneDrive
2019-12-21 14:02 - 2019-12-21 14:03 - 000003376 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-804298758-3085959810-179064716-1001
2019-12-21 14:02 - 2019-12-21 14:02 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-12-21 14:01 - 2019-12-22 21:19 - 000000000 ____D C:\Users\virtu\AppData\Local\D3DSCache
2019-12-21 14:01 - 2019-12-22 19:58 - 000000000 ____D C:\Users\virtu\AppData\Local\AMD
2019-12-21 14:01 - 2019-12-22 01:56 - 000000000 ____D C:\Users\virtu\AppData\Local\VirtualStore
2019-12-21 14:01 - 2019-12-21 20:05 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-12-21 14:01 - 2019-12-21 20:05 - 000000000 ___RD C:\Users\virtu\3D Objects
2019-12-21 14:01 - 2019-12-21 17:27 - 000000000 ____D C:\Users\virtu\AppData\Local\Packages
2019-12-21 14:01 - 2019-12-21 14:57 - 000000000 ____D C:\Users\virtu\AppData\Local\ConnectedDevicesPlatform
2019-12-21 14:01 - 2019-12-21 14:27 - 000000000 ____D C:\Users\virtu\AppData\Local\Publishers
2019-12-21 14:01 - 2019-12-21 14:01 - 000000000 ___HD C:\Users\virtu\MicrosoftEdgeBackups
2019-12-21 14:01 - 2019-12-21 14:01 - 000000000 ____D C:\Users\virtu\AppData\Roaming\Adobe
2019-12-21 14:01 - 2019-12-21 14:01 - 000000000 ____D C:\Users\virtu\AppData\Local\MicrosoftEdge
2019-12-21 13:59 - 2019-12-22 13:45 - 001606106 _____ C:\Windows\system32\PerfStringBackup.INI
2019-12-21 13:58 - 2019-12-22 23:46 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2019-12-21 13:58 - 2019-12-22 22:17 - 000000000 ____D C:\Program Files\AMD
2019-12-21 13:58 - 2019-12-21 13:58 - 000000000 ____D C:\Windows\system32\AMD
2019-12-21 13:58 - 2019-09-18 18:05 - 000102832 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys
2019-12-21 13:57 - 2019-12-22 21:34 - 000000000 ____D C:\Users\virtu
2019-12-21 13:57 - 2019-12-21 14:03 - 000002361 _____ C:\Users\virtu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-12-21 13:57 - 2019-12-21 13:57 - 000000020 ___SH C:\Users\virtu\ntuser.ini
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\Šablony
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\Soubory cookie
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\Poslední
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\Okolní tiskárny
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\Okolní síť
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\Nabídka Start
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\Dokumenty
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\Data aplikací
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 _SHDL C:\Users\virtu\AppData\Local\Data aplikací
2019-12-21 13:57 - 2019-12-21 13:57 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_amdpsp_01011.Wdf
2019-12-21 13:56 - 2019-12-22 21:33 - 000000000 ____D C:\Windows\minidump
2019-12-21 13:56 - 2019-12-21 13:56 - 000000000 ____D C:\Windows\CSC
2019-12-21 13:56 - 2019-10-07 03:57 - 002874368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\Šablony
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\Poslední
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\Okolní síť
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\Dokumenty
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\Data aplikací
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\Šablony
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\Soubory cookie
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\Poslední
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\Okolní tiskárny
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\Okolní síť
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\Nabídka Start
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\Dokumenty
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\Data aplikací
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\ProgramData\Šablony
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\ProgramData\Plocha
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\ProgramData\Dokumenty
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\ProgramData\Data aplikací
2019-12-21 13:55 - 2019-12-21 13:55 - 000000000 _SHDL C:\Documents and Settings
2019-12-21 13:54 - 2019-12-22 23:47 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-12-21 13:54 - 2019-12-21 13:54 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2019-12-21 13:54 - 2019-12-21 13:54 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-12-21 13:53 - 2019-12-22 21:33 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-12-21 13:53 - 2019-12-21 20:03 - 000266472 _____ C:\Windows\system32\FNTCACHE.DAT
2019-12-21 13:53 - 2019-12-21 13:55 - 000000000 ____D C:\Windows\Panther
2019-12-21 13:53 - 2019-12-21 13:53 - 000000000 ____D C:\Windows\ServiceProfiles

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-22 23:55 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-12-22 23:46 - 2019-03-19 05:37 - 000524288 _____ C:\Windows\system32\config\BBI
2019-12-22 23:36 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2019-12-22 20:03 - 2019-03-19 05:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-12-22 16:20 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-12-22 16:09 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2019-12-22 16:04 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-12-22 13:45 - 2019-03-19 12:57 - 000682526 _____ C:\Windows\system32\perfh005.dat
2019-12-22 13:45 - 2019-03-19 12:57 - 000137244 _____ C:\Windows\system32\perfc005.dat
2019-12-22 09:27 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\appcompat
2019-12-21 20:03 - 2019-03-19 05:37 - 000032768 _____ C:\Windows\system32\config\ELAM
2019-12-21 20:02 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\PrintDialog
2019-12-21 20:02 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2019-12-21 20:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2019-12-21 20:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\appraiser
2019-12-21 20:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2019-12-21 20:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellComponents
2019-12-21 20:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-12-21 20:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\DiagTrack
2019-12-21 20:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2019-12-21 19:39 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\servicing
2019-12-21 19:39 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2019-12-21 14:17 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ServiceState
2019-12-21 13:57 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2019-12-21 13:57 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\USOPrivate
2019-12-21 13:56 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\spool
2019-12-21 13:56 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\FxsTmp
2019-12-21 13:55 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows NT
2019-12-21 13:53 - 2019-03-19 05:49 - 000028672 _____ C:\Windows\system32\config\BCD-Template

==================== Files in the root of some directories ========

2019-12-21 19:09 - 2019-12-22 13:32 - 000007601 _____ () C:\Users\virtu\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 23 pro 2019 00:08

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-12-2019
Ran by virtu (22-12-2019 23:55:43)
Running from C:\Users\virtu\OneDrive\Plocha
Windows 10 Pro Version 1909 18363.535 (X64) (2019-12-21 12:56:09)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-804298758-3085959810-179064716-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-804298758-3085959810-179064716-503 - Limited - Disabled)
Guest (S-1-5-21-804298758-3085959810-179064716-501 - Limited - Disabled)
virtu (S-1-5-21-804298758-3085959810-179064716-1001 - Administrator - Enabled) => C:\Users\virtu
WDAGUtilityAccount (S-1-5-21-804298758-3085959810-179064716-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Disabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Enabled - Up to date) {E3FDBD9F-8140-1400-F32B-8B58923F7C4D}
FW: Norton Security (Disabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}
FW: Norton Security (Enabled) {DBC63CBA-CB2F-1558-D874-226D6CEC3B36}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.52 - ASUSTeK Computer Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.10.16 - Advanced Micro Devices, Inc.)
ASUS GPU TweakII (HKLM-x32\...\{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.6.2.6 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.6.2.6 - ASUSTek COMPUTER INC.)
ASUS Product Register Program (HKLM-x32\...\{54716EA9-F8B4-41E0-801B-9909164F2024}) (Version: 1.1.001 - ASUSTek Computer Inc.)
Balanced (HKLM-x32\...\{0EA45DD4-A825-420C-AFED-C659EFE3B84F}) (Version: 4.00.0000 - Advanced Micro Devices, Inc.) Hidden
Core Temp 1.15.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15.1 - ALCPU)
Discord (HKU\S-1-5-21-804298758-3085959810-179064716-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.50 - Janos Mathe)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-804298758-3085959810-179064716-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Norton Security (HKLM-x32\...\NGC) (Version: 22.19.9.63 - Symantec Corporation)
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Opera Stable 65.0.3467.78 (HKU\S-1-5-21-804298758-3085959810-179064716-1001\...\Opera 65.0.3467.78) (Version: 65.0.3467.78 - Opera Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.31.828.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8666 - Realtek Semiconductor Corp.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.7.0 - Sophos Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
WhoCrashed 6.65 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
XSplit Gamecaster (HKLM-x32\...\{8915913F-E4AF-46C5-B4EF-3535D83BFFDE}) (Version: 2.5.1507.3018 - SplitmediaLabs)
Zemana AntiMalware verze 3.1.495 (HKLM-x32\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.1.495 - Zemana)

Packages:
=========
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.19.10006.0_x64__0a9344xs7nr4m [2019-12-21] (Advanced Micro Devices Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.4.4.0_x86__kgqvnymyfvs32 [2019-12-21] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.27.6.0_x86__kgqvnymyfvs32 [2019-12-21] (king.com)
DTS Custom for Asus -> C:\Program Files\WindowsApps\DTSInc.DTSCustomforAsus_1.1.13.0_x64__t5j2fzbtdg37r [2019-12-21] (DTS, Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-21] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-21] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.174.0_x64__dt26b99r8h8gj [2019-12-21] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0 [2019-12-21] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2019-11-04] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll -> No File
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2019-11-04] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll -> No File
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-12-21 15:15 - 2019-05-22 17:30 - 000882688 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2019-12-21 15:15 - 2019-05-22 17:30 - 000991744 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2019-12-21 15:15 - 2019-05-22 17:30 - 000948224 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2019-12-21 15:15 - 2019-05-14 09:45 - 006065152 ____R () [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.77\libprotobufd.dll
2018-05-16 15:25 - 2018-05-16 15:25 - 000155688 _____ (AMD PMP-PE CB Code Signer v20180327 -> Advanced Micro Devices, Inc.) [File not signed] C:\Windows\SYSTEM32\amdihk64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-12-22 21:07 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-804298758-3085959810-179064716-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\virtu\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1E535194-9A80-46B7-9A77-13016164A28A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FFE6078F-B598-46CC-8583-D2982EEC3676}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{37DE5A63-C16B-4FBD-90A5-94E010744FB1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A785384A-C93B-4B0A-895D-853970A57D37}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{55683872-2EBC-4A42-AE65-F3379394F932}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8D1AF9EF-B244-412C-95D1-0B70D2A6C83A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{814DBEE7-2614-4842-AE72-83101EDCA1D3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F726FF57-469A-4B06-93D8-54A371076BDF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{A3556855-0187-467C-9E15-6F8CE26C7610}C:\users\virtu\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\virtu\appdata\local\programs\opera\65.0.3467.78\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{892EA559-289D-432B-A3C5-650A2D137CCB}C:\users\virtu\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\virtu\appdata\local\programs\opera\65.0.3467.78\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{6E765B2D-2E7F-474B-9B14-5CFCF86BDBE0}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{FC49D99A-DB0A-449F-BC4F-FFDFA26EE1BA}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A2FE305A-F59F-4650-8BC7-B3270EEE1B4F}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1078AD1E-DCA9-4E31-B50B-DEB620C81B6F}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{AA03BDD0-F451-48B9-BCCE-696109E56473}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
FirewallRules: [{E5A2207A-86A8-43C7-8E27-AD5B3193A66C}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
FirewallRules: [{4DAF8204-80E4-49F8-B250-EE7FE87CD52E}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{34BB0F9C-B73A-4B96-83D6-F311395CED50}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)

==================== Restore Points =========================

21-12-2019 14:55:59 Instalováno Realtek High Definition Audio Driver
22-12-2019 16:20:07 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
22-12-2019 20:28:55 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/22/2019 11:46:49 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (12/22/2019 11:46:49 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (12/22/2019 09:06:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DaS_21.exe, verze: 2.1.0.4, časové razítko: 0x540c90b2
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.18362.535, časové razítko: 0x50cc8d5a
Kód výjimky: 0xe0434352
Posun chyby: 0x000000000003a839
ID chybujícího procesu: 0x2494
Čas spuštění chybující aplikace: 0x01d5b90359c09d12
Cesta k chybující aplikaci: C:\Users\virtu\AppData\Local\Temp\DaS_21.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 2f356b09-49d2-4e7f-b119-bc1bb01b88fa
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/22/2019 09:06:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: DaS_21.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ArgumentOutOfRangeException
na System.String.Substring(Int32, Int32)
na DriverAndServicesOut.GetProcess.GetPathName(System.String)
na DriverAndServicesOut.GetProcess.GetAllServices(System.String)
na DriverAndServicesOut.Program.Main(System.String[])

Error: (12/22/2019 09:06:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: pcalua.exe, verze: 10.0.18362.449, časové razítko: 0xaf5d9e5c
Název chybujícího modulu: CoreMessaging.dll, verze: 10.0.18362.1, časové razítko: 0x101a45b8
Kód výjimky: 0xc00001ad
Posun chyby: 0x000000000006a901
ID chybujícího procesu: 0x2dd0
Čas spuštění chybující aplikace: 0x01d5b9034ef79734
Cesta k chybující aplikaci: C:\Windows\system32\pcalua.exe
Cesta k chybujícímu modulu: C:\Windows\System32\CoreMessaging.dll
ID zprávy: 6cd0a1e4-1b97-4536-9ae0-406c22f5f161
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/22/2019 09:06:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: zoek.exe, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.18362.535, časové razítko: 0x5bd9df62
Kód výjimky: 0xc0000409
Posun chyby: 0x001135d2
ID chybujícího procesu: 0x1b6c
Čas spuštění chybující aplikace: 0x01d5b9033ea721b6
Cesta k chybující aplikaci: C:\Users\virtu\OneDrive\Plocha\zoek.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 48ad9b74-7e9e-4cc6-88f9-16a20020263e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/22/2019 08:45:40 PM) (Source: MsiInstaller) (EventID: 11606) (User: DESKTOP-2GO46T4)
Description: Product: Sophos Virus Removal Tool -- Error 1606.Could not access network location data.

Error: (12/22/2019 08:45:38 PM) (Source: MsiInstaller) (EventID: 11606) (User: DESKTOP-2GO46T4)
Description: Product: Sophos Virus Removal Tool -- Error 1606.Could not access network location data.


System errors:
=============
Error: (12/22/2019 11:47:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MBAMService neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (12/22/2019 10:17:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MBAMService neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (12/22/2019 10:17:18 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-2GO46T4)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru:
{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (12/22/2019 10:17:18 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-2GO46T4)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru:
{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (12/22/2019 10:17:18 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-2GO46T4)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru:
{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (12/22/2019 10:17:18 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-2GO46T4)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby ShellHWDetection s argumenty Není k dispozici za účelem spuštění serveru:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (12/22/2019 10:17:18 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-2GO46T4)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru:
{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (12/22/2019 10:16:51 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-2GO46T4)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby ShellHWDetection s argumenty Není k dispozici za účelem spuštění serveru:
{DD522ACC-F821-461A-A407-50B198B896DC}


CodeIntegrity:
===================================

Date: 2019-12-22 23:53:56.250
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2019-12-22 23:53:51.989
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2019-12-22 23:50:18.889
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2019-12-22 23:50:18.884
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2019-12-22 23:50:18.880
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2019-12-22 23:50:18.875
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2019-12-22 23:50:18.870
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2019-12-22 23:50:18.863
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1820 09/12/2019
Motherboard: ASUSTeK COMPUTER INC. TUF B450-PRO GAMING
Processor: AMD Ryzen 7 2700 Eight-Core Processor
Percentage of memory in use: 15%
Total physical RAM: 16309.61 MB
Available physical RAM: 13718.21 MB
Total Virtual: 19253.61 MB
Available Virtual: 15233.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.95 GB) (Free:179.28 GB) NTFS
Drive e: () (Fixed) (Total:931.51 GB) (Free:877.81 GB) NTFS

\\?\Volume{e8de44b3-b550-4cd4-945b-912bb4a9d5ec}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{f425972a-30b8-4741-8f2d-65fee57dac7a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: CED3B43C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 23 pro 2019 00:09

prvně jo pak jsem si toho všiml
B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 23 pro 2019 22:28

Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dumps are enabled on your computer.

Crash dump directories:
C:\Windows
C:\Windows\Minidump

On Mon 23.12.2019 22:14:23 your computer crashed or a problem was reported
crash dump file: C:\Windows\Minidump\122319-9125-01.dmp
This was probably caused by the following module: idsvia64.sys (0xFFFFF8015E06E9E8)
Bugcheck code: 0xBE (0xFFFFF8015E06E9E8, 0x890000040DCF2121, 0xFFFFF8015D06E7D0, 0xA)
Error: ATTEMPTED_WRITE_TO_READONLY_MEMORY
file path: C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\IPSDefs\20191223.061\IDSvia64.sys
product: Symantec Intrusion Detection
company: Symantec Corporation
description: IDS Core Driver
Bug check description: This is issued if a driver attempts to write to a read-only memory segment.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: idsvia64.sys (IDS Core Driver, Symantec Corporation).
Google query: idsvia64.sys Symantec Corporation ATTEMPTED_WRITE_TO_READONLY_MEMORY



On Mon 23.12.2019 22:14:23 your computer crashed or a problem was reported
crash dump file: C:\Windows\MEMORY.DMP
This was probably caused by the following module: idsvia64.sys (0xFFFFF8015E06E9E8)
Bugcheck code: 0xBE (0xFFFFF8015E06E9E8, 0x890000040DCF2121, 0xFFFFF8015D06E7D0, 0xA)
Error: ATTEMPTED_WRITE_TO_READONLY_MEMORY
file path: C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\IPSDefs\20191223.061\IDSvia64.sys
product: Symantec Intrusion Detection
company: Symantec Corporation
description: IDS Core Driver
Bug check description: This is issued if a driver attempts to write to a read-only memory segment.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: idsvia64.sys (IDS Core Driver, Symantec Corporation).
Google query: idsvia64.sys Symantec Corporation ATTEMPTED_WRITE_TO_READONLY_MEMORY
B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40419
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod jaro3 » 25 pro 2019 19:27

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O1 - Hosts: ::1 localhost


Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
SearchScopes: HKU\S-1-5-21-804298758-3085959810-179064716-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-804298758-3085959810-179064716-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
S3 AtiDCM; C:\Users\virtu\AppData\Local\Temp\atdcm64a.sys [51104 2016-07-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) <==== ATTENTION
C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll -> No File

HOSTS:
EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

C:\Users\virtu\Downloads\5bc3098d-63f7-4b78-88a6-b8e84d0b97bf.tmp tohle znáš?

is was probably caused by the following module: atikmdag.sys (0xFFFFF8066B35C03F)
Bugcheck code: 0x1E (0xFFFFFFFF80000003, 0xFFFFF8066B35C03F, 0x0, 0xFFFFF8065F66EAB8)
Error: KMODE_EXCEPTION_NOT_HANDLED
file path: C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atikmdag.sys
product: ATI Radeon Family
company: Advanced Micro Devices, Inc.
description: ATI Radeon Kernel Mode Driver

This was probably caused by the following module: usbxhci.sys (0xFFFFF80560DA84FD)
Bugcheck code: 0x1E (0xFFFFFFFFC0000005, 0xFFFFF80560DA84FD, 0x0, 0xFFFFFFFFFFFFFFFF)
Error: KMODE_EXCEPTION_NOT_HANDLED
file path: C:\Windows\system32\drivers\usbxhci.sys
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: USB XHCI Driver

This was probably caused by the following module: fltmgr.sys (0xFFFFF80738CE91C0)
Bugcheck code: 0x3B (0xC0000005, 0xFFFFF80738CE91C0, 0xFFFF868AD12D0540, 0x0)
Error: SYSTEM_SERVICE_EXCEPTION
file path: C:\Windows\system32\drivers\fltmgr.sys
product: Operační systém Microsoft® Windows®
company: Microsoft Corporation
description: Microsoft Filesystem Filter Manager
atikmdag.sys (ATI Radeon Kernel Mode Driver, Advanced Micro Devices, Inc.)

This was probably caused by the following module: idsvia64.sys (0xFFFFF8015E06E9E8)
Bugcheck code: 0xBE (0xFFFFF8015E06E9E8, 0x890000040DCF2121, 0xFFFFF8015D06E7D0, 0xA)
Error: ATTEMPTED_WRITE_TO_READONLY_MEMORY
file path: C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\IPSDefs\20191223.061\IDSvia64.sys
product: Symantec Intrusion Detection
company: Symantec Corporation
description: IDS Core Driver


C:\Windows\Minidump zkopíruj složku , zararuj a někam pošli.

BSOD , nejprve zkontroluj , aktualizuj ovladače pro grafickou kartu.
Pak reinstall Nortona , aktualizace windows , usb driver..
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 09 led 2020 14:05

Fix result of Farbar Recovery Scan Tool (x64) Version: 08-01-2020
Ran by virtu (09-01-2020 13:54:48) Run:1
Running from C:\Users\virtu\Desktop
Loaded Profiles: virtu (Available Profiles: virtu)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
SearchScopes: HKU\S-1-5-21-804298758-3085959810-179064716-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-804298758-3085959810-179064716-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
S3 AtiDCM; C:\Users\virtu\AppData\Local\Temp\atdcm64a.sys [51104 2016-07-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) <==== ATTENTION
C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll -> No File

HOSTS:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
"HKU\S-1-5-21-804298758-3085959810-179064716-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => not found
"HKU\S-1-5-21-804298758-3085959810-179064716-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => not found
HKLM\SOFTWARE\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif => removed successfully
AtiDCM => service not found.
C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MBAMShlExt => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE => removed successfully
HKLM\Software\Classes\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000} => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\MBAMShlExt => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 7626752 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 66690233 B
Java, Flash, Steam htmlcache => 114166037 B
Windows/system/drivers => 8705663 B
Edge => 2193312 B
Chrome => 0 B
Firefox => 0 B
Opera => 355117545 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 7088 B
LocalService => 171292 B
NetworkService => 173174 B
virtu => 6113779 B

RecycleBin => 0 B
EmptyTemp: => 535 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 13:55:08 ====
B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W

Pedrossos
Level 3
Level 3
Příspěvky: 440
Registrován: červen 18
Bydliště: Brno-venkov
Pohlaví: Muž

Re: Prosím o kontrolu

Příspěvekod Pedrossos » 09 led 2020 14:11

po updatu biosu spousta problémů zmizela, ale kody tipu 0x0000005 hází + zamrzává modrou obrazovkou + chyba. u grafické jsem přeinstaloval ovládače 3x zkusím jedině ještě jedni. bios tak jedině zkusit předchozí verzi. co mě ještě napadá, že to můžou dělat sluchátka
windows update aktuální
taky je dost pravděpodobné, že to dělá grafická půjde na reklamaci
B450-pro gaming,Ryzen 7 2700,Kingston 16GB DDR4 3200MHZ,ASUS Radeon EX-RX570-O4G, 4GB GDDR5,Zdroj:LC Power LC6600-v2.2 Black Giant Silent 600W


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 14 hostů