napadený email Vyřešeno

[jaro3]

Vypni antivir i firewall.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
další odkaz:
http://www.bleepingcomputer.com/downloa ... scan-tool/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[Reklama]

[solangei]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-06-2020
Ran by admin (administrator) on DESKTOP-4MOS8SQ (LENOVO 10AGS17E00) (29-06-2020 11:39:49)
Running from C:\Users\admin\Downloads
Loaded Profiles: admin
Platform: Windows 10 Pro Version 1909 18363.900 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adlice -> ) C:\Program Files\RogueKiller\RogueKiller64.exe
(Adlice -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe
(G5 Entertainment AB) C:\Program Files\WindowsApps\828B5831.JewelsoftheWildWest_1.2.200.0_x86__ytsefhwckbdv6\JoWW.uwp_x86.exe
(Intel Corporation - pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpEng.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Users\admin\AppData\Local\Mozilla Firefox\firefox.exe <7>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)


==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {3778A076-5C3A-40F7-B3D9-B2ACD45C3F4F} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [659520 2019-11-04] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {3EF1071A-1ABE-4402-8B09-7EF4A15EF59E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-10] (Adobe Inc. -> Adobe)
Task: {41A96F3D-E2E1-4C3D-BFDD-3B091862C173} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16412952 2015-09-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {773380FA-8805-4052-A69D-DD755895E6C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7F8525B8-CD2E-468E-9022-3D7AE79F6D90} - System32\Tasks\Mozilla\Firefox Default Browser Agent DA2FE8B66C1530AD => C:\Users\admin\AppData\Local\Mozilla Firefox\default-browser-agent.exe [124624 2020-06-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {9A24B597-BFC6-4623-96C1-35F974E5F19F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C8AB9824-5E89-43FB-AA6A-0BA26AC6DCA3} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-10] (Adobe Inc. -> Adobe)
Task: {CA4EE3E6-5500-45DB-8F6C-6C1E8E6F907C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D9BAE5FA-0D42-4241-9A16-25B9BAA9FD19} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EDC03A67-8110-42C2-94A5-AF043D6BA4C2} - System32\Tasks\RtHDVBg_LENOVO_MICPKEY => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1413384 2015-09-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{bbbad210-d507-420b-900f-23853ed7f093}: [DhcpNameServer] 192.168.8.1 192.168.8.1

Internet Explorer:
==================

Edge:
======
Edge Profile: C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-29]

FireFox:
========
FF DefaultProfile: rk8g4qex.default
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\rk8g4qex.default [2020-01-17]
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\ybr5fh63.default-release [2020-06-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-10] (Adobe Inc. -> )

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-10] (Adobe Inc. -> Adobe)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [363440 2015-11-20] (Intel Corporation - pGFX -> Intel Corporation)
R2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13570104 2020-06-17] (Adlice -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\NisSrv.exe [2484256 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MsMpEng.exe [103168 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 amsdk; C:\Windows\system32\drivers\amsdk.sys [232792 2020-06-26] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [231936 2019-10-07] (Microsoft Corporation) [File not signed] [File is in use]
R3 LBAI; C:\Windows\System32\Drivers\LBAI.sys [30432 2017-04-29] (Lenovo -> Lenovo)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2020-06-26] (Adlice -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45960 2020-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [401120 2020-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [64224 2020-06-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-06-29 11:39 - 2020-06-29 11:41 - 000008654 _____ C:\Users\admin\Downloads\FRST.txt
2020-06-29 11:39 - 2020-06-29 11:40 - 000000000 ____D C:\FRST
2020-06-29 11:38 - 2020-06-29 11:38 - 002291712 _____ (Farbar) C:\Users\admin\Downloads\FRST64.exe
2020-06-26 13:07 - 2020-06-26 13:07 - 000000000 ____D C:\Users\admin\AppData\Local\PeerDistRepub
2020-06-26 09:09 - 2020-06-29 11:40 - 002333127 _____ C:\Windows\ZAM.krnl.trace
2020-06-26 09:09 - 2020-06-26 09:09 - 000232792 _____ (Copyright 2018.) C:\Windows\system32\Drivers\amsdk.sys
2020-06-26 09:09 - 2020-06-26 09:09 - 000003558 _____ C:\Windows\system32\Tasks\AMHelper
2020-06-26 09:09 - 2020-06-26 09:09 - 000001329 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2020-06-26 09:09 - 2020-06-26 09:09 - 000000000 ____D C:\Users\admin\AppData\Local\Zemana
2020-06-26 09:09 - 2020-06-26 09:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2020-06-26 09:09 - 2020-06-26 09:09 - 000000000 ____D C:\Program Files (x86)\Zemana
2020-06-26 09:08 - 2020-06-26 09:29 - 000000000 ____D C:\Users\admin\AppData\Local\AMSDK
2020-06-26 09:05 - 2020-06-26 09:05 - 000038032 _____ C:\Windows\system32\Drivers\truesight.sys
2020-06-26 08:55 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2020-06-26 08:44 - 2020-06-26 08:44 - 000000000 ____D C:\zoek_backup
2020-06-26 08:43 - 2020-06-26 08:43 - 002038755 _____ C:\Users\admin\Downloads\zoek.exe
2020-06-26 08:32 - 2020-06-26 08:32 - 012741568 _____ (Zemana Ltd. ) C:\Users\admin\Downloads\AntiMalware_Setup.exe
2020-06-25 10:15 - 2020-06-26 09:05 - 000000000 ____D C:\Users\admin\AppData\Local\CrashDumps
2020-06-25 07:36 - 2020-06-25 07:36 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2020-06-25 07:36 - 2020-06-25 07:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-06-25 07:36 - 2020-06-25 07:36 - 000000000 ____D C:\Program Files\RogueKiller
2020-06-25 07:35 - 2020-06-25 07:41 - 000000000 ____D C:\ProgramData\RogueKiller
2020-06-25 07:34 - 2020-06-25 07:35 - 040310320 _____ (Adlice Software ) C:\Users\admin\Downloads\RogueKiller_setup.exe
2020-06-25 07:32 - 2020-06-25 07:33 - 000000037 _____ C:\Users\admin\Downloads\file-not-found.txt
2020-06-25 06:36 - 2020-06-25 06:36 - 000000000 ____D C:\ProgramData\Sophos
2020-06-25 06:35 - 2020-06-25 06:35 - 000002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2020-06-25 06:35 - 2020-06-25 06:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2020-06-25 06:35 - 2020-06-25 06:35 - 000000000 ____D C:\Program Files (x86)\Sophos
2020-06-25 06:32 - 2020-06-25 06:34 - 206758184 _____ (Sophos Limited) C:\Users\admin\Downloads\Sophos Virus Removal Tool.exe
2020-06-25 06:30 - 2020-06-25 06:30 - 000001672 _____ C:\Users\admin\Documents\mbam1.txt
2020-06-25 06:26 - 2020-06-25 06:26 - 000000553 _____ C:\Users\admin\Desktop\JRT.txt
2020-06-25 06:22 - 2020-06-25 06:22 - 001790024 _____ (Malwarebytes) C:\Users\admin\Downloads\JRT.exe
2020-06-24 12:55 - 2020-06-24 12:55 - 000001744 _____ C:\Users\admin\Desktop\Mbam.txt
2020-06-24 12:50 - 2020-06-24 12:50 - 000000000 ____D C:\Users\admin\AppData\Local\mbam
2020-06-24 12:49 - 2020-06-24 12:49 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-06-24 12:49 - 2020-06-24 12:49 - 000000000 ____D C:\Malwarebytes
2020-06-24 12:41 - 2020-06-24 12:43 - 000000000 ____D C:\AdwCleaner
2020-06-24 12:04 - 2020-06-24 12:04 - 008402608 _____ (Malwarebytes) C:\Users\admin\Downloads\AdwCleaner.exe
2020-06-24 12:03 - 2020-06-24 12:03 - 000448512 _____ (OldTimer Tools) C:\Users\admin\Downloads\TFC.exe
2020-06-24 12:02 - 2020-06-24 12:02 - 000050688 _____ (Atribune.org) C:\Users\admin\Downloads\ATF-Cleaner.exe
2020-06-23 15:20 - 2020-06-23 15:20 - 000388608 _____ (Trend Micro Inc.) C:\Users\admin\Downloads\hijackthis.exe
2020-06-23 11:35 - 2020-06-23 11:35 - 000010001 _____ C:\Users\admin\Downloads\kontakty.vcf
2020-06-19 13:24 - 2020-06-19 13:24 - 000000000 ___HD C:\$SysReset
2020-06-11 12:22 - 2020-06-11 12:22 - 025902080 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 019851776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 019812864 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 018029056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 011608064 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 009712640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 008015360 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 007760384 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 007268864 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 007012864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 006526448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 006292480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 006091048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 005909504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 005765144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 005195432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 005111808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 005004344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 004610560 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 003822592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 003525608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 003515392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 003398656 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 002831872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 002798592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-06-11 12:22 - 2020-06-11 12:22 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-06-11 12:22 - 2020-06-11 12:22 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-06-11 12:22 - 2020-06-11 12:22 - 002583496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 002494744 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 002281472 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 002230240 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 002204160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 002190648 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 002184504 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001803776 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 001704448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001654960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001539072 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 001497400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001416224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001410048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 001397560 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 001348096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001344512 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001316352 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001284608 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001272160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001215488 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 001193984 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001151824 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001138688 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001099608 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001077048 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 001066496 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001055184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 001012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000994304 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000992256 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000982016 _____ (Microsoft Corporation) C:\Windows\system32\tapi3.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000971264 _____ (Microsoft Corporation) C:\Windows\system32\dsregcmd.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000940544 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000932352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000920064 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000897536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000894024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000892416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowsperformancerecordercontrol.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000868352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi3.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000843776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000832512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000783496 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000782336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000747832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000740664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DismApi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000705536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000694784 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000692224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000690176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkObjCore.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000684856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000674304 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000668672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000651776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000640000 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000638464 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000632320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000628408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000619008 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000593424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000588800 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000575488 _____ (Microsoft® Windows® Operating System) C:\Windows\system32\wvc.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000574464 _____ (Microsoft Corporation) C:\Windows\system32\msTextPrediction.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000572200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000569856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000567808 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2020-06-11 12:22 - 2020-06-11 12:22 - 000564736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000564496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StateRepository.Core.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000549376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000529920 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000529920 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000526336 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000522240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000516544 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000513536 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000508720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000508216 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2020-06-11 12:22 - 2020-06-11 12:22 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000498176 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000490496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.FileExplorer.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000484864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000478208 _____ (Microsoft® Windows® Operating System) C:\Windows\SysWOW64\wvc.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000477184 _____ (Microsoft Corporation) C:\Windows\system32\SharedRealitySvc.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000466944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll

[solangei]

2020-06-11 12:22 - 2020-06-11 12:22 - 000464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmscan.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000462848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000462848 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000453944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000451864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000430592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000430592 _____ (Microsoft Corporation) C:\Windows\system32\WalletService.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000426496 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000423424 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000422400 _____ (Microsoft Corporation) C:\Windows\system32\mswmdm.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000407864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000405936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000398336 _____ (Microsoft Corporation) C:\Windows\system32\WlanMM.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000398336 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000391680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000384512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000380728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000361472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\termmgr.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassdo.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswmdm.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000342528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Feedback.Analog.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000338944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000325120 _____ (Microsoft Corporation) C:\Windows\system32\rdpviewerax.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-06-11 12:22 - 2020-06-11 12:22 - 000323584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000306688 _____ (Microsoft Corporation) C:\Windows\system32\RASMM.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlanMM.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\CXHProvisioningServer.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Preview.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000283136 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpviewerax.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000260096 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000259584 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2020-06-11 12:22 - 2020-06-11 12:22 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\FileHistory.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000230912 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wavemsp.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000223544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Dism.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000211256 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2020-06-11 12:22 - 2020-06-11 12:22 - 000204008 _____ (Microsoft Corporation) C:\Windows\system32\SecurityCenterBroker.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000199992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000199168 _____ (Microsoft Corporation) C:\Windows\system32\wmidx.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000196096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psr.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000193592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000190048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000184320 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000183808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000170496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000166912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000165192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NPSM.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000150328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidx.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\imapi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrecst.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000130112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\wkspbrokerAx.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaatext.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000114688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000107520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasnap.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000099712 _____ (Microsoft Corporation) C:\Windows\system32\FsIso.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkspbrokerAx.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000093448 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000090952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000089344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\WwanRadioManager.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2020-06-11 12:22 - 2020-06-11 12:22 - 000083600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2020-06-11 12:22 - 2020-06-11 12:22 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000065024 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasads.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollCtrl.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000041864 _____ (Microsoft Corporation) C:\Windows\system32\SecurityCenterBrokerPS.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2020-06-11 12:22 - 2020-06-11 12:22 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryCore.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000028368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SecurityCenterBrokerPS.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-06-11 12:22 - 2020-06-11 12:22 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-06-11 12:21 - 2020-06-11 12:21 - 009931576 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 007911176 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 007604592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 007266080 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 006435840 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 006066808 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 005283264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 004565248 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 004012032 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 003726848 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-06-11 12:21 - 2020-06-11 12:21 - 003712000 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 003581240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-06-11 12:21 - 2020-06-11 12:21 - 003368104 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 003187200 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-06-11 12:21 - 2020-06-11 12:21 - 002656256 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 002289664 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 002235520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001942528 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001919488 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001751040 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001743680 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001683968 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001657856 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001649152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\TaskFlowDataEngine.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001583104 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001486336 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 001466368 _____ (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001447424 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 001393952 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001283072 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001274128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryPS.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001261568 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001260744 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001180672 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001158144 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001155944 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 001153024 _____ (Microsoft Corporation) C:\Windows\system32\windowsperformancerecordercontrol.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001100288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001073664 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001007104 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 001003832 _____ (Microsoft Corporation) C:\Windows\system32\DismApi.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000932256 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000931840 _____ (Microsoft Corporation) C:\Windows\system32\InkObjCore.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000929280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000899584 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000892048 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000881664 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000874296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-06-11 12:21 - 2020-06-11 12:21 - 000863232 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000826368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000797464 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000784896 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000777216 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000760296 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000736768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000722072 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000716320 _____ (Microsoft Corporation) C:\Windows\system32\StateRepository.Core.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000716288 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000696832 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000679424 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000650752 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000648192 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000614400 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000561464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-06-11 12:21 - 2020-06-11 12:21 - 000557056 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-06-11 12:21 - 2020-06-11 12:21 - 000548984 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000544256 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000533504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000531768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2020-06-11 12:21 - 2020-06-11 12:21 - 000518456 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000467952 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000461112 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000441152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-06-11 12:21 - 2020-06-11 12:21 - 000440832 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000427008 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000425056 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000394752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Preview.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000357176 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\wpr.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2020-06-11 12:21 - 2020-06-11 12:21 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000280376 _____ (Microsoft Corporation) C:\Windows\system32\Dism.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000269312 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000264192 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000259776 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000247856 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\psr.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000221496 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000218624 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000209216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryUpgrade.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\NPSM.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000201528 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SIUF.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000179512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2020-06-11 12:21 - 2020-06-11 12:21 - 000165888 _____ (Microsoft Corporation) C:\Windows\system32\msaatext.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000165832 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000165296 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000132608 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000132424 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000129600 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\NetworkStatus.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000128312 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000108856 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\atl.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000080384 _____ (Microsoft Corporation) C:\Windows\system32\RpcEpMap.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\WlanRadioManager.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\XboxGipRadioManager.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollCtrl.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000063288 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthHost.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\NfcRadioMedia.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnosticsTool.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryCore.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WiFiConfigSP.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\atlthunk.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2020-06-11 12:21 - 2020-06-11 12:21 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
2020-06-11 12:21 - 2020-06-11 12:21 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-06-11 12:05 - 2020-05-15 06:29 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-06-11 12:05 - 2020-05-15 06:10 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-06-05 11:34 - 2020-06-05 11:34 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-06-05 05:11 - 2020-06-29 05:17 - 000000000 ____D C:\Users\admin\AppData\Local\Mozilla Firefox
2020-06-04 19:15 - 2020-06-26 03:32 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-06-04 19:15 - 2020-06-26 03:32 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-06-04 19:14 - 2020-06-05 06:25 - 000003584 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-06-04 19:14 - 2020-06-05 06:25 - 000003460 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-06-29 11:26 - 2020-01-17 07:31 - 000000000 ____D C:\Users\admin\AppData\LocalLow\Mozilla
2020-06-29 11:20 - 2020-01-15 11:10 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-06-26 15:00 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-06-26 15:00 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\AppReadiness
2020-06-26 11:27 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-26 09:10 - 2020-01-15 12:21 - 001606106 _____ C:\Windows\system32\PerfStringBackup.INI
2020-06-26 09:10 - 2019-03-19 13:57 - 000682526 _____ C:\Windows\system32\perfh005.dat
2020-06-26 09:10 - 2019-03-19 13:57 - 000137244 _____ C:\Windows\system32\perfc005.dat
2020-06-26 09:10 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2020-06-26 09:05 - 2020-01-15 12:26 - 000000000 __SHD C:\Users\admin\IntelGraphicsProfiles
2020-06-26 09:05 - 2020-01-15 12:25 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-06-26 09:05 - 2020-01-15 11:10 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-26 09:04 - 2019-03-19 06:37 - 000786432 _____ C:\Windows\system32\config\BBI
2020-06-26 08:42 - 2019-03-19 06:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-06-24 12:15 - 2020-01-15 12:45 - 000000000 ____D C:\Users\admin\AppData\Local\Comms
2020-06-23 15:21 - 2020-01-15 12:24 - 000000000 ____D C:\Users\admin\AppData\Local\VirtualStore
2020-06-23 07:50 - 2020-01-15 12:29 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3168585951-1444420032-809439648-1001
2020-06-23 07:50 - 2020-01-15 12:29 - 000000000 ___RD C:\Users\admin\OneDrive
2020-06-23 07:50 - 2020-01-15 12:24 - 000002361 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-06-20 08:51 - 2020-01-15 12:30 - 000000000 ____D C:\Users\admin\AppData\Local\PlaceholderTileLogoFolder
2020-06-20 08:51 - 2020-01-15 12:25 - 000000000 ____D C:\Users\admin\AppData\Local\Publishers
2020-06-20 08:51 - 2020-01-15 12:24 - 000000000 ____D C:\Users\admin\AppData\Local\Packages
2020-06-20 08:44 - 2020-01-15 12:24 - 000000000 ____D C:\Users\admin\AppData\Local\ConnectedDevicesPlatform
2020-06-11 13:19 - 2020-01-15 12:24 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-06-11 13:19 - 2020-01-15 12:24 - 000000000 ___RD C:\Users\admin\3D Objects
2020-06-11 13:18 - 2020-01-15 11:10 - 000258096 _____ C:\Windows\system32\FNTCACHE.DAT
2020-06-11 13:16 - 2019-03-19 13:59 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-06-11 13:16 - 2019-03-19 13:59 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ___SD C:\Windows\SysWOW64\F12
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ___SD C:\Windows\system32\F12
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\Com
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SystemResources
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\oobe
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\Dism
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\Com
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-06-11 13:16 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\bcastdvr
2020-06-11 12:27 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\CbsTemp
2020-06-11 12:21 - 2020-01-15 11:13 - 002876416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-06-10 06:09 - 2020-01-17 16:15 - 000004612 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-06-10 06:09 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-10 06:09 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-05 23:03 - 2020-02-12 23:48 - 000835480 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-06-05 23:03 - 2020-02-12 23:48 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-05 11:34 - 2020-01-17 07:31 - 000001273 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-06-04 05:14 - 2020-01-15 11:11 - 000000000 ____D C:\Windows\system32\Drivers\wd

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[solangei]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2020
Ran by admin (29-06-2020 11:46:17)
Running from C:\Users\admin\Downloads
Windows 10 Pro Version 1909 18363.900 (X64) (2020-01-15 10:18:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

admin (S-1-5-21-3168585951-1444420032-809439648-1001 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-3168585951-1444420032-809439648-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3168585951-1444420032-809439648-503 - Limited - Disabled)
Guest (S-1-5-21-3168585951-1444420032-809439648-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3168585951-1444420032-809439648-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4326 - Intel Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.56 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - )
Microsoft OneDrive (HKU\S-1-5-21-3168585951-1444420032-809439648-1001\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Mozilla Firefox 77.0.1 (x64 cs) (HKU\S-1-5-21-3168585951-1444420032-809439648-1001\...\Mozilla Firefox 77.0.1 (x64 cs)) (Version: 77.0.1 - Mozilla)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7586 - Realtek Semiconductor Corp.)
RogueKiller version 14.6.1.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.6.1.0 - Adlice Software)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.7.0 - Sophos Limited)
Zemana AntiMalware verze 3.1.495 (HKLM-x32\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.1.495 - Zemana)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-17] (Microsoft Corporation)
Hotspot Shield Free VPN -> C:\Program Files\WindowsApps\6F71D7A7.HotspotShieldFreeVPN_2.5.2.0_x64__nsbqstbb9qxb6 [2020-01-15] (AnchorFree Inc.)
Jewels of the Wild West: Match gems & restore the town -> C:\Program Files\WindowsApps\828B5831.JewelsoftheWildWest_1.2.200.0_x86__ytsefhwckbdv6 [2020-06-20] (G5 Entertainment AB)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-01-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-01-15] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.11.6020.0_x64__8wekyb3d8bbwe [2020-06-09] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.96.725.0_x64__mcm4njqhnhss8 [2020-04-12] (Netflix, Inc.)
Sketchable -> C:\Program Files\WindowsApps\SiliconBendersLLC.Sketchable_5.0.24.0_x64__r2kxzpx527qgj [2020-05-30] (Silicon Benders LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2019-11-04] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-11-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2019-11-04] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-06-20 08:50 - 2020-06-20 08:50 - 003696128 _____ () [File not signed] [File is in use] C:\Program Files\WindowsApps\828B5831.JewelsoftheWildWest_1.2.200.0_x86__ytsefhwckbdv6\828B5831.JewelsoftheWildWest.dll
2020-06-20 08:50 - 2020-06-20 08:50 - 000056832 _____ () [File not signed] [File is in use] C:\Program Files\WindowsApps\828B5831.JewelsoftheWildWest_1.2.200.0_x86__ytsefhwckbdv6\libEGL.uwp_x86.dll
2020-06-20 08:50 - 2020-06-20 08:50 - 000715264 _____ () [File not signed] [File is in use] C:\Program Files\WindowsApps\828B5831.JewelsoftheWildWest_1.2.200.0_x86__ytsefhwckbdv6\libGLESv2.uwp_x86.dll
2020-06-20 08:50 - 2020-06-20 08:51 - 000929792 _____ () [File not signed] [File is in use] C:\Program Files\WindowsApps\828B5831.JewelsoftheWildWest_1.2.200.0_x86__ytsefhwckbdv6\libKD.uwp_x86.dll
2020-06-20 08:50 - 2020-06-20 08:51 - 001393664 _____ () [File not signed] [File is in use] C:\Program Files\WindowsApps\828B5831.JewelsoftheWildWest_1.2.200.0_x86__ytsefhwckbdv6\winsdkfb.dll
2020-06-20 08:50 - 2020-06-20 08:50 - 001298944 _____ (Firelight Technologies) [File not signed] [File is in use] C:\Program Files\WindowsApps\828B5831.JewelsoftheWildWest_1.2.200.0_x86__ytsefhwckbdv6\fmod_X86.dll
2020-06-20 08:50 - 2020-06-20 08:50 - 000714752 _____ (Firelight Technologies) [File not signed] [File is in use] C:\Program Files\WindowsApps\828B5831.JewelsoftheWildWest_1.2.200.0_x86__ytsefhwckbdv6\fmodstudio_X86.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3168585951-1444420032-809439648-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{AC9AF802-2B7C-4067-90E0-D453377DAFDD}C:\users\admin\appdata\local\mozilla firefox\firefox.exe] => (Block) C:\users\admin\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{DAE50FB0-3DBE-403A-A792-555A6F165200}C:\users\admin\appdata\local\mozilla firefox\firefox.exe] => (Block) C:\users\admin\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

==================== Restore Points =========================

19-06-2020 13:52:13 Operace obnovení
25-06-2020 06:24:33 JRT Pre-Junkware Removal
26-06-2020 08:49:12 zoek.exe restore point

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/26/2020 09:05:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: igfxHK.exe, verze: 6.15.10.4326, časové razítko: 0x564a0be3
Název chybujícího modulu: igfxHK.exe, verze: 6.15.10.4326, časové razítko: 0x564a0be3
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000015953
ID chybujícího procesu: 0x1058
Čas spuštění chybující aplikace: 0x01d64b8831234a7c
Cesta k chybující aplikaci: C:\Windows\system32\igfxHK.exe
Cesta k chybujícímu modulu: C:\Windows\system32\igfxHK.exe
ID zprávy: 0a5cdef7-7065-4a44-a0ea-0fd074afcdff
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/26/2020 08:44:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: zoek.exe, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.18362.815, časové razítko: 0x67005c2a
Kód výjimky: 0xc0000409
Posun chyby: 0x00114402
ID chybujícího procesu: 0x1238
Čas spuštění chybující aplikace: 0x01d64b85302c7378
Cesta k chybující aplikaci: C:\Users\admin\Downloads\zoek.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 759068c6-c10f-41c1-948d-bb2764ae1044
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/26/2020 08:41:32 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (06/26/2020 08:03:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 77.0.1.7458, časové razítko: 0x5ed6e46e
Název chybujícího modulu: xul.dll, verze: 77.0.1.7458, časové razítko: 0x5ed6e1dd
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000285f452
ID chybujícího procesu: 0x2650
Čas spuštění chybující aplikace: 0x01d64b7304aa0f66
Cesta k chybující aplikaci: C:\Users\admin\AppData\Local\Mozilla Firefox\plugin-container.exe
Cesta k chybujícímu modulu: C:\Users\admin\AppData\Local\Mozilla Firefox\xul.dll
ID zprávy: e3d1c0db-29cd-46b5-9e52-70d27c1538e9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/25/2020 09:27:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 77.0.1.7458, časové razítko: 0x5ed6e46e
Název chybujícího modulu: xul.dll, verze: 77.0.1.7458, časové razítko: 0x5ed6e1dd
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000285f452
ID chybujícího procesu: 0x764
Čas spuštění chybující aplikace: 0x01d64b25f3d9d80d
Cesta k chybující aplikaci: C:\Users\admin\AppData\Local\Mozilla Firefox\plugin-container.exe
Cesta k chybujícímu modulu: C:\Users\admin\AppData\Local\Mozilla Firefox\xul.dll
ID zprávy: 1fc3e47a-fad3-4292-9c56-7f00fa913db9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/25/2020 09:22:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 77.0.1.7458, časové razítko: 0x5ed6e46e
Název chybujícího modulu: xul.dll, verze: 77.0.1.7458, časové razítko: 0x5ed6e1dd
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000285f0f2
ID chybujícího procesu: 0x1260
Čas spuštění chybující aplikace: 0x01d64b2512c3064f
Cesta k chybující aplikaci: C:\Users\admin\AppData\Local\Mozilla Firefox\plugin-container.exe
Cesta k chybujícímu modulu: C:\Users\admin\AppData\Local\Mozilla Firefox\xul.dll
ID zprávy: 7c4bac99-f3a9-418f-8037-36faefc545e8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/25/2020 06:14:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 77.0.1.7458, časové razítko: 0x5ed6e46e
Název chybujícího modulu: xul.dll, verze: 77.0.1.7458, časové razítko: 0x5ed6e1dd
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000285f0df
ID chybujícího procesu: 0x216c
Čas spuštění chybující aplikace: 0x01d64b0a464cdccb
Cesta k chybující aplikaci: C:\Users\admin\AppData\Local\Mozilla Firefox\plugin-container.exe
Cesta k chybujícímu modulu: C:\Users\admin\AppData\Local\Mozilla Firefox\xul.dll
ID zprávy: aa27f111-c668-4399-9e06-b3b24ed9c3f3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/25/2020 05:27:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 77.0.1.7458, časové razítko: 0x5ed6e46e
Název chybujícího modulu: xul.dll, verze: 77.0.1.7458, časové razítko: 0x5ed6e1dd
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000285f470
ID chybujícího procesu: 0x1e70
Čas spuštění chybující aplikace: 0x01d64b03ca336c6b
Cesta k chybující aplikaci: C:\Users\admin\AppData\Local\Mozilla Firefox\plugin-container.exe
Cesta k chybujícímu modulu: C:\Users\admin\AppData\Local\Mozilla Firefox\xul.dll
ID zprávy: 07c24e0f-0851-492e-9aea-8e4a5b4ff15e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (06/26/2020 09:04:19 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-4MOS8SQ)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_4245e s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (06/26/2020 09:04:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_4245e neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (06/26/2020 09:04:19 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_4245e bylo dosaženo časového limitu (30000 ms).

Error: (06/25/2020 06:16:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) HD Graphics Control Panel Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/24/2020 12:43:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) HD Graphics Control Panel Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/22/2020 08:27:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-4MOS8SQ)
Description: Server microsoft.windowscommunicationsapps_16005.12827.20400.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/11/2020 03:58:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-4MOS8SQ)
Description: Server microsoft.windowscommunicationsapps_16005.12827.20290.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/11/2020 03:57:54 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-4MOS8SQ)
Description: Server 4DF9E0F8.Netflix_6.96.725.0_x64__mcm4njqhnhss8!Netflix.App.AppX5pc7brg014reh5jmy9aek351wvkx5hkm.wwa se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2020-06-29 11:34:19.320
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Wacatac.D9!ml
ID: 2147757788
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\admin\Downloads\FRST.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-4MOS8SQ\admin
Název procesu: C:\Users\admin\AppData\Local\Mozilla Firefox\firefox.exe
Verze bezpečnostních informací: AV: 1.319.375.0, AS: 1.319.375.0, NIS: 1.319.375.0
Verze modulu: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-06-24 12:52:15.934
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Program:Win32/Uwasson.A!ml
ID: 251745
Závažnost: Střední
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\admin\Downloads\MBSetup.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-4MOS8SQ\admin
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.319.96.0, AS: 1.319.96.0, NIS: 1.319.96.0
Verze modulu: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-06-24 12:48:46.996
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Program:Win32/Uwasson.A!ml
ID: 251745
Závažnost: Střední
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\admin\Downloads\MBSetup.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-4MOS8SQ\admin
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.319.96.0, AS: 1.319.96.0, NIS: 1.319.96.0
Verze modulu: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-06-24 12:48:44.696
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Program:Win32/Uwasson.A!ml
ID: 251745
Závažnost: Střední
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\admin\Downloads\MBSetup.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-4MOS8SQ\admin
Název procesu: C:\Users\admin\Downloads\MBSetup.exe
Verze bezpečnostních informací: AV: 1.319.96.0, AS: 1.319.96.0, NIS: 1.319.96.0
Verze modulu: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-06-24 12:48:43.808
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Program:Win32/Uwasson.A!ml
ID: 251745
Závažnost: Střední
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\admin\Downloads\MBSetup.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-4MOS8SQ\admin
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: AV: 1.319.96.0, AS: 1.319.96.0, NIS: 1.319.96.0
Verze modulu: AM: 1.1.17200.2, NIS: 1.1.17200.2

CodeIntegrity:
===================================

Date: 2020-06-26 08:37:54.087
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-26 08:37:41.861
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-26 08:37:41.860
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-25 07:37:08.816
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-25 07:37:08.816
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO FBKTCCAUS 11/21/2016
Motherboard: LENOVO SHARKBAY
Processor: Intel(R) Pentium(R) CPU G3220 @ 3.00GHz
Percentage of memory in use: 92%
Total physical RAM: 3985.69 MB
Available physical RAM: 315.34 MB
Total Virtual: 7211.84 MB
Available Virtual: 1020.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.19 GB) (Free:425.42 GB) NTFS

\\?\Volume{e4520cd0-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.12 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: E4520CD0)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

[jaro3]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

Hosts:
EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

žádná nákaza. Co modem/router? Zkusil si resetovat?

[solangei]

zkopírovala jsem
Start
CreateRestorePoint:
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

Hosts:
EmptyTemp:
End
přejmenovala jsem na fixlist.txt spustila FRST stiskla Fix a píše mi to,že soubor nemůže najít.Asi dělám něco špatně

[jaro3]

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

na ploše musí být jak fixlist.txt tak frst.exe.

[solangei]

fixlist.txt mám na ploše,ale nemůžu naplochu dostat frst.exe omlouvám se jsem starší ročník,tak mi to tak nemyslí

[jaro3]

Už jsem upravil můj příspěvek , přidal jsem ten script do code. Tak to zopakuj.


frst.exe -- to je ten program na čištění , musíš ho mít na ploše . Nespouštět z nějaké složky!

[solangei]

..Fix result of Farbar Recovery Scan Tool (x64) Version: 30-06-2020
Ran by admin (02-07-2020 07:34:09) Run:1
Running from C:\Users\admin\Desktop
Loaded Profiles: admin
Boot Mode: Normal
==============================================

fixlist content:
*****************

*****************


==== End of Fixlog 07:34:09 ====

[jaro3]

tak znovu návod:

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
Start
CreateRestorePoint:
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

Hosts:
EmptyTemp:
End
EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[solangei]

Fix result of Farbar Recovery Scan Tool (x64) Version: 30-06-2020
Ran by admin (03-07-2020 05:49:44) Run:2
Running from C:\Users\admin\Desktop
Loaded Profiles: admin
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
Start
CreateRestorePoint:
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

Hosts:
EmptyTemp:
End
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
Restore point was successfully created.
Processes closed successfully.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8151040 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 29687746 B
Java, Flash, Steam htmlcache => 3366 B
Windows/system/drivers => 3572698 B
Edge => 0 B
Chrome => 0 B
Firefox => 1320948946 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 23596 B
admin => 1739328 B

RecycleBin => 72446 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 05:55:20 ====