Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-12-2022 Ran by monke (administrator) on DESKTOP-H7MICQI (MSI MS-7971) (14-12-2022 09:59:47) Running from C:\Users\monke\Desktop Loaded Profiles: monke Platform: Microsoft Windows 10 Pro Version 21H2 19044.2364 (X64) Language: English (United States) Default browser: FF Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4> (C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe <2> (explorer.exe ->) () [File not signed] C:\Program Files (x86)\Quiet on the Set\QuietOnTheSetUI.exe (explorer.exe ->) () [File not signed] C:\Program Files\HD Audio PCI-e Audio Device\CPL\FaceLift_x64.exe (explorer.exe ->) () [File not signed] C:\Windows\System\GfsMgr64.exe (explorer.exe ->) () [File not signed] C:\Windows\SysWOW64\ExMgr.exe (explorer.exe ->) () [File not signed] C:\Windows\SysWOW64\GfsMgr.exe (explorer.exe ->) (DroidMonkey Apps, LLC -> KeePassXC Team) C:\Program Files\KeePassXC\KeePassXC.exe (explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\monke\AppData\Roaming\Spotify\Spotify.exe <6> (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <35> (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (eVenture Limited -> eVenture Limited) C:\Program Files (x86)\hide.me VPN\hidemesvc.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f52c4b8723f8dd33\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Pango LLC -> Pango Inc.) C:\Program Files (x86)\Hotspot Shield\11.3.2\bin\cmw_srv.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe (services.exe ->) (Windscribe Limited -> Windscribe Limited) D:\Program Files (x86)\Windscribe\WindscribeService.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.11281.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.11281.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.214.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <4> (svchost.exe ->) (WhatsApp Inc.) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2248.9.0_x64__cv1g1gvanyjgm\WhatsApp.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [252856 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM\...\Run: [GFS64] => C:\Windows\system\GfsMgr64.exe [286720 2013-04-26] () [File not signed] HKLM\...\Run: [GFS] => C:\Windows\syswow64\GfsMgr.exe [204800 2013-04-26] () [File not signed] HKLM\...\Run: [SC808HDEX] => C:\Windows\syswow64\ExMgr.exe [204800 2011-02-26] () [File not signed] HKLM\...\Run: [SC808HDSound] => C:\Program Files\HD Audio PCI-e Audio Device\CPL\FaceLift_x64.exe [2401792 2015-07-28] () [File not signed] HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3216784 2022-09-09] (Open Source Developer, Dominik Reichl -> Dominik Reichl) HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [178992 2022-09-08] (Winamp SA -> Winamp SA) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [292120 2022-10-26] (Intel Corporation -> Intel) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-3967429642-383172465-2203361899-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4245352 2022-12-01] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3967429642-383172465-2203361899-1001\...\Run: [QuietOnTheSet] => C:\Program Files (x86)\Quiet on the Set\QuietOnTheSetUI.exe [51712 2016-12-31] () [File not signed] HKU\S-1-5-21-3967429642-383172465-2203361899-1001\...\Run: [Spotify] => C:\Users\monke\AppData\Roaming\Spotify\Spotify.exe [20422520 2022-12-08] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-3967429642-383172465-2203361899-1001\...\Run: [MicrosoftEdgeAutoLaunch_B8736991BD60B8CE6FCAA8B351A60300] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3877280 2022-12-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3967429642-383172465-2203361899-1001\...\Run: [KeePassXC] => C:\Program Files\KeePassXC\KeePassXC.exe [5220096 2022-10-29] (DroidMonkey Apps, LLC -> KeePassXC Team) HKU\S-1-5-21-3967429642-383172465-2203361899-1001\...\RunOnce: [Application Restart #2] => C:\Program Files\Mozilla Firefox\firefox.exe -os-restarted -osint -url hxxps://t.allegro.pl/oferta/tool-aenima-n-m-usa-12728643368?utm_source=notification&utm_medium=PLfavourite_queries&utm_campaign=9 (the data entry has 175 more characters). [660896 2022-12-14] (Mozilla Corporation -> Mozilla Corporation) HKLM\...\Print\Monitors\stkMonitor: C:\Windows\system32\stkMonitor.dll [65680 2022-06-08] (Amazon.com Services LLC -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\108.0.5359.100\Installer\chrmstp.exe [2022-12-14] (Google LLC -> Google LLC) Startup: C:\Users\monke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Last.fm Desktop Scrobbler.lnk [2021-11-21] ShortcutTarget: Last.fm Desktop Scrobbler.lnk -> C:\Users\monke\AppData\Roaming\Microsoft\Installer\{B13709CB-85AE-4F45-BFF9-2CB2B7A78F83}\_19B259572BFCF696C10AAD.exe () [File not signed] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {11756DDC-563F-476B-9D17-92CA005CBF84} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-08-30] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {17E6655E-E206-43DD-9807-DCD382656645} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {2A0597D3-32D0-495C-A5CD-3148E3F64B88} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-24] (Google LLC -> Google LLC) Task: {40E9DD71-7698-400C-8145-8A9B2714B199} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {48E34A63-7240-4121-9190-186141A2030C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {4DB9D26C-9A11-4B62-A61A-C9CEDA6E09BB} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File) Task: {593B99C3-8C0A-4754-BCE1-7458A0EE4F34} - System32\Tasks\Opera scheduled Autoupdate 1637954492 => C:\Users\monke\AppData\Local\Programs\Opera\launcher.exe [2631112 2022-12-01] (Opera Norway AS -> Opera Software) Task: {62829903-1B4B-4D2A-8B25-2CFA1320EE01} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-24] (Google LLC -> Google LLC) Task: {65D5916D-C3FA-4578-B6DE-65A85B8861D5} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {6B117480-208A-4ED4-95AD-79805BEFE9BD} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2287472 2022-05-25] (AVG Technologies USA, LLC -> AVG Technologies) Task: {6B259E00-123F-4F08-B0B1-5FF06F97096B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3464168 2022-11-09] (Intel Corporation -> Intel Corporation) Task: {6BF9C3C7-EB90-481E-90C1-698EE667AB8A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {78F99474-8E90-4DE4-82F8-1348464E94E6} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {935D4886-34BD-45ED-B572-BCFA7633BF7C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {94CEBA89-138C-4163-97F0-D1127CCEB834} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3464168 2022-11-09] (Intel Corporation -> Intel Corporation) Task: {9E9A4F58-86F3-48CC-B4B5-9D40B867FBCE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {A225B418-2F74-4E27-917F-0D89B1211F78} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3967429642-383172465-2203361899-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1710.29.105.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2039032 2022-12-09] (Facebook, Inc. -> Meta Platforms, Inc.) Task: {BEA75320-DDA5-47E5-965D-D0BA4E2DDE3E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-17] (Nvidia Corporation -> NVIDIA Corporation) Task: {C370707B-05A8-4E7F-B541-1600FDE85485} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [121595976 2022-09-01] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) Task: {C5FE763F-5BD2-45FA-B505-C6DBFB694198} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {D47D0C44-74A7-4527-B794-D79207C4D42C} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4990904 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) Task: {D89031C2-A17A-407A-847F-CBB311480F0E} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {DA8ECAC1-A663-4173-9C2D-1280CFCFEBD9} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{4994e8f5-fee2-4e77-a851-3c6e3f2be620}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{f688ab57-8e39-436a-849c-4179eec9f63c}: [NameServer] 8.8.8.8 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\monke\AppData\Local\Microsoft\Edge\User Data\Default [2022-12-14] Edge Extension: (Dark forest - Dark theme) - C:\Users\monke\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\icbokigjkejokfabbaondciaffancbjn [2021-12-25] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\monke\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-12-13] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: gwz2xiet.default FF ProfilePath: C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\gwz2xiet.default [2021-11-20] FF ProfilePath: C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release [2022-12-14] FF Homepage: Mozilla\Firefox\Profiles\4p4nqcnn.default-release -> hxxp://forgotten.pl/|hxxp://forgotten.pl/miejsca.php?wojewodztwo=wielkopolskie&typ=&sort=atr|hxxp://forgotten.pl/miejsce.php?id=3269|hxxp://forgotten.pl/miejsce.php?id=2086|hxxp://forgotten.pl/miejsce.php?id=3709|hxxp://intotheshadows.pl/opuszczone-miejsca/dwory-i-palace/dwor-w-rudkach-wielkopolskie-opuszczone|hxxps://www.google.pl/maps/place/52%C2%B012'14.0%22N+18%C2%B015'40.8%22E/@52.2037202,18.261064,129m/data=!3m1!1e3!4m5!3m4!1s0x0:0x0!8m2!3d52.2038889!4d18.2613222 FF Session Restore: Mozilla\Firefox\Profiles\4p4nqcnn.default-release -> is enabled. FF Notifications: Mozilla\Firefox\Profiles\4p4nqcnn.default-release -> hxxps://www.pyszne.pl FF Extension: (Facebook Container) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\@contain-facebook.xpi [2022-11-03] FF Extension: (Dark Reader) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\addon@darkreader.org.xpi [2022-10-27] FF Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\firefox@ghostery.com.xpi [2022-11-23] FF Extension: (Użyj Google Translate) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-11-20] FF Extension: (Przycisk Zapisz Pinteresta) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2022-03-02] FF Extension: (Sprawdzanie ortografii i gramatyki – LanguageTool) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\languagetool-webextension@languagetool.org.xpi [2022-11-25] FF Extension: (Session Sync) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\session-sync@gabrielivanica.com.xpi [2021-11-20] FF Extension: (uBlock Origin) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-11-15] FF Extension: (Zrób pełny, całkowity zrzut ekranu strony internetowej - FireShot) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}.xpi [2022-09-15] FF Extension: (Augmented Steam) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{1be309c5-3e4f-4b99-927d-bb500eb4fa88}.xpi [2022-12-13] FF Extension: (Malwarebytes Browser Guard) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-10-10] FF Extension: (Sidebery) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{3c078156-979c-498b-8990-85f7987dd929}.xpi [2022-08-29] FF Extension: (ClearURLs) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{74145f27-f039-47ce-a470-a662b129930a}.xpi [2022-11-21] FF Extension: (Return YouTube Dislike) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{762f9885-5a13-4abd-9c77-433dcd38b8fd}.xpi [2022-11-21] FF Extension: (ImTranslator: Tłumacz, Słownik, Głos) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2022-11-11] FF Extension: (Video DownloadHelper) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2022-12-09] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-12-06] FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\monke\AppData\Roaming\Mozilla\Firefox\Profiles\4p4nqcnn.default-release\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2022-02-10] FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) Chrome: ======= CHR Profile: C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default [2022-12-13] CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-12-08] CHR Extension: (uBlock Origin) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-12-08] CHR Extension: (Dark Reader) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2022-11-16] CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2022-05-31] CHR Extension: (Dokumenty Google offline) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-08] CHR Extension: (Screen Capture) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghihpjhpgdepnohngpgfcmcijmkggpaf [2021-11-24] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-12-08] CHR Extension: (saveVPN) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\jijcbgejcgmomcdgfhjnkfpgkgmnmami [2022-11-06] CHR Extension: (Video DownloadHelper) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2022-10-13] CHR Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2022-12-08] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\monke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-24] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= OPR Profile: C:\Users\monke\AppData\Roaming\Opera Software\Opera Stable [2022-12-14] OPR Notifications: Opera Stable -> hxxps://steam.tv OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (saveVPN) - C:\Users\monke\AppData\Roaming\Opera Software\Opera Stable\Extensions\cjabbeblaifeeabjhkoefnhcjockkkjm [2022-11-06] OPR Extension: (Rich Hints Agent) - C:\Users\monke\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-10-27] OPR Extension: (Opera Wallet) - C:\Users\monke\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-12-02] OPR Extension: (Amazon Assistant Promotion) - C:\Users\monke\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-11-26] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 ATLOISAService; C:\Windows\system\ATLOISAService.exe [512000 2013-10-26] (Cmedia Electronics Inc.) [File not signed] R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [634296 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2111416 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [634296 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8575416 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-11-20] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [761416 2022-09-01] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [41240 2022-10-26] (Intel Corporation -> Intel) R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [201496 2022-10-26] (Intel Corporation -> Intel) S2 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [10968712 2022-06-23] (Electronic Arts, Inc. -> Electronic Arts) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-02] (Epic Games Inc. -> Epic Games, Inc.) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2128360 2022-08-29] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-08-24] (GOG Sp. z o.o. -> GOG.com) R2 hmevpnsvc; C:\Program Files (x86)\hide.me VPN\hidemesvc.exe [177936 2022-09-21] (eVenture Limited -> eVenture Limited) R2 hshld_11.3.2; C:\Program Files (x86)\Hotspot Shield\11.3.2\bin\cmw_srv.exe [249104 2022-10-19] (Pango LLC -> Pango Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8872736 2022-11-30] (Malwarebytes Inc. -> Malwarebytes) S3 mracsvc; C:\Windows\System32\mracsvc.exe [23954152 2022-05-21] (My.Com B.V. -> My.com B.V.) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579264 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497800 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2072408 2022-10-13] (Rockstar Games, Inc. -> Rockstar Games) R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [371784 2022-09-01] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WindscribeService; D:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited -> Windscribe Limited) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f52c4b8723f8dd33\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f52c4b8723f8dd33\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [31408 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [229200 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [391312 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [297872 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [96504 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgElam; C:\Windows\System32\drivers\avgElam.sys [25064 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [39640 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [267968 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [555600 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [105288 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [80456 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [852080 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [695576 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [212720 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [318544 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [287744 2022-04-13] (Microsoft Corporation) [File not signed] R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2022-06-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 FMHdAudAddService; C:\Windows\System32\drivers\SC808HDB64.sys [64000 2014-12-19] (C-MEDIA ELECTRONICS INC. -> C-Media Electronics Inc.) R1 hideFirewall; C:\Windows\System32\drivers\hideFirewall.sys [100352 2021-10-28] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 hsstap; C:\Windows\System32\drivers\hsstap.sys [39424 2020-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Pango) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-04-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [197088 2022-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [75216 2022-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [181816 2022-12-14] (Malwarebytes Inc. -> Malwarebytes) S3 mracdrv; C:\Windows\System32\drivers\mracdrv1.sys [23190616 2022-05-21] (My.Com B.V. -> My.com B.V.) R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R1 pango_netfilter2; C:\Windows\System32\drivers\pango_netfilter2.sys [89088 2022-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Pango Inc) S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2022-07-04] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2022-11-05] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (All) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2022-12-14 09:59 - 2022-12-14 10:00 - 000035169 _____ C:\Users\monke\Desktop\FRST.txt 2022-12-14 09:50 - 2022-12-14 10:00 - 000000000 ____D C:\FRST 2022-12-14 09:49 - 2022-12-14 09:49 - 002375680 _____ (Farbar) C:\Users\monke\Desktop\FRST64.exe 2022-12-14 09:48 - 2022-12-14 09:48 - 000000000 ____D C:\Users\monke\AppData\LocalLow\IGDump 2022-12-14 09:25 - 2022-12-14 09:25 - 000223176 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2022-12-14 09:25 - 2022-12-14 09:25 - 000197088 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2022-12-14 09:25 - 2022-12-14 09:25 - 000181816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2022-12-14 09:25 - 2022-12-14 09:25 - 000075216 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 026270208 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 024272384 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 023449088 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 019866624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 018767872 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 018083840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 014770688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 010855744 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 009037312 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 008896208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 008233024 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 007978384 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 007650440 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 006920704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 006502400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 006424576 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 006373648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 006191616 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 006017256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 005820928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 005006848 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 004799320 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 004749312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 004630360 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 004514232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 004418048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 004011008 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003966976 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003927512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003922432 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003814784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 003811328 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 003749888 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003576320 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003560176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003507520 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003405824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003182080 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 003001152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 002964720 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002892288 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 002838912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 002811904 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002753536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 002636184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002632704 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002524648 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2022-12-14 08:53 - 2022-12-14 08:53 - 002522104 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002465280 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002459648 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002454408 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL 2022-12-14 08:53 - 2022-12-14 08:53 - 002433536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002404720 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002380800 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002341824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002255608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2022-12-14 08:53 - 2022-12-14 08:53 - 002250240 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002242560 _____ (Microsoft Corporation) C:\Windows\system32\windowsudk.shellcommon.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002221568 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002213760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002143744 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002138288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL 2022-12-14 08:53 - 2022-12-14 08:53 - 002028032 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002024800 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 002024784 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001957560 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001953280 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 001874368 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001862144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001831424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001830040 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2022-12-14 08:53 - 2022-12-14 08:53 - 001772544 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001763152 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001752520 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001709120 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001700376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001689088 _____ (Microsoft Corporation) C:\Windows\system32\MoUsoCoreWorker.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 001686360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001645936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001621256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001572216 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 001562944 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 001537904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001504640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001503232 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001414656 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 001395040 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001378816 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001375232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001353320 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001345376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001332064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001302624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001300808 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 001289224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001260872 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001221120 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001220096 _____ (Microsoft Corporation) C:\Windows\system32\AgentService.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 001217536 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CommonBridge.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001214288 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 001191264 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001136408 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001129616 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 001119272 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001117184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001104768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 001102336 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001092912 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001083392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001015968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001009272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 001005568 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000978256 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000966656 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000966144 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000961736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000958464 _____ (Microsoft Corporation) C:\Windows\system32\quickassist.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000944128 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL 2022-12-14 08:53 - 2022-12-14 08:53 - 000943616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000930816 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000929848 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000908040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000902992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000897160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000889416 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000879104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000858112 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000810328 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000791040 _____ (Microsoft Corporation) C:\Windows\system32\dcsvc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000785056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000783872 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000773264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000771584 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.PrinterCustomActions.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000768512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quickassist.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000765440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000754688 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000754072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000737280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000721560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000717664 _____ (Microsoft Corporation) C:\Windows\system32\upshared.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000706568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000695224 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000686592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000678736 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000669696 _____ (Microsoft Corporation) C:\Windows\system32\WFSR.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000648224 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000646160 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000646024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000630272 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000622080 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000619008 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000615424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000608768 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000572928 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000570712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000570704 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000570368 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000565760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000539176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000533552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000531984 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000522712 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000521216 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000520704 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000503632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2022-12-14 08:53 - 2022-12-14 08:53 - 000501248 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000489640 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000483664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000456032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000454656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2022-12-14 08:53 - 2022-12-14 08:53 - 000444704 _____ (Microsoft Corporation) C:\Windows\system32\fclip.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000434176 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMPOSE.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000427520 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000422496 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000421888 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000420456 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000419448 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000415384 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShellCommonCommonProxyStub.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000411112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000410168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000408576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\LicensingDiagSpp.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000390144 _____ (Microsoft Corporation) C:\Windows\system32\AppLockerCSP.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000387456 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000382288 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000379392 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000365568 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000363080 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000352256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingDiagSpp.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000336760 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000336384 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000332288 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000319160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000318088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000308224 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000307960 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000294240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\dosettings.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\wslapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000276480 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppLockerCSP.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000272720 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000267264 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000254072 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000242808 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000230224 _____ (Microsoft Corporation) C:\Windows\system32\convertvhd.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000229696 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000224088 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\vmdevicehost.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000221080 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.V2.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000212320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000210944 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000202576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\dbgcore.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000196736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000193664 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000192000 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000190112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000187512 _____ (Microsoft Corporation) C:\Windows\system32\Clipc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000186880 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\FXSUTILITY.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000184832 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000183856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.V2.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\OneSettingsClient.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\profsvcext.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000172056 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\wsl.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgcore.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000161120 _____ (Microsoft Corporation) C:\Windows\system32\hvsievaluator.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000160096 _____ (Microsoft Corporation) C:\Windows\system32\hvsigpext.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netjoin.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000154944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000152912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneSettingsClient.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzautoupdate.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\dmusic.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000134480 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000134480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000133792 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\dmsynth.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000119120 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmsynth.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicAgent.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmusic.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000107520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000096080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000093984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000084832 _____ (Microsoft Corporation) C:\Windows\system32\windowsdefenderapplicationguardcsp.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000082648 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\OnDemandConnRouteHelper.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000072872 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000070776 _____ (Microsoft Corporation) C:\Windows\system32\iumcrypt.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000069968 _____ (Microsoft Corporation) C:\Windows\system32\virtdisk.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\ndadmin.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.Preview.DOSettings.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000063560 _____ (Microsoft Corporation) C:\Windows\system32\sfc_os.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000062840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameInput.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000060408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000059232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\virtdisk.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\PCShellCommonProxyStub.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000054304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sfc_os.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.Preview.DOSettings.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\dmloader.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmloader.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enrollmentapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\sxstrace.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMPOSERES.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxstrace.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCShellCommonProxyStub.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000029184 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicPS.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000029184 _____ (Microsoft Corporation) C:\Windows\system32\dswave.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtClient.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\appidtel.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000025336 _____ (Microsoft Corporation) C:\Windows\system32\WerEnc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dswave.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000022352 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000021680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerEnc.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidtel.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\wmsgapi.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\applockerfltr.sys 2022-12-14 08:53 - 2022-12-14 08:53 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\declaredconfiguration.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EnterpriseAppMgmtClient.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\icsunattend.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\d3d8thk.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000012367 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-12-14 08:53 - 2022-12-14 08:53 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\wuapihost.exe 2022-12-14 08:53 - 2022-12-14 08:53 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2022-12-14 08:53 - 2022-12-14 08:53 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2022-12-14 08:52 - 2022-12-14 08:53 - 001481216 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 010349840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 005141704 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2022-12-14 08:52 - 2022-12-14 08:52 - 002389504 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe 2022-12-14 08:52 - 2022-12-14 08:52 - 002308096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 002009088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001788288 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001765376 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001580032 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001568176 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001565184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys 2022-12-14 08:52 - 2022-12-14 08:52 - 001543168 _____ (Microsoft Corporation) C:\Windows\system32\TaskFlowDataEngine.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001420288 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001335296 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001283584 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001175552 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 001119232 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000967168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys 2022-12-14 08:52 - 2022-12-14 08:52 - 000940520 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000862560 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000844800 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2022-12-14 08:52 - 2022-12-14 08:52 - 000838144 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.Schema.Shell.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000832512 _____ (Microsoft Corporation) C:\Windows\system32\ShellCommonCommonProxyStub.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000824144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys 2022-12-14 08:52 - 2022-12-14 08:52 - 000781824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000726864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2022-12-14 08:52 - 2022-12-14 08:52 - 000642384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Vid.sys 2022-12-14 08:52 - 2022-12-14 08:52 - 000603136 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2022-12-14 08:52 - 2022-12-14 08:52 - 000518656 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000297472 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000297472 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\ACPBackgroundManagerPolicy.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000163840 _____ (Microsoft Corporation) C:\Windows\splwow64.exe 2022-12-14 08:52 - 2022-12-14 08:52 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.ModernDeployment.ConfigProviders.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys 2022-12-14 08:52 - 2022-12-14 08:52 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS 2022-12-14 08:52 - 2022-12-14 08:52 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\AppListBackupLauncher.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\PrinterCleanupTask.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000084224 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000072016 _____ (Microsoft Corporation) C:\Windows\system32\GameInput.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000071040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fsdepends.sys 2022-12-14 08:52 - 2022-12-14 08:52 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xinputhid.sys 2022-12-14 08:52 - 2022-12-14 08:52 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\spool\prtprocs\x64\winprint.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS 2022-12-14 08:52 - 2022-12-14 08:52 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\autopilotdiag.dll 2022-12-14 08:52 - 2022-12-14 08:52 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\localui.dll 2022-12-14 08:47 - 2022-12-14 08:47 - 000000000 ___HD C:\$WinREAgent 2022-12-14 08:47 - 2022-10-11 04:46 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2022-12-14 08:47 - 2022-10-11 03:40 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2022-12-13 00:29 - 2022-12-13 00:29 - 000273848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2022-12-13 00:29 - 2022-12-13 00:29 - 000212720 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2022-12-10 15:33 - 2022-12-12 17:44 - 000052472 _____ C:\Users\monke\Desktop\Strategie radzenia sobie.odt 2022-12-10 00:46 - 2022-12-06 21:49 - 002236992 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-12-10 00:46 - 2022-12-06 21:49 - 002236992 _____ C:\Windows\system32\vulkaninfo.exe 2022-12-10 00:46 - 2022-12-06 21:49 - 001642568 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-12-10 00:46 - 2022-12-06 21:49 - 001642568 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-12-10 00:46 - 2022-12-06 21:49 - 001487352 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-12-10 00:46 - 2022-12-06 21:49 - 001444424 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-12-10 00:46 - 2022-12-06 21:49 - 001444424 _____ C:\Windows\system32\vulkan-1.dll 2022-12-10 00:46 - 2022-12-06 21:49 - 001226744 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-12-10 00:46 - 2022-12-06 21:49 - 001168960 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-12-10 00:46 - 2022-12-06 21:49 - 001168960 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-12-10 00:46 - 2022-12-06 21:44 - 000851448 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-12-10 00:46 - 2022-12-06 21:44 - 000672760 _____ C:\Windows\system32\nvofapi64.dll 2022-12-10 00:46 - 2022-12-06 21:44 - 000507408 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-12-10 00:46 - 2022-12-06 21:43 - 002163712 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-12-10 00:46 - 2022-12-06 21:43 - 001619432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-12-10 00:46 - 2022-12-06 21:43 - 001532456 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-12-10 00:46 - 2022-12-06 21:43 - 001191912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-12-10 00:46 - 2022-12-06 21:43 - 000949784 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-12-10 00:46 - 2022-12-06 21:43 - 000738344 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-12-10 00:46 - 2022-12-06 21:43 - 000734720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-12-10 00:46 - 2022-12-06 21:42 - 012453400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-12-10 00:46 - 2022-12-06 21:42 - 010220584 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-12-10 00:46 - 2022-12-06 21:42 - 005891072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-12-10 00:46 - 2022-12-06 21:42 - 005857328 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll 2022-12-10 00:46 - 2022-12-06 21:42 - 000458280 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-12-10 00:46 - 2022-12-06 21:41 - 005817880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-12-10 00:46 - 2022-12-06 21:41 - 000852984 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-12-10 00:46 - 2022-12-06 21:39 - 006514432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2022-12-10 00:46 - 2022-12-06 05:54 - 000100741 _____ C:\Windows\system32\nvinfo.pb 2022-12-06 21:20 - 2022-12-06 21:21 - 000000000 ____D C:\Program Files\EqualizerAPO 2022-12-06 21:20 - 2022-12-06 21:20 - 008732047 _____ C:\Users\monke\Downloads\EqualizerAPO64-1.3.exe 2022-12-06 21:20 - 2022-12-06 21:20 - 000000000 ____D C:\Users\monke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Equalizer APO 1.3 2022-12-05 20:47 - 2022-12-05 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoulseekQt 2022-12-05 20:47 - 2022-12-05 20:47 - 000000000 ____D C:\Program Files (x86)\SoulseekQt 2022-12-05 20:46 - 2022-12-05 20:46 - 017677170 _____ (Soulseek LLC ) C:\Users\monke\Downloads\SoulseekQt-2019-7-22-64bit.exe 2022-12-04 02:26 - 2022-12-05 09:30 - 000000000 ____D C:\Program Files\Mozilla Thunderbird 2022-12-03 18:01 - 2022-12-03 18:01 - 001124713 _____ C:\Users\monke\Documents\7e8gtj66khe61.xcf 2022-12-03 18:01 - 2022-12-03 18:01 - 000003911 _____ C:\Users\monke\AppData\Local\recently-used.xbel 2022-12-02 11:10 - 2022-12-06 21:42 - 003334656 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-12-01 17:58 - 2022-11-11 18:08 - 000047240 _____ C:\Windows\system32\Drivers\semav6msr64.sys 2022-12-01 17:41 - 2022-12-13 22:32 - 000002678 _____ C:\Windows\system32\Tasks\USER_ESRV_SVC_QUEENCREEK 2022-12-01 09:32 - 2022-12-13 22:32 - 000003042 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2022-11-30 23:06 - 2022-12-14 08:39 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-11-29 20:28 - 2022-11-29 20:28 - 056737099 _____ C:\Users\monke\Downloads\Wolf School.zip 2022-11-25 22:25 - 2022-11-25 22:25 - 000000000 ____D C:\Users\monke\Documents\Call Of Duty Black Ops Cold War 2022-11-25 22:25 - 2022-11-25 22:25 - 000000000 ____D C:\Users\monke\AppData\Local\Activision 2022-11-25 22:25 - 2022-11-25 22:25 - 000000000 ____D C:\ProgramData\Activision 2022-11-25 18:41 - 2022-11-25 18:41 - 000000000 ____D C:\Users\monke\AppData\LocalLow\DefaultCompany 2022-11-23 00:15 - 2022-11-23 00:15 - 000000000 ____D C:\Users\monke\AppData\Roaming\Obsidian Tools 2022-11-23 00:15 - 2022-11-23 00:15 - 000000000 ____D C:\Users\monke\AppData\LocalLow\Obsidian Entertainment 2022-11-22 22:06 - 2022-11-29 00:47 - 000000049 _____ C:\Users\monke\Desktop\New Text Document (2).txt 2022-11-19 01:50 - 2022-11-19 01:51 - 000000000 ____D C:\Users\monke\Documents\Assassin's Creed Origins 2022-11-18 20:39 - 2022-12-11 22:37 - 000004101 _____ C:\Users\monke\Desktop\21-01 New Text Document.txt 2022-11-17 00:14 - 2022-11-17 00:14 - 009186576 _____ C:\Users\monke\Desktop\art1.pdf 2022-11-17 00:13 - 2022-11-17 00:13 - 006241569 _____ C:\Users\monke\Desktop\psychoakustyczne_konteksty_strumieniowania_percepcyjnego_w_muzyce.pdf 2022-11-16 09:17 - 2022-11-16 09:17 - 000000000 ____D C:\Program Files (x86)\Windows Kits 2022-11-16 09:17 - 2022-11-16 09:17 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput 2022-11-15 12:29 - 2022-12-14 00:20 - 000000000 ____D C:\Users\monke\AppData\Roaming\TIDAL 2022-11-15 12:29 - 2022-12-14 00:03 - 000000000 ____D C:\Users\monke\AppData\Local\TIDAL 2022-11-15 12:29 - 2022-11-15 12:29 - 000000000 ____D C:\Users\monke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TIDAL Music AS 2022-11-14 23:27 - 2022-12-14 09:23 - 000000000 ____D C:\Users\monke\AppData\Local\KeePassXC 2022-11-14 23:26 - 2022-12-14 09:16 - 000000000 ____D C:\Users\monke\AppData\Roaming\KeePassXC 2022-11-14 23:26 - 2022-11-14 23:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePassXC 2022-11-14 23:26 - 2022-11-14 23:26 - 000000000 ____D C:\Program Files\KeePassXC 2022-11-14 20:57 - 2022-11-14 20:57 - 000000000 ____D C:\Users\monke\AppData\Roaming\Amanita-Design.CHUCHEL 2022-11-14 19:01 - 2022-11-14 19:01 - 000000000 ____D C:\Users\monke\AppData\Roaming\EasyAntiCheat ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2022-12-14 09:56 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-12-14 09:30 - 2021-11-20 19:25 - 000840942 _____ C:\Windows\system32\PerfStringBackup.INI 2022-12-14 09:30 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2022-12-14 09:28 - 2021-11-24 15:57 - 000000000 ____D C:\Program Files (x86)\Google 2022-12-14 09:28 - 2021-11-20 21:21 - 000000000 ____D C:\Users\monke\AppData\Local\Spotify 2022-12-14 09:27 - 2021-11-21 02:02 - 000000000 ____D C:\Users\monke\Desktop\GRAFIKA - GRY - CLEANERY 2022-12-14 09:27 - 2021-11-20 21:21 - 000000000 ____D C:\Users\monke\AppData\Roaming\Spotify 2022-12-14 09:27 - 2021-11-20 20:54 - 000000000 ____D C:\ProgramData\NVIDIA 2022-12-14 09:27 - 2021-11-20 20:32 - 000000000 ____D C:\Users\monke\AppData\Roaming\Samsung Magician 2022-12-14 09:27 - 2021-11-20 19:53 - 000000000 ____D C:\Users\monke\AppData\LocalLow\Mozilla 2022-12-14 09:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2022-12-14 09:26 - 2021-11-24 15:57 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-12-14 09:25 - 2022-09-16 09:00 - 000267376 _____ C:\Windows\system32\FNTCACHE.DAT 2022-12-14 09:25 - 2021-11-21 04:18 - 000008192 ___SH C:\DumpStack.log.tmp 2022-12-14 09:25 - 2021-11-21 04:18 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-12-14 09:25 - 2021-11-20 20:41 - 000000000 ____D C:\ProgramData\AVG 2022-12-14 09:24 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemApps 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2022-12-14 09:24 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-12-14 09:24 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI 2022-12-14 09:16 - 2021-12-31 10:14 - 000000000 ____D C:\YEEK 2022-12-14 08:55 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2022-12-14 08:52 - 2021-11-20 19:23 - 003014656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-12-14 08:45 - 2021-11-22 16:01 - 000000000 ____D C:\Windows\system32\MRT 2022-12-14 08:42 - 2021-11-22 16:01 - 148633544 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-12-14 08:39 - 2021-11-20 19:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-12-14 01:02 - 2022-02-09 10:31 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-12-14 00:59 - 2021-11-20 19:53 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-12-14 00:59 - 2021-11-20 19:53 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-12-14 00:20 - 2021-11-21 14:14 - 000000000 ____D C:\Users\monke\AppData\Roaming\Evernote 2022-12-13 22:32 - 2022-03-25 20:13 - 000002970 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 2022-12-13 22:32 - 2022-03-25 20:13 - 000002604 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon 2022-12-13 22:32 - 2021-12-11 15:53 - 000003062 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3967429642-383172465-2203361899-1001 2022-12-13 22:32 - 2021-11-26 20:21 - 000003512 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1637954492 2022-12-13 22:32 - 2021-11-24 15:57 - 000003348 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-12-13 22:32 - 2021-11-24 15:57 - 000003124 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-12-13 22:32 - 2021-11-21 17:31 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software 2022-12-13 22:32 - 2021-11-21 04:18 - 000003464 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-12-13 22:32 - 2021-11-21 04:18 - 000003240 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-12-13 22:32 - 2021-11-20 21:55 - 000003220 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification 2022-12-13 22:32 - 2021-11-20 20:54 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-12-13 22:32 - 2021-11-20 20:54 - 000003152 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-12-13 22:32 - 2021-11-20 20:54 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-12-13 22:32 - 2021-11-20 20:54 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-12-13 22:32 - 2021-11-20 20:54 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-12-13 22:32 - 2021-11-20 20:54 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-12-13 22:32 - 2021-11-20 20:54 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-12-13 22:32 - 2021-11-20 20:54 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-12-13 22:32 - 2021-11-20 20:54 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-12-13 22:32 - 2021-11-20 20:41 - 000003044 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update 2022-12-13 22:32 - 2021-11-20 20:27 - 000002532 _____ C:\Windows\system32\Tasks\SamsungMagician 2022-12-13 22:32 - 2021-11-20 19:40 - 000002858 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3967429642-383172465-2203361899-1001 2022-12-13 16:00 - 2021-11-21 04:18 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-12-13 10:36 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-12-13 10:00 - 2022-06-08 21:59 - 000000000 ____D C:\Users\monke\Documents\My Kindle Content 2022-12-13 00:29 - 2021-11-20 20:41 - 000852080 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000695576 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000555600 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetHub.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000391312 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000318544 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000297872 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000267968 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000229200 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000105288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000096504 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000080456 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000039640 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys 2022-12-13 00:29 - 2021-11-20 20:41 - 000031408 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys 2022-12-13 00:29 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-12-12 20:46 - 2021-11-20 20:18 - 000000000 ____D C:\Program Files (x86)\Steam 2022-12-12 12:26 - 2021-11-20 19:39 - 000000000 ____D C:\Users\monke\AppData\Local\D3DSCache 2022-12-12 05:09 - 2022-04-01 23:24 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2022-12-10 12:42 - 2021-11-21 04:18 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-12-10 00:49 - 2021-11-20 20:54 - 000000000 ____D C:\Users\monke\AppData\Local\NVIDIA 2022-12-06 21:39 - 2021-11-20 19:24 - 007645944 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2022-12-06 20:00 - 2022-09-15 14:58 - 000000000 ____D C:\Users\monke\AppData\Roaming\calibre 2022-12-04 10:45 - 2022-06-30 14:19 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk 2022-12-03 18:01 - 2022-04-10 15:42 - 000000000 ____D C:\Users\monke\AppData\Local\gtk-2.0 2022-12-03 18:01 - 2022-04-10 15:37 - 000000000 ____D C:\Users\monke\AppData\Local\babl-0.1 2022-12-03 16:52 - 2021-11-20 21:03 - 000000000 ____D C:\LEM 2022-12-03 10:41 - 2021-11-26 20:21 - 000001405 _____ C:\Users\monke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk 2022-12-03 00:17 - 2021-11-20 19:36 - 000000000 ____D C:\Users\monke 2022-11-29 13:01 - 2021-11-20 19:36 - 000002379 _____ C:\Users\monke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-11-25 23:19 - 2022-01-16 12:01 - 000001472 _____ C:\Users\monke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk 2022-11-25 23:19 - 2021-11-20 20:54 - 000000000 ____D C:\Users\monke\AppData\Local\NVIDIA Corporation 2022-11-25 22:28 - 2022-06-26 17:53 - 000000000 ____D C:\Users\monke\AppData\Roaming\qBittorrent 2022-11-23 21:55 - 2021-11-21 14:14 - 000000000 ____D C:\Users\monke\AppData\Local\evernote-client-updater 2022-11-23 20:33 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF 2022-11-23 01:45 - 2022-02-05 11:36 - 000000000 ____D C:\Users\monke\AppData\LocalLow\Unity 2022-11-20 14:54 - 2021-11-20 19:53 - 000000000 ____D C:\Users\monke\AppData\Roaming\KeePass 2022-11-19 02:27 - 2021-11-20 23:52 - 000000000 ____D C:\Users\monke\AppData\Local\Ubisoft Game Launcher 2022-11-19 00:17 - 2021-11-20 23:23 - 000000000 ____D C:\Users\monke\AppData\Local\CrashDumps 2022-11-16 09:17 - 2022-10-07 04:38 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe 2022-11-16 09:17 - 2022-10-07 04:38 - 000067064 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe 2022-11-16 09:17 - 2021-11-20 20:20 - 002815440 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-11-16 09:17 - 2021-11-20 20:20 - 000460240 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-11-16 09:17 - 2021-11-20 20:20 - 000243192 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-11-16 09:17 - 2021-11-20 20:20 - 000198136 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-11-16 09:17 - 2021-11-20 20:20 - 000165368 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-11-16 09:17 - 2021-11-20 20:20 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-11-15 12:29 - 2022-03-27 19:22 - 000000000 ____D C:\Users\monke\AppData\Local\SquirrelTemp 2022-11-14 23:50 - 2022-02-15 21:27 - 000000000 ____D C:\XboxGames 2022-11-14 23:50 - 2021-11-20 19:39 - 000000000 ____D C:\Users\monke\AppData\Local\Packages 2022-11-14 23:50 - 2021-11-20 19:25 - 000000000 ____D C:\ProgramData\Packages 2022-11-14 23:12 - 2022-02-03 00:17 - 000000000 ____D C:\Program Files (x86)\Origin ==================== Files in the root of some directories ======== 2021-11-20 22:13 - 2021-11-20 22:13 - 000000020 ___SH () C:\Users\monke\AppData\Roaming\1816CA7466166.ind 2021-11-20 22:13 - 2021-11-20 22:13 - 000000020 ___SH () C:\Users\monke\AppData\Roaming\Programs8187ConfigDB.dat 2022-12-03 18:01 - 2022-12-03 18:01 - 000003911 _____ () C:\Users\monke\AppData\Local\recently-used.xbel 2022-06-29 20:38 - 2022-06-29 20:38 - 000000000 _____ () C:\Users\monke\AppData\Local\{146F08CF-5EB2-42E5-BCAE-69D77BC7EEE2} ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================