Po startu PC se spustí Chrome a v něm adf.ly
Napsal: 17 pro 2018 07:53
Prosím o pomoc s vyřešením havěti. Chtěl jsem si zahrát po 124letech W3 a myslím, že s tím se mi tam natáhl ten "vir".
Díky,
Petr
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.12.2018
Ran by Čud (administrator) on DESKTOP-8TT7FLG (17-12-2018 07:50:37)
Running from C:\Users\Čud\Downloads
Loaded Profiles: Čud (Available Profiles: Čud & Miguel Sun)
Platform: Windows 10 Pro Version 1809 17763.194 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\NisSrv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthSystray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Launchy\Launchy.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msconfig.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Windows\system32\SecurityHealthSystray.exe [83968 2018-09-15] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16403712 2015-08-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4049216 2018-12-13] (Dropbox, Inc.)
HKU\S-1-5-21-3677593479-3605439763-291132835-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19589208 2018-12-10] (Piriform Software Ltd)
HKU\S-1-5-21-3677593479-3605439763-291132835-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46459080 2018-10-04] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\updateSteam.bat [2018-02-03] ()
Startup: C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2018-12-16]
ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe ()
Startup: C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2018-12-16]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Rainmeter)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{66026a3c-4656-405d-afe7-382744cbca8d}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2018-10-31] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2018-10-31] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation)
Edge:
======
Edge Extension: (BookReader) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets [2018-09-15]
Edge Extension: (PinJSAPI) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [2018-09-15]
FireFox:
========
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-10-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-12-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/ig
CHR Profile: C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default [2018-12-17]
CHR Extension: (Prezentace) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-16]
CHR Extension: (Dokumenty) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-16]
CHR Extension: (Disk Google) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-16]
CHR Extension: (YouTube) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-16]
CHR Extension: (uBlock Origin) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-12-16]
CHR Extension: (Tabulky) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-16]
CHR Extension: (Slinky Nádherný) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcckgldbanlfkbiacmgbanilapghpihj [2018-12-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-16]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2018-12-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-16]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-12-16]
CHR Extension: (Gmail) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-16]
CHR Extension: (Chrome Media Router) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-16]
CHR HKU\S-1-5-21-3677593479-3605439763-291132835-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 BrokerInfrastructure; C:\Windows\System32\psmsrv.dll [241664 2018-12-16] (Microsoft Corporation)
S3 cbdhsvc; C:\Windows\System32\cbdhsvc.dll [961024 2018-09-15] (Microsoft Corporation)
S3 ConsentUxUserSvc; C:\Windows\System32\ConsentUxClient.dll [157696 2018-09-15] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-12-16] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-12-16] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\System32\DbxSvc.exe [51024 2018-12-13] (Dropbox, Inc.)
R3 DisplayEnhancementService; C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [915968 2018-12-16] (Microsoft Corporation)
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [443872 2018-12-12] (Google Inc.)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373728 2017-11-21] (Intel Corporation)
S3 perceptionsimulation; C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe [78848 2018-09-15] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381624 2018-09-15] (Microsoft Corporation)
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-17] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-17] (Microsoft Corporation)
S3 WManSvc; C:\Windows\system32\Windows.Management.Service.dll [370176 2018-09-15] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AVerPola; C:\Windows\system32\DRIVERS\AVerPola.sys [871056 2015-05-21] (AVerMedia TECHNOLOGIES, Inc.)
R3 AVPolDIR; C:\Windows\System32\drivers\AVPolDIR.sys [15896 2015-05-21] (AVerMedia TECHNOLOGIES, Inc.)
R1 BasicDisplay; C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_5103ac179273be89\BasicDisplay.sys [68096 2018-09-15] (Microsoft Corporation)
R1 BasicRender; C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_0b8d03c3bc0e7fd9\BasicRender.sys [37376 2018-09-15] (Microsoft Corporation)
R3 bcmsmbsp; C:\Windows\System32\drivers\bcmsmbsp.sys [54552 2015-12-17] (Broadcom Corporation.)
S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [34816 2018-09-15] (Microsoft Corporation)
S3 hidspi; C:\Windows\System32\drivers\hidspi.sys [60928 2018-09-15] (Microsoft Corporation)
S3 iaLPSS2i_GPIO2_CNL; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2018-09-15] (Intel Corporation)
S3 iaLPSS2i_GPIO2_GLK; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2018-09-15] (Intel Corporation)
S3 iaLPSS2i_I2C_CNL; C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [180736 2018-09-15] (Intel Corporation)
S3 iaLPSS2i_I2C_GLK; C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2018-09-15] (Intel Corporation)
S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [91584 2018-12-17] (Malwarebytes)
S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [290816 2018-09-15] (Microsoft Corporation)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [53760 2018-09-15] (Microsoft Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvla.inf_amd64_38587415c9a641cb\nvlddmkm.sys [17036560 2018-02-13] (NVIDIA Corporation)
S3 PktMon; C:\Windows\System32\drivers\PktMon.sys [85504 2018-09-15] (Microsoft Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [605696 2018-09-15] (Realtek )
R3 RTWlanE; C:\Windows\System32\drivers\rtwlane.sys [8169472 2018-09-15] (Realtek Semiconductor Corporation )
S0 SmartSAMD; C:\Windows\System32\drivers\SmartSAMD.sys [219960 2018-09-15] (Microsemi Corportation)
S3 smbdirect; C:\Windows\System32\DRIVERS\smbdirect.sys [171520 2018-09-15] (Microsoft Corporation)
S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [31232 2018-09-15] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [99840 2018-09-15] (Microsoft Corporation)
R3 VMC412; C:\Windows\System32\Drivers\VMC412.sys [241920 2015-06-19] (Vimicro Corporation)
R3 vmuacflt; C:\Windows\System32\Drivers\vmuacflt.sys [24576 2015-06-12] (Vimicro Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46680 2018-12-17] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [330936 2018-12-17] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-17] (Microsoft Corporation)
R3 WinQuic; C:\Windows\System32\drivers\winquic.sys [156984 2018-09-15] (Microsoft Corporation)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-12-17] (Zemana Ltd.)
S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
NETSVC: WManSvc -> C:\Windows\system32\Windows.Management.Service.dll (Microsoft Corporation)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-12-17 07:50 - 2018-12-17 07:51 - 000016194 _____ C:\Users\Čud\Downloads\FRST.txt
2018-12-17 07:50 - 2018-12-17 07:50 - 000000000 ____D C:\FRST
2018-12-17 07:49 - 2018-12-17 07:49 - 002417152 _____ (Farbar) C:\Users\Čud\Downloads\FRST64.exe
2018-12-17 07:38 - 2018-12-17 07:39 - 000091584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-12-17 07:38 - 2018-12-17 07:38 - 000000000 ____D C:\Program Files\Malwarebytes
2018-12-17 07:36 - 2018-12-17 07:37 - 054199488 _____ (Malwarebytes ) C:\Users\Čud\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2018-12-17 07:34 - 2018-12-17 07:50 - 000034299 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-12-17 07:34 - 2018-12-17 07:46 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-12-17 07:34 - 2018-12-17 07:41 - 000116955 _____ C:\Windows\ZAM.krnl.trace
2018-12-17 07:34 - 2018-12-17 07:34 - 006624296 _____ (Zemana Ltd. ) C:\Users\Čud\Downloads\Zemana.AntiMalware.Setup.exe
2018-12-17 07:34 - 2018-12-17 07:34 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2018-12-17 07:34 - 2018-12-17 07:34 - 000000000 ____D C:\Users\Čud\AppData\Local\Zemana
2018-12-17 06:39 - 2018-12-17 06:39 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\OneDrive
2018-12-17 06:24 - 2018-12-17 06:24 - 000000000 ____D C:\Users\Miguel Sun\AppData\LocalLow\Temp
2018-12-17 06:20 - 2018-12-17 06:20 - 000000000 ____D C:\Users\Miguel Sun\AppData\LocalLow\Adobe
2018-12-17 06:20 - 2018-12-17 06:20 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Adobe
2018-12-17 05:53 - 2018-12-17 05:53 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Comms
2018-12-17 05:48 - 2018-12-17 05:48 - 000000000 ____D C:\Users\Miguel Sun\AppData\Roaming\Google
2018-12-17 05:47 - 2018-12-17 05:47 - 002046576 _____ (WiperSoft) C:\Users\Miguel Sun\Downloads\WiperSoft-installer.exe
2018-12-17 05:43 - 2018-12-17 07:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\PlaceholderTileLogoFolder
2018-12-17 05:42 - 2018-12-17 05:47 - 000003386 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3677593479-3605439763-291132835-1002
2018-12-17 05:42 - 2018-12-17 05:47 - 000000000 ___RD C:\Users\Miguel Sun\OneDrive
2018-12-17 05:42 - 2018-12-17 05:42 - 000000000 ___HD C:\Users\Miguel Sun\MicrosoftEdgeBackups
2018-12-17 05:41 - 2018-12-17 05:42 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Dropbox
2018-12-17 05:41 - 2018-12-17 05:41 - 000001446 _____ C:\Users\Miguel Sun\Desktop\Microsoft Edge.lnk
2018-12-17 05:40 - 2018-12-17 07:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Packages
2018-12-17 05:40 - 2018-12-17 06:20 - 000000000 ____D C:\Users\Miguel Sun\AppData\Roaming\Adobe
2018-12-17 05:40 - 2018-12-17 05:54 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Google
2018-12-17 05:40 - 2018-12-17 05:43 - 000002332 _____ C:\Users\Miguel Sun\Desktop\Google Chrome.lnk
2018-12-17 05:40 - 2018-12-17 05:42 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\MicrosoftEdge
2018-12-17 05:40 - 2018-12-17 05:40 - 000000000 ___RD C:\Users\Miguel Sun\3D Objects
2018-12-17 05:40 - 2018-12-17 05:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\VirtualStore
2018-12-17 05:40 - 2018-12-17 05:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Publishers
2018-12-17 05:39 - 2018-12-17 05:49 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Launchy
2018-12-17 05:39 - 2018-12-17 05:47 - 000002402 _____ C:\Users\Miguel Sun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-17 05:39 - 2018-12-17 05:42 - 000000000 ____D C:\Users\Miguel Sun
2018-12-17 05:39 - 2018-12-17 05:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\ConnectedDevicesPlatform
2018-12-17 05:39 - 2018-12-17 05:39 - 000000020 ___SH C:\Users\Miguel Sun\ntuser.ini
2018-12-17 05:39 - 2018-12-17 05:39 - 000000000 __SHD C:\Users\Miguel Sun\IntelGraphicsProfiles
2018-12-17 05:39 - 2018-12-17 05:39 - 000000000 ____D C:\Users\Čud\AppData\Local\DBG
2018-12-17 05:39 - 2018-12-16 13:52 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Microsoft Help
2018-12-16 17:26 - 2018-12-16 17:26 - 001130840 _____ (Google Inc.) C:\Users\Čud\Downloads\installbackupandsync.exe
2018-12-16 17:26 - 2018-12-16 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2018-12-16 17:26 - 2018-12-16 17:26 - 000000000 ____D C:\ProgramData\Caphyon
2018-12-16 17:26 - 2018-12-16 17:26 - 000000000 ____D C:\Program Files\Google
2018-12-16 17:23 - 2018-12-16 17:23 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Blizzard
2018-12-16 16:53 - 2018-12-16 16:53 - 000000000 ____D C:\ProgramData\Apple Computer
2018-12-16 16:53 - 2018-12-16 16:53 - 000000000 ____D C:\ProgramData\Apple
2018-12-16 14:10 - 2018-12-16 14:10 - 026807296 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 024617472 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 023440384 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 022112072 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 020811776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 019284992 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 019024384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 015224832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 012858368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 012151296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 011724288 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 009941504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 007856640 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 007724776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 006925824 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 006543736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 006306152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 006057984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005764608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005585056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005565440 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005439808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005113008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004918784 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004886016 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004765184 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004588736 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 004306432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004300800 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003951192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003744256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003601920 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003577856 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003566080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003550592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003504640 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003427328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003108864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002985328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002927104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 002883584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002879488 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002777224 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002702536 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002689536 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002626360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 002469440 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002429752 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2018-12-16 14:10 - 2018-12-16 14:10 - 002346496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002323904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002278240 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002275896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002160160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2018-12-16 14:10 - 2018-12-16 14:10 - 002086400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002072384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001994768 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001969464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 001899160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001863168 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001819136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001749504 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001720936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001711104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001699840 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001696216 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-12-16 14:10 - 2018-12-16 14:10 - 001688576 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001675712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001674688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001672056 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001671680 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001641592 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001506304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001483264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001467344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001466872 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001456736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001395248 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001391096 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001388032 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001360696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 001341376 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-12-16 14:10 - 2018-12-16 14:10 - 001309696 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001294864 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001294848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001289400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001282432 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001279024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001267712 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001259000 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2018-12-16 14:10 - 2018-12-16 14:10 - 001254912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001249792 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001221528 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001200920 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001192448 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001182720 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2018-12-16 14:10 - 2018-12-16 14:10 - 001180760 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001177632 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001166336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2018-12-16 14:10 - 2018-12-16 14:10 - 001162280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001110528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001097312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001073448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001057976 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001056256 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001026992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001024920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001019392 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000964976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000953856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000949760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000947200 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000925184 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000915968 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000901632 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000889344 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000883200 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000882688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000854784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000833536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000829440 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000787456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000782968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000772096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000763032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000729088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000703488 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000701440 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000684032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000669184 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationFrame.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000654848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000585728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000535048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000515584 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000514112 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_PCDisplay.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Activities.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000454160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000454144 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000449024 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000430904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000429056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000424960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000398848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000383288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000373768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\coml2.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000359424 _____ (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000358400 _____ (Microsoft Corporation) C:\Windows\regedit.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000329216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedit.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssecflt.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000301096 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000286208 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000275456 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000256512 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000252536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000241680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000218624 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000218624 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000195072 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000176440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000173568 _____ (Microsoft Corporation) C:\Windows\system32\WPTaskScheduler.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000166400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\CastingShellExt.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CastingShellExt.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000114344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000094224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000091640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\iscsiwmi.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\SMSRouter.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBth.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msisip.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 017520640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 009677624 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 007685016 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 007645392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 006132736 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 005312512 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 005130752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003983360 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003662336 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 003556352 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003380224 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003379000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 003337800 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003334144 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003092480 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002988544 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002843136 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002721792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 002654208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002630656 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002618880 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002594872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002488320 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 002466304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002435296 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002186752 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002185728 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002149352 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002085168 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002020560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001975296 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001903616 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001884672 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001842600 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001751560 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001715712 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001664904 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001612808 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001602560 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001496064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001462272 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001401864 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001387496 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001331264 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001315840 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001287776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001255928 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 001219584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 001212416 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001199104 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 001053352 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 001051960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 001051136 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 001048576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001032704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001005568 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000955392 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000918304 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000897848 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000890368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000854016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000836096 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000828936 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000817160 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000801792 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000756640 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000752128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000744960 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000743432 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000681984 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000680184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000667152 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000660496 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000653312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000650040 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000649736 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000647168 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000609792 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000604336 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000582240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000566584 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000542720 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000531976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000519992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Vid.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000518656 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000514048 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000506408 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000495624 _____ (Microsoft Corporation) C:\Windows\system32\TransportDSA.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000478208 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000473616 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000468992 _____ (Microsoft Corporation) C:\Windows\system32\coml2.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000421376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\eeprov.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000406528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000402576 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000400384 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000398848 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000398416 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000394240 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000378368 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000371200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\icsvcext.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000306704 _____ (Microsoft Corporation) C:\Windows\system32\computestorage.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000303616 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000300024 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000298536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000294072 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000275768 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000266240 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000246784 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000193016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\appsruprov.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSrv.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000164344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000164288 _____ (Microsoft Corporation) C:\Windows\system32\vertdll.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000156984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000151872 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000140600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000130088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000120832 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000114648 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000102392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000095544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storqosflt.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcnfs.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000083472 _____ (Microsoft Corporation) C:\Windows\system32\vid.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsiwmi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000055608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\iorate.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mmcss.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000046392 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wpnsruprov.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2018-12-16 14:05 - 2018-12-16 14:06 - 000000000 ____D C:\Windows\system32\MRT
2018-12-16 14:05 - 2018-12-16 14:05 - 137260640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-12-16 14:03 - 2018-12-16 14:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-12-16 13:52 - 2018-12-16 13:52 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2018-12-16 13:52 - 2018-12-16 13:52 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2018-12-16 13:35 - 2018-12-16 13:34 - 000592616 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-12-16 11:42 - 2018-12-16 11:42 - 000000000 ____D C:\Users\Čud\AppData\LocalLow\Adobe
2018-12-16 11:41 - 2018-12-17 05:54 - 000004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-12-16 11:41 - 2018-12-17 05:54 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-12-16 11:41 - 2018-12-16 11:41 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-12-16 11:40 - 2018-12-17 05:51 - 000000000 ____D C:\ProgramData\Adobe
2018-12-16 11:38 - 2018-12-16 11:42 - 000000000 ____D C:\Users\Čud\AppData\Local\Adobe
2018-12-16 11:35 - 2018-12-16 11:35 - 000003936 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-12-16 11:35 - 2018-12-16 11:35 - 000002884 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Launchy
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\Users\Čud\AppData\Local\PeerDistRepub
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\Program Files\CCleaner
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\Program Files (x86)\Launchy
2018-12-16 11:34 - 2018-12-17 05:38 - 000000934 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2018-12-16 11:34 - 2018-12-17 05:38 - 000000930 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2018-12-16 11:34 - 2018-12-16 11:37 - 000000000 ____D C:\Users\Čud\AppData\Local\Dropbox
2018-12-16 11:34 - 2018-12-16 11:35 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-12-16 11:34 - 2018-12-16 11:34 - 004551897 _____ (Code Jelly ) C:\Users\Čud\Downloads\Launchy2.5.exe
2018-12-16 11:34 - 2018-12-16 11:34 - 000696608 _____ (Dropbox, Inc.) C:\Users\Čud\Downloads\DropboxInstaller.exe
2018-12-16 11:34 - 2018-12-16 11:34 - 000003994 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2018-12-16 11:34 - 2018-12-16 11:34 - 000003762 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2018-12-16 11:34 - 2018-12-16 11:34 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Dropbox
2018-12-16 11:34 - 2018-12-16 11:34 - 000000000 ____D C:\ProgramData\Dropbox
2018-12-16 11:21 - 2018-09-14 18:05 - 005739008 _____ (Microsoft Corporation) C:\Windows\system32\prm0009.dll
2018-12-16 11:21 - 2018-09-14 18:04 - 002629120 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2018-12-16 11:21 - 2018-09-14 17:50 - 006347776 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0009.dll
2018-12-16 11:21 - 2018-09-14 17:34 - 005489664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0009.dll
2018-12-16 11:20 - 2018-12-16 14:05 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2018-12-16 11:20 - 2018-12-16 11:20 - 004868680 _____ C:\Users\Čud\Downloads\cosmic_flow_by_alcaaz-d6khj49.rmskin
2018-12-16 11:20 - 2018-12-16 11:20 - 000000000 ____D C:\Windows\PCHEALTH
2018-12-16 11:20 - 2018-12-16 11:20 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2018-12-16 11:19 - 2018-12-16 11:20 - 000000000 ____D C:\Windows\SHELLNEW
2018-12-16 11:19 - 2018-12-16 11:19 - 000000000 ____D C:\Users\Čud\AppData\Local\Microsoft Help
2018-12-16 11:19 - 2018-12-16 11:19 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2018-12-16 11:18 - 2018-12-16 11:20 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-12-16 11:18 - 2018-12-16 11:18 - 000000000 __RHD C:\MSOCache
2018-12-16 11:18 - 2018-12-16 11:18 - 000000000 ____D C:\Program Files\Microsoft Office
2018-12-16 11:15 - 2018-12-16 11:15 - 000087566 _____ C:\Users\Čud\Downloads\translucenttaskbar_1_2_by_arkenthera-dausz1z.rmskin
2018-12-16 11:13 - 2018-12-16 11:13 - 004631473 _____ C:\Users\Čud\Downloads\ui_white___1_3f_by_dd_921-d9tv718.rmskin
2018-12-16 11:10 - 2018-12-16 11:10 - 001867602 _____ C:\Users\Čud\Downloads\unFold with transparency.rmskin
2018-12-16 11:09 - 2018-12-16 11:20 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Rainmeter
2018-12-16 11:09 - 2018-12-16 11:09 - 002446640 _____ (Rainmeter) C:\Users\Čud\Downloads\Rainmeter-4.2.exe
2018-12-16 11:09 - 2018-12-16 11:09 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2018-12-16 11:09 - 2018-12-16 11:09 - 000000000 ____D C:\Users\Čud\Documents\Rainmeter
2018-12-16 11:09 - 2018-12-16 11:09 - 000000000 ____D C:\Program Files\Rainmeter
2018-12-16 11:06 - 2018-12-16 11:06 - 019299120 _____ (Piriform Software Ltd) C:\Users\Čud\Downloads\ccsetup551.exe
2018-12-16 11:05 - 2018-12-17 07:46 - 000000000 __SHD C:\Users\Čud\IntelGraphicsProfiles
2018-12-16 10:46 - 2018-12-16 10:46 - 000000000 ____D C:\Windows\VMC412
2018-12-16 10:45 - 2018-12-17 07:46 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-12-16 10:45 - 2018-12-16 11:05 - 000000000 ____D C:\Intel
2018-12-16 10:45 - 2018-12-16 10:45 - 000000200 _____ C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2018-12-16 10:45 - 2018-12-16 10:45 - 000000000 ____D C:\Program Files\Intel
2018-12-16 10:45 - 2018-12-16 10:45 - 000000000 ____D C:\Program Files (x86)\Intel
2018-12-16 10:45 - 2018-12-16 10:45 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____D C:\Windows\SysWOW64\sda
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____D C:\Windows\system32\DAX2
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____D C:\Program Files\Realtek
2018-12-16 10:39 - 2018-12-16 16:53 - 000000000 ____D C:\ProgramData\Packages
2018-12-16 10:39 - 2018-12-16 10:39 - 000000000 ____D C:\Users\Čud\AppData\Local\Comms
2018-12-16 10:37 - 2018-12-17 07:46 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-16 10:37 - 2018-12-16 10:37 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-12-16 10:37 - 2018-12-16 10:37 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-12-16 10:37 - 2018-02-13 06:54 - 000541456 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2018-12-16 10:37 - 2017-12-19 04:22 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2018-12-16 10:37 - 2017-12-19 03:43 - 005964872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 002589168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 001767224 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 000609312 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 000450360 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 000122768 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 000081808 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2018-12-16 10:37 - 2017-12-14 10:59 - 007917671 _____ C:\Windows\system32\nvcoproc.bin
2018-12-16 10:37 - 2017-09-14 00:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2018-12-16 10:37 - 2017-09-14 00:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2018-12-16 10:37 - 2017-09-14 00:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2018-12-16 10:37 - 2017-09-14 00:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2018-12-16 10:36 - 2018-12-16 10:37 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-12-16 10:36 - 2018-12-16 10:37 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-12-16 10:32 - 2018-12-16 10:32 - 001604424 _____ (Blue Coat Systems, Inc.) C:\Users\Čud\Downloads\k9-webprotection.exe
2018-12-16 10:31 - 2018-12-16 16:53 - 000000000 ____D C:\Users\Čud\AppData\Local\PlaceholderTileLogoFolder
2018-12-16 10:31 - 2018-12-16 10:31 - 000000000 ____D C:\Users\Čud\AppData\Local\D3DSCache
2018-12-16 10:30 - 2018-12-16 10:30 - 000003372 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3677593479-3605439763-291132835-1001
2018-12-16 10:30 - 2018-12-16 10:30 - 000002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-16 10:30 - 2018-12-16 10:30 - 000000000 ___RD C:\Users\Čud\OneDrive
2018-12-16 10:30 - 2018-12-16 10:30 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Google
2018-12-16 10:29 - 2018-12-16 17:27 - 000000000 ____D C:\Users\Čud\AppData\Local\Google
2018-12-16 10:29 - 2018-12-16 10:30 - 000000000 ____D C:\Program Files (x86)\Google
2018-12-16 10:29 - 2018-12-16 10:29 - 000003472 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-16 10:29 - 2018-12-16 10:29 - 000003348 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-12-16 10:29 - 2018-12-16 10:29 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-12-16 10:28 - 2018-12-16 10:28 - 000000000 ___HD C:\Users\Čud\MicrosoftEdgeBackups
2018-12-16 10:28 - 2018-12-16 10:28 - 000000000 ____D C:\Users\Čud\AppData\Local\MicrosoftEdge
2018-12-16 10:27 - 2018-12-17 07:43 - 000000000 ____D C:\Users\Čud\AppData\Local\VirtualStore
2018-12-16 10:27 - 2018-12-17 07:41 - 000000000 ____D C:\Users\Čud\AppData\Local\Packages
2018-12-16 10:27 - 2018-12-17 07:35 - 000000000 ____D C:\Users\Čud
2018-12-16 10:27 - 2018-12-17 05:45 - 001606102 _____ C:\Windows\system32\PerfStringBackup.INI
2018-12-16 10:27 - 2018-12-17 05:40 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-12-16 10:27 - 2018-12-17 05:39 - 000000000 ___RD C:\Users\Čud\3D Objects
2018-12-16 10:27 - 2018-12-16 11:42 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Adobe
2018-12-16 10:27 - 2018-12-16 11:18 - 000000000 ____D C:\Users\Čud\AppData\Local\Publishers
2018-12-16 10:27 - 2018-12-16 10:30 - 000002381 _____ C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-16 10:27 - 2018-12-16 10:27 - 000000020 ___SH C:\Users\Čud\ntuser.ini
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Šablony
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Soubory cookie
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Poslední
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Okolní tiskárny
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Okolní síť
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Nabídka Start
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Dokumenty
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Documents\Obrázky
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Documents\Hudba
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Documents\Filmy
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Data aplikací
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\AppData\Local\Data aplikací
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 ____D C:\Users\Čud\AppData\Local\ConnectedDevicesPlatform
2018-12-16 10:25 - 2018-12-16 10:25 - 000000000 ____D C:\Windows\CSC
2018-12-16 10:25 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Šablony
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Poslední
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Okolní síť
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Dokumenty
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Data aplikací
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Šablony
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Plocha
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Dokumenty
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Data aplikací
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Documents and Settings
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2018-12-16 10:19 - 2018-12-16 10:19 - 000000000 ____D C:\ProgramData\USOShared
2018-12-16 10:17 - 2018-12-17 07:46 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-12-16 10:17 - 2018-12-17 07:29 - 000000000 ____D C:\Windows\system32\SleepStudy
2018-12-16 10:17 - 2018-12-17 05:49 - 000000000 ____D C:\Windows\system32\Drivers\wd
2018-12-16 10:17 - 2018-12-17 05:38 - 000445720 _____ C:\Windows\system32\FNTCACHE.DAT
2018-12-16 10:17 - 2018-12-16 10:17 - 000000000 ____D C:\Windows\ServiceProfiles
2018-12-16 10:14 - 2018-12-17 07:45 - 000000000 ____D C:\Windows\Panther
2018-12-13 06:12 - 2018-12-13 06:12 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-12-17 07:46 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-17 07:45 - 2018-09-15 08:31 - 000000000 ____D C:\Windows\INF
2018-12-17 07:45 - 2018-09-15 07:09 - 000524288 _____ C:\Windows\system32\config\BBI
2018-12-17 07:41 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\AppReadiness
2018-12-17 07:40 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2018-12-17 05:49 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2018-12-17 05:45 - 2018-09-15 18:39 - 000682358 _____ C:\Windows\system32\perfh005.dat
2018-12-17 05:45 - 2018-09-15 18:39 - 000137076 _____ C:\Windows\system32\perfc005.dat
2018-12-16 20:46 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-12-16 20:46 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\TextInput
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\oobe
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\migwiz
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\appraiser
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellExperiences
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellComponents
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\bcastdvr
2018-12-16 14:11 - 2018-09-15 08:23 - 000000000 ____D C:\Windows\CbsTemp
2018-12-16 14:04 - 2018-09-15 08:31 - 000000167 _____ C:\Windows\win.ini
2018-12-16 13:50 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-12-16 11:36 - 2018-09-15 07:09 - 000000000 ____D C:\Windows\servicing
2018-12-16 11:21 - 2018-09-15 18:40 - 000000000 ____D C:\Windows\OCR
2018-12-16 10:38 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ServiceState
2018-12-16 10:37 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\Help
2018-12-16 10:27 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2018-12-16 10:25 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\spool
2018-12-16 10:25 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\FxsTmp
2018-12-16 10:23 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2018-12-16 10:19 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\USOPrivate
2018-12-16 10:18 - 2018-09-15 08:33 - 000000000 ___RD C:\Windows\PrintDialog
2018-12-16 10:18 - 2018-09-15 08:33 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2018-12-16 10:18 - 2018-09-15 07:09 - 000032768 _____ C:\Windows\system32\config\ELAM
2018-12-16 10:14 - 2018-09-15 08:31 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2018-12-01 04:53 - 2018-09-15 08:36 - 000835688 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-12-01 04:53 - 2018-09-15 08:36 - 000179808 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.12.2018
Ran by Čud (17-12-2018 07:51:36)
Running from C:\Users\Čud\Downloads
Windows 10 Pro Version 1809 17763.194 (X64) (2018-12-16 09:23:32)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3677593479-3605439763-291132835-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3677593479-3605439763-291132835-503 - Limited - Disabled)
Guest (S-1-5-21-3677593479-3605439763-291132835-501 - Limited - Disabled)
Miguel Sun (S-1-5-21-3677593479-3605439763-291132835-1002 - Limited - Enabled) => C:\Users\Miguel Sun
WDAGUtilityAccount (S-1-5-21-3677593479-3605439763-291132835-504 - Limited - Disabled)
Čud (S-1-5-21-3677593479-3605439763-291132835-1001 - Administrator - Enabled) => C:\Users\Čud
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20064 - Adobe Systems Incorporated)
Backup and Sync from Google (HKLM\...\{608EBDC6-D18A-4CF6-AD54-EE6B71D29065}) (Version: 3.43.1584.4446 - Google, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
Dropbox (HKLM-x32\...\Dropbox) (Version: 63.4.107 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Launchy 2.5 (HKLM-x32\...\Launchy_21344213_is1) (Version: - Code Jelly)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3677593479-3605439763-291132835-1001\...\OneDriveSetup.exe) (Version: 18.143.0717.0002 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM-x32\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM-x32\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
NVIDIA Ovladače grafiky 388.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.73 - NVIDIA Corporation)
Ovládací panel NVIDIA 388.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.73 - NVIDIA Corporation) Hidden
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.2 r3111 - Rainmeter)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7576 - Realtek Semiconductor Corp.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2017-11-21] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-12-19] (NVIDIA Corporation)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {146B1519-65B2-431F-9311-3A6A186E775F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-12-16] (Google Inc.)
Task: {1AE8B7C8-DD18-42F8-BF30-8BB993E02A21} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {31B3AB7B-D1A3-4D83-8343-DEBB97C33168} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-12-10] (Piriform Ltd)
Task: {5D310A5D-BCCC-48C1-92CB-F07086440520} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-12-16] (Google Inc.)
Task: {60C5FC05-2C02-4A35-B536-7067ECF2B59F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-12-10] (Piriform Software Ltd)
Task: {62F54778-2E13-480B-BFB9-5F402DA0DCCA} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-12-16] (Dropbox, Inc.)
Task: {7A35A2E3-3CB4-4E28-B98D-832C02003592} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {AD4E8AFB-A48C-4E13-BE83-B8D87600CFB4} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync
Task: {AEECD160-6A38-48C0-99A2-54677392E181} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-12-16] (Dropbox, Inc.)
Task: {B3039EB3-1DEC-4F6B-A89C-B4ADEB9489D2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {BD21C377-5B30-4E5A-B6F2-37D2086885E5} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives
Task: {D4E3D108-DAEC-436B-8726-F549CEEBDC98} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] ()
Task: {FF5430DF-1B95-4B03-BCF8-375603F8B7C2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\Windows\System32\InputHost.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2017-11-21 02:59 - 2017-11-21 02:59 - 000401888 _____ () C:\Windows\system32\igfxTray.exe
2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-09-15 18:41 - 2018-09-15 18:41 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-16 11:03 - 2018-12-16 11:03 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-16 11:03 - 2018-12-16 11:03 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-04 19:44 - 2018-10-04 19:44 - 046459080 _____ () C:\Program Files\Google\Drive\googledrivesync.exe
2018-12-16 16:51 - 2018-12-16 16:53 - 000088888 _____ () C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\zlib1.dll
2018-12-16 16:51 - 2018-12-16 16:52 - 001356088 _____ () C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\libxml2.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000380928 _____ () C:\Program Files (x86)\Launchy\Launchy.exe
2018-07-08 12:04 - 2018-07-08 12:04 - 000322048 _____ () C:\Program Files\Rainmeter\Plugins\ActionTimer.DLL
2018-12-16 11:15 - 2018-12-16 11:15 - 000091136 _____ () C:\Users\Čud\AppData\Roaming\Rainmeter\Plugins\TranslucentTaskbar.DLL
2018-12-16 10:30 - 2018-12-12 06:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-16 10:30 - 2018-12-12 06:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll
2018-12-17 07:46 - 2018-12-17 07:46 - 000113664 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_ctypes.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000080896 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\bz2.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001792512 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_hashlib.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000128512 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32api.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000137728 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\pywintypes27.dll
2018-12-17 07:46 - 2018-12-17 07:46 - 000548864 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\pythoncom27.dll
2018-12-17 07:46 - 2018-12-17 07:46 - 000689664 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\unicodedata.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000438784 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32com.shell.shell.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001489408 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._core_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001007104 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._gdi_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001039872 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._windows_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001325056 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._controls_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000916992 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._misc_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001084416 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\pysqlite2._sqlite.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000149504 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32file.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000136192 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32security.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000007680 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\hashobjs_ext.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000020992 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\thumbnails_ext.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000118784 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\usb_ext.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000047616 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_socket.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 002224640 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_ssl.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000014848 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\common.time34.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000023040 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32event.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000034304 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.conditional.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000020480 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.winwrap.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000110080 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.volumes.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000223232 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32gui.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000173568 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_elementtree.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000169472 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\pyexpat.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000048128 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32inet.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000103424 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._html2.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000046080 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_psutil_windows.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000633272 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows._cacheinvalidation.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000011776 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32crypt.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000301568 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\PIL._imaging.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000032256 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_multiprocessing.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 005752320 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\cello.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000026112 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_yappi.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000044032 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32process.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000027648 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32pipe.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000010752 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\select.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000029696 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32pdh.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000038400 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.connectivity.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000073216 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.device_monitor.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000020480 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32profile.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000026624 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32ts.pyd
2018-12-16 10:59 - 2018-12-16 10:59 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-12-16 10:59 - 2018-12-16 10:59 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-16 10:59 - 2018-12-16 10:59 - 001754112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-12-16 11:35 - 2009-12-16 21:54 - 002236416 _____ () C:\Program Files (x86)\Launchy\QtCore4.dll
2018-12-16 11:35 - 2009-12-16 21:56 - 000712704 _____ () C:\Program Files (x86)\Launchy\QtNetwork4.dll
2018-12-16 11:35 - 2009-12-16 22:13 - 008314880 _____ () C:\Program Files (x86)\Launchy\QtGui4.dll
2018-12-16 11:35 - 2009-12-17 00:18 - 000233472 _____ () C:\Program Files (x86)\Launchy\imageformats\qmng4.dll
2018-12-16 11:35 - 2010-11-10 19:39 - 000081920 _____ () C:\Program Files (x86)\Launchy\plugins\calcy.dll
2018-12-16 11:35 - 2010-11-10 19:39 - 000090112 _____ () C:\Program Files (x86)\Launchy\plugins\controly.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000024064 _____ () C:\Program Files (x86)\Launchy\plugins\gcalc.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000094208 _____ () C:\Program Files (x86)\Launchy\plugins\runner.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000057344 _____ () C:\Program Files (x86)\Launchy\plugins\verby.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000122880 _____ () C:\Program Files (x86)\Launchy\plugins\weby.dll
2018-12-16 11:35 - 2018-12-13 06:12 - 001140552 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2018-12-16 11:35 - 2018-12-13 06:12 - 002103112 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2018-12-16 11:35 - 2018-12-13 06:16 - 000023376 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000025456 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000148968 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 001878888 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000118232 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll
2018-12-16 11:35 - 2018-12-13 06:12 - 000109024 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000083784 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000418776 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll
2018-12-16 11:35 - 2018-12-13 06:15 - 000074072 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000049128 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000026600 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000131552 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000182752 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000119272 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000401752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000034664 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000062304 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000023520 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000053736 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000065504 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:14 - 000025944 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000068968 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000032224 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000156504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000092496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt562.sip.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 001778000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000518992 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000052056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 001929552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 003821392 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000044888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000132944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000218456 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000205656 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000061408 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000051552 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000027624 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000033632 _____ () C:\Program Files (x86)\Dropbox\Client\winreindex.compiled._winreindex.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000028008 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000031600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000486880 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000102736 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000029040 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 011727696 _____ () C:\Program Files (x86)\Dropbox\Client\nucleus_python.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000029024 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2018-12-16 11:35 - 2018-12-13 06:15 - 000036712 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000272208 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2018-12-16 11:35 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000433992 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2018-12-16 11:35 - 2018-12-13 06:16 - 000035680 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000025920 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2018-12-16 11:35 - 2018-12-13 06:15 - 001592128 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2018-12-16 11:35 - 2018-12-13 06:16 - 000095592 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shcore.compiled._winffi_shcore.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shell32.compiled._winffi_shell32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.gdi32.compiled._winffi_gdi32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000530768 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000348496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000037200 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.cp35-win32.pyd
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3677593479-3605439763-291132835-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Čud\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\cool-wallpaper-forest-hawaii-38136.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\StartupFolder: => "updateSteam.bat"
HKU\S-1-5-21-3677593479-3605439763-291132835-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe
FirewallRules: [{A6E1D96A-2996-42EF-A3B7-D565EDBEDB6D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FE71C21F-459D-4981-903F-464F174D9516}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{50718EFF-B084-428F-B0E3-986519DD891E}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{CB9B55DE-C58B-47B4-B7BF-30C4B41BB862}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{9C326BD8-B8C7-459A-979A-8055E1ECE979}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{57CAEC6E-AF7F-4653-BE3D-A1E98FB6AA71}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{FF026DA4-DCBB-4FCB-8BD9-B1354A8061EB}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{B300BA81-0625-47E6-8867-8A78A7D8FED1}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{E023AABC-D78B-48C5-B521-B8F2D75CF722}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{312D627D-FC01-475C-A399-4D2A0F5796AF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{288CCD17-8583-4748-899B-459B825CF0E3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{7B6BC895-81DB-4629-9FCF-FE187EEBCF74}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{B9CE7715-BCE9-4474-9841-6C15C06BAE5D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{6148AE30-F085-4A8B-81DE-F8A0D993550A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{0CF96BE0-1C25-4E13-81DA-1ECF645A2526}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{42EF5803-AB13-4E39-94A7-4776F70B04DB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
==================== Restore Points =========================
16-12-2018 10:35:43 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/17/2018 07:48:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.17763.134, časové razítko: 0x1cb1ad5b
Název chybujícího modulu: VimicroAPOX64.dll, verze: 334.7.2.6, časové razítko: 0x5343d46e
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000014214
ID chybujícího procesu: 0xf0c
Čas spuštění chybující aplikace: 0x01d495d43923cc61
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\VimicroAPOX64.dll
ID zprávy: 1ddf0d70-f4c2-4504-bfe4-a9330dfd17f3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/17/2018 07:40:53 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.
Error: (12/17/2018 07:39:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 3.0.0.865, časové razítko: 0x584ee8a0
Název chybujícího modulu: Qt5Core.dll, verze: 5.6.2.0, časové razítko: 0x5849a1dc
Kód výjimky: 0xc0000005
Posun chyby: 0x00192cf1
ID chybujícího procesu: 0x2e94
Čas spuštění chybující aplikace: 0x01d495d325c57ca3
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: 2933160f-38b1-4b22-a4e3-7231b552022e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/17/2018 07:38:42 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.
Error: (12/17/2018 07:31:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.17763.134, časové razítko: 0x1cb1ad5b
Název chybujícího modulu: VimicroAPOX64.dll, verze: 334.7.2.6, časové razítko: 0x5343d46e
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000014214
ID chybujícího procesu: 0xb0c
Čas spuštění chybující aplikace: 0x01d495d22c1ee25e
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\VimicroAPOX64.dll
ID zprávy: 195b5ab1-c74d-4432-ac7a-ebcdcba452fd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/17/2018 05:44:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.17763.134, časové razítko: 0x1cb1ad5b
Název chybujícího modulu: VimicroAPOX64.dll, verze: 334.7.2.6, časové razítko: 0x5343d46e
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000014214
ID chybujícího procesu: 0x1180
Čas spuštění chybující aplikace: 0x01d495c26448e03f
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\VimicroAPOX64.dll
ID zprávy: aca0cefe-5416-4a3f-8607-4490f22f9b69
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/17/2018 05:39:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program ShellExperienceHost.exe verze 10.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1684
Čas spuštění: 01d495c27794ad49
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
ID hlášení: 08cc3575-a45d-475f-a261-85cd7f8f78cc
Úplný název balíčku s chybou: Microsoft.Windows.ShellExperienceHost_10.0.17763.1_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Quiesce
Error: (12/16/2018 08:45:52 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1512) (User: NT AUTHORITY)
Description: Systém Windows nemůže uvolnit soubor registru. Nebyla uvolněna paměť používaná registrem. Tento problém je často způsoben tím, že jsou služby spuštěny pomocí uživatelského účtu. Zkuste služby konfigurovat pro spuštění pomocí účtu místní nebo síťové služby.
PODROBNOSTI – Přístup byl odepřen.
System errors:
=============
Error: (12/17/2018 07:46:53 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8TT7FLG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-8TT7FLG\Čud (SID: S-1-5-21-3677593479-3605439763-291132835-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 07:46:51 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 07:46:51 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.SecurityAppBroker
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 07:46:51 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 07:41:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ZAM Controller Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/17/2018 06:21:02 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8TT7FLG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-8TT7FLG\Miguel Sun (SID: S-1-5-21-3677593479-3605439763-291132835-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 06:21:02 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8TT7FLG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-8TT7FLG\Miguel Sun (SID: S-1-5-21-3677593479-3605439763-291132835-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 06:21:01 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8TT7FLG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-8TT7FLG\Miguel Sun (SID: S-1-5-21-3677593479-3605439763-291132835-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
CodeIntegrity:
===================================
Date: 2018-12-17 07:38:45.208
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4460T CPU @ 1.90GHz
Percentage of memory in use: 36%
Total physical RAM: 8096.36 MB
Available physical RAM: 5125.01 MB
Total Virtual: 10016.36 MB
Available Virtual: 7020.95 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:247.14 GB) (Free:211.83 GB) NTFS
Drive d: (DATA) (Fixed) (Total:683.59 GB) (Free:495.68 GB) NTFS
\\?\Volume{73420086-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.34 GB) (Free:0.08 GB) NTFS
\\?\Volume{73420086-0000-0000-0000-c0de3d000000}\ () (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 73420086)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=247.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=683.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Díky,
Petr
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.12.2018
Ran by Čud (administrator) on DESKTOP-8TT7FLG (17-12-2018 07:50:37)
Running from C:\Users\Čud\Downloads
Loaded Profiles: Čud (Available Profiles: Čud & Miguel Sun)
Platform: Windows 10 Pro Version 1809 17763.194 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\NisSrv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthSystray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Launchy\Launchy.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msconfig.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Windows\system32\SecurityHealthSystray.exe [83968 2018-09-15] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16403712 2015-08-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4049216 2018-12-13] (Dropbox, Inc.)
HKU\S-1-5-21-3677593479-3605439763-291132835-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19589208 2018-12-10] (Piriform Software Ltd)
HKU\S-1-5-21-3677593479-3605439763-291132835-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46459080 2018-10-04] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\updateSteam.bat [2018-02-03] ()
Startup: C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2018-12-16]
ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe ()
Startup: C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2018-12-16]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Rainmeter)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{66026a3c-4656-405d-afe7-382744cbca8d}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2018-10-31] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2018-10-31] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation)
Edge:
======
Edge Extension: (BookReader) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets [2018-09-15]
Edge Extension: (PinJSAPI) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [2018-09-15]
FireFox:
========
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-10-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-12-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/ig
CHR Profile: C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default [2018-12-17]
CHR Extension: (Prezentace) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-16]
CHR Extension: (Dokumenty) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-16]
CHR Extension: (Disk Google) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-16]
CHR Extension: (YouTube) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-16]
CHR Extension: (uBlock Origin) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-12-16]
CHR Extension: (Tabulky) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-16]
CHR Extension: (Slinky Nádherný) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcckgldbanlfkbiacmgbanilapghpihj [2018-12-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-16]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2018-12-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-16]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-12-16]
CHR Extension: (Gmail) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-16]
CHR Extension: (Chrome Media Router) - C:\Users\Čud\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-16]
CHR HKU\S-1-5-21-3677593479-3605439763-291132835-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 BrokerInfrastructure; C:\Windows\System32\psmsrv.dll [241664 2018-12-16] (Microsoft Corporation)
S3 cbdhsvc; C:\Windows\System32\cbdhsvc.dll [961024 2018-09-15] (Microsoft Corporation)
S3 ConsentUxUserSvc; C:\Windows\System32\ConsentUxClient.dll [157696 2018-09-15] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-12-16] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-12-16] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\System32\DbxSvc.exe [51024 2018-12-13] (Dropbox, Inc.)
R3 DisplayEnhancementService; C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [915968 2018-12-16] (Microsoft Corporation)
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [443872 2018-12-12] (Google Inc.)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373728 2017-11-21] (Intel Corporation)
S3 perceptionsimulation; C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe [78848 2018-09-15] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381624 2018-09-15] (Microsoft Corporation)
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-17] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-17] (Microsoft Corporation)
S3 WManSvc; C:\Windows\system32\Windows.Management.Service.dll [370176 2018-09-15] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AVerPola; C:\Windows\system32\DRIVERS\AVerPola.sys [871056 2015-05-21] (AVerMedia TECHNOLOGIES, Inc.)
R3 AVPolDIR; C:\Windows\System32\drivers\AVPolDIR.sys [15896 2015-05-21] (AVerMedia TECHNOLOGIES, Inc.)
R1 BasicDisplay; C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_5103ac179273be89\BasicDisplay.sys [68096 2018-09-15] (Microsoft Corporation)
R1 BasicRender; C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_0b8d03c3bc0e7fd9\BasicRender.sys [37376 2018-09-15] (Microsoft Corporation)
R3 bcmsmbsp; C:\Windows\System32\drivers\bcmsmbsp.sys [54552 2015-12-17] (Broadcom Corporation.)
S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [34816 2018-09-15] (Microsoft Corporation)
S3 hidspi; C:\Windows\System32\drivers\hidspi.sys [60928 2018-09-15] (Microsoft Corporation)
S3 iaLPSS2i_GPIO2_CNL; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2018-09-15] (Intel Corporation)
S3 iaLPSS2i_GPIO2_GLK; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2018-09-15] (Intel Corporation)
S3 iaLPSS2i_I2C_CNL; C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [180736 2018-09-15] (Intel Corporation)
S3 iaLPSS2i_I2C_GLK; C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2018-09-15] (Intel Corporation)
S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [91584 2018-12-17] (Malwarebytes)
S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [290816 2018-09-15] (Microsoft Corporation)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [53760 2018-09-15] (Microsoft Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvla.inf_amd64_38587415c9a641cb\nvlddmkm.sys [17036560 2018-02-13] (NVIDIA Corporation)
S3 PktMon; C:\Windows\System32\drivers\PktMon.sys [85504 2018-09-15] (Microsoft Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [605696 2018-09-15] (Realtek )
R3 RTWlanE; C:\Windows\System32\drivers\rtwlane.sys [8169472 2018-09-15] (Realtek Semiconductor Corporation )
S0 SmartSAMD; C:\Windows\System32\drivers\SmartSAMD.sys [219960 2018-09-15] (Microsemi Corportation)
S3 smbdirect; C:\Windows\System32\DRIVERS\smbdirect.sys [171520 2018-09-15] (Microsoft Corporation)
S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [31232 2018-09-15] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [99840 2018-09-15] (Microsoft Corporation)
R3 VMC412; C:\Windows\System32\Drivers\VMC412.sys [241920 2015-06-19] (Vimicro Corporation)
R3 vmuacflt; C:\Windows\System32\Drivers\vmuacflt.sys [24576 2015-06-12] (Vimicro Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46680 2018-12-17] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [330936 2018-12-17] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-17] (Microsoft Corporation)
R3 WinQuic; C:\Windows\System32\drivers\winquic.sys [156984 2018-09-15] (Microsoft Corporation)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-12-17] (Zemana Ltd.)
S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
NETSVC: WManSvc -> C:\Windows\system32\Windows.Management.Service.dll (Microsoft Corporation)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-12-17 07:50 - 2018-12-17 07:51 - 000016194 _____ C:\Users\Čud\Downloads\FRST.txt
2018-12-17 07:50 - 2018-12-17 07:50 - 000000000 ____D C:\FRST
2018-12-17 07:49 - 2018-12-17 07:49 - 002417152 _____ (Farbar) C:\Users\Čud\Downloads\FRST64.exe
2018-12-17 07:38 - 2018-12-17 07:39 - 000091584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-12-17 07:38 - 2018-12-17 07:38 - 000000000 ____D C:\Program Files\Malwarebytes
2018-12-17 07:36 - 2018-12-17 07:37 - 054199488 _____ (Malwarebytes ) C:\Users\Čud\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2018-12-17 07:34 - 2018-12-17 07:50 - 000034299 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-12-17 07:34 - 2018-12-17 07:46 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-12-17 07:34 - 2018-12-17 07:41 - 000116955 _____ C:\Windows\ZAM.krnl.trace
2018-12-17 07:34 - 2018-12-17 07:34 - 006624296 _____ (Zemana Ltd. ) C:\Users\Čud\Downloads\Zemana.AntiMalware.Setup.exe
2018-12-17 07:34 - 2018-12-17 07:34 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2018-12-17 07:34 - 2018-12-17 07:34 - 000000000 ____D C:\Users\Čud\AppData\Local\Zemana
2018-12-17 06:39 - 2018-12-17 06:39 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\OneDrive
2018-12-17 06:24 - 2018-12-17 06:24 - 000000000 ____D C:\Users\Miguel Sun\AppData\LocalLow\Temp
2018-12-17 06:20 - 2018-12-17 06:20 - 000000000 ____D C:\Users\Miguel Sun\AppData\LocalLow\Adobe
2018-12-17 06:20 - 2018-12-17 06:20 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Adobe
2018-12-17 05:53 - 2018-12-17 05:53 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Comms
2018-12-17 05:48 - 2018-12-17 05:48 - 000000000 ____D C:\Users\Miguel Sun\AppData\Roaming\Google
2018-12-17 05:47 - 2018-12-17 05:47 - 002046576 _____ (WiperSoft) C:\Users\Miguel Sun\Downloads\WiperSoft-installer.exe
2018-12-17 05:43 - 2018-12-17 07:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\PlaceholderTileLogoFolder
2018-12-17 05:42 - 2018-12-17 05:47 - 000003386 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3677593479-3605439763-291132835-1002
2018-12-17 05:42 - 2018-12-17 05:47 - 000000000 ___RD C:\Users\Miguel Sun\OneDrive
2018-12-17 05:42 - 2018-12-17 05:42 - 000000000 ___HD C:\Users\Miguel Sun\MicrosoftEdgeBackups
2018-12-17 05:41 - 2018-12-17 05:42 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Dropbox
2018-12-17 05:41 - 2018-12-17 05:41 - 000001446 _____ C:\Users\Miguel Sun\Desktop\Microsoft Edge.lnk
2018-12-17 05:40 - 2018-12-17 07:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Packages
2018-12-17 05:40 - 2018-12-17 06:20 - 000000000 ____D C:\Users\Miguel Sun\AppData\Roaming\Adobe
2018-12-17 05:40 - 2018-12-17 05:54 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Google
2018-12-17 05:40 - 2018-12-17 05:43 - 000002332 _____ C:\Users\Miguel Sun\Desktop\Google Chrome.lnk
2018-12-17 05:40 - 2018-12-17 05:42 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\MicrosoftEdge
2018-12-17 05:40 - 2018-12-17 05:40 - 000000000 ___RD C:\Users\Miguel Sun\3D Objects
2018-12-17 05:40 - 2018-12-17 05:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\VirtualStore
2018-12-17 05:40 - 2018-12-17 05:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Publishers
2018-12-17 05:39 - 2018-12-17 05:49 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Launchy
2018-12-17 05:39 - 2018-12-17 05:47 - 000002402 _____ C:\Users\Miguel Sun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-17 05:39 - 2018-12-17 05:42 - 000000000 ____D C:\Users\Miguel Sun
2018-12-17 05:39 - 2018-12-17 05:40 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\ConnectedDevicesPlatform
2018-12-17 05:39 - 2018-12-17 05:39 - 000000020 ___SH C:\Users\Miguel Sun\ntuser.ini
2018-12-17 05:39 - 2018-12-17 05:39 - 000000000 __SHD C:\Users\Miguel Sun\IntelGraphicsProfiles
2018-12-17 05:39 - 2018-12-17 05:39 - 000000000 ____D C:\Users\Čud\AppData\Local\DBG
2018-12-17 05:39 - 2018-12-16 13:52 - 000000000 ____D C:\Users\Miguel Sun\AppData\Local\Microsoft Help
2018-12-16 17:26 - 2018-12-16 17:26 - 001130840 _____ (Google Inc.) C:\Users\Čud\Downloads\installbackupandsync.exe
2018-12-16 17:26 - 2018-12-16 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2018-12-16 17:26 - 2018-12-16 17:26 - 000000000 ____D C:\ProgramData\Caphyon
2018-12-16 17:26 - 2018-12-16 17:26 - 000000000 ____D C:\Program Files\Google
2018-12-16 17:23 - 2018-12-16 17:23 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Blizzard
2018-12-16 16:53 - 2018-12-16 16:53 - 000000000 ____D C:\ProgramData\Apple Computer
2018-12-16 16:53 - 2018-12-16 16:53 - 000000000 ____D C:\ProgramData\Apple
2018-12-16 14:10 - 2018-12-16 14:10 - 026807296 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 024617472 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 023440384 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 022112072 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 020811776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 019284992 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 019024384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 015224832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 012858368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 012151296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 011724288 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 009941504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 007856640 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 007724776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 006925824 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 006543736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 006306152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 006057984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005764608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005585056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005565440 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005439808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 005113008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004918784 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004886016 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004765184 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004588736 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 004306432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 004300800 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003951192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003744256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003601920 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003577856 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003566080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003550592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003504640 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003427328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 003108864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002985328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002927104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 002883584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002879488 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002777224 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002702536 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002689536 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002626360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 002469440 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002429752 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2018-12-16 14:10 - 2018-12-16 14:10 - 002346496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002323904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002278240 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002275896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002160160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2018-12-16 14:10 - 2018-12-16 14:10 - 002086400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002072384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001994768 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001969464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 001899160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001863168 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001819136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001749504 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001720936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001711104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001699840 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001696216 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-12-16 14:10 - 2018-12-16 14:10 - 001688576 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001675712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001674688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001672056 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001671680 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001641592 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001506304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001483264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001467344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001466872 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001456736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001395248 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001391096 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001388032 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001360696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 001341376 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-12-16 14:10 - 2018-12-16 14:10 - 001309696 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001294864 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001294848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001289400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001282432 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001279024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001267712 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001259000 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2018-12-16 14:10 - 2018-12-16 14:10 - 001254912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001249792 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001221528 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001200920 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001192448 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001182720 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2018-12-16 14:10 - 2018-12-16 14:10 - 001180760 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001177632 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 001166336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2018-12-16 14:10 - 2018-12-16 14:10 - 001162280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001110528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001097312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001073448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001057976 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001056256 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001026992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001024920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 001019392 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000964976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000953856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000949760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000947200 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000925184 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000915968 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000901632 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000889344 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000883200 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000882688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000854784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000833536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000829440 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000787456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000782968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000772096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000763032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000729088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000703488 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000701440 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000684032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000669184 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationFrame.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000654848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000585728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000535048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000515584 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000514112 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_PCDisplay.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Activities.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000454160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000454144 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000449024 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000430904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000429056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000424960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000398848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000383288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000373768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\coml2.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000359424 _____ (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000358400 _____ (Microsoft Corporation) C:\Windows\regedit.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000329216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedit.exe
2018-12-16 14:10 - 2018-12-16 14:10 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssecflt.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000301096 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000286208 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000275456 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000256512 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000252536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000241680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000218624 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000218624 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000195072 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000176440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000173568 _____ (Microsoft Corporation) C:\Windows\system32\WPTaskScheduler.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000166400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\CastingShellExt.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CastingShellExt.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000114344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000094224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys
2018-12-16 14:10 - 2018-12-16 14:10 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000091640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\iscsiwmi.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\SMSRouter.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBth.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 000024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msisip.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 017520640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 009677624 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 007685016 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 007645392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 006132736 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 005312512 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 005130752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003983360 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003662336 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 003556352 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003380224 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003379000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 003337800 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003334144 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 003092480 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002988544 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002843136 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002721792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 002654208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002630656 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002618880 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002594872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002488320 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 002466304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002435296 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002186752 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002185728 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002149352 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002085168 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 002020560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001975296 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001903616 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001884672 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001842600 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001751560 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001715712 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001664904 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001612808 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001602560 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001496064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001462272 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001401864 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001387496 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001331264 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001315840 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001287776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001255928 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 001219584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 001212416 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001199104 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 001053352 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 001051960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 001051136 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 001048576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001032704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 001005568 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000955392 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000918304 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000897848 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000890368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000854016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000836096 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000828936 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000817160 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000801792 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000756640 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000752128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000744960 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000743432 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000681984 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000680184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000667152 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000660496 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000653312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000650040 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000649736 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000647168 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000609792 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000604336 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000582240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000566584 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000542720 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000531976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000519992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Vid.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000518656 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000514048 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000506408 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000495624 _____ (Microsoft Corporation) C:\Windows\system32\TransportDSA.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000478208 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000473616 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000468992 _____ (Microsoft Corporation) C:\Windows\system32\coml2.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000421376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\eeprov.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000406528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000402576 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000400384 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000398848 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000398416 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000394240 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000378368 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000371200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\icsvcext.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000306704 _____ (Microsoft Corporation) C:\Windows\system32\computestorage.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000303616 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000300024 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000298536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000294072 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000275768 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000266240 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000246784 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000193016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\appsruprov.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSrv.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000164344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000164288 _____ (Microsoft Corporation) C:\Windows\system32\vertdll.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000156984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000151872 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000140600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000130088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000120832 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000114648 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000102392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000095544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storqosflt.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcnfs.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000083472 _____ (Microsoft Corporation) C:\Windows\system32\vid.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsiwmi.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000055608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\iorate.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mmcss.sys
2018-12-16 14:09 - 2018-12-16 14:09 - 000046392 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wpnsruprov.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2018-12-16 14:09 - 2018-12-16 14:09 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2018-12-16 14:09 - 2018-12-16 14:09 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2018-12-16 14:05 - 2018-12-16 14:06 - 000000000 ____D C:\Windows\system32\MRT
2018-12-16 14:05 - 2018-12-16 14:05 - 137260640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-12-16 14:03 - 2018-12-16 14:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-12-16 13:52 - 2018-12-16 13:52 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2018-12-16 13:52 - 2018-12-16 13:52 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2018-12-16 13:35 - 2018-12-16 13:34 - 000592616 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-12-16 11:42 - 2018-12-16 11:42 - 000000000 ____D C:\Users\Čud\AppData\LocalLow\Adobe
2018-12-16 11:41 - 2018-12-17 05:54 - 000004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-12-16 11:41 - 2018-12-17 05:54 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-12-16 11:41 - 2018-12-16 11:41 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-12-16 11:40 - 2018-12-17 05:51 - 000000000 ____D C:\ProgramData\Adobe
2018-12-16 11:38 - 2018-12-16 11:42 - 000000000 ____D C:\Users\Čud\AppData\Local\Adobe
2018-12-16 11:35 - 2018-12-16 11:35 - 000003936 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-12-16 11:35 - 2018-12-16 11:35 - 000002884 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Launchy
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\Users\Čud\AppData\Local\PeerDistRepub
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\Program Files\CCleaner
2018-12-16 11:35 - 2018-12-16 11:35 - 000000000 ____D C:\Program Files (x86)\Launchy
2018-12-16 11:34 - 2018-12-17 05:38 - 000000934 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2018-12-16 11:34 - 2018-12-17 05:38 - 000000930 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2018-12-16 11:34 - 2018-12-16 11:37 - 000000000 ____D C:\Users\Čud\AppData\Local\Dropbox
2018-12-16 11:34 - 2018-12-16 11:35 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-12-16 11:34 - 2018-12-16 11:34 - 004551897 _____ (Code Jelly ) C:\Users\Čud\Downloads\Launchy2.5.exe
2018-12-16 11:34 - 2018-12-16 11:34 - 000696608 _____ (Dropbox, Inc.) C:\Users\Čud\Downloads\DropboxInstaller.exe
2018-12-16 11:34 - 2018-12-16 11:34 - 000003994 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2018-12-16 11:34 - 2018-12-16 11:34 - 000003762 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2018-12-16 11:34 - 2018-12-16 11:34 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Dropbox
2018-12-16 11:34 - 2018-12-16 11:34 - 000000000 ____D C:\ProgramData\Dropbox
2018-12-16 11:21 - 2018-09-14 18:05 - 005739008 _____ (Microsoft Corporation) C:\Windows\system32\prm0009.dll
2018-12-16 11:21 - 2018-09-14 18:04 - 002629120 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2018-12-16 11:21 - 2018-09-14 17:50 - 006347776 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0009.dll
2018-12-16 11:21 - 2018-09-14 17:34 - 005489664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0009.dll
2018-12-16 11:20 - 2018-12-16 14:05 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2018-12-16 11:20 - 2018-12-16 11:20 - 004868680 _____ C:\Users\Čud\Downloads\cosmic_flow_by_alcaaz-d6khj49.rmskin
2018-12-16 11:20 - 2018-12-16 11:20 - 000000000 ____D C:\Windows\PCHEALTH
2018-12-16 11:20 - 2018-12-16 11:20 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2018-12-16 11:19 - 2018-12-16 11:20 - 000000000 ____D C:\Windows\SHELLNEW
2018-12-16 11:19 - 2018-12-16 11:19 - 000000000 ____D C:\Users\Čud\AppData\Local\Microsoft Help
2018-12-16 11:19 - 2018-12-16 11:19 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2018-12-16 11:18 - 2018-12-16 11:20 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-12-16 11:18 - 2018-12-16 11:18 - 000000000 __RHD C:\MSOCache
2018-12-16 11:18 - 2018-12-16 11:18 - 000000000 ____D C:\Program Files\Microsoft Office
2018-12-16 11:15 - 2018-12-16 11:15 - 000087566 _____ C:\Users\Čud\Downloads\translucenttaskbar_1_2_by_arkenthera-dausz1z.rmskin
2018-12-16 11:13 - 2018-12-16 11:13 - 004631473 _____ C:\Users\Čud\Downloads\ui_white___1_3f_by_dd_921-d9tv718.rmskin
2018-12-16 11:10 - 2018-12-16 11:10 - 001867602 _____ C:\Users\Čud\Downloads\unFold with transparency.rmskin
2018-12-16 11:09 - 2018-12-16 11:20 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Rainmeter
2018-12-16 11:09 - 2018-12-16 11:09 - 002446640 _____ (Rainmeter) C:\Users\Čud\Downloads\Rainmeter-4.2.exe
2018-12-16 11:09 - 2018-12-16 11:09 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2018-12-16 11:09 - 2018-12-16 11:09 - 000000000 ____D C:\Users\Čud\Documents\Rainmeter
2018-12-16 11:09 - 2018-12-16 11:09 - 000000000 ____D C:\Program Files\Rainmeter
2018-12-16 11:06 - 2018-12-16 11:06 - 019299120 _____ (Piriform Software Ltd) C:\Users\Čud\Downloads\ccsetup551.exe
2018-12-16 11:05 - 2018-12-17 07:46 - 000000000 __SHD C:\Users\Čud\IntelGraphicsProfiles
2018-12-16 10:46 - 2018-12-16 10:46 - 000000000 ____D C:\Windows\VMC412
2018-12-16 10:45 - 2018-12-17 07:46 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-12-16 10:45 - 2018-12-16 11:05 - 000000000 ____D C:\Intel
2018-12-16 10:45 - 2018-12-16 10:45 - 000000200 _____ C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2018-12-16 10:45 - 2018-12-16 10:45 - 000000000 ____D C:\Program Files\Intel
2018-12-16 10:45 - 2018-12-16 10:45 - 000000000 ____D C:\Program Files (x86)\Intel
2018-12-16 10:45 - 2018-12-16 10:45 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____D C:\Windows\SysWOW64\sda
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____D C:\Windows\system32\DAX2
2018-12-16 10:40 - 2018-12-16 10:40 - 000000000 ____D C:\Program Files\Realtek
2018-12-16 10:39 - 2018-12-16 16:53 - 000000000 ____D C:\ProgramData\Packages
2018-12-16 10:39 - 2018-12-16 10:39 - 000000000 ____D C:\Users\Čud\AppData\Local\Comms
2018-12-16 10:37 - 2018-12-17 07:46 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-16 10:37 - 2018-12-16 10:37 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-12-16 10:37 - 2018-12-16 10:37 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-12-16 10:37 - 2018-02-13 06:54 - 000541456 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2018-12-16 10:37 - 2017-12-19 04:22 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2018-12-16 10:37 - 2017-12-19 03:43 - 005964872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 002589168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 001767224 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 000609312 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 000450360 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 000122768 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2018-12-16 10:37 - 2017-12-19 03:43 - 000081808 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2018-12-16 10:37 - 2017-12-14 10:59 - 007917671 _____ C:\Windows\system32\nvcoproc.bin
2018-12-16 10:37 - 2017-09-14 00:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2018-12-16 10:37 - 2017-09-14 00:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2018-12-16 10:37 - 2017-09-14 00:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2018-12-16 10:37 - 2017-09-14 00:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2018-12-16 10:36 - 2018-12-16 10:37 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-12-16 10:36 - 2018-12-16 10:37 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-12-16 10:32 - 2018-12-16 10:32 - 001604424 _____ (Blue Coat Systems, Inc.) C:\Users\Čud\Downloads\k9-webprotection.exe
2018-12-16 10:31 - 2018-12-16 16:53 - 000000000 ____D C:\Users\Čud\AppData\Local\PlaceholderTileLogoFolder
2018-12-16 10:31 - 2018-12-16 10:31 - 000000000 ____D C:\Users\Čud\AppData\Local\D3DSCache
2018-12-16 10:30 - 2018-12-16 10:30 - 000003372 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3677593479-3605439763-291132835-1001
2018-12-16 10:30 - 2018-12-16 10:30 - 000002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-16 10:30 - 2018-12-16 10:30 - 000000000 ___RD C:\Users\Čud\OneDrive
2018-12-16 10:30 - 2018-12-16 10:30 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Google
2018-12-16 10:29 - 2018-12-16 17:27 - 000000000 ____D C:\Users\Čud\AppData\Local\Google
2018-12-16 10:29 - 2018-12-16 10:30 - 000000000 ____D C:\Program Files (x86)\Google
2018-12-16 10:29 - 2018-12-16 10:29 - 000003472 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-16 10:29 - 2018-12-16 10:29 - 000003348 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-12-16 10:29 - 2018-12-16 10:29 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-12-16 10:28 - 2018-12-16 10:28 - 000000000 ___HD C:\Users\Čud\MicrosoftEdgeBackups
2018-12-16 10:28 - 2018-12-16 10:28 - 000000000 ____D C:\Users\Čud\AppData\Local\MicrosoftEdge
2018-12-16 10:27 - 2018-12-17 07:43 - 000000000 ____D C:\Users\Čud\AppData\Local\VirtualStore
2018-12-16 10:27 - 2018-12-17 07:41 - 000000000 ____D C:\Users\Čud\AppData\Local\Packages
2018-12-16 10:27 - 2018-12-17 07:35 - 000000000 ____D C:\Users\Čud
2018-12-16 10:27 - 2018-12-17 05:45 - 001606102 _____ C:\Windows\system32\PerfStringBackup.INI
2018-12-16 10:27 - 2018-12-17 05:40 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-12-16 10:27 - 2018-12-17 05:39 - 000000000 ___RD C:\Users\Čud\3D Objects
2018-12-16 10:27 - 2018-12-16 11:42 - 000000000 ____D C:\Users\Čud\AppData\Roaming\Adobe
2018-12-16 10:27 - 2018-12-16 11:18 - 000000000 ____D C:\Users\Čud\AppData\Local\Publishers
2018-12-16 10:27 - 2018-12-16 10:30 - 000002381 _____ C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-16 10:27 - 2018-12-16 10:27 - 000000020 ___SH C:\Users\Čud\ntuser.ini
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Šablony
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Soubory cookie
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Poslední
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Okolní tiskárny
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Okolní síť
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Nabídka Start
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Dokumenty
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Documents\Obrázky
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Documents\Hudba
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Documents\Filmy
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\Data aplikací
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 _SHDL C:\Users\Čud\AppData\Local\Data aplikací
2018-12-16 10:27 - 2018-12-16 10:27 - 000000000 ____D C:\Users\Čud\AppData\Local\ConnectedDevicesPlatform
2018-12-16 10:25 - 2018-12-16 10:25 - 000000000 ____D C:\Windows\CSC
2018-12-16 10:25 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Šablony
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Poslední
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Okolní síť
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Dokumenty
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\Data aplikací
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Šablony
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Plocha
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Dokumenty
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\ProgramData\Data aplikací
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 _SHDL C:\Documents and Settings
2018-12-16 10:23 - 2018-12-16 10:23 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2018-12-16 10:19 - 2018-12-16 10:19 - 000000000 ____D C:\ProgramData\USOShared
2018-12-16 10:17 - 2018-12-17 07:46 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-12-16 10:17 - 2018-12-17 07:29 - 000000000 ____D C:\Windows\system32\SleepStudy
2018-12-16 10:17 - 2018-12-17 05:49 - 000000000 ____D C:\Windows\system32\Drivers\wd
2018-12-16 10:17 - 2018-12-17 05:38 - 000445720 _____ C:\Windows\system32\FNTCACHE.DAT
2018-12-16 10:17 - 2018-12-16 10:17 - 000000000 ____D C:\Windows\ServiceProfiles
2018-12-16 10:14 - 2018-12-17 07:45 - 000000000 ____D C:\Windows\Panther
2018-12-13 06:12 - 2018-12-13 06:12 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-12-17 07:46 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-17 07:45 - 2018-09-15 08:31 - 000000000 ____D C:\Windows\INF
2018-12-17 07:45 - 2018-09-15 07:09 - 000524288 _____ C:\Windows\system32\config\BBI
2018-12-17 07:41 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\AppReadiness
2018-12-17 07:40 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2018-12-17 05:49 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2018-12-17 05:45 - 2018-09-15 18:39 - 000682358 _____ C:\Windows\system32\perfh005.dat
2018-12-17 05:45 - 2018-09-15 18:39 - 000137076 _____ C:\Windows\system32\perfc005.dat
2018-12-16 20:46 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-12-16 20:46 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\TextInput
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\oobe
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\migwiz
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\appraiser
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellExperiences
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellComponents
2018-12-16 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\bcastdvr
2018-12-16 14:11 - 2018-09-15 08:23 - 000000000 ____D C:\Windows\CbsTemp
2018-12-16 14:04 - 2018-09-15 08:31 - 000000167 _____ C:\Windows\win.ini
2018-12-16 13:50 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-12-16 11:36 - 2018-09-15 07:09 - 000000000 ____D C:\Windows\servicing
2018-12-16 11:21 - 2018-09-15 18:40 - 000000000 ____D C:\Windows\OCR
2018-12-16 10:38 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ServiceState
2018-12-16 10:37 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\Help
2018-12-16 10:27 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2018-12-16 10:25 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\spool
2018-12-16 10:25 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\FxsTmp
2018-12-16 10:23 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2018-12-16 10:19 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\USOPrivate
2018-12-16 10:18 - 2018-09-15 08:33 - 000000000 ___RD C:\Windows\PrintDialog
2018-12-16 10:18 - 2018-09-15 08:33 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2018-12-16 10:18 - 2018-09-15 07:09 - 000032768 _____ C:\Windows\system32\config\ELAM
2018-12-16 10:14 - 2018-09-15 08:31 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2018-12-01 04:53 - 2018-09-15 08:36 - 000835688 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-12-01 04:53 - 2018-09-15 08:36 - 000179808 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.12.2018
Ran by Čud (17-12-2018 07:51:36)
Running from C:\Users\Čud\Downloads
Windows 10 Pro Version 1809 17763.194 (X64) (2018-12-16 09:23:32)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3677593479-3605439763-291132835-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3677593479-3605439763-291132835-503 - Limited - Disabled)
Guest (S-1-5-21-3677593479-3605439763-291132835-501 - Limited - Disabled)
Miguel Sun (S-1-5-21-3677593479-3605439763-291132835-1002 - Limited - Enabled) => C:\Users\Miguel Sun
WDAGUtilityAccount (S-1-5-21-3677593479-3605439763-291132835-504 - Limited - Disabled)
Čud (S-1-5-21-3677593479-3605439763-291132835-1001 - Administrator - Enabled) => C:\Users\Čud
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20064 - Adobe Systems Incorporated)
Backup and Sync from Google (HKLM\...\{608EBDC6-D18A-4CF6-AD54-EE6B71D29065}) (Version: 3.43.1584.4446 - Google, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
Dropbox (HKLM-x32\...\Dropbox) (Version: 63.4.107 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Launchy 2.5 (HKLM-x32\...\Launchy_21344213_is1) (Version: - Code Jelly)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3677593479-3605439763-291132835-1001\...\OneDriveSetup.exe) (Version: 18.143.0717.0002 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM-x32\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM-x32\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
NVIDIA Ovladače grafiky 388.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.73 - NVIDIA Corporation)
Ovládací panel NVIDIA 388.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.73 - NVIDIA Corporation) Hidden
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.2 r3111 - Rainmeter)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7576 - Realtek Semiconductor Corp.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2017-11-21] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-12-19] (NVIDIA Corporation)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {146B1519-65B2-431F-9311-3A6A186E775F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-12-16] (Google Inc.)
Task: {1AE8B7C8-DD18-42F8-BF30-8BB993E02A21} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {31B3AB7B-D1A3-4D83-8343-DEBB97C33168} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-12-10] (Piriform Ltd)
Task: {5D310A5D-BCCC-48C1-92CB-F07086440520} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-12-16] (Google Inc.)
Task: {60C5FC05-2C02-4A35-B536-7067ECF2B59F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-12-10] (Piriform Software Ltd)
Task: {62F54778-2E13-480B-BFB9-5F402DA0DCCA} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-12-16] (Dropbox, Inc.)
Task: {7A35A2E3-3CB4-4E28-B98D-832C02003592} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {AD4E8AFB-A48C-4E13-BE83-B8D87600CFB4} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync
Task: {AEECD160-6A38-48C0-99A2-54677392E181} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-12-16] (Dropbox, Inc.)
Task: {B3039EB3-1DEC-4F6B-A89C-B4ADEB9489D2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {BD21C377-5B30-4E5A-B6F2-37D2086885E5} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives
Task: {D4E3D108-DAEC-436B-8726-F549CEEBDC98} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] ()
Task: {FF5430DF-1B95-4B03-BCF8-375603F8B7C2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\Windows\System32\InputHost.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-16 14:10 - 2018-12-16 14:10 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2017-11-21 02:59 - 2017-11-21 02:59 - 000401888 _____ () C:\Windows\system32\igfxTray.exe
2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-09-15 18:41 - 2018-09-15 18:41 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-16 11:03 - 2018-12-16 11:03 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-16 11:03 - 2018-12-16 11:03 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-04 19:44 - 2018-10-04 19:44 - 046459080 _____ () C:\Program Files\Google\Drive\googledrivesync.exe
2018-12-16 16:51 - 2018-12-16 16:53 - 000088888 _____ () C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\zlib1.dll
2018-12-16 16:51 - 2018-12-16 16:52 - 001356088 _____ () C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\libxml2.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000380928 _____ () C:\Program Files (x86)\Launchy\Launchy.exe
2018-07-08 12:04 - 2018-07-08 12:04 - 000322048 _____ () C:\Program Files\Rainmeter\Plugins\ActionTimer.DLL
2018-12-16 11:15 - 2018-12-16 11:15 - 000091136 _____ () C:\Users\Čud\AppData\Roaming\Rainmeter\Plugins\TranslucentTaskbar.DLL
2018-12-16 10:30 - 2018-12-12 06:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-16 10:30 - 2018-12-12 06:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll
2018-12-17 07:46 - 2018-12-17 07:46 - 000113664 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_ctypes.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000080896 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\bz2.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001792512 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_hashlib.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000128512 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32api.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000137728 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\pywintypes27.dll
2018-12-17 07:46 - 2018-12-17 07:46 - 000548864 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\pythoncom27.dll
2018-12-17 07:46 - 2018-12-17 07:46 - 000689664 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\unicodedata.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000438784 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32com.shell.shell.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001489408 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._core_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001007104 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._gdi_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001039872 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._windows_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001325056 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._controls_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000916992 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._misc_.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 001084416 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\pysqlite2._sqlite.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000149504 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32file.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000136192 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32security.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000007680 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\hashobjs_ext.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000020992 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\thumbnails_ext.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000118784 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\usb_ext.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000047616 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_socket.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 002224640 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_ssl.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000014848 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\common.time34.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000023040 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32event.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000034304 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.conditional.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000020480 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.winwrap.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000110080 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.volumes.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000223232 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32gui.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000173568 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_elementtree.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000169472 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\pyexpat.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000048128 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32inet.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000103424 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\wx._html2.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000046080 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_psutil_windows.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000633272 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows._cacheinvalidation.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000011776 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32crypt.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000301568 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\PIL._imaging.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000032256 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_multiprocessing.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 005752320 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\cello.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000026112 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\_yappi.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000044032 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32process.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000027648 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32pipe.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000010752 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\select.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000029696 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32pdh.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000038400 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.connectivity.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000073216 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\windows.device_monitor.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000020480 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32profile.pyd
2018-12-17 07:46 - 2018-12-17 07:46 - 000026624 _____ () C:\Users\Čud\AppData\Local\Temp\_MEI68282\win32ts.pyd
2018-12-16 10:59 - 2018-12-16 10:59 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-12-16 10:59 - 2018-12-16 10:59 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-16 10:59 - 2018-12-16 10:59 - 001754112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-12-16 11:35 - 2009-12-16 21:54 - 002236416 _____ () C:\Program Files (x86)\Launchy\QtCore4.dll
2018-12-16 11:35 - 2009-12-16 21:56 - 000712704 _____ () C:\Program Files (x86)\Launchy\QtNetwork4.dll
2018-12-16 11:35 - 2009-12-16 22:13 - 008314880 _____ () C:\Program Files (x86)\Launchy\QtGui4.dll
2018-12-16 11:35 - 2009-12-17 00:18 - 000233472 _____ () C:\Program Files (x86)\Launchy\imageformats\qmng4.dll
2018-12-16 11:35 - 2010-11-10 19:39 - 000081920 _____ () C:\Program Files (x86)\Launchy\plugins\calcy.dll
2018-12-16 11:35 - 2010-11-10 19:39 - 000090112 _____ () C:\Program Files (x86)\Launchy\plugins\controly.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000024064 _____ () C:\Program Files (x86)\Launchy\plugins\gcalc.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000094208 _____ () C:\Program Files (x86)\Launchy\plugins\runner.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000057344 _____ () C:\Program Files (x86)\Launchy\plugins\verby.dll
2018-12-16 11:35 - 2010-11-10 19:38 - 000122880 _____ () C:\Program Files (x86)\Launchy\plugins\weby.dll
2018-12-16 11:35 - 2018-12-13 06:12 - 001140552 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2018-12-16 11:35 - 2018-12-13 06:12 - 002103112 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2018-12-16 11:35 - 2018-12-13 06:16 - 000023376 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000025456 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000148968 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 001878888 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000118232 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll
2018-12-16 11:35 - 2018-12-13 06:12 - 000109024 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000083784 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000418776 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll
2018-12-16 11:35 - 2018-12-13 06:15 - 000074072 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000049128 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000026600 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000131552 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000182752 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000119272 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000401752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000034664 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000062304 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000023520 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000053736 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000065504 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:14 - 000025944 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000068968 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000032224 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000156504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000092496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt562.sip.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 001778000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000518992 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000052056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 001929552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 003821392 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000044888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000132944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000218456 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000205656 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000061408 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000051552 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000027624 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000033632 _____ () C:\Program Files (x86)\Dropbox\Client\winreindex.compiled._winreindex.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000028008 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000031600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000486880 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000102736 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000029040 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 011727696 _____ () C:\Program Files (x86)\Dropbox\Client\nucleus_python.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000029024 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:12 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2018-12-16 11:35 - 2018-12-13 06:15 - 000036712 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000272208 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2018-12-16 11:35 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000433992 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2018-12-16 11:35 - 2018-12-13 06:16 - 000035680 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000025920 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2018-12-16 11:35 - 2018-12-13 06:15 - 001592128 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2018-12-16 11:35 - 2018-12-13 06:16 - 000095592 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shcore.compiled._winffi_shcore.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shell32.compiled._winffi_shell32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.gdi32.compiled._winffi_gdi32.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:16 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000530768 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000348496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd
2018-12-16 11:35 - 2018-12-13 06:15 - 000037200 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.cp35-win32.pyd
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3677593479-3605439763-291132835-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Čud\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\cool-wallpaper-forest-hawaii-38136.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\StartupFolder: => "updateSteam.bat"
HKU\S-1-5-21-3677593479-3605439763-291132835-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe
FirewallRules: [{A6E1D96A-2996-42EF-A3B7-D565EDBEDB6D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FE71C21F-459D-4981-903F-464F174D9516}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{50718EFF-B084-428F-B0E3-986519DD891E}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{CB9B55DE-C58B-47B4-B7BF-30C4B41BB862}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{9C326BD8-B8C7-459A-979A-8055E1ECE979}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{57CAEC6E-AF7F-4653-BE3D-A1E98FB6AA71}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{FF026DA4-DCBB-4FCB-8BD9-B1354A8061EB}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{B300BA81-0625-47E6-8867-8A78A7D8FED1}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{E023AABC-D78B-48C5-B521-B8F2D75CF722}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{312D627D-FC01-475C-A399-4D2A0F5796AF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{288CCD17-8583-4748-899B-459B825CF0E3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{7B6BC895-81DB-4629-9FCF-FE187EEBCF74}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{B9CE7715-BCE9-4474-9841-6C15C06BAE5D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{6148AE30-F085-4A8B-81DE-F8A0D993550A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{0CF96BE0-1C25-4E13-81DA-1ECF645A2526}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{42EF5803-AB13-4E39-94A7-4776F70B04DB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
==================== Restore Points =========================
16-12-2018 10:35:43 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/17/2018 07:48:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.17763.134, časové razítko: 0x1cb1ad5b
Název chybujícího modulu: VimicroAPOX64.dll, verze: 334.7.2.6, časové razítko: 0x5343d46e
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000014214
ID chybujícího procesu: 0xf0c
Čas spuštění chybující aplikace: 0x01d495d43923cc61
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\VimicroAPOX64.dll
ID zprávy: 1ddf0d70-f4c2-4504-bfe4-a9330dfd17f3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/17/2018 07:40:53 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.
Error: (12/17/2018 07:39:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 3.0.0.865, časové razítko: 0x584ee8a0
Název chybujícího modulu: Qt5Core.dll, verze: 5.6.2.0, časové razítko: 0x5849a1dc
Kód výjimky: 0xc0000005
Posun chyby: 0x00192cf1
ID chybujícího procesu: 0x2e94
Čas spuštění chybující aplikace: 0x01d495d325c57ca3
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: 2933160f-38b1-4b22-a4e3-7231b552022e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/17/2018 07:38:42 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.
Error: (12/17/2018 07:31:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.17763.134, časové razítko: 0x1cb1ad5b
Název chybujícího modulu: VimicroAPOX64.dll, verze: 334.7.2.6, časové razítko: 0x5343d46e
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000014214
ID chybujícího procesu: 0xb0c
Čas spuštění chybující aplikace: 0x01d495d22c1ee25e
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\VimicroAPOX64.dll
ID zprávy: 195b5ab1-c74d-4432-ac7a-ebcdcba452fd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/17/2018 05:44:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.17763.134, časové razítko: 0x1cb1ad5b
Název chybujícího modulu: VimicroAPOX64.dll, verze: 334.7.2.6, časové razítko: 0x5343d46e
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000014214
ID chybujícího procesu: 0x1180
Čas spuštění chybující aplikace: 0x01d495c26448e03f
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\VimicroAPOX64.dll
ID zprávy: aca0cefe-5416-4a3f-8607-4490f22f9b69
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/17/2018 05:39:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program ShellExperienceHost.exe verze 10.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1684
Čas spuštění: 01d495c27794ad49
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
ID hlášení: 08cc3575-a45d-475f-a261-85cd7f8f78cc
Úplný název balíčku s chybou: Microsoft.Windows.ShellExperienceHost_10.0.17763.1_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Quiesce
Error: (12/16/2018 08:45:52 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1512) (User: NT AUTHORITY)
Description: Systém Windows nemůže uvolnit soubor registru. Nebyla uvolněna paměť používaná registrem. Tento problém je často způsoben tím, že jsou služby spuštěny pomocí uživatelského účtu. Zkuste služby konfigurovat pro spuštění pomocí účtu místní nebo síťové služby.
PODROBNOSTI – Přístup byl odepřen.
System errors:
=============
Error: (12/17/2018 07:46:53 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8TT7FLG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-8TT7FLG\Čud (SID: S-1-5-21-3677593479-3605439763-291132835-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 07:46:51 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 07:46:51 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.SecurityAppBroker
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 07:46:51 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 07:41:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ZAM Controller Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/17/2018 06:21:02 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8TT7FLG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-8TT7FLG\Miguel Sun (SID: S-1-5-21-3677593479-3605439763-291132835-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 06:21:02 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8TT7FLG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-8TT7FLG\Miguel Sun (SID: S-1-5-21-3677593479-3605439763-291132835-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (12/17/2018 06:21:01 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8TT7FLG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-8TT7FLG\Miguel Sun (SID: S-1-5-21-3677593479-3605439763-291132835-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
CodeIntegrity:
===================================
Date: 2018-12-17 07:38:45.208
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4460T CPU @ 1.90GHz
Percentage of memory in use: 36%
Total physical RAM: 8096.36 MB
Available physical RAM: 5125.01 MB
Total Virtual: 10016.36 MB
Available Virtual: 7020.95 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:247.14 GB) (Free:211.83 GB) NTFS
Drive d: (DATA) (Fixed) (Total:683.59 GB) (Free:495.68 GB) NTFS
\\?\Volume{73420086-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.34 GB) (Free:0.08 GB) NTFS
\\?\Volume{73420086-0000-0000-0000-c0de3d000000}\ () (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 73420086)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=247.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=683.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
