Prosím o kontrolu logu
Napsal: 07 dub 2019 17:30
Už 2dny se mi pc sam od sebe třeba 5x za den restartuje. Je možný, že se něco vysralo a pc se přehřívá,ale ještě to chci zkusit touto cestou. Děkuji za kontrolu logu.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by garan (administrator) on IVO (07-04-2019 18:25:12)
Running from C:\Users\garan\Desktop
Loaded Profiles: garan (Available Profiles: garan)
Platform: Windows 10 Pro Version 1803 17134.648 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(Realtek Semiconductor Corp -> DTS) C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() [File not signed] D:\Program Files\YoloMouse\YoloMouse.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8841472 2016-06-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1454336 2016-06-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [QIP Internet Guardian] => C:\Users\garan\AppData\Roaming\QipGuard\QipGuard.exe [436224 2013-12-05] (OOO Media Mir -> QIP.ru)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [MiPhoneManager] => C:\Users\garan\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [157624 2016-03-11] (Xiaomi Technology Inc -> )
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [小米云服务] => C:\Users\garan\AppData\Local\MiCloudPC\update.exe [1524136 2017-11-23] (Xiaomi Technology Inc -> GitHub)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [7391816 2018-10-25] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [YoloMouse] => D:\Program Files\YoloMouse\YoloMouse.exe [220160 2017-12-13] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-05] (Google LLC -> Google Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{43a252f2-1af8-4cb5-b60f-8d2dc780462f}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
Chrome:
=======
CHR Profile: C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default [2019-04-07]
CHR Extension: (Prezentace) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-01]
CHR Extension: (Tabulky) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (AdBlock) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-03-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-03-27]
CHR Extension: (Chrome Media Router) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-22]
CHR Profile: C:\Users\garan\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-12]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-05-08] (ASUSTeK Computer Inc. -> )
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] (ASUSTeK Computer Inc. -> ) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8577760 2019-03-25] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
R2 DTSAudioService; C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe [218768 2016-06-17] (Realtek Semiconductor Corp -> DTS)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2018-06-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [706120 2018-10-25] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7112264 2018-10-25] (GOG Sp. z o.o. -> GOG.com)
S3 Microsoft SharePoint Workspace Audit Service; D:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [30814400 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2298688 2019-03-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3171144 2019-03-08] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737560 2019-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2015-05-08] (ASUSTeK Computer Inc. -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-10-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-10-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7a8e74171e1b8492\nvlddmkm.sys [20736208 2019-03-02] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46408 2017-06-02] (SteelSeries ApS -> SteelSeries ApS)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [333792 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-04-07 18:25 - 2019-04-07 18:25 - 000016682 _____ C:\Users\garan\Desktop\FRST.txt
2019-04-07 18:25 - 2019-04-07 18:25 - 000000000 ____D C:\FRST
2019-04-07 18:23 - 2019-04-07 18:23 - 002434048 _____ (Farbar) C:\Users\garan\Desktop\FRST64.exe
2019-04-05 23:19 - 2019-04-05 23:19 - 000000000 ____D C:\Users\garan\AppData\Roaming\EasyAntiCheat
2019-04-05 22:37 - 2019-04-05 22:37 - 001256768 _____ (ALCPU ) C:\Users\garan\Downloads\Core-Temp-setup.exe
2019-04-05 22:37 - 2019-04-05 22:37 - 000000999 _____ C:\Users\garan\Desktop\Core Temp.lnk
2019-04-05 22:37 - 2019-04-05 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2019-04-05 22:37 - 2019-04-05 22:37 - 000000000 ____D C:\Program Files\Core Temp
2019-03-30 13:51 - 2019-03-30 13:51 - 000072102 _____ C:\Users\garan\Downloads\zasilkovna-2019-03-30-1380.pdf
2019-03-30 13:51 - 2019-03-30 13:51 - 000072057 _____ C:\Users\garan\Downloads\zasilkovna-2019-03-30-1563.pdf
2019-03-27 17:53 - 2019-03-27 17:53 - 000026754 _____ C:\Users\garan\Downloads\220176310_Predavaci_protokol_Burian_Ivo_2019-03-27.pdf
2019-03-27 17:52 - 2019-03-27 17:52 - 000152173 _____ C:\Users\garan\Downloads\220176310_FUS_Burian_Ivo_2019-03-27.pdf
2019-03-13 18:21 - 2019-03-06 11:03 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-03-13 18:21 - 2019-03-06 10:44 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-03-13 18:21 - 2019-03-06 10:36 - 022716928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-03-13 18:21 - 2019-03-06 08:14 - 006568528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-03-13 18:21 - 2019-02-16 12:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-13 18:20 - 2019-03-06 17:39 - 000720536 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-03-13 18:20 - 2019-03-06 17:37 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-13 18:20 - 2019-03-06 17:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-13 18:20 - 2019-03-06 17:20 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-03-13 18:20 - 2019-03-06 17:19 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-03-13 18:20 - 2019-03-06 17:17 - 012730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-03-13 18:20 - 2019-03-06 17:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-13 18:20 - 2019-03-06 17:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-13 18:20 - 2019-03-06 17:14 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-13 18:20 - 2019-03-06 17:14 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-03-13 18:20 - 2019-03-06 17:14 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-03-13 18:20 - 2019-03-06 17:13 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-03-13 18:20 - 2019-03-06 17:13 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-03-13 18:20 - 2019-03-06 17:13 - 001662976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-03-13 18:20 - 2019-03-06 17:13 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-03-13 18:20 - 2019-03-06 17:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-13 18:20 - 2019-03-06 14:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-13 18:20 - 2019-03-06 14:18 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-03-13 18:20 - 2019-03-06 14:10 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-03-13 18:20 - 2019-03-06 14:09 - 011919360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-03-13 18:20 - 2019-03-06 14:06 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-03-13 18:20 - 2019-03-06 14:05 - 004054016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-03-13 18:20 - 2019-03-06 14:05 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-03-13 18:20 - 2019-03-06 14:04 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-03-13 18:20 - 2019-03-06 14:04 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-03-13 18:20 - 2019-03-06 13:59 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-03-13 18:20 - 2019-03-06 11:29 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-03-13 18:20 - 2019-03-06 11:16 - 002822456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-03-13 18:20 - 2019-03-06 11:16 - 001457032 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-03-13 18:20 - 2019-03-06 11:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-13 18:20 - 2019-03-06 11:16 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-03-13 18:20 - 2019-03-06 11:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-13 18:20 - 2019-03-06 11:16 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-03-13 18:20 - 2019-03-06 11:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-13 18:20 - 2019-03-06 11:11 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-03-13 18:20 - 2019-03-06 11:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-03-13 18:20 - 2019-03-06 11:07 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-03-13 18:20 - 2019-03-06 11:07 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-03-13 18:20 - 2019-03-06 11:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-13 18:20 - 2019-03-06 11:06 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-03-13 18:20 - 2019-03-06 11:06 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-03-13 18:20 - 2019-03-06 11:06 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-03-13 18:20 - 2019-03-06 11:05 - 000439224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-03-13 18:20 - 2019-03-06 11:05 - 000436240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-03-13 18:20 - 2019-03-06 11:05 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-03-13 18:20 - 2019-03-06 11:04 - 002765856 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-03-13 18:20 - 2019-03-06 11:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-13 18:20 - 2019-03-06 11:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2019-03-13 18:20 - 2019-03-06 11:03 - 002719544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-03-13 18:20 - 2019-03-06 11:03 - 002465784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-03-13 18:20 - 2019-03-06 11:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-13 18:20 - 2019-03-06 11:03 - 000793400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-03-13 18:20 - 2019-03-06 11:03 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-03-13 18:20 - 2019-03-06 11:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-13 18:20 - 2019-03-06 11:02 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-03-13 18:20 - 2019-03-06 11:02 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-03-13 18:20 - 2019-03-06 11:02 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-03-13 18:20 - 2019-03-06 11:02 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-03-13 18:20 - 2019-03-06 11:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-13 18:20 - 2019-03-06 10:36 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-03-13 18:20 - 2019-03-06 10:34 - 004866048 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-03-13 18:20 - 2019-03-06 10:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-13 18:20 - 2019-03-06 10:32 - 003399168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-03-13 18:20 - 2019-03-06 10:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-13 18:20 - 2019-03-06 10:32 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 007598592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-13 18:20 - 2019-03-06 10:31 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-13 18:20 - 2019-03-06 10:31 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-03-13 18:20 - 2019-03-06 10:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-03-13 18:20 - 2019-03-06 10:29 - 002174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-03-13 18:20 - 2019-03-06 10:29 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-03-13 18:20 - 2019-03-06 10:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-13 18:20 - 2019-03-06 10:28 - 004937728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-03-13 18:20 - 2019-03-06 10:28 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-03-13 18:20 - 2019-03-06 10:27 - 002224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-03-13 18:20 - 2019-03-06 10:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-03-13 18:20 - 2019-03-06 10:27 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-03-13 18:20 - 2019-03-06 10:27 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-03-13 18:20 - 2019-03-06 10:26 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-03-13 18:20 - 2019-03-06 10:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-13 18:20 - 2019-03-06 10:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-13 18:20 - 2019-03-06 10:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-13 18:20 - 2019-03-06 09:08 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-03-13 18:20 - 2019-03-06 08:17 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-03-13 18:20 - 2019-03-06 08:17 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-03-13 18:20 - 2019-03-06 08:15 - 002253488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-03-13 18:20 - 2019-03-06 08:15 - 000434488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-03-13 18:20 - 2019-03-06 08:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-13 18:20 - 2019-03-06 08:14 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-03-13 18:20 - 2019-03-06 08:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2019-03-13 18:20 - 2019-03-06 08:14 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-03-13 18:20 - 2019-03-06 08:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-13 18:20 - 2019-03-06 08:05 - 022018048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-03-13 18:20 - 2019-03-06 07:56 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-03-13 18:20 - 2019-03-06 07:53 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-03-13 18:20 - 2019-03-06 07:53 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-03-13 18:20 - 2019-03-06 07:52 - 005790720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-03-13 18:20 - 2019-03-06 07:52 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-03-13 18:20 - 2019-03-06 07:52 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-03-13 18:20 - 2019-03-06 07:51 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-03-13 18:20 - 2019-03-06 07:51 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-03-13 18:20 - 2019-03-06 07:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-03-13 18:20 - 2019-03-06 07:50 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-03-13 18:20 - 2019-03-06 07:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-03-13 18:20 - 2019-03-06 07:50 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-03-13 18:20 - 2019-03-06 07:49 - 004516352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-03-13 18:20 - 2019-03-06 07:49 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-03-13 18:20 - 2019-03-06 07:49 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-03-13 18:20 - 2019-03-06 07:48 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-03-13 18:20 - 2019-03-06 07:48 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-03-13 18:20 - 2019-02-21 05:26 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-13 18:20 - 2019-02-16 15:02 - 001644040 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000808456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000735752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000620040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000460296 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000147464 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-13 18:20 - 2019-02-16 15:02 - 000071176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 002266936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001786672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001627448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001424696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001038136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000954168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000830264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000749880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000670008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000495416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000257848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000180528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000034104 _____ C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-03-13 18:20 - 2019-02-16 14:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-03-13 18:20 - 2019-02-16 14:56 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-13 18:20 - 2019-02-16 14:53 - 001516416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-13 18:20 - 2019-02-16 14:36 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-03-13 18:20 - 2019-02-16 14:34 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-13 18:20 - 2019-02-16 14:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-13 18:20 - 2019-02-16 14:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-13 18:20 - 2019-02-16 14:33 - 002194432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-03-13 18:20 - 2019-02-16 14:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-13 18:20 - 2019-02-16 14:32 - 003646976 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-03-13 18:20 - 2019-02-16 14:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-13 18:20 - 2019-02-16 14:32 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-03-13 18:20 - 2019-02-16 14:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-03-13 18:20 - 2019-02-16 14:31 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-03-13 18:20 - 2019-02-16 14:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-13 18:20 - 2019-02-16 14:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-13 18:20 - 2019-02-16 14:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-13 18:20 - 2019-02-16 14:30 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-13 18:20 - 2019-02-16 14:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-13 18:20 - 2019-02-16 14:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-13 18:20 - 2019-02-16 14:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-13 18:20 - 2019-02-16 14:25 - 001539896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-03-13 18:20 - 2019-02-16 14:25 - 000148784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2019-03-13 18:20 - 2019-02-16 14:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-03-13 18:20 - 2019-02-16 14:22 - 001322176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-13 18:20 - 2019-02-16 14:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-13 18:20 - 2019-02-16 14:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-13 18:20 - 2019-02-16 14:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-13 18:20 - 2019-02-16 14:06 - 002890752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-03-13 18:20 - 2019-02-16 14:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-13 18:20 - 2019-02-16 14:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-13 18:20 - 2019-02-16 14:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-13 18:20 - 2019-02-16 14:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-13 18:20 - 2019-02-16 14:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-13 18:20 - 2019-02-16 14:02 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2019-03-13 18:20 - 2019-02-16 13:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-03-13 18:20 - 2019-02-16 12:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-13 18:20 - 2019-02-16 10:16 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-13 18:20 - 2019-02-16 10:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-13 18:20 - 2019-02-16 10:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-13 18:20 - 2019-02-16 10:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-03-13 18:20 - 2019-02-16 10:04 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-03-13 18:20 - 2019-02-16 10:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-13 18:20 - 2019-02-16 10:03 - 005625360 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-03-13 18:20 - 2019-02-16 10:03 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 003291632 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 001934800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 000705848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-13 18:20 - 2019-02-16 10:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-13 18:20 - 2019-02-16 10:02 - 000413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-13 18:20 - 2019-02-16 10:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 001028920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-13 18:20 - 2019-02-16 10:01 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000735464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-13 18:20 - 2019-02-16 10:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000480840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2019-03-13 18:20 - 2019-02-16 09:57 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-13 18:20 - 2019-02-16 09:53 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-03-13 18:20 - 2019-02-16 09:51 - 002479168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-03-13 18:20 - 2019-02-16 09:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-13 18:20 - 2019-02-16 09:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 001805648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 001171336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 000560384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-03-13 18:20 - 2019-02-16 09:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-13 18:20 - 2019-02-16 09:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-03-13 18:20 - 2019-02-16 09:36 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-03-13 18:20 - 2019-02-16 09:35 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-03-13 18:20 - 2019-02-16 09:35 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-03-13 18:20 - 2019-02-16 09:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-03-13 18:20 - 2019-02-16 09:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-03-13 18:20 - 2019-02-16 09:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-03-13 18:20 - 2019-02-16 09:32 - 002969088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-03-13 18:20 - 2019-02-16 09:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-13 18:20 - 2019-02-16 09:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-13 18:20 - 2019-02-16 09:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-13 18:20 - 2019-02-16 09:31 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-03-13 18:20 - 2019-02-16 09:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-13 18:20 - 2019-02-16 09:29 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-13 18:20 - 2019-02-16 09:29 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 002585600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-03-13 18:20 - 2019-02-16 09:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-13 18:20 - 2019-02-16 09:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-03-13 18:20 - 2019-02-16 09:27 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 001459712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 000935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-13 18:20 - 2019-02-16 09:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-03-13 18:20 - 2019-02-16 09:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-03-08 17:56 - 2019-03-12 00:57 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-03-08 12:10 - 2019-03-30 23:25 - 000000862 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2019-03-08 12:10 - 2019-03-08 12:10 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-03-08 12:10 - 2019-03-08 12:10 - 000000000 ____D C:\ProgramData\Electronic Arts
2019-03-08 12:10 - 2010-06-02 05:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2019-03-08 12:10 - 2008-07-31 11:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2019-03-08 12:10 - 2008-07-31 11:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2019-03-08 12:10 - 2008-07-31 11:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2019-03-08 12:10 - 2008-07-31 11:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2019-03-08 12:10 - 2008-07-31 11:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2019-03-08 12:10 - 2008-07-31 11:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2019-03-08 12:10 - 2008-07-10 12:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2019-03-08 12:10 - 2008-07-10 12:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2019-03-08 12:10 - 2008-07-10 12:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2019-03-08 12:10 - 2008-07-10 12:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2019-03-08 12:09 - 2008-07-10 12:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2019-03-08 12:09 - 2008-07-10 12:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2019-03-08 12:09 - 2008-05-30 15:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2019-03-08 12:09 - 2008-05-30 15:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2019-03-08 12:09 - 2008-05-30 15:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2019-03-08 12:09 - 2008-05-30 15:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2019-03-08 12:09 - 2008-05-30 15:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2019-03-08 12:09 - 2008-05-30 15:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2019-03-08 12:09 - 2008-05-30 15:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2019-03-08 12:09 - 2008-05-30 15:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2019-03-08 12:09 - 2008-03-05 17:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2019-03-08 12:09 - 2008-03-05 17:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2019-03-08 12:09 - 2008-03-05 17:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2019-03-08 12:09 - 2008-03-05 17:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2019-03-08 12:09 - 2008-03-05 17:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2019-03-08 12:09 - 2008-03-05 17:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2019-03-08 12:09 - 2008-03-05 16:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2019-03-08 12:09 - 2008-03-05 16:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2019-03-08 12:09 - 2008-03-05 16:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2019-03-08 12:09 - 2008-03-05 16:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2019-03-08 12:09 - 2008-02-06 00:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2019-03-08 12:09 - 2008-02-06 00:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2019-03-08 12:09 - 2007-10-22 04:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2019-03-08 12:09 - 2007-10-22 04:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2019-03-08 12:09 - 2007-10-22 04:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2019-03-08 12:09 - 2007-10-22 04:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2019-03-08 12:09 - 2007-10-12 16:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2019-03-08 12:09 - 2007-10-12 16:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2019-03-08 12:09 - 2007-10-12 16:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2019-03-08 12:09 - 2007-10-12 16:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2019-03-08 12:09 - 2007-10-02 10:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2019-03-08 12:09 - 2007-10-02 10:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2019-03-08 12:09 - 2007-07-20 01:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2019-03-08 12:09 - 2007-07-20 01:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2019-03-08 12:09 - 2007-06-20 21:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2019-03-08 12:09 - 2007-06-20 21:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2019-03-08 12:09 - 2007-04-04 19:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2019-03-08 12:09 - 2007-04-04 19:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2019-03-08 12:09 - 2007-04-04 19:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2019-03-08 12:09 - 2007-04-04 19:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2019-03-08 12:09 - 2007-03-15 17:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2019-03-08 12:09 - 2007-03-15 17:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2019-03-08 12:09 - 2007-03-12 17:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2019-03-08 12:09 - 2007-03-12 17:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2019-03-08 12:09 - 2007-03-12 17:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2019-03-08 12:09 - 2007-03-12 17:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2019-03-08 12:09 - 2007-03-05 13:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2019-03-08 12:09 - 2007-03-05 13:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2019-03-08 12:09 - 2007-01-24 16:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2019-03-08 12:09 - 2007-01-24 16:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2019-03-08 12:09 - 2006-12-08 13:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2019-03-08 12:09 - 2006-12-08 13:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2019-03-08 12:09 - 2006-11-29 14:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2019-03-08 12:09 - 2006-11-29 14:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2019-03-08 12:09 - 2006-11-29 14:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2019-03-08 12:09 - 2006-11-29 14:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2019-03-08 12:09 - 2006-09-28 17:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2019-03-08 12:09 - 2006-09-28 17:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2019-03-08 12:09 - 2006-09-28 17:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2019-03-08 12:09 - 2006-09-28 17:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2019-03-08 12:09 - 2006-07-28 10:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2019-03-08 12:09 - 2006-07-28 10:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2019-03-08 12:09 - 2006-07-28 10:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2019-03-08 12:09 - 2006-07-28 10:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2019-03-08 12:09 - 2006-05-31 08:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2019-03-08 12:09 - 2006-05-31 08:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2019-03-08 12:09 - 2006-03-31 13:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2019-03-08 12:09 - 2006-03-31 13:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2019-03-08 12:09 - 2006-03-31 13:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2019-03-08 12:09 - 2006-03-31 13:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2019-03-08 12:09 - 2006-03-31 13:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2019-03-08 12:09 - 2006-03-31 13:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2019-03-08 12:09 - 2006-02-03 09:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2019-03-08 12:09 - 2006-02-03 09:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2019-03-08 12:09 - 2006-02-03 09:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2019-03-08 12:09 - 2006-02-03 09:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2019-03-08 12:09 - 2006-02-03 09:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2019-03-08 12:09 - 2006-02-03 09:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2019-03-08 12:09 - 2005-12-05 19:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2019-03-08 12:09 - 2005-12-05 19:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2019-03-08 12:09 - 2005-07-22 20:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2019-03-08 12:09 - 2005-07-22 20:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2019-03-08 12:09 - 2005-05-26 16:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2019-03-08 12:09 - 2005-05-26 16:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2019-03-08 12:09 - 2005-03-18 18:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2019-03-08 12:09 - 2005-03-18 18:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2019-03-08 12:09 - 2005-02-05 20:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2019-03-08 12:09 - 2005-02-05 20:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2019-03-08 11:00 - 2019-03-08 11:00 - 000000579 _____ C:\Users\Public\Desktop\Origin.lnk
2019-03-08 11:00 - 2019-03-08 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2019-03-08 10:58 - 2019-03-31 02:44 - 000000000 ____D C:\Users\garan\AppData\Roaming\Origin
2019-03-08 10:58 - 2019-03-31 02:44 - 000000000 ____D C:\ProgramData\Origin
2019-03-08 10:58 - 2019-03-08 17:57 - 000000000 ____D C:\Users\garan\AppData\Local\Origin
2019-03-08 10:58 - 2019-03-08 10:58 - 067321320 _____ (Electronic Arts) C:\Users\garan\Downloads\ApexLegendsInstaller.exe
2019-03-08 10:58 - 2019-03-08 10:58 - 000000000 ____D C:\Users\garan\.Origin
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-04-07 18:16 - 2017-10-09 14:50 - 000000000 ____D C:\ProgramData\NVIDIA
2019-04-07 13:09 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-07 13:05 - 2018-05-17 09:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-07 11:58 - 2018-05-24 22:08 - 000000000 ____D C:\Users\garan\AppData\Local\D3DSCache
2019-04-07 00:07 - 2018-05-17 09:22 - 000000000 ____D C:\Users\garan
2019-04-06 23:51 - 2017-10-01 15:56 - 000000000 ____D C:\Users\garan\AppData\Roaming\discord
2019-04-06 22:11 - 2018-05-17 09:30 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-06 22:11 - 2018-04-12 17:51 - 000715034 _____ C:\WINDOWS\system32\perfh005.dat
2019-04-06 22:11 - 2018-04-12 17:51 - 000144328 _____ C:\WINDOWS\system32\perfc005.dat
2019-04-06 22:11 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-04-06 22:05 - 2018-05-17 09:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-05 19:56 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-05 19:04 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-04-05 18:02 - 2018-11-16 19:59 - 000000000 ____D C:\Program Files\rempl
2019-04-05 18:01 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-05 17:58 - 2017-10-01 14:29 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-01 21:35 - 2018-06-04 07:06 - 000000000 ____D C:\Users\garan\AppData\Local\Battle.net
2019-04-01 21:35 - 2018-06-04 07:05 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-03-30 22:29 - 2018-05-17 09:26 - 000003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2552266715-2026576898-945052103-1002
2019-03-30 22:29 - 2018-05-17 09:22 - 000002371 _____ C:\Users\garan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-30 22:29 - 2017-09-21 18:15 - 000000000 ___RD C:\Users\garan\OneDrive
2019-03-27 22:59 - 2018-05-17 09:26 - 000003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-27 22:59 - 2018-05-17 09:26 - 000003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-24 00:29 - 2017-12-23 09:21 - 000000000 ____D C:\Users\garan\AppData\Local\CrashDumps
2019-03-21 12:56 - 2018-11-23 15:08 - 000000894 _____ C:\Users\garan\Desktop\AlbionOnline.lnk
2019-03-13 18:46 - 2018-05-17 09:19 - 000269200 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-03-13 18:45 - 2018-04-12 17:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-03-13 18:23 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-13 18:20 - 2017-09-21 18:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-03-13 18:18 - 2017-09-21 18:31 - 127411920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-03-12 22:03 - 2017-10-01 15:56 - 000002243 _____ C:\Users\garan\Desktop\Discord.lnk
2019-03-12 22:03 - 2017-10-01 15:56 - 000000000 ____D C:\Users\garan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-03-12 22:03 - 2017-10-01 15:56 - 000000000 ____D C:\Users\garan\AppData\Local\Discord
2019-03-12 21:42 - 2017-10-06 13:50 - 000000000 ____D C:\Users\garan\AppData\Roaming\.purple
==================== Files in the root of some directories =======
2009-09-04 18:00 - 2009-09-04 18:00 - 001347354 _____ () C:\Program Files (x86)\Apr2005_d3dx9_25_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001078954 _____ () C:\Program Files (x86)\Apr2005_d3dx9_25_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001397822 _____ () C:\Program Files (x86)\Apr2006_d3dx9_30_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001115221 _____ () C:\Program Files (x86)\Apr2006_d3dx9_30_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000916430 _____ () C:\Program Files (x86)\Apr2006_MDX1_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 004162630 _____ () C:\Program Files (x86)\Apr2006_MDX1_x86_Archive.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000179125 _____ () C:\Program Files (x86)\Apr2006_XACT_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000133095 _____ () C:\Program Files (x86)\Apr2006_XACT_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000087101 _____ () C:\Program Files (x86)\Apr2006_xinput_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000046002 _____ () C:\Program Files (x86)\Apr2006_xinput_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000698612 _____ () C:\Program Files (x86)\APR2007_d3dx10_33_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000695857 _____ () C:\Program Files (x86)\APR2007_d3dx10_33_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001607358 _____ () C:\Program Files (x86)\APR2007_d3dx9_33_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001606031 _____ () C:\Program Files (x86)\APR2007_d3dx9_33_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000195758 _____ () C:\Program Files (x86)\APR2007_XACT_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000151225 _____ () C:\Program Files (x86)\APR2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000096817 _____ () C:\Program Files (x86)\APR2007_xinput_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000053294 _____ () C:\Program Files (x86)\APR2007_xinput_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001350534 _____ () C:\Program Files (x86)\Aug2005_d3dx9_27_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001077644 _____ () C:\Program Files (x86)\Aug2005_d3dx9_27_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000182903 _____ () C:\Program Files (x86)\AUG2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000137235 _____ () C:\Program Files (x86)\AUG2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000087142 _____ () C:\Program Files (x86)\AUG2006_xinput_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000046058 _____ () C:\Program Files (x86)\AUG2006_xinput_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000852286 _____ () C:\Program Files (x86)\AUG2007_d3dx10_35_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000796859 _____ () C:\Program Files (x86)\AUG2007_d3dx10_35_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001800152 _____ () C:\Program Files (x86)\AUG2007_d3dx9_35_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001708144 _____ () C:\Program Files (x86)\AUG2007_d3dx9_35_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000198088 _____ () C:\Program Files (x86)\AUG2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000153004 _____ () C:\Program Files (x86)\AUG2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000867604 _____ () C:\Program Files (x86)\Aug2008_d3dx10_39_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000849167 _____ () C:\Program Files (x86)\Aug2008_d3dx10_39_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001794076 _____ () C:\Program Files (x86)\Aug2008_d3dx9_39_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001464664 _____ () C:\Program Files (x86)\Aug2008_d3dx9_39_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121764 _____ () C:\Program Files (x86)\Aug2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000092996 _____ () C:\Program Files (x86)\Aug2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000271404 _____ () C:\Program Files (x86)\Aug2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000271038 _____ () C:\Program Files (x86)\Aug2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000919036 _____ () C:\Program Files (x86)\Aug2009_D3DCompiler_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000900598 _____ () C:\Program Files (x86)\Aug2009_D3DCompiler_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 003112103 _____ () C:\Program Files (x86)\Aug2009_d3dcsx_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 003319732 _____ () C:\Program Files (x86)\Aug2009_d3dcsx_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000232635 _____ () C:\Program Files (x86)\Aug2009_d3dx10_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000192131 _____ () C:\Program Files (x86)\Aug2009_d3dx10_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000136301 _____ () C:\Program Files (x86)\Aug2009_d3dx11_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000105036 _____ () C:\Program Files (x86)\Aug2009_d3dx11_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000930108 _____ () C:\Program Files (x86)\Aug2009_d3dx9_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000728456 _____ () C:\Program Files (x86)\Aug2009_d3dx9_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000122408 _____ () C:\Program Files (x86)\Aug2009_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000093098 _____ () C:\Program Files (x86)\Aug2009_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000273264 _____ () C:\Program Files (x86)\Aug2009_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000272634 _____ () C:\Program Files (x86)\Aug2009_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001155483 _____ () C:\Program Files (x86)\BDANT.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000975148 _____ () C:\Program Files (x86)\BDAXP.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001357968 _____ () C:\Program Files (x86)\Dec2005_d3dx9_28_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001079448 _____ () C:\Program Files (x86)\Dec2005_d3dx9_28_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000212799 _____ () C:\Program Files (x86)\DEC2006_d3dx10_00_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000191712 _____ () C:\Program Files (x86)\DEC2006_d3dx10_00_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001571154 _____ () C:\Program Files (x86)\DEC2006_d3dx9_32_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001574376 _____ () C:\Program Files (x86)\DEC2006_d3dx9_32_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000192467 _____ () C:\Program Files (x86)\DEC2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000145591 _____ () C:\Program Files (x86)\DEC2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000094024 _____ (Microsoft Corporation) C:\Program Files (x86)\DSETUP.dll
2009-09-04 18:01 - 2009-09-04 18:01 - 001691464 _____ (Microsoft Corporation) C:\Program Files (x86)\dsetup32.dll
2009-09-04 18:01 - 2009-09-04 18:01 - 000044440 _____ () C:\Program Files (x86)\dxdllreg_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 013264168 _____ () C:\Program Files (x86)\dxnt.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000525656 _____ (Microsoft Corporation) C:\Program Files (x86)\DXSETUP.exe
2009-09-04 18:01 - 2009-09-04 18:01 - 000095637 _____ () C:\Program Files (x86)\dxupdate.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001247499 _____ () C:\Program Files (x86)\Feb2005_d3dx9_24_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001013225 _____ () C:\Program Files (x86)\Feb2005_d3dx9_24_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001362796 _____ () C:\Program Files (x86)\Feb2006_d3dx9_29_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001084712 _____ () C:\Program Files (x86)\Feb2006_d3dx9_29_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000178359 _____ () C:\Program Files (x86)\Feb2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000132409 _____ () C:\Program Files (x86)\Feb2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000194667 _____ () C:\Program Files (x86)\FEB2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000147983 _____ () C:\Program Files (x86)\FEB2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001336002 _____ () C:\Program Files (x86)\Jun2005_d3dx9_26_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001064925 _____ () C:\Program Files (x86)\Jun2005_d3dx9_26_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000180777 _____ () C:\Program Files (x86)\JUN2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000133663 _____ () C:\Program Files (x86)\JUN2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000699044 _____ () C:\Program Files (x86)\JUN2007_d3dx10_34_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000698464 _____ () C:\Program Files (x86)\JUN2007_d3dx10_34_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001607766 _____ () C:\Program Files (x86)\JUN2007_d3dx9_34_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001607278 _____ () C:\Program Files (x86)\JUN2007_d3dx9_34_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000197114 _____ () C:\Program Files (x86)\JUN2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000152901 _____ () C:\Program Files (x86)\JUN2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000867828 _____ () C:\Program Files (x86)\JUN2008_d3dx10_38_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000849919 _____ () C:\Program Files (x86)\JUN2008_d3dx10_38_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001792600 _____ () C:\Program Files (x86)\JUN2008_d3dx9_38_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001463878 _____ () C:\Program Files (x86)\JUN2008_d3dx9_38_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000055154 _____ () C:\Program Files (x86)\JUN2008_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021905 _____ () C:\Program Files (x86)\JUN2008_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121054 _____ () C:\Program Files (x86)\JUN2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000093128 _____ () C:\Program Files (x86)\JUN2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000269620 _____ () C:\Program Files (x86)\JUN2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000269016 _____ () C:\Program Files (x86)\JUN2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000844884 _____ () C:\Program Files (x86)\Mar2008_d3dx10_37_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000818260 _____ () C:\Program Files (x86)\Mar2008_d3dx10_37_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001769862 _____ () C:\Program Files (x86)\Mar2008_d3dx9_37_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001443274 _____ () C:\Program Files (x86)\Mar2008_d3dx9_37_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000055050 _____ () C:\Program Files (x86)\Mar2008_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021867 _____ () C:\Program Files (x86)\Mar2008_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000122336 _____ () C:\Program Files (x86)\Mar2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000093726 _____ () C:\Program Files (x86)\Mar2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000251186 _____ () C:\Program Files (x86)\Mar2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000226242 _____ () C:\Program Files (x86)\Mar2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001067160 _____ () C:\Program Files (x86)\Mar2009_d3dx10_41_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001040737 _____ () C:\Program Files (x86)\Mar2009_d3dx10_41_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001973702 _____ () C:\Program Files (x86)\Mar2009_d3dx9_41_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001612446 _____ () C:\Program Files (x86)\Mar2009_d3dx9_41_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000054600 _____ () C:\Program Files (x86)\Mar2009_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021298 _____ () C:\Program Files (x86)\Mar2009_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121506 _____ () C:\Program Files (x86)\Mar2009_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000092732 _____ () C:\Program Files (x86)\Mar2009_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000275036 _____ () C:\Program Files (x86)\Mar2009_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000273010 _____ () C:\Program Files (x86)\Mar2009_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000864600 _____ () C:\Program Files (x86)\Nov2007_d3dx10_36_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000803876 _____ () C:\Program Files (x86)\Nov2007_d3dx10_36_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001802058 _____ () C:\Program Files (x86)\Nov2007_d3dx9_36_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001709360 _____ () C:\Program Files (x86)\Nov2007_d3dx9_36_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000046144 _____ () C:\Program Files (x86)\NOV2007_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000018496 _____ () C:\Program Files (x86)\NOV2007_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000196754 _____ () C:\Program Files (x86)\NOV2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000148264 _____ () C:\Program Files (x86)\NOV2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000994154 _____ () C:\Program Files (x86)\Nov2008_d3dx10_40_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000965421 _____ () C:\Program Files (x86)\Nov2008_d3dx10_40_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001906870 _____ () C:\Program Files (x86)\Nov2008_d3dx9_40_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001550796 _____ () C:\Program Files (x86)\Nov2008_d3dx9_40_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000054522 _____ () C:\Program Files (x86)\Nov2008_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021843 _____ () C:\Program Files (x86)\Nov2008_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121786 _____ () C:\Program Files (x86)\Nov2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000092676 _____ () C:\Program Files (x86)\Nov2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000273960 _____ () C:\Program Files (x86)\Nov2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000272603 _____ () C:\Program Files (x86)\Nov2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000086029 _____ () C:\Program Files (x86)\Oct2005_xinput_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000045351 _____ () C:\Program Files (x86)\Oct2005_xinput_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001412894 _____ () C:\Program Files (x86)\OCT2006_d3dx9_31_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001127209 _____ () C:\Program Files (x86)\OCT2006_d3dx9_31_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000182361 _____ () C:\Program Files (x86)\OCT2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000138009 _____ () C:\Program Files (x86)\OCT2006_XACT_x86.cab
2018-01-02 11:05 - 2018-01-02 11:05 - 000000017 _____ () C:\Users\garan\AppData\Local\resmon.resmoncfg
Some files in TEMP:
====================
2019-04-05 21:24 - 2019-04-06 22:09 - 000000016 _____ () C:\Users\garan\AppData\Local\Temp\37b592dbcbb080a29236eb4f9a884e61.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-17 09:19
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by garan (07-04-2019 18:26:16)
Running from C:\Users\garan\Desktop
Windows 10 Pro Version 1803 17134.648 (X64) (2018-05-17 07:26:48)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2552266715-2026576898-945052103-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2552266715-2026576898-945052103-503 - Limited - Disabled)
garan (S-1-5-21-2552266715-2026576898-945052103-1002 - Administrator - Enabled) => C:\Users\garan
Guest (S-1-5-21-2552266715-2026576898-945052103-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2552266715-2026576898-945052103-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\uTorrent) (Version: 3.5.3.44494 - BitTorrent Inc.)
Aktualizace NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version: - Sandbox Interactive GmbH)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.6 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Core Temp 1.13 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.13 - ALCPU)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Exanima (HKLM-x32\...\1470768488_is1) (Version: 0.7.0.3c - GOG.com)
FOTOLAB CEWE fotosvet (HKLM-x32\...\FOTOLAB CEWE fotosvet) (Version: 6.2.6 - CEWE Stiftung u Co. KGaA)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Mi PC Suite (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\MiPhoneManager) (Version: - Xiaomi Inc.)
Microsoft Office Language Pack 2010 - Czech/èeština (HKLM-x32\...\Office14.OMUI.cs-cz) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\OneDriveSetup.exe) (Version: 19.033.0218.0011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mount and Blade: Warband (HKLM-x32\...\1207666913_is1) (Version: 2.036_(1.172) - GOG.com)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.35.22222 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Ovládací panel NVIDIA 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.35 - NVIDIA Corporation) Hidden
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.12.0 - )
QIP Internet Guardian (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\QipGuard) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7848 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.0.2 (HKLM-x32\...\RTSS) (Version: 7.0.2 - Unwinder)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0405-0000-0000000FF1CE}_Office14.OMUI.cs-cz_{1FCBAAF2-0321-4986-8DAE-5F2891EC6E8E}) (Version: - Microsoft)
Sony Media Manager 2.2 (HKLM-x32\...\{878D2EB2-2D55-42A9-955E-1E08F28529FD}) (Version: 2.2.136 - Sony)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 29.0 - Ubisoft)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
YoloMouse (HKLM\...\{69C126B4-E25D-46AF-8ACD-001160F9460E}) (Version: 0.9.1.0 - HaPpY)
小米云服务 (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\MiCloudPC) (Version: 0.1.25 - xiaomi)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2552266715-2026576898-945052103-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {074547D0-CD36-4794-B665-E15CD4C109E7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {13441334-7DC6-4E9B-93D8-51FBA43234E0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {139C8DC3-C2C1-40FC-A49D-A14B3498B250} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {27E2ECD7-71B3-4B3E-AACA-6BF4820C015F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3AC866BF-47FD-4134-89E4-5795CCC4AD3B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {44AB5EB1-C6F3-4F51-BD52-AECC4F80462E} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5269A776-20BB-4C1B-B457-57C1B6B84FA6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {546CA82A-A6FB-4046-9154-1BF0FB41FA56} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5D3C10C0-1208-4A19-AA9D-DD48E5FE5FC0} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {64CEB657-102B-4EAA-9E90-D15FB1995965} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7D4CFE94-9DC1-48F6-B47A-B2A4A5C1C117} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8FBB7EFA-08D3-429C-BB1E-ADAE5BB7995C} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {90B671BF-1214-4126-8E4B-3EED47BE696C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {A74D434C-D092-4771-92F3-6AADF35CB28C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {AC5526BC-886A-4D2F-8119-7B789FEC02B7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {CE51FEC2-EAB5-4317-8F2D-A88CB3D34FA7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F828731E-83EB-472D-8FDC-9014A42783ED} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F82F4A2E-7278-4075-B4A0-ECD1337A831E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-08-04 00:25 - 2015-08-04 00:25 - 000344064 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
2015-08-04 00:25 - 2015-08-04 00:25 - 000214528 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2017-10-04 20:33 - 2014-04-24 14:29 - 001360016 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2018-05-04 17:09 - 2018-01-26 17:08 - 000200192 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCommon.dll
2018-05-04 17:09 - 2017-09-27 17:30 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\Newtonsoft.Json.dll
2018-05-04 17:09 - 2018-01-26 17:08 - 000088064 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCollect.dll
2015-08-04 00:14 - 2015-08-04 00:14 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiamcsy.dll
2017-12-13 00:22 - 2017-12-13 00:22 - 000220160 _____ () [File not signed] D:\Program Files\YoloMouse\YoloMouse.exe
2019-03-08 11:00 - 2019-03-08 10:59 - 005487104 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Core.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 005089792 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Widgets.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 001177600 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Network.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 000184832 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Xml.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 005841920 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Gui.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Origin\LIBEAY32.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 001611264 _____ (The Qt Company Ltd) [File not signed] D:\Origin\platforms\qwindows.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Origin\ssleay32.dll
2018-07-17 14:28 - 2016-07-21 10:54 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2018-07-17 14:28 - 2017-09-12 10:34 - 001506304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2018-07-17 14:28 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\garan\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\garan\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\garan\AppData\Local\Temp:$DATA [16]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\garan\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{179d9455-7326-4233-a182-f594b3f90c83}.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "QIP Internet Guardian"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "MiPhoneManager"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "小米云服务"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "GalaxyClient"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0ED6DF23-B31E-45B6-95FA-B3E408DE6710}] => (Allow) C:\Users\garan\AppData\Local\MiPhoneManager\main\MiPCSuite.exe (Xiaomi Technology Inc -> Xiaomi.Inc)
FirewallRules: [UDP Query User{DB28835F-C687-47F8-9576-54547CACB0FF}D:\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [TCP Query User{A5CE3027-423B-4F1E-8710-42CC6D61B0B2}D:\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [UDP Query User{30B0C4AD-4911-483A-8782-FF783525429E}C:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) C:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{3CE6202C-A694-4C04-B5A4-239BC38B1A53}C:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) C:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [{F0598F6D-0F7A-4697-8A64-9DB55B03FD84}] => (Allow) D:\Users\garan\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{59C80456-A30C-4957-99E4-5C724FAE1FC6}] => (Allow) D:\Users\garan\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{C2521C91-F2DF-41DF-A8CA-C78196FBA0D0}D:\gog games\mount and blade - warband\mb_warband.exe] => (Allow) D:\gog games\mount and blade - warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [TCP Query User{D8C42AB4-E615-4293-8255-CD2CD0F52BE7}D:\gog games\mount and blade - warband\mb_warband.exe] => (Allow) D:\gog games\mount and blade - warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{E7674AAE-CFAD-4607-B3A5-B732735BC3DC}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EE2CCC91-6499-475F-9872-7EB95F5806A7}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C6A645D5-7EDC-4FA1-8AAE-CB419ACB5822}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{1CD2573D-CA73-4E23-9F01-58AE52754F5A}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{545420F6-AB17-4B3F-A49D-14D2A6BC0542}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{6A8B9937-A3B8-43CB-A54B-30C61FAA07AB}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{A2317AC1-D841-4D95-8832-36304D9DC74B}D:\hry\w3\warcraft 3\war3.exe] => (Allow) D:\hry\w3\warcraft 3\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{E0AA0006-E467-415A-A879-3707ED925653}D:\hry\w3\warcraft 3\war3.exe] => (Allow) D:\hry\w3\warcraft 3\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{B52890BC-169D-4B91-A42B-8FC693369991}] => (Allow) D:\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [{092AB559-F381-42B7-9BDE-137AE96A08D8}] => (Allow) D:\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [TCP Query User{752415F8-E472-4509-9E59-5F92818243DE}C:\program files (x86)\qip 2012\qip.exe] => (Allow) C:\program files (x86)\qip 2012\qip.exe No File
FirewallRules: [UDP Query User{805A4F00-8AB5-4C54-B72D-64BE263DF1E8}C:\program files (x86)\qip 2012\qip.exe] => (Allow) C:\program files (x86)\qip 2012\qip.exe No File
FirewallRules: [{AF23944D-89B5-459B-9A5D-F0628EBD5649}] => (Allow) C:\Users\garan\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{012BBBE9-58B7-40EE-8D09-215C4A829176}] => (Allow) C:\Users\garan\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{37D1EA82-92B9-46FC-97C7-AFEEC94D90DF}D:\steam\steamapps\common\natural selection 2\x64\ns2.exe] => (Allow) D:\steam\steamapps\common\natural selection 2\x64\ns2.exe No File
FirewallRules: [UDP Query User{943E4C5E-CABC-49E3-82A6-DE546239E232}D:\steam\steamapps\common\natural selection 2\x64\ns2.exe] => (Allow) D:\steam\steamapps\common\natural selection 2\x64\ns2.exe No File
FirewallRules: [TCP Query User{6EB46466-68D6-44CE-82CF-BA398EE7D761}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{9DEF9A3A-4CF9-4431-AC16-B9F7309C0FDA}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{A201FF4B-2225-4E24-A334-D3A084CAC215}] => (Allow) D:\Steam\SteamApps\common\For Honor\forhonor.exe No File
FirewallRules: [{83B5FD5E-D8D0-4EB2-BFA8-FAD86A920CA3}] => (Allow) D:\Steam\SteamApps\common\For Honor\forhonor.exe No File
FirewallRules: [{D11AF75B-370C-4020-8D43-A0C4E839066B}] => (Allow) D:\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{181AF1FD-21F6-43C5-8112-03B03237F754}] => (Allow) D:\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{87DFA013-3E84-43F5-B4E7-3462D8546725}D:\steam\steamapps\common\day of defeat source\hl2.exe] => (Allow) D:\steam\steamapps\common\day of defeat source\hl2.exe (Valve -> )
FirewallRules: [UDP Query User{8F27FE63-96D7-4E4D-8F33-514437CC4CE0}D:\steam\steamapps\common\day of defeat source\hl2.exe] => (Allow) D:\steam\steamapps\common\day of defeat source\hl2.exe (Valve -> )
FirewallRules: [TCP Query User{CD414A11-82C8-4C63-A6A1-9CE4D57F723E}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [UDP Query User{3811AA54-B1ED-453F-955D-1933DC338C02}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [{DA4599B5-8275-4591-847A-B098AF2B2093}] => (Block) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [{1276ADA7-BF61-4DBA-8D4C-42330812ACAC}] => (Block) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [TCP Query User{16F819B0-7CF7-4504-820B-94D4F2FD9FB7}C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{631BAB3F-D013-47C4-B471-4FF69E32C9EC}C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{FEFDB626-A9A6-441A-95EA-BA2E2A03839B}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{7FCDC4F1-7965-4D24-B515-F41CACAA8CD9}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{F683FBB1-2FFB-4B10-9E0D-36AD03F5FEB4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BBB78E3C-820F-4932-9A35-E10046C8EA00}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{1A743B1C-35CA-4004-AB06-712BC3607708}D:\program files (x86)\overwatch\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\overwatch.exe No File
FirewallRules: [UDP Query User{DA4F610E-C609-4362-AAA3-E4F30C0E370C}D:\program files (x86)\overwatch\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\overwatch.exe No File
FirewallRules: [TCP Query User{52B253ED-2189-4012-BF50-3420EDE71FF8}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe No File
FirewallRules: [UDP Query User{B247E2BD-C942-4CA7-8B15-F03E52D57171}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe No File
FirewallRules: [{0C6E8E34-4991-46D3-8F7C-499A2E19289D}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe (Valve -> )
FirewallRules: [{8F1B795C-350D-4265-B5A6-ED10BB355EE6}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe (Valve -> )
FirewallRules: [TCP Query User{E5BCC55D-9B54-4882-B0AF-A163335C0918}C:\users\garan\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\garan\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{727D8EED-011B-4A9F-9B1C-74EF1A126380}C:\users\garan\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\garan\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{F4EE15C8-01CF-4F95-991E-9B28260F71AE}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6D02E2DC-7A97-42BF-8DD7-D412E0204574}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4DD3CD6C-D25B-46F2-8AE7-F302B28BE9D7}] => (Allow) D:\Steam\SteamApps\common\SCUM\SCUM\Binaries\Win64\SCUM.exe No File
FirewallRules: [{6740AE58-2418-4594-AC5A-3D982FCF937B}] => (Allow) D:\Steam\SteamApps\common\SCUM\SCUM\Binaries\Win64\SCUM.exe No File
FirewallRules: [{DF73432F-C75E-425D-BBEC-D2A8ACED5113}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [File not signed]
FirewallRules: [{7F51BFFD-CDDB-4897-9D4F-2C84299888DF}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [File not signed]
FirewallRules: [TCP Query User{EE8EC6FE-0BD9-4CDF-995F-16BA93E01AD1}D:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{ED5E5972-1ECB-4661-B6AF-D7792C32C12F}D:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{D0051397-2567-4599-AB31-2BF72FE7FA9F}C:\games\destiny 2\destiny2.exe] => (Allow) C:\games\destiny 2\destiny2.exe No File
FirewallRules: [UDP Query User{0CB166AE-B9AF-47A5-81A4-15B5517B9DB9}C:\games\destiny 2\destiny2.exe] => (Allow) C:\games\destiny 2\destiny2.exe No File
FirewallRules: [{FB5D5F9D-EA69-49F0-AC4C-BA492CF9AA7E}] => (Allow) D:\Steam\SteamApps\common\King Arthur's Gold\KAG.exe () [File not signed]
FirewallRules: [{D5765F60-D872-4991-BA8D-46D6738B2D11}] => (Allow) D:\Steam\SteamApps\common\King Arthur's Gold\KAG.exe () [File not signed]
FirewallRules: [TCP Query User{287C2D89-66E7-4BFE-BB2D-1C88275A8A22}C:\games\overwatch\overwatch.exe] => (Allow) C:\games\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{A4748726-1551-40DD-AA51-7297CA1E2E46}C:\games\overwatch\overwatch.exe] => (Allow) C:\games\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{5D201963-BA75-4AA9-AB98-A790B5E69970}] => (Allow) D:\Steam\SteamApps\common\RunningWithRifles\rwr_game.exe () [File not signed]
FirewallRules: [{3C2EC5D4-ED01-4ECD-9061-A06A5A1A8D11}] => (Allow) D:\Steam\SteamApps\common\RunningWithRifles\rwr_game.exe () [File not signed]
FirewallRules: [{87D9F7A4-1A35-4E6B-B8E2-67B952C58593}] => (Allow) D:\Steam\SteamApps\common\RunningWithRifles\rwr_config.exe () [File not signed]
FirewallRules: [{3BEE0E99-3F05-40B0-9061-2F6735D78CC4}] => (Allow) D:\Steam\SteamApps\common\RunningWithRifles\rwr_config.exe () [File not signed]
FirewallRules: [{B0CD62F9-CC30-4707-B3C1-055843F68048}] => (Allow) D:\Steam\SteamApps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [{622C866E-8B50-409A-AA8B-02D0265B848F}] => (Allow) D:\Steam\SteamApps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [TCP Query User{13A30F2F-D72C-4F47-9CBB-A0D1CB37FA4A}C:\users\garan\desktop\blur(tm)\blur.exe] => (Allow) C:\users\garan\desktop\blur(tm)\blur.exe () [File not signed]
FirewallRules: [UDP Query User{1534B010-E680-48A2-B505-83FAD34C64D4}C:\users\garan\desktop\blur(tm)\blur.exe] => (Allow) C:\users\garan\desktop\blur(tm)\blur.exe () [File not signed]
FirewallRules: [TCP Query User{428642D4-59A8-4469-8024-1E2E812EFA15}D:\steam\steamapps\common\driftland the magic revival\driftland\binaries\win64\driftland-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\driftland the magic revival\driftland\binaries\win64\driftland-win64-shipping.exe No File
FirewallRules: [UDP Query User{CAB9ABC6-F7D5-491F-9055-BB9E5BCE243C}D:\steam\steamapps\common\driftland the magic revival\driftland\binaries\win64\driftland-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\driftland the magic revival\driftland\binaries\win64\driftland-win64-shipping.exe No File
FirewallRules: [{B91DECFC-40DA-48C2-9155-289C182ABDFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2526DE68-5BEA-4BE7-B221-A5ABE5CD32DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{11CAC63E-AD7C-4AA9-AAC5-BDCE12D6B270}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4C0A0902-E379-4A54-8F12-FB4CA760AFA9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9B1C78B6-0A7F-4F97-BAC4-C208A831A1D8}] => (Allow) D:\Steam\SteamApps\common\Foundation\foundation.exe (Polymorph Games) [File not signed]
FirewallRules: [{6DF38142-978F-4BD7-BDDE-AF301DAC1734}] => (Allow) D:\Steam\SteamApps\common\Foundation\foundation.exe (Polymorph Games) [File not signed]
FirewallRules: [TCP Query User{06B60F73-810E-4897-A65C-150496EB9900}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{7678EBC7-54FB-4988-B222-E5E8256714F3}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{25E85A7E-08E6-4001-9F85-4C19CB4E3A1F}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6317A5F3-704A-418F-9356-1821CC2A6022}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{D3A3A4B7-8513-40B2-9DC1-42600BA5302D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{E08693D1-C429-4B97-85DA-C9AC387DF0F3}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
FirewallRules: [{6CAC667C-C1EF-4C5E-A1AF-5B343CE7E5CC}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
==================== Restore Points =========================
21-03-2019 12:52:21 Windows Update
30-03-2019 21:13:15 Naplánovaný kontrolní bod
05-04-2019 18:01:33 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/06/2019 10:09:07 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 10:05:37 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 09:01:58 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 08:52:49 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 06:33:42 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 06:33:25 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 09:28:15 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 09:27:55 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
System errors:
=============
Error: (04/07/2019 06:21:23 PM) (Source: DCOM) (EventID: 10016) (User: IVO)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli IVO\garan (SID: S-1-5-21-2552266715-2026576898-945052103-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (04/07/2019 06:18:49 PM) (Source: DCOM) (EventID: 10016) (User: IVO)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli IVO\garan (SID: S-1-5-21-2552266715-2026576898-945052103-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (04/07/2019 06:15:30 PM) (Source: DCOM) (EventID: 10016) (User: IVO)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli IVO\garan (SID: S-1-5-21-2552266715-2026576898-945052103-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (04/07/2019 06:15:21 PM) (Source: DCOM) (EventID: 10016) (User: IVO)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli IVO\garan (SID: S-1-5-21-2552266715-2026576898-945052103-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (04/07/2019 01:14:46 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5
Error: (04/07/2019 01:14:44 PM) (Source: DCOM) (EventID: 10010) (User: IVO)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/07/2019 01:14:44 PM) (Source: DCOM) (EventID: 10010) (User: IVO)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/07/2019 01:14:44 PM) (Source: DCOM) (EventID: 10010) (User: IVO)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2019-04-07 12:04:23.833
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {DF16750C-43E9-418C-A7DB-0F20EE059809}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-04-02 13:12:28.354
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {F65E54B1-D4B1-429C-82CA-BDB79BF8CA77}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-18 13:12:27.375
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {D76486BD-EBA8-4C56-BEF1-96BBD33C4BFA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-18 12:14:47.992
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {E5622FF8-CD1D-43CA-8D5C-2380E6C3ACBC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-18 12:02:40.966
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {39816659-E89A-428D-BC0F-D4089AC5EF75}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
==================== Memory info ===========================
Processor: AMD FX(tm)-8300 Eight-Core Processor
Percentage of memory in use: 25%
Total physical RAM: 12233.33 MB
Available physical RAM: 9143.32 MB
Total Virtual: 14089.33 MB
Available Virtual: 9483.44 MB
==================== Drives ================================
Drive c: (System SSD) (Fixed) (Total:232.33 GB) (Free:89.27 GB) NTFS
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:25.38 GB) NTFS
\\?\Volume{5e0ce63e-0d13-4fe8-9310-05c095af23aa}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.06 GB) NTFS
\\?\Volume{9dd90eb0-d383-4f45-8adc-edd4267e3174}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 26312631)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=42)
==================== End of Addition.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by garan (administrator) on IVO (07-04-2019 18:25:12)
Running from C:\Users\garan\Desktop
Loaded Profiles: garan (Available Profiles: garan)
Platform: Windows 10 Pro Version 1803 17134.648 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(Realtek Semiconductor Corp -> DTS) C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() [File not signed] D:\Program Files\YoloMouse\YoloMouse.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8841472 2016-06-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1454336 2016-06-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [QIP Internet Guardian] => C:\Users\garan\AppData\Roaming\QipGuard\QipGuard.exe [436224 2013-12-05] (OOO Media Mir -> QIP.ru)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [MiPhoneManager] => C:\Users\garan\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [157624 2016-03-11] (Xiaomi Technology Inc -> )
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [小米云服务] => C:\Users\garan\AppData\Local\MiCloudPC\update.exe [1524136 2017-11-23] (Xiaomi Technology Inc -> GitHub)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [7391816 2018-10-25] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [YoloMouse] => D:\Program Files\YoloMouse\YoloMouse.exe [220160 2017-12-13] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-05] (Google LLC -> Google Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{43a252f2-1af8-4cb5-b60f-8d2dc780462f}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
Chrome:
=======
CHR Profile: C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default [2019-04-07]
CHR Extension: (Prezentace) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-01]
CHR Extension: (Tabulky) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (AdBlock) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-03-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-03-27]
CHR Extension: (Chrome Media Router) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-22]
CHR Profile: C:\Users\garan\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-12]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-05-08] (ASUSTeK Computer Inc. -> )
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] (ASUSTeK Computer Inc. -> ) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8577760 2019-03-25] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
R2 DTSAudioService; C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe [218768 2016-06-17] (Realtek Semiconductor Corp -> DTS)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2018-06-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [706120 2018-10-25] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7112264 2018-10-25] (GOG Sp. z o.o. -> GOG.com)
S3 Microsoft SharePoint Workspace Audit Service; D:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [30814400 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2298688 2019-03-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3171144 2019-03-08] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737560 2019-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2015-05-08] (ASUSTeK Computer Inc. -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-10-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-10-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7a8e74171e1b8492\nvlddmkm.sys [20736208 2019-03-02] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46408 2017-06-02] (SteelSeries ApS -> SteelSeries ApS)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [333792 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-04-07 18:25 - 2019-04-07 18:25 - 000016682 _____ C:\Users\garan\Desktop\FRST.txt
2019-04-07 18:25 - 2019-04-07 18:25 - 000000000 ____D C:\FRST
2019-04-07 18:23 - 2019-04-07 18:23 - 002434048 _____ (Farbar) C:\Users\garan\Desktop\FRST64.exe
2019-04-05 23:19 - 2019-04-05 23:19 - 000000000 ____D C:\Users\garan\AppData\Roaming\EasyAntiCheat
2019-04-05 22:37 - 2019-04-05 22:37 - 001256768 _____ (ALCPU ) C:\Users\garan\Downloads\Core-Temp-setup.exe
2019-04-05 22:37 - 2019-04-05 22:37 - 000000999 _____ C:\Users\garan\Desktop\Core Temp.lnk
2019-04-05 22:37 - 2019-04-05 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2019-04-05 22:37 - 2019-04-05 22:37 - 000000000 ____D C:\Program Files\Core Temp
2019-03-30 13:51 - 2019-03-30 13:51 - 000072102 _____ C:\Users\garan\Downloads\zasilkovna-2019-03-30-1380.pdf
2019-03-30 13:51 - 2019-03-30 13:51 - 000072057 _____ C:\Users\garan\Downloads\zasilkovna-2019-03-30-1563.pdf
2019-03-27 17:53 - 2019-03-27 17:53 - 000026754 _____ C:\Users\garan\Downloads\220176310_Predavaci_protokol_Burian_Ivo_2019-03-27.pdf
2019-03-27 17:52 - 2019-03-27 17:52 - 000152173 _____ C:\Users\garan\Downloads\220176310_FUS_Burian_Ivo_2019-03-27.pdf
2019-03-13 18:21 - 2019-03-06 11:03 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-03-13 18:21 - 2019-03-06 10:44 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-03-13 18:21 - 2019-03-06 10:36 - 022716928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-03-13 18:21 - 2019-03-06 08:14 - 006568528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-03-13 18:21 - 2019-02-16 12:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-13 18:20 - 2019-03-06 17:39 - 000720536 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-03-13 18:20 - 2019-03-06 17:37 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-13 18:20 - 2019-03-06 17:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-13 18:20 - 2019-03-06 17:20 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-03-13 18:20 - 2019-03-06 17:19 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-03-13 18:20 - 2019-03-06 17:17 - 012730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-03-13 18:20 - 2019-03-06 17:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-13 18:20 - 2019-03-06 17:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-13 18:20 - 2019-03-06 17:14 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-13 18:20 - 2019-03-06 17:14 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-03-13 18:20 - 2019-03-06 17:14 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-03-13 18:20 - 2019-03-06 17:13 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-03-13 18:20 - 2019-03-06 17:13 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-03-13 18:20 - 2019-03-06 17:13 - 001662976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-03-13 18:20 - 2019-03-06 17:13 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-03-13 18:20 - 2019-03-06 17:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-13 18:20 - 2019-03-06 14:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-13 18:20 - 2019-03-06 14:18 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-03-13 18:20 - 2019-03-06 14:10 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-03-13 18:20 - 2019-03-06 14:09 - 011919360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-03-13 18:20 - 2019-03-06 14:06 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-03-13 18:20 - 2019-03-06 14:05 - 004054016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-03-13 18:20 - 2019-03-06 14:05 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-03-13 18:20 - 2019-03-06 14:04 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-03-13 18:20 - 2019-03-06 14:04 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-03-13 18:20 - 2019-03-06 13:59 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-03-13 18:20 - 2019-03-06 11:29 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-03-13 18:20 - 2019-03-06 11:16 - 002822456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-03-13 18:20 - 2019-03-06 11:16 - 001457032 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-03-13 18:20 - 2019-03-06 11:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-13 18:20 - 2019-03-06 11:16 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-03-13 18:20 - 2019-03-06 11:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-13 18:20 - 2019-03-06 11:16 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-03-13 18:20 - 2019-03-06 11:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-13 18:20 - 2019-03-06 11:11 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-03-13 18:20 - 2019-03-06 11:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-03-13 18:20 - 2019-03-06 11:07 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-03-13 18:20 - 2019-03-06 11:07 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-03-13 18:20 - 2019-03-06 11:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-13 18:20 - 2019-03-06 11:06 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-03-13 18:20 - 2019-03-06 11:06 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-03-13 18:20 - 2019-03-06 11:06 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-03-13 18:20 - 2019-03-06 11:05 - 000439224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-03-13 18:20 - 2019-03-06 11:05 - 000436240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-03-13 18:20 - 2019-03-06 11:05 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-03-13 18:20 - 2019-03-06 11:04 - 002765856 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-03-13 18:20 - 2019-03-06 11:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-13 18:20 - 2019-03-06 11:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2019-03-13 18:20 - 2019-03-06 11:03 - 002719544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-03-13 18:20 - 2019-03-06 11:03 - 002465784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-03-13 18:20 - 2019-03-06 11:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-13 18:20 - 2019-03-06 11:03 - 000793400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-03-13 18:20 - 2019-03-06 11:03 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-03-13 18:20 - 2019-03-06 11:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-13 18:20 - 2019-03-06 11:02 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-03-13 18:20 - 2019-03-06 11:02 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-03-13 18:20 - 2019-03-06 11:02 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-03-13 18:20 - 2019-03-06 11:02 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-03-13 18:20 - 2019-03-06 11:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-13 18:20 - 2019-03-06 10:36 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-03-13 18:20 - 2019-03-06 10:34 - 004866048 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-03-13 18:20 - 2019-03-06 10:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-13 18:20 - 2019-03-06 10:32 - 003399168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-03-13 18:20 - 2019-03-06 10:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-13 18:20 - 2019-03-06 10:32 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 007598592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-13 18:20 - 2019-03-06 10:31 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-03-13 18:20 - 2019-03-06 10:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-13 18:20 - 2019-03-06 10:31 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-03-13 18:20 - 2019-03-06 10:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-03-13 18:20 - 2019-03-06 10:29 - 002174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-03-13 18:20 - 2019-03-06 10:29 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-03-13 18:20 - 2019-03-06 10:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-13 18:20 - 2019-03-06 10:28 - 004937728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-03-13 18:20 - 2019-03-06 10:28 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-03-13 18:20 - 2019-03-06 10:27 - 002224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-03-13 18:20 - 2019-03-06 10:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-03-13 18:20 - 2019-03-06 10:27 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-03-13 18:20 - 2019-03-06 10:27 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-03-13 18:20 - 2019-03-06 10:26 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-03-13 18:20 - 2019-03-06 10:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-13 18:20 - 2019-03-06 10:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-13 18:20 - 2019-03-06 10:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-13 18:20 - 2019-03-06 09:08 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-03-13 18:20 - 2019-03-06 08:17 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-03-13 18:20 - 2019-03-06 08:17 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-03-13 18:20 - 2019-03-06 08:15 - 002253488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-03-13 18:20 - 2019-03-06 08:15 - 000434488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-03-13 18:20 - 2019-03-06 08:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-13 18:20 - 2019-03-06 08:14 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-03-13 18:20 - 2019-03-06 08:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2019-03-13 18:20 - 2019-03-06 08:14 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-03-13 18:20 - 2019-03-06 08:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-13 18:20 - 2019-03-06 08:05 - 022018048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-03-13 18:20 - 2019-03-06 07:56 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-03-13 18:20 - 2019-03-06 07:53 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-03-13 18:20 - 2019-03-06 07:53 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-03-13 18:20 - 2019-03-06 07:52 - 005790720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-03-13 18:20 - 2019-03-06 07:52 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-03-13 18:20 - 2019-03-06 07:52 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-03-13 18:20 - 2019-03-06 07:51 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-03-13 18:20 - 2019-03-06 07:51 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-03-13 18:20 - 2019-03-06 07:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-03-13 18:20 - 2019-03-06 07:50 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-03-13 18:20 - 2019-03-06 07:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-03-13 18:20 - 2019-03-06 07:50 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-03-13 18:20 - 2019-03-06 07:49 - 004516352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-03-13 18:20 - 2019-03-06 07:49 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-03-13 18:20 - 2019-03-06 07:49 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-03-13 18:20 - 2019-03-06 07:48 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-03-13 18:20 - 2019-03-06 07:48 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-03-13 18:20 - 2019-02-21 05:26 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-13 18:20 - 2019-02-16 15:02 - 001644040 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000808456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000735752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000620040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000460296 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-13 18:20 - 2019-02-16 15:02 - 000147464 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-13 18:20 - 2019-02-16 15:02 - 000071176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 002266936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001786672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001627448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001424696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 001038136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000954168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000830264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000749880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000670008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000495416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000257848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2019-03-13 18:20 - 2019-02-16 14:57 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000180528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2019-03-13 18:20 - 2019-02-16 14:57 - 000034104 _____ C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-03-13 18:20 - 2019-02-16 14:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-03-13 18:20 - 2019-02-16 14:56 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-13 18:20 - 2019-02-16 14:53 - 001516416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-13 18:20 - 2019-02-16 14:36 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-03-13 18:20 - 2019-02-16 14:34 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-13 18:20 - 2019-02-16 14:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-13 18:20 - 2019-02-16 14:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-13 18:20 - 2019-02-16 14:33 - 002194432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-03-13 18:20 - 2019-02-16 14:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-13 18:20 - 2019-02-16 14:32 - 003646976 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-03-13 18:20 - 2019-02-16 14:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-13 18:20 - 2019-02-16 14:32 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-03-13 18:20 - 2019-02-16 14:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-03-13 18:20 - 2019-02-16 14:31 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-03-13 18:20 - 2019-02-16 14:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-13 18:20 - 2019-02-16 14:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-13 18:20 - 2019-02-16 14:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-13 18:20 - 2019-02-16 14:30 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-13 18:20 - 2019-02-16 14:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-13 18:20 - 2019-02-16 14:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-13 18:20 - 2019-02-16 14:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-13 18:20 - 2019-02-16 14:25 - 001539896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-03-13 18:20 - 2019-02-16 14:25 - 000148784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2019-03-13 18:20 - 2019-02-16 14:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-03-13 18:20 - 2019-02-16 14:22 - 001322176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-13 18:20 - 2019-02-16 14:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-13 18:20 - 2019-02-16 14:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-13 18:20 - 2019-02-16 14:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-13 18:20 - 2019-02-16 14:06 - 002890752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-03-13 18:20 - 2019-02-16 14:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-13 18:20 - 2019-02-16 14:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-13 18:20 - 2019-02-16 14:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-13 18:20 - 2019-02-16 14:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-13 18:20 - 2019-02-16 14:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-13 18:20 - 2019-02-16 14:02 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2019-03-13 18:20 - 2019-02-16 13:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-03-13 18:20 - 2019-02-16 12:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-13 18:20 - 2019-02-16 10:16 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-13 18:20 - 2019-02-16 10:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-13 18:20 - 2019-02-16 10:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-13 18:20 - 2019-02-16 10:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-03-13 18:20 - 2019-02-16 10:04 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-03-13 18:20 - 2019-02-16 10:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-13 18:20 - 2019-02-16 10:03 - 005625360 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-03-13 18:20 - 2019-02-16 10:03 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 003291632 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 001934800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-13 18:20 - 2019-02-16 10:02 - 000705848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-13 18:20 - 2019-02-16 10:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-13 18:20 - 2019-02-16 10:02 - 000413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-13 18:20 - 2019-02-16 10:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 001028920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-13 18:20 - 2019-02-16 10:01 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000735464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-13 18:20 - 2019-02-16 10:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000480840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-13 18:20 - 2019-02-16 10:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2019-03-13 18:20 - 2019-02-16 09:57 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-13 18:20 - 2019-02-16 09:53 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-03-13 18:20 - 2019-02-16 09:51 - 002479168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-03-13 18:20 - 2019-02-16 09:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-13 18:20 - 2019-02-16 09:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 001805648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 001171336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 000560384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-03-13 18:20 - 2019-02-16 09:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-03-13 18:20 - 2019-02-16 09:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-13 18:20 - 2019-02-16 09:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-03-13 18:20 - 2019-02-16 09:36 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-03-13 18:20 - 2019-02-16 09:35 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-03-13 18:20 - 2019-02-16 09:35 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-03-13 18:20 - 2019-02-16 09:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-03-13 18:20 - 2019-02-16 09:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-03-13 18:20 - 2019-02-16 09:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-13 18:20 - 2019-02-16 09:33 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-03-13 18:20 - 2019-02-16 09:32 - 002969088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-03-13 18:20 - 2019-02-16 09:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-13 18:20 - 2019-02-16 09:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-13 18:20 - 2019-02-16 09:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-13 18:20 - 2019-02-16 09:31 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-03-13 18:20 - 2019-02-16 09:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2019-03-13 18:20 - 2019-02-16 09:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-13 18:20 - 2019-02-16 09:29 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-13 18:20 - 2019-02-16 09:29 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 002585600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-03-13 18:20 - 2019-02-16 09:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-03-13 18:20 - 2019-02-16 09:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-13 18:20 - 2019-02-16 09:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-03-13 18:20 - 2019-02-16 09:27 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 001459712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 000935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-03-13 18:20 - 2019-02-16 09:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-13 18:20 - 2019-02-16 09:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-03-13 18:20 - 2019-02-16 09:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-03-08 17:56 - 2019-03-12 00:57 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-03-08 12:10 - 2019-03-30 23:25 - 000000862 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2019-03-08 12:10 - 2019-03-08 12:10 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-03-08 12:10 - 2019-03-08 12:10 - 000000000 ____D C:\ProgramData\Electronic Arts
2019-03-08 12:10 - 2010-06-02 05:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2019-03-08 12:10 - 2010-06-02 05:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2019-03-08 12:10 - 2010-05-26 12:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2019-03-08 12:10 - 2010-02-04 11:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2019-03-08 12:10 - 2009-09-04 18:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2019-03-08 12:10 - 2009-09-04 18:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2019-03-08 12:10 - 2009-03-16 15:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2019-03-08 12:10 - 2009-03-09 16:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2019-03-08 12:10 - 2008-10-27 11:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2019-03-08 12:10 - 2008-10-15 07:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2019-03-08 12:10 - 2008-07-31 11:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2019-03-08 12:10 - 2008-07-31 11:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2019-03-08 12:10 - 2008-07-31 11:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2019-03-08 12:10 - 2008-07-31 11:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2019-03-08 12:10 - 2008-07-31 11:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2019-03-08 12:10 - 2008-07-31 11:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2019-03-08 12:10 - 2008-07-10 12:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2019-03-08 12:10 - 2008-07-10 12:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2019-03-08 12:10 - 2008-07-10 12:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2019-03-08 12:10 - 2008-07-10 12:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2019-03-08 12:09 - 2008-07-10 12:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2019-03-08 12:09 - 2008-07-10 12:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2019-03-08 12:09 - 2008-05-30 15:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2019-03-08 12:09 - 2008-05-30 15:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2019-03-08 12:09 - 2008-05-30 15:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2019-03-08 12:09 - 2008-05-30 15:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2019-03-08 12:09 - 2008-05-30 15:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2019-03-08 12:09 - 2008-05-30 15:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2019-03-08 12:09 - 2008-05-30 15:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2019-03-08 12:09 - 2008-05-30 15:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2019-03-08 12:09 - 2008-05-30 15:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2019-03-08 12:09 - 2008-03-05 17:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2019-03-08 12:09 - 2008-03-05 17:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2019-03-08 12:09 - 2008-03-05 17:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2019-03-08 12:09 - 2008-03-05 17:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2019-03-08 12:09 - 2008-03-05 17:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2019-03-08 12:09 - 2008-03-05 17:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2019-03-08 12:09 - 2008-03-05 16:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2019-03-08 12:09 - 2008-03-05 16:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2019-03-08 12:09 - 2008-03-05 16:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2019-03-08 12:09 - 2008-03-05 16:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2019-03-08 12:09 - 2008-02-06 00:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2019-03-08 12:09 - 2008-02-06 00:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2019-03-08 12:09 - 2007-10-22 04:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2019-03-08 12:09 - 2007-10-22 04:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2019-03-08 12:09 - 2007-10-22 04:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2019-03-08 12:09 - 2007-10-22 04:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2019-03-08 12:09 - 2007-10-12 16:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2019-03-08 12:09 - 2007-10-12 16:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2019-03-08 12:09 - 2007-10-12 16:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2019-03-08 12:09 - 2007-10-12 16:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2019-03-08 12:09 - 2007-10-02 10:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2019-03-08 12:09 - 2007-10-02 10:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2019-03-08 12:09 - 2007-07-20 01:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2019-03-08 12:09 - 2007-07-20 01:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2019-03-08 12:09 - 2007-07-19 19:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2019-03-08 12:09 - 2007-06-20 21:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2019-03-08 12:09 - 2007-06-20 21:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2019-03-08 12:09 - 2007-05-16 17:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2019-03-08 12:09 - 2007-04-04 19:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2019-03-08 12:09 - 2007-04-04 19:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2019-03-08 12:09 - 2007-04-04 19:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2019-03-08 12:09 - 2007-04-04 19:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2019-03-08 12:09 - 2007-03-15 17:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2019-03-08 12:09 - 2007-03-15 17:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2019-03-08 12:09 - 2007-03-12 17:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2019-03-08 12:09 - 2007-03-12 17:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2019-03-08 12:09 - 2007-03-12 17:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2019-03-08 12:09 - 2007-03-12 17:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2019-03-08 12:09 - 2007-03-05 13:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2019-03-08 12:09 - 2007-03-05 13:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2019-03-08 12:09 - 2007-01-24 16:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2019-03-08 12:09 - 2007-01-24 16:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2019-03-08 12:09 - 2006-12-08 13:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2019-03-08 12:09 - 2006-12-08 13:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2019-03-08 12:09 - 2006-11-29 14:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2019-03-08 12:09 - 2006-11-29 14:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2019-03-08 12:09 - 2006-11-29 14:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2019-03-08 12:09 - 2006-11-29 14:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2019-03-08 12:09 - 2006-09-28 17:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2019-03-08 12:09 - 2006-09-28 17:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2019-03-08 12:09 - 2006-09-28 17:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2019-03-08 12:09 - 2006-09-28 17:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2019-03-08 12:09 - 2006-07-28 10:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2019-03-08 12:09 - 2006-07-28 10:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2019-03-08 12:09 - 2006-07-28 10:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2019-03-08 12:09 - 2006-07-28 10:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2019-03-08 12:09 - 2006-05-31 08:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2019-03-08 12:09 - 2006-05-31 08:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2019-03-08 12:09 - 2006-03-31 13:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2019-03-08 12:09 - 2006-03-31 13:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2019-03-08 12:09 - 2006-03-31 13:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2019-03-08 12:09 - 2006-03-31 13:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2019-03-08 12:09 - 2006-03-31 13:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2019-03-08 12:09 - 2006-03-31 13:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2019-03-08 12:09 - 2006-02-03 09:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2019-03-08 12:09 - 2006-02-03 09:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2019-03-08 12:09 - 2006-02-03 09:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2019-03-08 12:09 - 2006-02-03 09:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2019-03-08 12:09 - 2006-02-03 09:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2019-03-08 12:09 - 2006-02-03 09:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2019-03-08 12:09 - 2005-12-05 19:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2019-03-08 12:09 - 2005-12-05 19:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2019-03-08 12:09 - 2005-07-22 20:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2019-03-08 12:09 - 2005-07-22 20:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2019-03-08 12:09 - 2005-05-26 16:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2019-03-08 12:09 - 2005-05-26 16:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2019-03-08 12:09 - 2005-03-18 18:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2019-03-08 12:09 - 2005-03-18 18:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2019-03-08 12:09 - 2005-02-05 20:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2019-03-08 12:09 - 2005-02-05 20:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2019-03-08 11:00 - 2019-03-08 11:00 - 000000579 _____ C:\Users\Public\Desktop\Origin.lnk
2019-03-08 11:00 - 2019-03-08 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2019-03-08 10:58 - 2019-03-31 02:44 - 000000000 ____D C:\Users\garan\AppData\Roaming\Origin
2019-03-08 10:58 - 2019-03-31 02:44 - 000000000 ____D C:\ProgramData\Origin
2019-03-08 10:58 - 2019-03-08 17:57 - 000000000 ____D C:\Users\garan\AppData\Local\Origin
2019-03-08 10:58 - 2019-03-08 10:58 - 067321320 _____ (Electronic Arts) C:\Users\garan\Downloads\ApexLegendsInstaller.exe
2019-03-08 10:58 - 2019-03-08 10:58 - 000000000 ____D C:\Users\garan\.Origin
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-04-07 18:16 - 2017-10-09 14:50 - 000000000 ____D C:\ProgramData\NVIDIA
2019-04-07 13:09 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-07 13:05 - 2018-05-17 09:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-07 11:58 - 2018-05-24 22:08 - 000000000 ____D C:\Users\garan\AppData\Local\D3DSCache
2019-04-07 00:07 - 2018-05-17 09:22 - 000000000 ____D C:\Users\garan
2019-04-06 23:51 - 2017-10-01 15:56 - 000000000 ____D C:\Users\garan\AppData\Roaming\discord
2019-04-06 22:11 - 2018-05-17 09:30 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-06 22:11 - 2018-04-12 17:51 - 000715034 _____ C:\WINDOWS\system32\perfh005.dat
2019-04-06 22:11 - 2018-04-12 17:51 - 000144328 _____ C:\WINDOWS\system32\perfc005.dat
2019-04-06 22:11 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-04-06 22:05 - 2018-05-17 09:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-05 19:56 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-05 19:04 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-04-05 18:02 - 2018-11-16 19:59 - 000000000 ____D C:\Program Files\rempl
2019-04-05 18:01 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-05 17:58 - 2017-10-01 14:29 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-01 21:35 - 2018-06-04 07:06 - 000000000 ____D C:\Users\garan\AppData\Local\Battle.net
2019-04-01 21:35 - 2018-06-04 07:05 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-03-30 22:29 - 2018-05-17 09:26 - 000003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2552266715-2026576898-945052103-1002
2019-03-30 22:29 - 2018-05-17 09:22 - 000002371 _____ C:\Users\garan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-30 22:29 - 2017-09-21 18:15 - 000000000 ___RD C:\Users\garan\OneDrive
2019-03-27 22:59 - 2018-05-17 09:26 - 000003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-27 22:59 - 2018-05-17 09:26 - 000003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-24 00:29 - 2017-12-23 09:21 - 000000000 ____D C:\Users\garan\AppData\Local\CrashDumps
2019-03-21 12:56 - 2018-11-23 15:08 - 000000894 _____ C:\Users\garan\Desktop\AlbionOnline.lnk
2019-03-13 18:46 - 2018-05-17 09:19 - 000269200 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-03-13 18:45 - 2018-04-12 17:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-03-13 18:45 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-03-13 18:23 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-13 18:20 - 2017-09-21 18:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-03-13 18:18 - 2017-09-21 18:31 - 127411920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-03-12 22:03 - 2017-10-01 15:56 - 000002243 _____ C:\Users\garan\Desktop\Discord.lnk
2019-03-12 22:03 - 2017-10-01 15:56 - 000000000 ____D C:\Users\garan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-03-12 22:03 - 2017-10-01 15:56 - 000000000 ____D C:\Users\garan\AppData\Local\Discord
2019-03-12 21:42 - 2017-10-06 13:50 - 000000000 ____D C:\Users\garan\AppData\Roaming\.purple
==================== Files in the root of some directories =======
2009-09-04 18:00 - 2009-09-04 18:00 - 001347354 _____ () C:\Program Files (x86)\Apr2005_d3dx9_25_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001078954 _____ () C:\Program Files (x86)\Apr2005_d3dx9_25_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001397822 _____ () C:\Program Files (x86)\Apr2006_d3dx9_30_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001115221 _____ () C:\Program Files (x86)\Apr2006_d3dx9_30_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000916430 _____ () C:\Program Files (x86)\Apr2006_MDX1_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 004162630 _____ () C:\Program Files (x86)\Apr2006_MDX1_x86_Archive.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000179125 _____ () C:\Program Files (x86)\Apr2006_XACT_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000133095 _____ () C:\Program Files (x86)\Apr2006_XACT_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000087101 _____ () C:\Program Files (x86)\Apr2006_xinput_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000046002 _____ () C:\Program Files (x86)\Apr2006_xinput_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000698612 _____ () C:\Program Files (x86)\APR2007_d3dx10_33_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000695857 _____ () C:\Program Files (x86)\APR2007_d3dx10_33_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001607358 _____ () C:\Program Files (x86)\APR2007_d3dx9_33_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001606031 _____ () C:\Program Files (x86)\APR2007_d3dx9_33_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000195758 _____ () C:\Program Files (x86)\APR2007_XACT_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000151225 _____ () C:\Program Files (x86)\APR2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000096817 _____ () C:\Program Files (x86)\APR2007_xinput_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000053294 _____ () C:\Program Files (x86)\APR2007_xinput_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001350534 _____ () C:\Program Files (x86)\Aug2005_d3dx9_27_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001077644 _____ () C:\Program Files (x86)\Aug2005_d3dx9_27_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000182903 _____ () C:\Program Files (x86)\AUG2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000137235 _____ () C:\Program Files (x86)\AUG2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000087142 _____ () C:\Program Files (x86)\AUG2006_xinput_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000046058 _____ () C:\Program Files (x86)\AUG2006_xinput_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000852286 _____ () C:\Program Files (x86)\AUG2007_d3dx10_35_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000796859 _____ () C:\Program Files (x86)\AUG2007_d3dx10_35_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001800152 _____ () C:\Program Files (x86)\AUG2007_d3dx9_35_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001708144 _____ () C:\Program Files (x86)\AUG2007_d3dx9_35_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000198088 _____ () C:\Program Files (x86)\AUG2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000153004 _____ () C:\Program Files (x86)\AUG2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000867604 _____ () C:\Program Files (x86)\Aug2008_d3dx10_39_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000849167 _____ () C:\Program Files (x86)\Aug2008_d3dx10_39_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001794076 _____ () C:\Program Files (x86)\Aug2008_d3dx9_39_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001464664 _____ () C:\Program Files (x86)\Aug2008_d3dx9_39_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121764 _____ () C:\Program Files (x86)\Aug2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000092996 _____ () C:\Program Files (x86)\Aug2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000271404 _____ () C:\Program Files (x86)\Aug2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000271038 _____ () C:\Program Files (x86)\Aug2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000919036 _____ () C:\Program Files (x86)\Aug2009_D3DCompiler_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000900598 _____ () C:\Program Files (x86)\Aug2009_D3DCompiler_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 003112103 _____ () C:\Program Files (x86)\Aug2009_d3dcsx_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 003319732 _____ () C:\Program Files (x86)\Aug2009_d3dcsx_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000232635 _____ () C:\Program Files (x86)\Aug2009_d3dx10_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000192131 _____ () C:\Program Files (x86)\Aug2009_d3dx10_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000136301 _____ () C:\Program Files (x86)\Aug2009_d3dx11_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000105036 _____ () C:\Program Files (x86)\Aug2009_d3dx11_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000930108 _____ () C:\Program Files (x86)\Aug2009_d3dx9_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000728456 _____ () C:\Program Files (x86)\Aug2009_d3dx9_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000122408 _____ () C:\Program Files (x86)\Aug2009_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000093098 _____ () C:\Program Files (x86)\Aug2009_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000273264 _____ () C:\Program Files (x86)\Aug2009_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000272634 _____ () C:\Program Files (x86)\Aug2009_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001155483 _____ () C:\Program Files (x86)\BDANT.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000975148 _____ () C:\Program Files (x86)\BDAXP.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001357968 _____ () C:\Program Files (x86)\Dec2005_d3dx9_28_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001079448 _____ () C:\Program Files (x86)\Dec2005_d3dx9_28_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000212799 _____ () C:\Program Files (x86)\DEC2006_d3dx10_00_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000191712 _____ () C:\Program Files (x86)\DEC2006_d3dx10_00_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001571154 _____ () C:\Program Files (x86)\DEC2006_d3dx9_32_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001574376 _____ () C:\Program Files (x86)\DEC2006_d3dx9_32_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000192467 _____ () C:\Program Files (x86)\DEC2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000145591 _____ () C:\Program Files (x86)\DEC2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000094024 _____ (Microsoft Corporation) C:\Program Files (x86)\DSETUP.dll
2009-09-04 18:01 - 2009-09-04 18:01 - 001691464 _____ (Microsoft Corporation) C:\Program Files (x86)\dsetup32.dll
2009-09-04 18:01 - 2009-09-04 18:01 - 000044440 _____ () C:\Program Files (x86)\dxdllreg_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 013264168 _____ () C:\Program Files (x86)\dxnt.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000525656 _____ (Microsoft Corporation) C:\Program Files (x86)\DXSETUP.exe
2009-09-04 18:01 - 2009-09-04 18:01 - 000095637 _____ () C:\Program Files (x86)\dxupdate.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001247499 _____ () C:\Program Files (x86)\Feb2005_d3dx9_24_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001013225 _____ () C:\Program Files (x86)\Feb2005_d3dx9_24_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001362796 _____ () C:\Program Files (x86)\Feb2006_d3dx9_29_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001084712 _____ () C:\Program Files (x86)\Feb2006_d3dx9_29_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000178359 _____ () C:\Program Files (x86)\Feb2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000132409 _____ () C:\Program Files (x86)\Feb2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000194667 _____ () C:\Program Files (x86)\FEB2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000147983 _____ () C:\Program Files (x86)\FEB2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001336002 _____ () C:\Program Files (x86)\Jun2005_d3dx9_26_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001064925 _____ () C:\Program Files (x86)\Jun2005_d3dx9_26_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000180777 _____ () C:\Program Files (x86)\JUN2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000133663 _____ () C:\Program Files (x86)\JUN2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000699044 _____ () C:\Program Files (x86)\JUN2007_d3dx10_34_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000698464 _____ () C:\Program Files (x86)\JUN2007_d3dx10_34_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001607766 _____ () C:\Program Files (x86)\JUN2007_d3dx9_34_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001607278 _____ () C:\Program Files (x86)\JUN2007_d3dx9_34_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000197114 _____ () C:\Program Files (x86)\JUN2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000152901 _____ () C:\Program Files (x86)\JUN2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000867828 _____ () C:\Program Files (x86)\JUN2008_d3dx10_38_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000849919 _____ () C:\Program Files (x86)\JUN2008_d3dx10_38_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001792600 _____ () C:\Program Files (x86)\JUN2008_d3dx9_38_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001463878 _____ () C:\Program Files (x86)\JUN2008_d3dx9_38_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000055154 _____ () C:\Program Files (x86)\JUN2008_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021905 _____ () C:\Program Files (x86)\JUN2008_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121054 _____ () C:\Program Files (x86)\JUN2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000093128 _____ () C:\Program Files (x86)\JUN2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000269620 _____ () C:\Program Files (x86)\JUN2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000269016 _____ () C:\Program Files (x86)\JUN2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000844884 _____ () C:\Program Files (x86)\Mar2008_d3dx10_37_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000818260 _____ () C:\Program Files (x86)\Mar2008_d3dx10_37_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001769862 _____ () C:\Program Files (x86)\Mar2008_d3dx9_37_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001443274 _____ () C:\Program Files (x86)\Mar2008_d3dx9_37_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000055050 _____ () C:\Program Files (x86)\Mar2008_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021867 _____ () C:\Program Files (x86)\Mar2008_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000122336 _____ () C:\Program Files (x86)\Mar2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000093726 _____ () C:\Program Files (x86)\Mar2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000251186 _____ () C:\Program Files (x86)\Mar2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000226242 _____ () C:\Program Files (x86)\Mar2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001067160 _____ () C:\Program Files (x86)\Mar2009_d3dx10_41_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001040737 _____ () C:\Program Files (x86)\Mar2009_d3dx10_41_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001973702 _____ () C:\Program Files (x86)\Mar2009_d3dx9_41_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001612446 _____ () C:\Program Files (x86)\Mar2009_d3dx9_41_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000054600 _____ () C:\Program Files (x86)\Mar2009_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021298 _____ () C:\Program Files (x86)\Mar2009_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121506 _____ () C:\Program Files (x86)\Mar2009_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000092732 _____ () C:\Program Files (x86)\Mar2009_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000275036 _____ () C:\Program Files (x86)\Mar2009_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000273010 _____ () C:\Program Files (x86)\Mar2009_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000864600 _____ () C:\Program Files (x86)\Nov2007_d3dx10_36_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000803876 _____ () C:\Program Files (x86)\Nov2007_d3dx10_36_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001802058 _____ () C:\Program Files (x86)\Nov2007_d3dx9_36_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001709360 _____ () C:\Program Files (x86)\Nov2007_d3dx9_36_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000046144 _____ () C:\Program Files (x86)\NOV2007_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000018496 _____ () C:\Program Files (x86)\NOV2007_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000196754 _____ () C:\Program Files (x86)\NOV2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000148264 _____ () C:\Program Files (x86)\NOV2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000994154 _____ () C:\Program Files (x86)\Nov2008_d3dx10_40_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000965421 _____ () C:\Program Files (x86)\Nov2008_d3dx10_40_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001906870 _____ () C:\Program Files (x86)\Nov2008_d3dx9_40_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001550796 _____ () C:\Program Files (x86)\Nov2008_d3dx9_40_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000054522 _____ () C:\Program Files (x86)\Nov2008_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021843 _____ () C:\Program Files (x86)\Nov2008_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121786 _____ () C:\Program Files (x86)\Nov2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000092676 _____ () C:\Program Files (x86)\Nov2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000273960 _____ () C:\Program Files (x86)\Nov2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000272603 _____ () C:\Program Files (x86)\Nov2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000086029 _____ () C:\Program Files (x86)\Oct2005_xinput_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000045351 _____ () C:\Program Files (x86)\Oct2005_xinput_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001412894 _____ () C:\Program Files (x86)\OCT2006_d3dx9_31_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001127209 _____ () C:\Program Files (x86)\OCT2006_d3dx9_31_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000182361 _____ () C:\Program Files (x86)\OCT2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000138009 _____ () C:\Program Files (x86)\OCT2006_XACT_x86.cab
2018-01-02 11:05 - 2018-01-02 11:05 - 000000017 _____ () C:\Users\garan\AppData\Local\resmon.resmoncfg
Some files in TEMP:
====================
2019-04-05 21:24 - 2019-04-06 22:09 - 000000016 _____ () C:\Users\garan\AppData\Local\Temp\37b592dbcbb080a29236eb4f9a884e61.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-17 09:19
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by garan (07-04-2019 18:26:16)
Running from C:\Users\garan\Desktop
Windows 10 Pro Version 1803 17134.648 (X64) (2018-05-17 07:26:48)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2552266715-2026576898-945052103-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2552266715-2026576898-945052103-503 - Limited - Disabled)
garan (S-1-5-21-2552266715-2026576898-945052103-1002 - Administrator - Enabled) => C:\Users\garan
Guest (S-1-5-21-2552266715-2026576898-945052103-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2552266715-2026576898-945052103-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\uTorrent) (Version: 3.5.3.44494 - BitTorrent Inc.)
Aktualizace NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version: - Sandbox Interactive GmbH)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.6 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Core Temp 1.13 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.13 - ALCPU)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Exanima (HKLM-x32\...\1470768488_is1) (Version: 0.7.0.3c - GOG.com)
FOTOLAB CEWE fotosvet (HKLM-x32\...\FOTOLAB CEWE fotosvet) (Version: 6.2.6 - CEWE Stiftung u Co. KGaA)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Mi PC Suite (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\MiPhoneManager) (Version: - Xiaomi Inc.)
Microsoft Office Language Pack 2010 - Czech/èeština (HKLM-x32\...\Office14.OMUI.cs-cz) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\OneDriveSetup.exe) (Version: 19.033.0218.0011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mount and Blade: Warband (HKLM-x32\...\1207666913_is1) (Version: 2.036_(1.172) - GOG.com)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.35.22222 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Ovládací panel NVIDIA 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.35 - NVIDIA Corporation) Hidden
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.12.0 - )
QIP Internet Guardian (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\QipGuard) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7848 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.0.2 (HKLM-x32\...\RTSS) (Version: 7.0.2 - Unwinder)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0405-0000-0000000FF1CE}_Office14.OMUI.cs-cz_{1FCBAAF2-0321-4986-8DAE-5F2891EC6E8E}) (Version: - Microsoft)
Sony Media Manager 2.2 (HKLM-x32\...\{878D2EB2-2D55-42A9-955E-1E08F28529FD}) (Version: 2.2.136 - Sony)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 29.0 - Ubisoft)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
YoloMouse (HKLM\...\{69C126B4-E25D-46AF-8ACD-001160F9460E}) (Version: 0.9.1.0 - HaPpY)
小米云服务 (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\MiCloudPC) (Version: 0.1.25 - xiaomi)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2552266715-2026576898-945052103-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {074547D0-CD36-4794-B665-E15CD4C109E7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {13441334-7DC6-4E9B-93D8-51FBA43234E0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {139C8DC3-C2C1-40FC-A49D-A14B3498B250} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {27E2ECD7-71B3-4B3E-AACA-6BF4820C015F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3AC866BF-47FD-4134-89E4-5795CCC4AD3B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {44AB5EB1-C6F3-4F51-BD52-AECC4F80462E} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5269A776-20BB-4C1B-B457-57C1B6B84FA6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {546CA82A-A6FB-4046-9154-1BF0FB41FA56} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5D3C10C0-1208-4A19-AA9D-DD48E5FE5FC0} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {64CEB657-102B-4EAA-9E90-D15FB1995965} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7D4CFE94-9DC1-48F6-B47A-B2A4A5C1C117} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8FBB7EFA-08D3-429C-BB1E-ADAE5BB7995C} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {90B671BF-1214-4126-8E4B-3EED47BE696C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {A74D434C-D092-4771-92F3-6AADF35CB28C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {AC5526BC-886A-4D2F-8119-7B789FEC02B7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {CE51FEC2-EAB5-4317-8F2D-A88CB3D34FA7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F828731E-83EB-472D-8FDC-9014A42783ED} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F82F4A2E-7278-4075-B4A0-ECD1337A831E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-08-04 00:25 - 2015-08-04 00:25 - 000344064 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
2015-08-04 00:25 - 2015-08-04 00:25 - 000214528 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2017-10-04 20:33 - 2014-04-24 14:29 - 001360016 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2018-05-04 17:09 - 2018-01-26 17:08 - 000200192 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCommon.dll
2018-05-04 17:09 - 2017-09-27 17:30 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\Newtonsoft.Json.dll
2018-05-04 17:09 - 2018-01-26 17:08 - 000088064 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCollect.dll
2015-08-04 00:14 - 2015-08-04 00:14 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiamcsy.dll
2017-12-13 00:22 - 2017-12-13 00:22 - 000220160 _____ () [File not signed] D:\Program Files\YoloMouse\YoloMouse.exe
2019-03-08 11:00 - 2019-03-08 10:59 - 005487104 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Core.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 005089792 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Widgets.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 001177600 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Network.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 000184832 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Xml.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 005841920 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Gui.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Origin\LIBEAY32.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 001611264 _____ (The Qt Company Ltd) [File not signed] D:\Origin\platforms\qwindows.dll
2019-03-08 11:00 - 2019-03-08 10:59 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Origin\ssleay32.dll
2018-07-17 14:28 - 2016-07-21 10:54 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2018-07-17 14:28 - 2017-09-12 10:34 - 001506304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2018-07-17 14:28 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\garan\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\garan\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\garan\AppData\Local\Temp:$DATA [16]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\garan\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{179d9455-7326-4233-a182-f594b3f90c83}.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "QIP Internet Guardian"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "MiPhoneManager"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "小米云服务"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "GalaxyClient"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0ED6DF23-B31E-45B6-95FA-B3E408DE6710}] => (Allow) C:\Users\garan\AppData\Local\MiPhoneManager\main\MiPCSuite.exe (Xiaomi Technology Inc -> Xiaomi.Inc)
FirewallRules: [UDP Query User{DB28835F-C687-47F8-9576-54547CACB0FF}D:\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [TCP Query User{A5CE3027-423B-4F1E-8710-42CC6D61B0B2}D:\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [UDP Query User{30B0C4AD-4911-483A-8782-FF783525429E}C:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) C:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{3CE6202C-A694-4C04-B5A4-239BC38B1A53}C:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) C:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [{F0598F6D-0F7A-4697-8A64-9DB55B03FD84}] => (Allow) D:\Users\garan\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{59C80456-A30C-4957-99E4-5C724FAE1FC6}] => (Allow) D:\Users\garan\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{C2521C91-F2DF-41DF-A8CA-C78196FBA0D0}D:\gog games\mount and blade - warband\mb_warband.exe] => (Allow) D:\gog games\mount and blade - warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [TCP Query User{D8C42AB4-E615-4293-8255-CD2CD0F52BE7}D:\gog games\mount and blade - warband\mb_warband.exe] => (Allow) D:\gog games\mount and blade - warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{E7674AAE-CFAD-4607-B3A5-B732735BC3DC}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EE2CCC91-6499-475F-9872-7EB95F5806A7}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C6A645D5-7EDC-4FA1-8AAE-CB419ACB5822}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{1CD2573D-CA73-4E23-9F01-58AE52754F5A}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{545420F6-AB17-4B3F-A49D-14D2A6BC0542}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{6A8B9937-A3B8-43CB-A54B-30C61FAA07AB}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{A2317AC1-D841-4D95-8832-36304D9DC74B}D:\hry\w3\warcraft 3\war3.exe] => (Allow) D:\hry\w3\warcraft 3\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{E0AA0006-E467-415A-A879-3707ED925653}D:\hry\w3\warcraft 3\war3.exe] => (Allow) D:\hry\w3\warcraft 3\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{B52890BC-169D-4B91-A42B-8FC693369991}] => (Allow) D:\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [{092AB559-F381-42B7-9BDE-137AE96A08D8}] => (Allow) D:\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [TCP Query User{752415F8-E472-4509-9E59-5F92818243DE}C:\program files (x86)\qip 2012\qip.exe] => (Allow) C:\program files (x86)\qip 2012\qip.exe No File
FirewallRules: [UDP Query User{805A4F00-8AB5-4C54-B72D-64BE263DF1E8}C:\program files (x86)\qip 2012\qip.exe] => (Allow) C:\program files (x86)\qip 2012\qip.exe No File
FirewallRules: [{AF23944D-89B5-459B-9A5D-F0628EBD5649}] => (Allow) C:\Users\garan\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{012BBBE9-58B7-40EE-8D09-215C4A829176}] => (Allow) C:\Users\garan\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{37D1EA82-92B9-46FC-97C7-AFEEC94D90DF}D:\steam\steamapps\common\natural selection 2\x64\ns2.exe] => (Allow) D:\steam\steamapps\common\natural selection 2\x64\ns2.exe No File
FirewallRules: [UDP Query User{943E4C5E-CABC-49E3-82A6-DE546239E232}D:\steam\steamapps\common\natural selection 2\x64\ns2.exe] => (Allow) D:\steam\steamapps\common\natural selection 2\x64\ns2.exe No File
FirewallRules: [TCP Query User{6EB46466-68D6-44CE-82CF-BA398EE7D761}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{9DEF9A3A-4CF9-4431-AC16-B9F7309C0FDA}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{A201FF4B-2225-4E24-A334-D3A084CAC215}] => (Allow) D:\Steam\SteamApps\common\For Honor\forhonor.exe No File
FirewallRules: [{83B5FD5E-D8D0-4EB2-BFA8-FAD86A920CA3}] => (Allow) D:\Steam\SteamApps\common\For Honor\forhonor.exe No File
FirewallRules: [{D11AF75B-370C-4020-8D43-A0C4E839066B}] => (Allow) D:\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{181AF1FD-21F6-43C5-8112-03B03237F754}] => (Allow) D:\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{87DFA013-3E84-43F5-B4E7-3462D8546725}D:\steam\steamapps\common\day of defeat source\hl2.exe] => (Allow) D:\steam\steamapps\common\day of defeat source\hl2.exe (Valve -> )
FirewallRules: [UDP Query User{8F27FE63-96D7-4E4D-8F33-514437CC4CE0}D:\steam\steamapps\common\day of defeat source\hl2.exe] => (Allow) D:\steam\steamapps\common\day of defeat source\hl2.exe (Valve -> )
FirewallRules: [TCP Query User{CD414A11-82C8-4C63-A6A1-9CE4D57F723E}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [UDP Query User{3811AA54-B1ED-453F-955D-1933DC338C02}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [{DA4599B5-8275-4591-847A-B098AF2B2093}] => (Block) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [{1276ADA7-BF61-4DBA-8D4C-42330812ACAC}] => (Block) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe No File
FirewallRules: [TCP Query User{16F819B0-7CF7-4504-820B-94D4F2FD9FB7}C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{631BAB3F-D013-47C4-B471-4FF69E32C9EC}C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{FEFDB626-A9A6-441A-95EA-BA2E2A03839B}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{7FCDC4F1-7965-4D24-B515-F41CACAA8CD9}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{F683FBB1-2FFB-4B10-9E0D-36AD03F5FEB4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BBB78E3C-820F-4932-9A35-E10046C8EA00}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{1A743B1C-35CA-4004-AB06-712BC3607708}D:\program files (x86)\overwatch\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\overwatch.exe No File
FirewallRules: [UDP Query User{DA4F610E-C609-4362-AAA3-E4F30C0E370C}D:\program files (x86)\overwatch\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\overwatch.exe No File
FirewallRules: [TCP Query User{52B253ED-2189-4012-BF50-3420EDE71FF8}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe No File
FirewallRules: [UDP Query User{B247E2BD-C942-4CA7-8B15-F03E52D57171}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe No File
FirewallRules: [{0C6E8E34-4991-46D3-8F7C-499A2E19289D}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe (Valve -> )
FirewallRules: [{8F1B795C-350D-4265-B5A6-ED10BB355EE6}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe (Valve -> )
FirewallRules: [TCP Query User{E5BCC55D-9B54-4882-B0AF-A163335C0918}C:\users\garan\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\garan\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{727D8EED-011B-4A9F-9B1C-74EF1A126380}C:\users\garan\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\garan\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{F4EE15C8-01CF-4F95-991E-9B28260F71AE}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6D02E2DC-7A97-42BF-8DD7-D412E0204574}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4DD3CD6C-D25B-46F2-8AE7-F302B28BE9D7}] => (Allow) D:\Steam\SteamApps\common\SCUM\SCUM\Binaries\Win64\SCUM.exe No File
FirewallRules: [{6740AE58-2418-4594-AC5A-3D982FCF937B}] => (Allow) D:\Steam\SteamApps\common\SCUM\SCUM\Binaries\Win64\SCUM.exe No File
FirewallRules: [{DF73432F-C75E-425D-BBEC-D2A8ACED5113}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [File not signed]
FirewallRules: [{7F51BFFD-CDDB-4897-9D4F-2C84299888DF}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [File not signed]
FirewallRules: [TCP Query User{EE8EC6FE-0BD9-4CDF-995F-16BA93E01AD1}D:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{ED5E5972-1ECB-4661-B6AF-D7792C32C12F}D:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{D0051397-2567-4599-AB31-2BF72FE7FA9F}C:\games\destiny 2\destiny2.exe] => (Allow) C:\games\destiny 2\destiny2.exe No File
FirewallRules: [UDP Query User{0CB166AE-B9AF-47A5-81A4-15B5517B9DB9}C:\games\destiny 2\destiny2.exe] => (Allow) C:\games\destiny 2\destiny2.exe No File
FirewallRules: [{FB5D5F9D-EA69-49F0-AC4C-BA492CF9AA7E}] => (Allow) D:\Steam\SteamApps\common\King Arthur's Gold\KAG.exe () [File not signed]
FirewallRules: [{D5765F60-D872-4991-BA8D-46D6738B2D11}] => (Allow) D:\Steam\SteamApps\common\King Arthur's Gold\KAG.exe () [File not signed]
FirewallRules: [TCP Query User{287C2D89-66E7-4BFE-BB2D-1C88275A8A22}C:\games\overwatch\overwatch.exe] => (Allow) C:\games\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{A4748726-1551-40DD-AA51-7297CA1E2E46}C:\games\overwatch\overwatch.exe] => (Allow) C:\games\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{5D201963-BA75-4AA9-AB98-A790B5E69970}] => (Allow) D:\Steam\SteamApps\common\RunningWithRifles\rwr_game.exe () [File not signed]
FirewallRules: [{3C2EC5D4-ED01-4ECD-9061-A06A5A1A8D11}] => (Allow) D:\Steam\SteamApps\common\RunningWithRifles\rwr_game.exe () [File not signed]
FirewallRules: [{87D9F7A4-1A35-4E6B-B8E2-67B952C58593}] => (Allow) D:\Steam\SteamApps\common\RunningWithRifles\rwr_config.exe () [File not signed]
FirewallRules: [{3BEE0E99-3F05-40B0-9061-2F6735D78CC4}] => (Allow) D:\Steam\SteamApps\common\RunningWithRifles\rwr_config.exe () [File not signed]
FirewallRules: [{B0CD62F9-CC30-4707-B3C1-055843F68048}] => (Allow) D:\Steam\SteamApps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [{622C866E-8B50-409A-AA8B-02D0265B848F}] => (Allow) D:\Steam\SteamApps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [TCP Query User{13A30F2F-D72C-4F47-9CBB-A0D1CB37FA4A}C:\users\garan\desktop\blur(tm)\blur.exe] => (Allow) C:\users\garan\desktop\blur(tm)\blur.exe () [File not signed]
FirewallRules: [UDP Query User{1534B010-E680-48A2-B505-83FAD34C64D4}C:\users\garan\desktop\blur(tm)\blur.exe] => (Allow) C:\users\garan\desktop\blur(tm)\blur.exe () [File not signed]
FirewallRules: [TCP Query User{428642D4-59A8-4469-8024-1E2E812EFA15}D:\steam\steamapps\common\driftland the magic revival\driftland\binaries\win64\driftland-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\driftland the magic revival\driftland\binaries\win64\driftland-win64-shipping.exe No File
FirewallRules: [UDP Query User{CAB9ABC6-F7D5-491F-9055-BB9E5BCE243C}D:\steam\steamapps\common\driftland the magic revival\driftland\binaries\win64\driftland-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\driftland the magic revival\driftland\binaries\win64\driftland-win64-shipping.exe No File
FirewallRules: [{B91DECFC-40DA-48C2-9155-289C182ABDFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2526DE68-5BEA-4BE7-B221-A5ABE5CD32DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{11CAC63E-AD7C-4AA9-AAC5-BDCE12D6B270}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4C0A0902-E379-4A54-8F12-FB4CA760AFA9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9B1C78B6-0A7F-4F97-BAC4-C208A831A1D8}] => (Allow) D:\Steam\SteamApps\common\Foundation\foundation.exe (Polymorph Games) [File not signed]
FirewallRules: [{6DF38142-978F-4BD7-BDDE-AF301DAC1734}] => (Allow) D:\Steam\SteamApps\common\Foundation\foundation.exe (Polymorph Games) [File not signed]
FirewallRules: [TCP Query User{06B60F73-810E-4897-A65C-150496EB9900}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{7678EBC7-54FB-4988-B222-E5E8256714F3}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{25E85A7E-08E6-4001-9F85-4C19CB4E3A1F}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6317A5F3-704A-418F-9356-1821CC2A6022}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{D3A3A4B7-8513-40B2-9DC1-42600BA5302D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{E08693D1-C429-4B97-85DA-C9AC387DF0F3}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
FirewallRules: [{6CAC667C-C1EF-4C5E-A1AF-5B343CE7E5CC}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
==================== Restore Points =========================
21-03-2019 12:52:21 Windows Update
30-03-2019 21:13:15 Naplánovaný kontrolní bod
05-04-2019 18:01:33 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/06/2019 10:09:07 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 10:05:37 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 09:01:58 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 08:52:49 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 06:33:42 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 06:33:25 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 09:28:15 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
Error: (04/06/2019 09:27:55 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: IVO)
Description: httphttp-2147467263
System errors:
=============
Error: (04/07/2019 06:21:23 PM) (Source: DCOM) (EventID: 10016) (User: IVO)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli IVO\garan (SID: S-1-5-21-2552266715-2026576898-945052103-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (04/07/2019 06:18:49 PM) (Source: DCOM) (EventID: 10016) (User: IVO)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli IVO\garan (SID: S-1-5-21-2552266715-2026576898-945052103-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (04/07/2019 06:15:30 PM) (Source: DCOM) (EventID: 10016) (User: IVO)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli IVO\garan (SID: S-1-5-21-2552266715-2026576898-945052103-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (04/07/2019 06:15:21 PM) (Source: DCOM) (EventID: 10016) (User: IVO)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli IVO\garan (SID: S-1-5-21-2552266715-2026576898-945052103-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (04/07/2019 01:14:46 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5
Error: (04/07/2019 01:14:44 PM) (Source: DCOM) (EventID: 10010) (User: IVO)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/07/2019 01:14:44 PM) (Source: DCOM) (EventID: 10010) (User: IVO)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/07/2019 01:14:44 PM) (Source: DCOM) (EventID: 10010) (User: IVO)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2019-04-07 12:04:23.833
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {DF16750C-43E9-418C-A7DB-0F20EE059809}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-04-02 13:12:28.354
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {F65E54B1-D4B1-429C-82CA-BDB79BF8CA77}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-18 13:12:27.375
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {D76486BD-EBA8-4C56-BEF1-96BBD33C4BFA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-18 12:14:47.992
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {E5622FF8-CD1D-43CA-8D5C-2380E6C3ACBC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-18 12:02:40.966
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {39816659-E89A-428D-BC0F-D4089AC5EF75}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
==================== Memory info ===========================
Processor: AMD FX(tm)-8300 Eight-Core Processor
Percentage of memory in use: 25%
Total physical RAM: 12233.33 MB
Available physical RAM: 9143.32 MB
Total Virtual: 14089.33 MB
Available Virtual: 9483.44 MB
==================== Drives ================================
Drive c: (System SSD) (Fixed) (Total:232.33 GB) (Free:89.27 GB) NTFS
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:25.38 GB) NTFS
\\?\Volume{5e0ce63e-0d13-4fe8-9310-05c095af23aa}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.06 GB) NTFS
\\?\Volume{9dd90eb0-d383-4f45-8adc-edd4267e3174}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 26312631)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=42)
==================== End of Addition.txt ============================
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: 
Dekuji, muzete lock topic 
