Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2019 Ran by Duplat (administrator) on DESKTOP-O5SD2IS (Gigabyte Technology Co., Ltd. AB350-Gaming 3) (09-10-2019 01:42:46) Running from C:\Users\Duplat\Desktop Loaded Profiles: Duplat (Available Profiles: Duplat) Platform: Windows 10 Pro Version 1809 17763.737 (X64) Language: English (United States) Default browser: FF Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) () [File not signed] C:\Program Files (x86)\AudioSwitch\AudioSwitch.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairOsdHelper.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairOsdHelper.x64.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairOsdLauncher.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.301\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.301\GoogleCrashHandler64.exe (Locktime Software s.r.o. -> Locktime Software) C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe (Martin Malik - REALiX -> REALiX) C:\Program Files\HWiNFO64\HWiNFO64.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\NisSrv.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeApp.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) HKLM\...\Run: [RtkAudUService] => "C:\WINDOWS\System32\RtkAudUService64.exe" -background HKLM\...\Run: [Screen+] => C:\Program Files\Screen+\ScreenLM64.exe HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9267656 2018-01-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [60074328 2018-11-03] (Discord Inc. -> Discord Inc.) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5007408 2019-08-21] (Adobe Inc. -> Adobe Systems Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [405032 2019-09-11] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM\...\Policies\Explorer: [HideSCAHealth] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-2979426330-1067282791-1430516834-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [6113328 2019-08-21] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-2979426330-1067282791-1430516834-1001\...\Run: [NoxDaemon] => C:\Users\Duplat\AppData\Roaming\NoxSrv\NoxSrv.exe [115712 2019-06-23] () [File not signed] HKU\S-1-5-21-2979426330-1067282791-1430516834-1001\...\MountPoints2: {2f41768c-fc40-11e8-9567-1c1b0de53af9} - "F:\Setup.exe" HKU\S-1-5-21-2979426330-1067282791-1430516834-1001\...\MountPoints2: {a2a55c41-df1a-11e8-bf1e-806e6f6e6963} - "F:\Setup.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-23] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\77.0.69.132\Installer\chrmstp.exe [2019-10-03] (Brave Software, Inc.) [File not signed] AppInit_DLLs: prio.dll => No File AppInit_DLLs-x32: prio32.dll => No File Startup: C:\Users\Duplat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AudioSwitch.lnk [2018-11-03] ShortcutTarget: AudioSwitch.lnk -> C:\Program Files (x86)\AudioSwitch\AudioSwitch.exe () [File not signed] Startup: C:\Users\Duplat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-05-25] ShortcutTarget: MEGAsync.lnk -> C:\Users\Duplat\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited) Startup: C:\Users\Duplat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2019-04-04] ShortcutTarget: Send to OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) GroupPolicy: Restriction ? <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0EE4A41C-DA51-487F-81EB-BCAD3C67FC6A} - System32\Tasks\GIGABYTE OC GURU => C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe Task: {127AF4B7-5E62-4FBD-9C9C-77E81BA81D52} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [770344 2019-03-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {217E3C54-166E-4C4D-AA94-B18EB4EB5151} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-18] (Adobe Inc. -> Adobe) Task: {2B162AC9-E078-4FA0-884C-B39696ADBBD1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-19] (Adobe Inc. -> Adobe) Task: {2E4F4314-9FC6-4638-A8B7-A86011B8A99B} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-felipe.duplat@gmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) Task: {3333BBBF-FBF2-488E-AABB-F2BCA0161B51} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems) Task: {38A0C235-691E-4473-A72D-5D42A68E4E4B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [103472 2019-09-20] (Microsoft Corporation -> Microsoft Corporation) Task: {406E1DEE-87CF-4516-81D6-D701D4F58A9D} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-27] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {42EB9377-B525-4264-8F46-9394627B5C37} - System32\Tasks\HWiNFO => C:\Program Files\HWiNFO64\HWiNFO64.EXE [4447264 2019-09-25] (Martin Malik - REALiX -> REALiX) Task: {479F5831-1144-423D-A697-DED82BFF7421} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045560 2019-09-04] (Microsoft Corporation -> Microsoft Corporation) Task: {547B60F9-A75A-4C03-AAA9-963F0594C065} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5814EA04-05E4-45FE-B3A6-909BE63AA842} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-02] (Google Inc -> Google Inc.) Task: {6843A9C7-3360-4A12-B36B-FA8E0C000BF4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045560 2019-09-04] (Microsoft Corporation -> Microsoft Corporation) Task: {88C01602-4775-4E66-A1E1-B140CC394B85} - System32\Tasks\Opera scheduled Autoupdate 1547765085 => C:\Users\Duplat\AppData\Local\Programs\Opera\launcher.exe [1520152 2019-10-04] (Opera Software AS -> Opera Software) Task: {9A82BA2C-86C3-4B19-9745-EC3A150EB840} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-02] (Google Inc -> Google Inc.) Task: {A4F5CC86-E2A8-4520-9F9A-0AC3C17325AF} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1403552 2019-09-20] (Microsoft Corporation -> Microsoft Corporation) Task: {AA0670E2-13C6-4D84-BB16-0D685DFBF209} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [665848 2019-06-27] (Advanced Micro Devices INC. -> ) Task: {AAD7BB24-2C05-4929-822F-67AD9BB3A865} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C06E690B-EFA8-491B-95D5-8D287FAF1428} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C1AB7A03-F336-43B7-ABC9-26A8A563170F} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION Task: {CC33F01E-1AC6-4906-ACA2-EE861428504C} - System32\Tasks\Microsoft\Windows\WDI\SrvHost => rundll32.exe winscomrssrv.dll,SrvMainHost <==== ATTENTION Task: {D0372E85-E6FC-4BE6-9C21-BCB8387E9D76} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-09-19] (Adobe Inc. -> Adobe) Task: {D83EEC76-F27C-44E4-AFBD-981047C3E72B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4404384 2019-09-20] (Microsoft Corporation -> Microsoft Corporation) Task: {DC355283-9CCB-4FF9-BDEA-0AC895427C64} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E0047307-FC44-44C7-BC3D-5D73AC6485B2} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1403552 2019-09-20] (Microsoft Corporation -> Microsoft Corporation) Task: {E8290738-A348-41C7-ABED-2BEEC483702B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [103472 2019-09-20] (Microsoft Corporation -> Microsoft Corporation) Task: {E9ED7EA2-A92A-4CEC-8C3F-CBCC5F118F22} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [758872 2019-09-20] (Microsoft Corporation -> Microsoft Corporation) Task: {F4DC44FB-39F3-4E6D-AFC2-30193EFE8943} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4404384 2019-09-20] (Microsoft Corporation -> Microsoft Corporation) Task: {FE38D026-95A0-4757-8D13-9A613A762F1A} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-27] (Brave Software, Inc. -> BraveSoftware Inc.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{5984fe02-fac2-4287-93e1-d0498fe68b4b}: [NameServer] 1.1.1.1,1.0.0.1 Tcpip\..\Interfaces\{5984fe02-fac2-4287-93e1-d0498fe68b4b}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{8a6cc755-5246-47af-8b80-4c257bc5341e}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== HKU\S-1-5-21-2979426330-1067282791-1430516834-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKU\S-1-5-21-2979426330-1067282791-1430516834-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-09-20] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-07-20] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-04] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> D:\Program Files (x86)\Arc\Plugins\ArcPluginIE.dll => No File BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-04] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation) Edge: ====== DownloadDir: C:\Users\Duplat\Desktop Edge Session Restore: HKU\S-1-5-21-2979426330-1067282791-1430516834-1001 -> is enabled. Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2018-12-10] Edge Extension: (Night Eye - Dark mode on any website) -> EdgeExtension_43069RAZORdeveloperNightEye_c9kkezg6y739m => C:\Program Files\WindowsApps\43069RAZORdeveloper.NightEye_1.9.4.0_neutral__c9kkezg6y739m [2018-12-10] FireFox: ======== FF DefaultProfile: dfwia8uo.default FF ProfilePath: C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\dfwia8uo.default [2019-06-22] FF ProfilePath: C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671 [2019-10-09] FF Session Restore: Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671 -> is enabled. FF Extension: (Dark Reader) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\addon@darkreader.org.xpi [2019-09-18] FF Extension: (Better TweetDeck) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\BetterTweetDeck@erambert.me.xpi [2019-09-22] FF Extension: (Checker Plus for Gmail) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\checkerplusforgmail@jasonsavard.com.xpi [2019-07-19] FF Extension: (BetterTTV) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\firefox@betterttv.net.xpi [2019-10-04] FF Extension: (Panel View for Google™ Translate) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\jid0-fbHwsGfb6kJyq2hj65KnbGte3yT@jetpack.xpi [2019-07-21] FF Extension: (Méliuz) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\jid1-NI2sWc3cvsAJsg@jetpack.xpi [2019-07-26] FF Extension: (uBlock Origin) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\uBlock0@raymondhill.net.xpi [2019-09-27] FF Extension: (A Light in Space by MaDonna) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\{6e68ac2f-4352-427d-ae23-bf7a2b854aed}.xpi [2019-07-19] FF Extension: (Stylus) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\{7a7a4a92-a2a0-41d1-9fd7-1e92480d612d}.xpi [2019-09-18] FF Extension: (Dark Fox) - C:\Users\Duplat\AppData\Roaming\Mozilla\Firefox\Profiles\wy9m7bbq.default-release-1563560216671\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2019-07-19] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-18] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-18] (Adobe Inc. -> ) FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-07-20] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Program Files (x86)\Arc\Plugins\npArcPluginFF.dll [No File] FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-04-27] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-04-27] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-09] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-09] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR HomePage: Default -> hxxp://google.com.br/ CHR StartupUrls: Default -> "hxxp://google.com.br/" CHR Session Restore: Default -> is enabled. CHR Profile: C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default [2019-09-30] CHR Extension: (Slides) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-02] CHR Extension: (BetterTTV) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2019-09-30] CHR Extension: (Docs) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-02] CHR Extension: (Google Drive) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-02] CHR Extension: (MEGA) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2019-09-30] CHR Extension: (YouTube) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-02] CHR Extension: (uBlock Origin) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-09-30] CHR Extension: (Stylus) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\clngdbkpkpeebahjckkjfobafhncgmne [2019-09-30] CHR Extension: (Dark Vibe) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkckeanhmkjaechlhllmapjaaglgpcbj [2018-11-02] CHR Extension: (Adobe Acrobat) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-07-05] CHR Extension: (Dark Reader) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2019-09-30] CHR Extension: (Silver Bird) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\encaiiljifbdbjlphpgpiimidegddhic [2018-11-02] CHR Extension: (Sheets) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-02] CHR Extension: (Google Docs Offline) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-02] CHR Extension: (The Great Suspender) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2019-09-30] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-11-17] CHR Extension: (Chrome Web Store Payments) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-02] CHR Extension: (Gmail) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-05] CHR Extension: (Chrome Media Router) - C:\Users\Duplat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-30] CHR HKU\S-1-5-21-2979426330-1067282791-1430516834-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx Opera: ======= OPR DownloadDir: C:\Users\Duplat\Desktop OPR Extension: (BetterTTV) - C:\Users\Duplat\AppData\Roaming\Opera Software\Opera Stable\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2019-06-19] OPR Extension: (Dark Reader) - C:\Users\Duplat\AppData\Roaming\Opera Software\Opera Stable\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2019-07-18] OPR Extension: (Stylus) - C:\Users\Duplat\AppData\Roaming\Opera Software\Opera Stable\Extensions\kdinfjomkigjcjcbigolloleeiianaif [2019-01-17] OPR Extension: (Install Chrome Extensions) - C:\Users\Duplat\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2019-01-17] OPR Extension: (BetterTweetDeck) - C:\Users\Duplat\AppData\Roaming\Opera Software\Opera Stable\Extensions\micblkellenpbfapmcpcfhcoeohhnpob [2019-07-18] OPR Extension: (Checker Plus for Gmail™) - C:\Users\Duplat\AppData\Roaming\Opera Software\Opera Stable\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2019-06-16] ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) S4 ArcService; D:\Program Files (x86)\Arc\ArcService.exe [123000 2019-03-05] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8577760 2019-06-09] (BattlEye Innovations e.K. -> ) S4 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-27] (Brave Software, Inc. -> BraveSoftware Inc.) S4 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-27] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11153512 2019-09-04] (Microsoft Corporation -> Microsoft Corporation) R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [52776 2019-09-11] (Corsair Memory, Inc. -> Corsair Memory, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803456 2019-06-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S4 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [707144 2018-12-13] (GOG Sp. z o.o. -> GOG.com) S4 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7172680 2018-12-13] (GOG Sp. z o.o. -> GOG.com) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed] R2 nlsvc; C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe [309664 2019-07-16] (Locktime Software s.r.o. -> Locktime Software) S4 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2347824 2019-09-04] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [3222320 2019-09-04] (Electronic Arts, Inc. -> Electronic Arts) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2019-07-09] (Even Balance, Inc. -> ) S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [471696 2019-09-18] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5357360 2019-09-19] (Microsoft Windows Publisher -> Microsoft Corporation) S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-09-26] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34568 2019-04-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc) R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24528 2019-04-18] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc) R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [32760 2019-05-29] (Advanced Micro Devices INC. -> Advanced Micro Devices) R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [138544 2019-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. ) R2 AMDRyzenMasterDriverV13; C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys [71152 2018-11-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [20472 2019-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45968 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21904 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 cpuz148; C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [44648 2019-10-09] (CPUID S.A.R.L.U. -> CPUID) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-19] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 ei2c; C:\WINDOWS\system32\drivers\ei2c.sys [20784 2019-07-16] (AOC International (Europe) GmbH -> Nicomsoft Ltd.) U5 GCSYS; C:\Users\Duplat\AppData\Local\Programs\gamers-club-anti-cheat\resources\GCSYS64.sys [2675624 2019-09-11] (Gamers Club (Gamers Club Ltda) -> ) S3 gdrv; C:\WINDOWS\gdrv.sys [26792 2019-02-01] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2019-07-13] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 GLCKIO2; C:\Program Files (x86)\GIGABYTE\RGBFusion\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> ) R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [67152 2019-09-25] (Martin Malik - REALiX -> REALiX(tm)) R2 mi2c; C:\WINDOWS\system32\drivers\mi2c.sys [20784 2019-07-16] (AOC International (Europe) GmbH -> Nicomsoft Ltd.) R0 nldrv; C:\WINDOWS\System32\drivers\nldrv.sys [178944 2019-07-15] (Locktime Software s.r.o. -> Locktime Software) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_830a0263f2ee97ce\nvlddmkm.sys [22370696 2019-09-06] (NVIDIA Corporation -> NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [605696 2018-09-15] (Microsoft Windows -> Realtek ) R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) R2 SSGDIO; C:\WINDOWS\SysWOW64\DRIVERS\ssgdio64.sys [14608 2019-09-30] (ATI Technologies, Inc -> ATI Technologies Inc.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-19] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-09-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-09-26] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-09-26] (Microsoft Windows -> Microsoft Corporation) S3 WinRing0_1_2_0; C:\Program Files (x86)\Gigabyte\RGBFusion\MODAPI.sys [14544 2019-10-05] (Noriyuki MIYAZAKI -> OpenLibSys.org) S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-09-27] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2019-06-23] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation) S3 leizhveytvn; \??\C:\WINDOWS\system32\leizhveytvn.sys [X] S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X] S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-10-09 01:42 - 2019-10-09 01:45 - 000040725 _____ C:\Users\Duplat\Desktop\FRST.txt 2019-10-09 01:42 - 2019-10-09 01:44 - 000000000 ____D C:\FRST 2019-10-09 01:41 - 2019-10-09 01:41 - 001615872 _____ (Farbar) C:\Users\Duplat\Desktop\FRST64.exe 2019-10-08 03:38 - 2019-10-08 03:38 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\Bungie 2019-10-07 21:01 - 2019-10-07 21:01 - 000000000 ____D C:\Users\Duplat\Documents\4A Games 2019-10-07 20:51 - 2019-10-07 20:51 - 000000000 ____D C:\Users\Duplat\AppData\Local\4A Games 2019-10-05 19:07 - 2019-10-05 19:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent 2019-10-05 19:07 - 2019-10-05 19:07 - 000000000 ____D C:\Program Files\qBittorrent 2019-10-05 06:29 - 2019-10-05 06:29 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Little Misfortune 2019-10-05 01:30 - 2019-07-17 04:37 - 000010148 _____ C:\Users\Duplat\Desktop\CalibratedDisplayProfile-6.icc 2019-10-03 18:42 - 2019-10-04 05:52 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-10-03 05:07 - 2019-10-03 05:07 - 002587896 _____ C:\Users\Duplat\Desktop\CSGO F2P FPS Pack by Panj.zip 2019-10-03 05:07 - 2019-10-03 05:07 - 000000000 ____D C:\Users\Duplat\Desktop\New folder 2019-10-03 02:25 - 2019-10-03 05:30 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\gamers-club-anti-cheat 2019-10-03 02:25 - 2019-10-03 02:25 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\Gamers Club Anti-Cheat 2019-10-03 02:24 - 2019-10-03 02:24 - 000002570 _____ C:\Users\Duplat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gamers Club Anti-Cheat.lnk 2019-10-03 02:24 - 2019-10-03 02:24 - 000000000 ____D C:\Users\Duplat\AppData\Local\gamers-club-anti-cheat-updater 2019-10-02 07:10 - 2019-10-02 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair 2019-10-02 07:09 - 2019-10-02 07:09 - 000000000 ____D C:\Program Files (x86)\Corsair 2019-09-30 22:34 - 2019-09-30 22:34 - 000000000 ____D C:\Users\Duplat\AppData\Local\1usmus 2019-09-30 22:27 - 2019-09-30 22:27 - 000014608 _____ (ATI Technologies Inc.) C:\WINDOWS\SysWOW64\Drivers\ssgdio64.sys 2019-09-30 18:33 - 2019-09-30 18:33 - 000418616 _____ C:\Users\Duplat\Desktop\Laudo_200266220_8feb9f87-2ec9-45ce-a1ef-0d1776a34b3e.pdf 2019-09-30 02:09 - 2019-09-30 08:20 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\FileZilla 2019-09-30 02:09 - 2019-09-30 02:37 - 000000000 ____D C:\Users\Duplat\AppData\Local\FileZilla 2019-09-30 02:09 - 2019-09-30 02:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2019-09-30 02:09 - 2019-09-30 02:09 - 007976792 _____ (Tim Kosse) C:\Users\Duplat\Downloads\FileZilla_3.45.1_win64-setup.exe 2019-09-29 19:56 - 2019-06-08 18:40 - 003441044 _____ C:\Users\Duplat\Desktop\improved-initiative.json 2019-09-29 19:56 - 2019-02-17 20:05 - 003563511 _____ C:\Users\Duplat\Desktop\improved-initiative (1).json 2019-09-29 19:55 - 2019-10-04 19:34 - 000000000 ____D C:\Users\Duplat\Desktop\BIOS updates 2019-09-27 02:52 - 2019-09-27 02:52 - 165617184 _____ (TunnelBear) C:\Users\Duplat\Desktop\TunnelBear-Installer.exe 2019-09-25 21:23 - 2019-09-25 21:23 - 000000773 _____ C:\Users\Duplat\Desktop\PUBG LITE.lnk 2019-09-25 21:23 - 2019-09-25 21:23 - 000000773 _____ C:\Users\Duplat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PUBG LITE.lnk 2019-09-25 19:28 - 2019-09-25 19:28 - 000000000 ____D C:\Users\Duplat\AppData\Local\NVIDIA 2019-09-25 13:00 - 2019-08-01 10:07 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2019-09-24 22:06 - 2018-01-24 17:35 - 003509168 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2019-09-24 22:06 - 2018-01-24 17:35 - 000343672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2019-09-24 22:06 - 2018-01-24 17:35 - 000192944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2019-09-24 22:06 - 2018-01-24 17:34 - 001353288 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2019-09-24 22:06 - 2018-01-24 17:34 - 000691648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2019-09-24 22:06 - 2018-01-24 17:34 - 000453240 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll 2019-09-24 22:06 - 2018-01-24 17:34 - 000157304 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll 2019-09-24 22:06 - 2018-01-24 17:34 - 000139720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll 2019-09-24 22:06 - 2018-01-24 17:34 - 000090136 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll 2019-09-24 22:06 - 2018-01-24 17:33 - 003677128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2019-09-24 22:06 - 2018-01-24 17:33 - 003205576 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2019-09-24 22:06 - 2018-01-24 17:33 - 001780584 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll 2019-09-24 22:06 - 2018-01-24 17:33 - 001591024 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll 2019-09-24 22:06 - 2018-01-24 17:33 - 000727400 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll 2019-09-24 22:06 - 2018-01-24 17:33 - 000708280 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll 2019-09-24 22:06 - 2018-01-24 17:33 - 000504272 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll 2019-09-24 22:06 - 2018-01-24 17:33 - 000445368 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll 2019-09-24 22:06 - 2018-01-24 17:33 - 000253832 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll 2019-09-24 22:06 - 2018-01-24 17:32 - 072520680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat 2019-09-24 22:06 - 2018-01-24 17:32 - 007178432 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll 2019-09-24 22:06 - 2018-01-24 17:32 - 002922952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2019-09-24 22:06 - 2018-01-24 17:32 - 001508896 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll 2019-09-24 22:06 - 2018-01-24 17:32 - 000743928 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll 2019-09-24 22:06 - 2018-01-24 17:32 - 000441232 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll 2019-09-24 22:06 - 2018-01-24 17:32 - 000253864 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll 2019-09-24 22:06 - 2018-01-24 17:32 - 000252840 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll 2019-09-24 22:06 - 2018-01-24 12:59 - 015726401 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2019-09-24 22:05 - 2018-01-24 17:32 - 001971336 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll 2019-09-24 22:05 - 2018-01-24 17:32 - 000332976 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll 2019-09-24 22:05 - 2018-01-24 17:32 - 000278240 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll 2019-09-24 22:05 - 2018-01-24 17:31 - 007101712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll 2019-09-24 22:05 - 2018-01-24 17:31 - 000118552 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll 2019-09-24 22:05 - 2018-01-24 17:31 - 000105272 _____ C:\WINDOWS\system32\audioLibVc.dll 2019-09-24 22:00 - 2019-09-24 22:00 - 000000000 ____D C:\Program Files (x86)\Realtek 2019-09-23 02:19 - 2019-09-05 18:19 - 001683032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll 2019-09-23 02:19 - 2019-09-05 18:19 - 000228792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2019-09-23 02:19 - 2019-09-05 18:19 - 000047272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2019-09-23 02:18 - 2019-09-06 15:29 - 001012432 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2019-09-23 02:18 - 2019-09-06 15:29 - 001012432 _____ C:\WINDOWS\system32\vulkan-1.dll 2019-09-23 02:18 - 2019-09-06 15:29 - 000876240 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2019-09-23 02:18 - 2019-09-06 15:29 - 000876240 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2019-09-23 02:18 - 2019-09-06 15:29 - 000447368 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2019-09-23 02:18 - 2019-09-06 15:29 - 000351944 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2019-09-23 02:18 - 2019-09-06 15:29 - 000301264 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2019-09-23 02:18 - 2019-09-06 15:29 - 000301264 _____ C:\WINDOWS\system32\vulkaninfo.exe 2019-09-23 02:18 - 2019-09-06 15:29 - 000273104 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2019-09-23 02:18 - 2019-09-06 15:29 - 000273104 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2019-09-23 02:18 - 2019-09-06 15:28 - 011562376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2019-09-23 02:18 - 2019-09-06 15:28 - 009937104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 002051008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 001550080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 001477512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 001247432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 001140616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 000959424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 000823552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 000812800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 000676096 _____ C:\WINDOWS\system32\nvofapi64.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 000658880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 000632768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 000544648 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2019-09-23 02:18 - 2019-09-06 15:27 - 000524168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2019-09-23 02:18 - 2019-09-06 15:26 - 040444856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll 2019-09-23 02:18 - 2019-09-06 15:26 - 035334536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll 2019-09-23 02:18 - 2019-09-06 15:26 - 017300360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2019-09-23 02:18 - 2019-09-06 15:26 - 014921096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2019-09-23 02:18 - 2019-09-06 15:26 - 005358472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2019-09-23 02:18 - 2019-09-06 15:26 - 004696968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2019-09-23 02:18 - 2019-09-06 15:26 - 001726400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6443630.dll 2019-09-23 02:18 - 2019-09-06 15:26 - 001491336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6443630.dll 2019-09-22 22:05 - 2019-09-22 22:05 - 000000000 ____D C:\Users\Duplat\Documents\Call of Duty Modern Warfare 2019-09-21 13:54 - 2019-09-21 13:54 - 000000000 ____D C:\Users\Duplat\AppData\Local\Rockstar Games 2019-09-21 13:37 - 2019-09-21 13:37 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2019-09-21 13:36 - 2019-09-21 13:36 - 000000000 ____D C:\ProgramData\Rockstar Games 2019-09-20 23:02 - 2019-09-20 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2019-09-19 22:06 - 2019-09-19 19:57 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2019-09-19 22:06 - 2019-09-19 19:57 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2019-09-19 19:47 - 2019-09-19 19:47 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 023453696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 020817408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 019011584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 012939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 012244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 008903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 006065664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 005597808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 004874752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 004628992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 003656704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 003614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002469432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002279296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002177336 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002099752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2019-09-19 19:47 - 2019-09-19 19:47 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 002017792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2019-09-19 19:47 - 2019-09-19 19:47 - 001782272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001764352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001604760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001075832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000993792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000806024 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000798736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2019-09-19 19:47 - 2019-09-19 19:47 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000763392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000660544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000522104 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000409256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000386048 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\SysWOW64\curl.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000349144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000317240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys 2019-09-19 19:47 - 2019-09-19 19:47 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2019-09-19 19:47 - 2019-09-19 19:47 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000195224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2019-09-19 19:47 - 2019-09-19 19:47 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000173216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys 2019-09-19 19:47 - 2019-09-19 19:47 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000144080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000140088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000106048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000098080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000092832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys 2019-09-19 19:47 - 2019-09-19 19:47 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Groupinghc.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe 2019-09-19 19:47 - 2019-09-19 19:47 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000058882 _____ C:\WINDOWS\system32\srms.dat 2019-09-19 19:47 - 2019-09-19 19:47 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll 2019-09-19 19:47 - 2019-09-19 19:47 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll 2019-09-19 19:46 - 2019-09-19 19:47 - 003096576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 022124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 009679672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 006925312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 006444544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 006310064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 005569024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 004588752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 003821728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 003634688 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 003490816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002924344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002779488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002700784 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002693120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002438576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 002073240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001899152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001864192 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001733120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001721360 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001702096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-09-19 19:46 - 2019-09-19 19:46 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001655976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001573240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001563880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001484592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001479184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001477432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 001466880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-09-19 19:46 - 2019-09-19 19:46 - 001318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 001272560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001256960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001222160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001081656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 001010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000968192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000811024 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000807760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000774968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000740904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000736056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000678680 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000652832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000622392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000606088 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000585184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000554000 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000540240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000515960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000515440 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000515152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000464912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 000439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000398928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000383504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingDiagSpp.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000351432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingDiagSpp.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000330672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000279416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000262336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000177176 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000168248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000152080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000130872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000114128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe 2019-09-19 19:46 - 2019-09-19 19:46 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys 2019-09-19 19:46 - 2019-09-19 19:46 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll 2019-09-19 19:46 - 2019-09-19 19:46 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll 2019-09-19 19:45 - 2019-09-19 19:46 - 001038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 007690648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 004353016 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 003333984 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002767160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002593032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002415416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002199864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002148864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 002022096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001743168 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001720120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001715000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001662264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001522704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001397048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001387512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001321784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001294280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001260560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001191512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001187840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AgentService.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 001054952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 001048888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 001022824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001020416 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 001004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000865576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000864568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000851272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000831288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000806568 _____ C:\WINDOWS\SysWOW64\locale.nls 2019-09-19 19:45 - 2019-09-19 19:45 - 000806568 _____ C:\WINDOWS\system32\locale.nls 2019-09-19 19:45 - 2019-09-19 19:45 - 000799784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000793824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000791352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000774192 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000751928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000732168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000652600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000652304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000649528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000603784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000532192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000508968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000505128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000449576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000402368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000398208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000396088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000375752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000347576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000330592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000278624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000253256 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000248120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpprov.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000203064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000200504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000189712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000164504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000140600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pmem.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2019-09-19 19:45 - 2019-09-19 19:45 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiskSnapshot.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2019-09-19 19:45 - 2019-09-19 19:45 - 000032784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000032568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiAcpiClient.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys 2019-09-19 19:45 - 2019-09-19 19:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2019-09-19 19:45 - 2019-09-19 19:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2019-09-19 19:45 - 2019-09-19 19:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2019-09-19 19:45 - 2019-09-19 19:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2019-09-19 19:45 - 2019-09-19 19:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2019-09-19 19:45 - 2019-09-19 19:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2019-09-19 19:45 - 2019-09-19 19:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2019-09-19 19:45 - 2019-09-19 19:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2019-09-19 19:45 - 2019-09-19 19:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2019-09-19 19:21 - 2019-09-19 19:21 - 021123128 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe ==================== One month (modified) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-10-09 01:33 - 2018-12-10 03:04 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2019-10-09 01:33 - 2018-12-10 03:04 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2019-10-09 01:33 - 2018-11-02 17:30 - 000000000 ____D C:\Program Files (x86)\Google 2019-10-09 01:33 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-10-09 01:29 - 2019-06-22 05:09 - 000000000 ____D C:\Users\Duplat\AppData\LocalLow\Mozilla 2019-10-09 01:28 - 2018-12-10 03:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-10-09 01:28 - 2018-11-02 22:01 - 000000000 ____D C:\ProgramData\NVIDIA 2019-10-09 01:28 - 2018-09-15 04:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-10-08 04:33 - 2018-09-15 03:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-10-07 23:19 - 2018-11-03 00:01 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\discord 2019-10-07 19:31 - 2018-11-02 23:35 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\vlc 2019-10-07 19:20 - 2018-12-10 02:47 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-10-07 18:58 - 2019-01-17 19:44 - 000004214 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1547765085 2019-10-07 18:58 - 2019-01-17 19:44 - 000001416 _____ C:\Users\Duplat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk 2019-10-07 01:58 - 2018-05-16 13:39 - 000000000 ____D C:\Nova 2019-10-07 01:35 - 2018-11-03 06:36 - 000000000 ____D C:\Users\Duplat\AppData\Local\Ubisoft Game Launcher 2019-10-07 01:08 - 2019-07-09 17:57 - 000281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr 2019-10-07 01:08 - 2019-07-09 17:57 - 000281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe 2019-10-06 21:30 - 2018-11-03 06:50 - 000000000 ____D C:\Users\Duplat\AppData\Local\Battle.net 2019-10-06 20:29 - 2018-11-03 06:50 - 000000000 ____D C:\Users\Duplat\AppData\Local\Blizzard Entertainment 2019-10-06 04:40 - 2019-04-24 22:29 - 000003144 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner 2019-10-06 04:40 - 2018-11-04 05:56 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\qBittorrent 2019-10-06 04:39 - 2019-05-25 08:51 - 000000000 ____D C:\TBBT 2019-10-05 23:38 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-10-05 20:20 - 2018-11-03 00:27 - 000000000 ____D C:\Users\Duplat\AppData\Local\D3DSCache 2019-10-05 19:39 - 2019-07-30 14:58 - 000000000 ____D C:\Users\Duplat\Desktop\IntelBurnTest 2019-10-05 19:37 - 2018-11-03 00:20 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2019-10-04 06:36 - 2018-11-03 00:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google 2019-10-04 05:52 - 2019-06-22 05:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-10-03 23:59 - 2018-11-03 00:20 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2019-10-03 23:55 - 2019-06-22 05:09 - 000001015 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-10-03 18:45 - 2019-03-19 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\directx 2019-10-03 18:30 - 2019-04-27 10:28 - 000002428 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2019-10-03 05:17 - 2018-11-02 23:40 - 000000000 ____D C:\Users\Duplat\AppData\Local\CrashDumps 2019-10-02 07:10 - 2018-09-15 04:31 - 000000000 ____D C:\WINDOWS\INF 2019-09-30 22:04 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\system32\NDF 2019-09-30 04:05 - 2018-05-16 19:26 - 000000000 ____D C:\Filmes 2019-09-27 03:57 - 2019-07-10 00:09 - 000000000 ____D C:\Users\Duplat\AppData\Roaming\Origin 2019-09-27 03:57 - 2018-11-03 06:33 - 000000000 ____D C:\ProgramData\Origin 2019-09-27 00:12 - 2019-05-28 23:36 - 000074552 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys 2019-09-26 17:38 - 2018-11-02 21:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-09-25 19:40 - 2018-11-02 22:19 - 000000000 ____D C:\Users\Duplat\AppData\Local\NVIDIA Corporation 2019-09-25 14:30 - 2019-08-03 11:49 - 000067152 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO64A.SYS 2019-09-25 14:29 - 2019-07-19 05:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64 2019-09-25 14:29 - 2019-07-19 05:47 - 000000000 ____D C:\Program Files\HWiNFO64 2019-09-25 12:58 - 2018-11-02 22:01 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2019-09-25 12:58 - 2018-11-02 22:01 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2019-09-25 12:58 - 2018-11-02 17:36 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2019-09-24 22:32 - 2018-12-09 23:05 - 000000000 ____D C:\Users\Duplat\AppData\Local\ElevatedDiagnostics 2019-09-24 22:07 - 2019-07-14 12:17 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2019-09-24 22:07 - 2018-11-02 22:16 - 000000000 ___HD C:\Program Files (x86)\Temp 2019-09-24 22:04 - 2018-11-03 10:50 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-09-23 18:37 - 2018-11-02 17:32 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-09-23 18:37 - 2018-11-02 17:32 - 000002270 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-09-23 18:37 - 2018-11-02 17:32 - 000002270 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2019-09-23 01:55 - 2018-12-10 03:02 - 000840848 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-09-21 13:55 - 2018-12-14 20:25 - 000000000 ____D C:\Program Files\Rockstar Games 2019-09-21 13:55 - 2018-12-14 19:24 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2019-09-21 13:54 - 2018-11-03 00:27 - 000000000 ____D C:\Users\Duplat\Documents\Rockstar Games 2019-09-21 13:36 - 2018-11-02 22:12 - 000000000 ____D C:\ProgramData\Package Cache 2019-09-20 23:02 - 2019-07-20 08:07 - 000002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk 2019-09-20 23:02 - 2019-07-20 08:07 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2019-09-20 23:02 - 2019-07-20 08:07 - 000002502 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2019-09-20 23:02 - 2019-07-20 08:07 - 000002466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2019-09-20 23:02 - 2019-07-20 08:07 - 000002465 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2019-09-20 23:02 - 2019-07-20 08:07 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2019-09-20 23:02 - 2019-07-20 08:07 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2019-09-20 23:02 - 2019-07-20 08:07 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2019-09-20 23:01 - 2018-11-22 02:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2019-09-19 23:52 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\tracing 2019-09-19 22:07 - 2018-11-02 17:23 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-09-19 22:07 - 2018-11-02 17:23 - 000000000 ___RD C:\Users\Duplat\3D Objects 2019-09-19 22:06 - 2018-12-10 02:46 - 000458736 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-09-19 22:00 - 2018-09-15 04:33 - 000000000 ___SD C:\WINDOWS\system32\UNP 2019-09-19 22:00 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2019-09-19 22:00 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2019-09-19 22:00 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\system32\oobe 2019-09-19 21:59 - 2018-09-15 06:11 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2019-09-19 21:59 - 2018-09-15 04:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2019-09-19 21:59 - 2018-09-15 04:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2019-09-19 21:59 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-09-19 21:59 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\ShellComponents 2019-09-19 21:59 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\Provisioning 2019-09-19 21:59 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2019-09-19 21:59 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-09-19 21:59 - 2018-09-15 03:09 - 000000000 ____D C:\WINDOWS\system32\Dism 2019-09-19 20:06 - 2019-01-26 04:05 - 000000000 ____D C:\WINDOWS\Minidump 2019-09-19 19:57 - 2018-09-15 04:23 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-09-19 19:55 - 2018-11-14 16:07 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-09-19 19:52 - 2018-11-03 00:42 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-09-19 19:21 - 2018-12-10 03:04 - 000004602 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier 2019-09-19 19:21 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-09-19 19:21 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-09-18 20:49 - 2018-12-10 03:04 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2019-09-18 20:48 - 2018-11-04 06:30 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-09-18 20:39 - 2019-07-01 07:03 - 000004548 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2019-09-18 20:18 - 2019-05-29 18:19 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2019-09-18 20:18 - 2019-05-29 18:19 - 000002124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk ==================== Files in the root of some directories ================ 2019-04-01 00:42 - 2019-04-01 00:42 - 000000037 _____ () C:\Users\Duplat\AppData\Roaming\prio.ini 2018-12-27 01:10 - 2018-12-29 02:10 - 000001456 _____ () C:\Users\Duplat\AppData\Local\Adobe Save for Web 13.0 Prefs 2018-12-27 10:03 - 2018-12-27 10:03 - 000000000 _____ () C:\Users\Duplat\AppData\Local\oobelibMkey.log 2018-12-26 23:16 - 2018-12-26 23:16 - 000002201 _____ () C:\Users\Duplat\AppData\Local\recently-used.xbel 2018-11-10 19:11 - 2019-01-31 01:25 - 000007600 _____ () C:\Users\Duplat\AppData\Local\Resmon.ResmonCfg 2019-06-14 00:06 - 2019-06-23 18:13 - 000000070 _____ () C:\Users\Duplat\AppData\Local\update_progress.txt ==================== SigCheck =============================== (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ============================