Hi, recently I scanned my Windows 10 pc with Microsoft safety scanner because I thought something was up with it. It came back with this virus Win32/ Skeeyah.A!bit. It tried to delete it but couldn't. Every scan I did with the safety scanner it would show back up. I then unhooked it from the internet after I updated Malwarebytes. Ran Malwarebytes in safe mode but it didn't find anything.
Here are my Frst logs:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2018
Ran by user (administrator) on USER-PC (25-01-2018 06:59:04)
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: user & DefaultAppPool)
Platform: Windows 10 Pro Version 1709 16299.192 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
Ran by user (administrator) on USER-PC (25-01-2018 06:59:04)
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: user & DefaultAppPool)
Platform: Windows 10 Pro Version 1709 16299.192 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(QILING Tech Co., Ltd.) C:\Program Files\QILING\Disk Master\DmAgent.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
() C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
() C:\Program Files\Gramblr\gramblr.exe
() C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2017\HDDC2017Service.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Microvirt Software Technology Co. Ltd.) C:\Program Files\Microvirt\MEmu\MemuService.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Data Perceptions / PowerProgrammer) C:\Windows\SysWOW64\WebUpdateSvc4.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\MsMpEng.exe
(Genie9) C:\Program Files\Genie9\Zoolz2\ZoolzService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
() C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
( ) C:\Windows\SysWOW64\lxebcoms.exe
(QILING Tech Co., Ltd.) C:\Program Files\QILING\Disk Master\DiskMasterUI.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
() C:\ProgramData\SharewareOnSale Notifier\SharewareOnSale Notifier.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(FastPcTools) C:\Program Files (x86)\FastPcTools\Fast VD\FastVD.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Spotify Ltd) C:\Users\user\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Genie9) C:\Program Files\Genie9\Zoolz2\Zoolz.exe
(Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
() C:\Users\user\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\javaw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
() C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe
(GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
() C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
(Plex) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
(Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(QILING Tech Co., Ltd.) C:\Program Files\QILING\Disk Master\DmAgent.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
() C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
() C:\Program Files\Gramblr\gramblr.exe
() C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2017\HDDC2017Service.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Microvirt Software Technology Co. Ltd.) C:\Program Files\Microvirt\MEmu\MemuService.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Data Perceptions / PowerProgrammer) C:\Windows\SysWOW64\WebUpdateSvc4.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\MsMpEng.exe
(Genie9) C:\Program Files\Genie9\Zoolz2\ZoolzService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
() C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
( ) C:\Windows\SysWOW64\lxebcoms.exe
(QILING Tech Co., Ltd.) C:\Program Files\QILING\Disk Master\DiskMasterUI.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
() C:\ProgramData\SharewareOnSale Notifier\SharewareOnSale Notifier.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(FastPcTools) C:\Program Files (x86)\FastPcTools\Fast VD\FastVD.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Spotify Ltd) C:\Users\user\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Genie9) C:\Program Files\Genie9\Zoolz2\Zoolz.exe
(Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
() C:\Users\user\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\javaw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
() C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe
(GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
() C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
(Plex) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
(Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor)
HKLM\...\Run: [lxebmon.exe] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe [772712 2013-01-23] ()
HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe [150264 2013-01-23] ()
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184632 2013-11-13] (Motorola Solutions, Inc.)
HKLM\...\Run: [IntelPROSet] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [4879264 2015-07-09] (Intel® Corporation)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [588360 2017-04-24] ()
HKLM\...\Run: [Disk Master] => C:\Program Files\QILING\Disk Master\DiskMasterUI.exe [3180344 2017-07-10] (QILING Tech Co., Ltd.)
HKLM\...\Run: [Zoolz Tray] => C:\Program Files\Genie9\Zoolz2\Zoolz.exe [2193552 2017-10-31] (Genie9)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-11] (Apple Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-12-08] (Apple Inc.)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [87552 2017-08-30] ()
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2187336 2017-10-20] ()
HKLM-x32\...\Run: [YouCam Service6] => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [524056 2016-08-18] (CyberLink Corp.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-02-14] (Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5109952 2017-04-24] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Messenger (Yahoo!)] => C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe [6595928 2012-05-25] (Yahoo! Inc.)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [SharewareOnSale Notifier] => C:\ProgramData\SharewareOnSale Notifier\SharewareOnSale Notifier.exe [1008816 2016-12-17] ()
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-12-08] (Apple Inc.)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [5362760 2018-01-17] (GOG.com)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Spotify] => C:\Users\user\AppData\Roaming\Spotify\Spotify.exe [21099408 2018-01-19] (Spotify Ltd)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [FastVD] => C:\Program Files (x86)\FastPcTools\Fast VD\FastVD.exe [1553104 2017-10-02] (FastPcTools)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3111712 2017-12-15] (Valve Corporation)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [16309736 2017-09-25] (Plex, Inc.)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Discord] => C:\Users\user\AppData\Local\Discord\app-0.0.300\Discord.exe [57821176 2018-01-08] (Discord Inc.)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Spotify Web Helper] => C:\Users\user\AppData\Roaming\Spotify\SpotifyWebHelper.exe [780688 2018-01-19] (Spotify Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Universal Media Server.lnk [2017-10-09]
ShortcutTarget: Universal Media Server.lnk -> C:\Program Files (x86)\Universal Media Server\UMS.exe (Universal Media Server)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk [2018-01-25]
ShortcutTarget: IMVU.lnk -> C:\Users\user\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor)
HKLM\...\Run: [lxebmon.exe] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe [772712 2013-01-23] ()
HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe [150264 2013-01-23] ()
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184632 2013-11-13] (Motorola Solutions, Inc.)
HKLM\...\Run: [IntelPROSet] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [4879264 2015-07-09] (Intel® Corporation)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [588360 2017-04-24] ()
HKLM\...\Run: [Disk Master] => C:\Program Files\QILING\Disk Master\DiskMasterUI.exe [3180344 2017-07-10] (QILING Tech Co., Ltd.)
HKLM\...\Run: [Zoolz Tray] => C:\Program Files\Genie9\Zoolz2\Zoolz.exe [2193552 2017-10-31] (Genie9)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-11] (Apple Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-12-08] (Apple Inc.)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [87552 2017-08-30] ()
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2187336 2017-10-20] ()
HKLM-x32\...\Run: [YouCam Service6] => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [524056 2016-08-18] (CyberLink Corp.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-02-14] (Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5109952 2017-04-24] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Messenger (Yahoo!)] => C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe [6595928 2012-05-25] (Yahoo! Inc.)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [SharewareOnSale Notifier] => C:\ProgramData\SharewareOnSale Notifier\SharewareOnSale Notifier.exe [1008816 2016-12-17] ()
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-12-08] (Apple Inc.)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [5362760 2018-01-17] (GOG.com)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Spotify] => C:\Users\user\AppData\Roaming\Spotify\Spotify.exe [21099408 2018-01-19] (Spotify Ltd)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [FastVD] => C:\Program Files (x86)\FastPcTools\Fast VD\FastVD.exe [1553104 2017-10-02] (FastPcTools)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3111712 2017-12-15] (Valve Corporation)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [16309736 2017-09-25] (Plex, Inc.)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Discord] => C:\Users\user\AppData\Local\Discord\app-0.0.300\Discord.exe [57821176 2018-01-08] (Discord Inc.)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Run: [Spotify Web Helper] => C:\Users\user\AppData\Roaming\Spotify\SpotifyWebHelper.exe [780688 2018-01-19] (Spotify Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Universal Media Server.lnk [2017-10-09]
ShortcutTarget: Universal Media Server.lnk -> C:\Program Files (x86)\Universal Media Server\UMS.exe (Universal Media Server)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk [2018-01-25]
ShortcutTarget: IMVU.lnk -> C:\Users\user\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{313e4c52-0093-41fd-8654-2a2cb272bc95}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d79c24f2-f1f7-4fee-8e51-5e6878628b2b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d79c24f2-f1f7-4fee-8e51-5e6878628b2b}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-923925315-484671486-2491507011-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={7F13C1F9-C8B1-4E91-907D-F6D28ADA41F1}&mid=8ed79cf4dc1847cd88d355ef8e451ad0-f1acffd5e9412fe41620ceb7e903869c4ef853f8&lang=en&ds=AVG&coid=avgtbavg&cmpid=0117tb&pr=fr&d=2015-12-20 19:15:03&v=4.3.6.255&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-923925315-484671486-2491507011-1000 -> DefaultScope {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://mysearch.avg.com/search?cid={7F13C1F9-C8B1-4E91-907D-F6D28ADA41F1}&mid=8ed79cf4dc1847cd88d355ef8e451ad0-f1acffd5e9412fe41620ceb7e903869c4ef853f8&lang=en&ds=AVG&coid=avgtbavg&cmpid=0117tb&pr=fr&d=2015-12-20 19:15:03&v=4.3.8.510&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-923925315-484671486-2491507011-1000 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://mysearch.avg.com/search?cid={7F13C1F9-C8B1-4E91-907D-F6D28ADA41F1}&mid=8ed79cf4dc1847cd88d355ef8e451ad0-f1acffd5e9412fe41620ceb7e903869c4ef853f8&lang=en&ds=AVG&coid=avgtbavg&cmpid=0117tb&pr=fr&d=2015-12-20 19:15:03&v=4.3.8.510&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2015-04-25] (Oracle Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.8.566\AVG Web TuneUp.dll [2017-10-20] (AVG)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-05] (Google Inc.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-04-25] (Oracle Corporation)
BHO-x32: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll [2013-08-07] (Yahoo! Inc.)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.8.566\AVG Web TuneUp.dll [2017-10-20] (AVG)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-05] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-05] (Google Inc.)
Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll [2013-08-07] (Yahoo! Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-05] (Google Inc.)
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com/bin/srldetect_intel_4.5.24.0.cab
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-923925315-484671486-2491507011-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={7F13C1F9-C8B1-4E91-907D-F6D28ADA41F1}&mid=8ed79cf4dc1847cd88d355ef8e451ad0-f1acffd5e9412fe41620ceb7e903869c4ef853f8&lang=en&ds=AVG&coid=avgtbavg&cmpid=0117tb&pr=fr&d=2015-12-20 19:15:03&v=4.3.6.255&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-923925315-484671486-2491507011-1000 -> DefaultScope {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://mysearch.avg.com/search?cid={7F13C1F9-C8B1-4E91-907D-F6D28ADA41F1}&mid=8ed79cf4dc1847cd88d355ef8e451ad0-f1acffd5e9412fe41620ceb7e903869c4ef853f8&lang=en&ds=AVG&coid=avgtbavg&cmpid=0117tb&pr=fr&d=2015-12-20 19:15:03&v=4.3.8.510&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-923925315-484671486-2491507011-1000 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://mysearch.avg.com/search?cid={7F13C1F9-C8B1-4E91-907D-F6D28ADA41F1}&mid=8ed79cf4dc1847cd88d355ef8e451ad0-f1acffd5e9412fe41620ceb7e903869c4ef853f8&lang=en&ds=AVG&coid=avgtbavg&cmpid=0117tb&pr=fr&d=2015-12-20 19:15:03&v=4.3.8.510&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2015-04-25] (Oracle Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.8.566\AVG Web TuneUp.dll [2017-10-20] (AVG)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-05] (Google Inc.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-04-25] (Oracle Corporation)
BHO-x32: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll [2013-08-07] (Yahoo! Inc.)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.8.566\AVG Web TuneUp.dll [2017-10-20] (AVG)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-05] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-05] (Google Inc.)
Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll [2013-08-07] (Yahoo! Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-05] (Google Inc.)
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com/bin/srldetect_intel_4.5.24.0.cab
FireFox:
========
FF DefaultProfile: vslg9eye.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vslg9eye.default [2017-08-21]
FF Extension: (AVG Web TuneUp) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vslg9eye.default\Extensions\[email protected] [2017-10-20] [Legacy]
FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vslg9eye.default\searchplugins\avg-secure-search.xml [2017-10-20]
FF Plugin: @java.com/DTPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-04-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-04-25] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-05] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-05] (Intel Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [2012-05-25] (Yahoo! Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
========
FF DefaultProfile: vslg9eye.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vslg9eye.default [2017-08-21]
FF Extension: (AVG Web TuneUp) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vslg9eye.default\Extensions\[email protected] [2017-10-20] [Legacy]
FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vslg9eye.default\searchplugins\avg-secure-search.xml [2017-10-20]
FF Plugin: @java.com/DTPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-04-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-04-25] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-05] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-05] (Intel Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [2012-05-25] (Yahoo! Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> mysearch.avg.com
CHR NewTab: Default -> Not-active:"chrome-extension://chfdnecihphmhljaaejmgoiahnihplgn/pages/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2018-01-25]
CHR Extension: (Honey) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2017-12-25]
CHR Extension: (AVG Secure Search) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2017-08-10]
CHR Extension: (Allavsoft video downloader converter) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhancbnhabhandieicagelcddkdfgoif [2017-07-31]
CHR Extension: (Tampermonkey) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2017-09-20]
CHR Extension: (Video Downloader professional) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2017-09-20]
CHR Extension: (MapsGalaxy) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijjnmdphpnlnelhbhefnfmimenjgbfcn [2018-01-18]
CHR Extension: (Video DownloadHelper) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2017-06-08]
CHR Extension: (TorrentSafe Right-Click Extension) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lokbhemjpeifblfhlmbbojahimbmdmai [2017-05-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-25]
CHR HKU\S-1-5-21-923925315-484671486-2491507011-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dhancbnhabhandieicagelcddkdfgoif] - C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.14.8.6417\BVDChromeExt.crx [2017-07-31]
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> mysearch.avg.com
CHR NewTab: Default -> Not-active:"chrome-extension://chfdnecihphmhljaaejmgoiahnihplgn/pages/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2018-01-25]
CHR Extension: (Honey) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2017-12-25]
CHR Extension: (AVG Secure Search) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2017-08-10]
CHR Extension: (Allavsoft video downloader converter) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhancbnhabhandieicagelcddkdfgoif [2017-07-31]
CHR Extension: (Tampermonkey) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2017-09-20]
CHR Extension: (Video Downloader professional) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2017-09-20]
CHR Extension: (MapsGalaxy) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijjnmdphpnlnelhbhefnfmimenjgbfcn [2018-01-18]
CHR Extension: (Video DownloadHelper) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2017-06-08]
CHR Extension: (TorrentSafe Right-Click Extension) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lokbhemjpeifblfhlmbbojahimbmdmai [2017-05-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-25]
CHR HKU\S-1-5-21-923925315-484671486-2491507011-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dhancbnhabhandieicagelcddkdfgoif] - C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.14.8.6417\BVDChromeExt.crx [2017-07-31]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1278720 2017-04-24] ()
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6086232 2017-06-06] ()
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R2 DmAgent; C:\Program Files\QILING\Disk Master\DmAgent.exe [67384 2017-07-10] (QILING Tech Co., Ltd.)
U2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [104448 2017-07-18] (Freemake) [File not signed]
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2017-07-18] (Ellora Assets Corp.) [File not signed]
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [532552 2018-01-17] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8345672 2017-12-07] (GOG.com)
R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [11836496 2017-12-15] () [File not signed]
R2 HDDC2017Service; C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2017\HDDC2017Service.exe [332120 2016-07-13] ()
S2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [150256 2015-08-06] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319096 2016-05-12] (Intel Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165144 2012-03-28] (Intel Corporation)
S2 lxebCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\lxebserv.exe [45736 2010-04-14] (Lexmark International, Inc.)
R2 MEmusvc; C:\Program Files\Microvirt\MEmu\MemuService.exe [269480 2017-05-26] (Microvirt Software Technology Co. Ltd.)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4795288 2017-02-13] (Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [2908352 2017-01-06] (Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1617520 2017-04-24] ()
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-07-09] ()
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2092008 2017-09-25] (Plex, Inc.)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2014-10-03] (CyberLink)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4329952 2018-01-18] (Microsoft Corporation)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7014728 2017-03-07] ()
S2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\NisSrv.exe [356168 2018-01-19] (Microsoft Corporation)
R2 WebUpdate4; C:\WINDOWS\SysWOW64\WebUpdateSvc4.exe [412776 2013-11-25] (Data Perceptions / PowerProgrammer)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MsMpEng.exe [105792 2018-01-19] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [981576 2017-10-20] ()
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-07-09] (Intel® Corporation)
R2 Zoolz 2 Service; C:\Program Files\Genie9\Zoolz2\ZoolzService.exe [475792 2017-10-31] (Genie9)
R2 VssProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{663BA217-D676-4DD2-85D9-BBB2C316B74F}
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6086232 2017-06-06] ()
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R2 DmAgent; C:\Program Files\QILING\Disk Master\DmAgent.exe [67384 2017-07-10] (QILING Tech Co., Ltd.)
U2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [104448 2017-07-18] (Freemake) [File not signed]
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2017-07-18] (Ellora Assets Corp.) [File not signed]
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [532552 2018-01-17] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8345672 2017-12-07] (GOG.com)
R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [11836496 2017-12-15] () [File not signed]
R2 HDDC2017Service; C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2017\HDDC2017Service.exe [332120 2016-07-13] ()
S2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [150256 2015-08-06] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319096 2016-05-12] (Intel Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165144 2012-03-28] (Intel Corporation)
S2 lxebCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\lxebserv.exe [45736 2010-04-14] (Lexmark International, Inc.)
R2 MEmusvc; C:\Program Files\Microvirt\MEmu\MemuService.exe [269480 2017-05-26] (Microvirt Software Technology Co. Ltd.)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4795288 2017-02-13] (Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [2908352 2017-01-06] (Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1617520 2017-04-24] ()
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-07-09] ()
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2092008 2017-09-25] (Plex, Inc.)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2014-10-03] (CyberLink)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4329952 2018-01-18] (Microsoft Corporation)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7014728 2017-03-07] ()
S2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\NisSrv.exe [356168 2018-01-19] (Microsoft Corporation)
R2 WebUpdate4; C:\WINDOWS\SysWOW64\WebUpdateSvc4.exe [412776 2013-11-25] (Data Perceptions / PowerProgrammer)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MsMpEng.exe [105792 2018-01-19] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [981576 2017-10-20] ()
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-07-09] (Intel® Corporation)
R2 Zoolz 2 Service; C:\Program Files\Genie9\Zoolz2\ZoolzService.exe [475792 2017-10-31] (Genie9)
R2 VssProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{663BA217-D676-4DD2-85D9-BBB2C316B74F}
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
S3 DigiartyVirtualCDBus; C:\WINDOWS\System32\drivers\DigiartyVirtualCDBus.sys [276256 2017-08-14] (Digiarty Software, Inc.)
R0 diskbckp; C:\WINDOWS\System32\drivers\diskbckp.sys [45368 2017-07-10] (QILING Tech Co., Ltd.)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [18528 2014-11-18] () [File not signed]
S3 epmntdrv; C:\WINDOWS\SysWOW64\epmntdrv.sys [15968 2014-11-18] () [File not signed]
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [378712 2017-06-06] (Acronis International GmbH)
S3 LECs6022; C:\WINDOWS\System32\drivers\LECs6022.sys [17408 2010-11-05] (Primax Electronics Ltd.)
S3 LEMo6022; C:\WINDOWS\System32\drivers\LEMo6022.sys [24064 2012-06-06] (Primax Electronics Ltd.)
S3 LEub6022; C:\WINDOWS\System32\drivers\LEub6022.sys [18432 2011-01-05] (Primax Electronics Ltd.)
S3 mcdevice; C:\WINDOWS\system32\DRIVERS\mcdevice.sys [334400 2011-05-19] (ShiningMorning Inc.)
R2 memudrv; C:\Program Files\Microvirt\MEmuHyperv\MEmuDrv.sys [260368 2015-11-02] (Microvirt Corporation)
R1 MpKsl44e11dea; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{79434EE9-FC7D-46DB-B0AC-7198FCE57D7D}\MpKsl44e11dea.sys [58120 2018-01-22] (Microsoft Corporation)
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3343872 2017-09-29] (Intel Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
S3 pelmouse; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [23040 2015-12-17] (TPMX Electronics Ltd.)
S3 pelusblf; C:\WINDOWS\system32\DRIVERS\pelusblf.sys [35328 2016-01-14] (TPMX Electronics Ltd.)
S3 pelvendr; C:\WINDOWS\system32\DRIVERS\pelvendr.sys [11776 2009-11-02] (TPMX Electronics Ltd.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-09-29] (Realtek )
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [162960 2017-01-04] (Duplex Secure Ltd)
R1 StarPortLite; C:\WINDOWS\System32\drivers\StarPortLite.sys [120704 2013-02-04] (StarWind Software)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2017-06-06] (Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2017-06-06] (Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2017-06-06] (Acronis International GmbH)
R3 vDisk; C:\WINDOWS\System32\drivers\vDisk.sys [256312 2017-07-10] (QILING Tech Co., Ltd.)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [324952 2017-06-06] (Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2018-01-19] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [288848 2018-01-19] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2018-01-19] (Microsoft Corporation)
R1 WINIO; C:\Program Files (x86)\MultiControl\winio64.sys [16128 2011-04-28] ()
U3 idsvc; no ImagePath
S3 DigiartyVirtualCDBus; C:\WINDOWS\System32\drivers\DigiartyVirtualCDBus.sys [276256 2017-08-14] (Digiarty Software, Inc.)
R0 diskbckp; C:\WINDOWS\System32\drivers\diskbckp.sys [45368 2017-07-10] (QILING Tech Co., Ltd.)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [18528 2014-11-18] () [File not signed]
S3 epmntdrv; C:\WINDOWS\SysWOW64\epmntdrv.sys [15968 2014-11-18] () [File not signed]
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [378712 2017-06-06] (Acronis International GmbH)
S3 LECs6022; C:\WINDOWS\System32\drivers\LECs6022.sys [17408 2010-11-05] (Primax Electronics Ltd.)
S3 LEMo6022; C:\WINDOWS\System32\drivers\LEMo6022.sys [24064 2012-06-06] (Primax Electronics Ltd.)
S3 LEub6022; C:\WINDOWS\System32\drivers\LEub6022.sys [18432 2011-01-05] (Primax Electronics Ltd.)
S3 mcdevice; C:\WINDOWS\system32\DRIVERS\mcdevice.sys [334400 2011-05-19] (ShiningMorning Inc.)
R2 memudrv; C:\Program Files\Microvirt\MEmuHyperv\MEmuDrv.sys [260368 2015-11-02] (Microvirt Corporation)
R1 MpKsl44e11dea; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{79434EE9-FC7D-46DB-B0AC-7198FCE57D7D}\MpKsl44e11dea.sys [58120 2018-01-22] (Microsoft Corporation)
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3343872 2017-09-29] (Intel Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
S3 pelmouse; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [23040 2015-12-17] (TPMX Electronics Ltd.)
S3 pelusblf; C:\WINDOWS\system32\DRIVERS\pelusblf.sys [35328 2016-01-14] (TPMX Electronics Ltd.)
S3 pelvendr; C:\WINDOWS\system32\DRIVERS\pelvendr.sys [11776 2009-11-02] (TPMX Electronics Ltd.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-09-29] (Realtek )
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [162960 2017-01-04] (Duplex Secure Ltd)
R1 StarPortLite; C:\WINDOWS\System32\drivers\StarPortLite.sys [120704 2013-02-04] (StarWind Software)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2017-06-06] (Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2017-06-06] (Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2017-06-06] (Acronis International GmbH)
R3 vDisk; C:\WINDOWS\System32\drivers\vDisk.sys [256312 2017-07-10] (QILING Tech Co., Ltd.)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [324952 2017-06-06] (Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2018-01-19] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [288848 2018-01-19] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2018-01-19] (Microsoft Corporation)
R1 WINIO; C:\Program Files (x86)\MultiControl\winio64.sys [16128 2011-04-28] ()
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-01-25 07:00 - 2018-01-25 07:00 - 000000000 _____ C:\Users\user\Desktop\New Text Document (3).txt
2018-01-25 07:00 - 2018-01-25 07:00 - 000000000 _____ C:\Users\user\Desktop\New Text Document (2).txt
2018-01-25 06:59 - 2018-01-25 07:09 - 000027560 _____ C:\Users\user\Desktop\FRST.txt
2018-01-25 06:58 - 2018-01-25 06:59 - 000000000 ____D C:\FRST
2018-01-25 06:57 - 2018-01-27 19:26 - 002393088 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2018-01-25 06:52 - 2018-01-25 06:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-01-24 22:32 - 2018-01-24 22:32 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2018-01-24 22:30 - 2018-01-24 22:30 - 000000000 ____D C:\WINDOWS\pss
2018-01-22 12:22 - 2018-01-25 06:50 - 101187584 _____ C:\WINDOWS\system32\config\SOFTWARE
2018-01-22 12:06 - 2018-01-22 12:22 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2018-01-20 22:54 - 2018-01-21 23:30 - 000000000 ____D C:\Users\user\Documents\ArcheAge
2018-01-20 22:54 - 2018-01-20 22:54 - 000000000 ____D C:\ArcheAge
2018-01-20 08:10 - 2018-01-20 08:10 - 000000222 _____ C:\Users\user\Desktop\ArcheAge.url
2018-01-19 20:13 - 2017-12-22 07:45 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-01-19 20:13 - 2017-12-22 07:45 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-01-19 18:40 - 2018-01-01 06:34 - 007385088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-01-19 18:40 - 2018-01-01 06:23 - 021352144 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-19 18:40 - 2018-01-01 05:42 - 006479552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-01-19 18:40 - 2018-01-01 05:37 - 025247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-01-19 18:40 - 2018-01-01 05:14 - 023655936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-19 18:39 - 2018-01-01 11:15 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-01-19 18:39 - 2018-01-01 06:54 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-19 18:39 - 2018-01-01 06:53 - 001090984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-19 18:39 - 2018-01-01 06:52 - 000066712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2018-01-19 18:39 - 2018-01-01 06:51 - 001414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-19 18:39 - 2018-01-01 06:51 - 001209240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-19 18:39 - 2018-01-01 06:51 - 001055128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-01-19 18:39 - 2018-01-01 06:51 - 000191816 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-01-19 18:39 - 2018-01-01 06:51 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
2018-01-19 18:39 - 2018-01-01 06:50 - 005905752 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-01-19 18:39 - 2018-01-01 06:50 - 000780464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-01-19 18:39 - 2018-01-01 06:50 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-01-19 18:39 - 2018-01-01 06:50 - 000077208 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-01-19 18:39 - 2018-01-01 06:49 - 008605080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-19 18:39 - 2018-01-01 06:49 - 000599448 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-01-19 18:39 - 2018-01-01 06:49 - 000319352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-01-19 18:39 - 2018-01-01 06:49 - 000292376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-01-19 18:39 - 2018-01-01 06:48 - 007831760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-01-19 18:39 - 2018-01-01 06:48 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-01-19 18:39 - 2018-01-01 06:48 - 000382360 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-19 18:39 - 2018-01-01 06:47 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-19 18:39 - 2018-01-01 06:47 - 000082840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-01-19 18:39 - 2018-01-01 06:46 - 002709704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-19 18:39 - 2018-01-01 06:46 - 000898216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-01-19 18:39 - 2018-01-01 06:46 - 000733592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-01-19 18:39 - 2018-01-01 06:46 - 000471960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-19 18:39 - 2018-01-01 06:45 - 002395032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-19 18:39 - 2018-01-01 06:45 - 001277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-01-19 18:39 - 2018-01-01 06:45 - 000398744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-19 18:39 - 2018-01-01 06:43 - 001173576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-19 18:39 - 2018-01-01 06:43 - 000367336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-19 18:39 - 2018-01-01 06:43 - 000062872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-01-19 18:39 - 2018-01-01 06:42 - 001029016 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-01-19 18:39 - 2018-01-01 06:42 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-01-19 18:39 - 2018-01-01 06:42 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-19 18:39 - 2018-01-01 06:42 - 000184984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-01-19 18:39 - 2018-01-01 06:42 - 000109976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-01-19 18:39 - 2018-01-01 06:41 - 007676296 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-01-19 18:39 - 2018-01-01 06:41 - 000559512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-01-19 18:39 - 2018-01-01 06:41 - 000549552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-01-19 18:39 - 2018-01-01 06:40 - 001206680 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-01-19 18:39 - 2018-01-01 06:39 - 000902416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-19 18:39 - 2018-01-01 06:39 - 000677784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-19 18:39 - 2018-01-01 06:39 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-01-19 18:39 - 2018-01-01 06:39 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-01-19 18:39 - 2018-01-01 06:39 - 000129432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-01-19 18:39 - 2018-01-01 06:38 - 003904808 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-01-19 18:39 - 2018-01-01 06:38 - 000727448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-19 18:39 - 2018-01-01 06:38 - 000519152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-01-19 18:39 - 2018-01-01 06:38 - 000103320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-01-19 18:39 - 2018-01-01 06:38 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2018-01-19 18:39 - 2018-01-01 06:37 - 001426664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-01-19 18:39 - 2018-01-01 06:37 - 000461720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2018-01-19 18:39 - 2018-01-01 06:36 - 000413888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-01-19 18:39 - 2018-01-01 06:36 - 000374032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-01-19 18:39 - 2018-01-01 06:36 - 000166296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-01-19 18:39 - 2018-01-01 06:36 - 000113560 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-19 18:39 - 2018-01-01 06:36 - 000057752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-19 18:39 - 2018-01-01 06:35 - 001170008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-01-19 18:39 - 2018-01-01 06:35 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-01-19 18:39 - 2018-01-01 06:34 - 001336344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-19 18:39 - 2018-01-01 06:34 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-01-19 18:39 - 2018-01-01 06:34 - 000087384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-01-19 18:39 - 2018-01-01 06:33 - 002773400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-19 18:39 - 2018-01-01 06:33 - 000603920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-01-19 18:39 - 2018-01-01 06:32 - 004481240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-01-19 18:39 - 2018-01-01 06:32 - 000617304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-01-19 18:39 - 2018-01-01 06:27 - 000713624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-01-19 18:39 - 2018-01-01 06:27 - 000163736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-19 18:39 - 2018-01-01 06:26 - 000428952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-19 18:39 - 2018-01-01 06:26 - 000081304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-01-19 18:39 - 2018-01-01 06:25 - 000615768 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-01-19 18:39 - 2018-01-01 06:25 - 000147864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-01-19 18:39 - 2018-01-01 06:21 - 001103768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-19 18:39 - 2018-01-01 06:21 - 000614296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-19 18:39 - 2018-01-01 06:06 - 000311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-01-19 18:39 - 2018-01-01 06:03 - 000777904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-01-19 18:39 - 2018-01-01 06:03 - 000650328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-01-19 18:39 - 2018-01-01 06:03 - 000566664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-01-19 18:39 - 2018-01-01 06:03 - 000123512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2018-01-19 18:39 - 2018-01-01 05:53 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-01-19 18:39 - 2018-01-01 05:49 - 000481464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-01-19 18:39 - 2018-01-01 05:49 - 000258808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-01-19 18:39 - 2018-01-01 05:46 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-01-19 18:39 - 2018-01-01 05:46 - 000289816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-19 18:39 - 2018-01-01 05:45 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-01-19 18:39 - 2018-01-01 05:45 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-01-19 18:39 - 2018-01-01 05:45 - 002192624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-01-19 18:39 - 2018-01-01 05:45 - 000450928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2018-01-19 18:39 - 2018-01-01 05:43 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 004644912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 001003152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2018-01-19 18:39 - 2018-01-01 05:34 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-01-19 18:39 - 2018-01-01 05:25 - 002905600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-01-19 18:39 - 2018-01-01 05:25 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-01-19 18:39 - 2018-01-01 05:25 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-01-19 18:39 - 2018-01-01 05:25 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-01-19 18:39 - 2018-01-01 05:25 - 000097792 _____ C:\WINDOWS\system32\runexehelper.exe
2018-01-19 18:39 - 2018-01-01 05:24 - 003668480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-01-19 18:39 - 2018-01-01 05:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2018-01-19 18:39 - 2018-01-01 05:24 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-01-19 18:39 - 2018-01-01 05:23 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-01-19 18:39 - 2018-01-01 05:23 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-19 18:39 - 2018-01-01 05:23 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-01-19 18:39 - 2018-01-01 05:23 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-01-19 18:39 - 2018-01-01 05:23 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-01-19 18:39 - 2018-01-01 05:21 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2018-01-19 18:39 - 2018-01-01 05:21 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-01-19 18:39 - 2018-01-01 05:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2018-01-19 18:39 - 2018-01-01 05:21 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-19 18:39 - 2018-01-01 05:20 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 018917888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-01-19 18:39 - 2018-01-01 05:20 - 000212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 008014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-19 18:39 - 2018-01-01 05:19 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-01-19 18:39 - 2018-01-01 05:19 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-01-19 18:39 - 2018-01-01 05:19 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 011923968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 006564864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 003676672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000956928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 012687872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 001381888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 002465280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 000985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 000870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 013657600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 012830208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 001573376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 001547776 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 008108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 004748288 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 003165696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 002082304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-19 18:39 - 2018-01-01 05:11 - 001955328 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001597952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 000715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-19 18:39 - 2018-01-01 05:10 - 003126272 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-01-19 18:39 - 2018-01-01 05:10 - 002528256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-19 18:39 - 2018-01-01 05:09 - 001487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-01-19 18:39 - 2018-01-01 05:09 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-19 18:39 - 2018-01-01 05:09 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2018-01-19 18:39 - 2018-01-01 05:09 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-01-19 18:39 - 2018-01-01 05:08 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-01-19 18:39 - 2018-01-01 05:08 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-19 18:39 - 2018-01-01 05:08 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-01-19 18:39 - 2018-01-01 05:08 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-01-19 18:39 - 2018-01-01 05:05 - 002510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-01-19 18:39 - 2018-01-01 05:05 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-01-19 18:38 - 2018-01-01 05:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-01-19 18:38 - 2018-01-01 05:24 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-01-19 18:38 - 2018-01-01 05:23 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
2018-01-19 18:38 - 2018-01-01 05:23 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-19 18:38 - 2018-01-01 05:23 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2018-01-19 18:38 - 2018-01-01 05:23 - 000047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-19 18:38 - 2018-01-01 05:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rfxvmt.dll
2018-01-19 18:38 - 2018-01-01 05:22 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-01-19 18:38 - 2018-01-01 05:22 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-01-19 18:38 - 2018-01-01 05:22 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-01-19 18:38 - 2018-01-01 05:21 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-01-19 18:38 - 2018-01-01 05:21 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2018-01-19 18:38 - 2018-01-01 05:21 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-01-19 18:38 - 2018-01-01 05:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-01-19 18:38 - 2018-01-01 05:21 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-19 18:38 - 2018-01-01 05:21 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-01-19 18:38 - 2018-01-01 05:19 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-01-19 18:38 - 2018-01-01 05:19 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoert2.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-19 18:38 - 2018-01-01 05:17 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2018-01-19 18:38 - 2018-01-01 05:16 - 000966656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2018-01-19 18:38 - 2018-01-01 05:16 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-01-19 18:38 - 2018-01-01 05:16 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-01-19 18:38 - 2018-01-01 05:15 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-19 18:38 - 2018-01-01 05:13 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-01-19 18:38 - 2018-01-01 05:13 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-01-19 18:38 - 2018-01-01 05:12 - 000760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-19 18:38 - 2018-01-01 05:10 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2018-01-19 18:38 - 2018-01-01 05:08 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-01-19 18:38 - 2018-01-01 05:06 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-01-19 18:38 - 2018-01-01 05:05 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-01-19 16:40 - 2018-01-20 08:10 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-01-18 22:56 - 2018-01-18 21:50 - 000000000 ____D C:\Windows.old
2018-01-18 22:48 - 2018-01-18 22:56 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-01-18 22:48 - 2018-01-18 22:48 - 000000000 ___DL C:\Users\Public\Recorded TV (1)
2018-01-18 22:48 - 2018-01-18 22:48 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2018-01-18 22:46 - 2018-01-18 22:48 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-01-18 22:46 - 2018-01-18 22:46 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-01-18 22:43 - 2018-01-18 22:43 - 000000000 ____D C:\WINDOWS\containers
2018-01-18 22:42 - 2018-01-18 22:42 - 021754368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 017159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 017084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 013703168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 006791472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 006466048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 006015200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004814848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004592640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004504456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003578368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003478016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003331520 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003186688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003010720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002972672 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002783744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002717392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002666496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002596352 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 002573208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 002491112 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002465848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002446744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002412168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002339296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002269080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002220952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002117632 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002105856 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001980928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001970520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001925296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001806336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001778584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001776272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001666048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001642520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001636376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001634288 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001628056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001585376 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001554216 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001528904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001507736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001490840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001490328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001488792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001474680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001463856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001454568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001432816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001420696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001377080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001323840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001261864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001259344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001148216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001145104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001124760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001015008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001003104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000979352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000975872 _____ C:\WINDOWS\system32\FaceProcessor.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000891800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000840440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000831384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000823808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000819096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000813976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000791960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000769096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000768512 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000746904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000744856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000721592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000703536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000669592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000661664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000654048 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000645528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000630752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000612760 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000610712 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000592280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000591872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000590944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000555416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-01-18 22:42 - 2018-01-18 22:42 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000525208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000506256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000495000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000464408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-01-18 22:42 - 2018-01-18 22:42 - 000436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000418712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000404888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000362176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000353848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000353688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000269696 _____ C:\WINDOWS\system32\FaceProcessorCore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000230296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000198888 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000187288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000137544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2018-01-18 22:42 - 2018-01-18 22:42 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000097144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\hascsp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000060824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\urscx01000.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadjcsp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KeyboardFilterShim.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrleakdiag.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000045464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdrleakdiag.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcVSp1res.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcVSp1res.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-01-18 22:36 - 2018-01-18 22:36 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2018-01-18 22:36 - 2018-01-18 22:36 - 000000000 ____D C:\WINDOWS\system32\msmq
2018-01-18 22:36 - 2018-01-18 22:36 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2018-01-18 22:36 - 2018-01-18 22:36 - 000000000 ____D C:\inetpub
2018-01-18 22:35 - 2018-01-18 22:35 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-01-18 22:35 - 2018-01-18 22:35 - 000000000 ____D C:\Program Files\MSBuild
2018-01-18 22:35 - 2018-01-18 22:35 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-01-18 22:35 - 2018-01-18 22:35 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-01-18 22:35 - 2017-09-22 20:19 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-01-18 22:35 - 2017-09-22 20:19 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-01-18 22:35 - 2017-09-22 20:19 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-01-18 22:34 - 2017-09-28 17:50 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-01-18 22:34 - 2017-09-28 17:50 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-01-18 22:34 - 2017-09-28 17:50 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-01-18 21:54 - 2018-01-18 21:54 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-01-18 21:52 - 2018-01-18 21:52 - 000000000 ___HD C:\Users\user\MicrosoftEdgeBackups
2018-01-18 21:51 - 2018-01-19 20:14 - 000000000 ___RD C:\Users\user\3D Objects
2018-01-18 21:50 - 2018-01-18 21:50 - 000000020 ___SH C:\Users\user\ntuser.ini
2018-01-18 21:47 - 2018-01-25 06:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-18 21:47 - 2018-01-18 21:48 - 000003344 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-01-18 21:47 - 2018-01-18 21:48 - 000003120 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-01-18 21:47 - 2018-01-18 21:48 - 000003110 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-01-18 21:47 - 2018-01-18 21:48 - 000002852 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-923925315-484671486-2491507011-1000
2018-01-18 21:47 - 2018-01-18 21:48 - 000002594 _____ C:\WINDOWS\System32\Tasks\CorelUpdateHelperTaskCore
2018-01-18 21:47 - 2018-01-18 21:48 - 000002406 _____ C:\WINDOWS\System32\Tasks\CorelUpdateHelperTask
2018-01-18 21:47 - 2018-01-18 21:47 - 000003000 _____ C:\WINDOWS\System32\Tasks\Tweaking.com - Windows Repair Tray Icon
2018-01-18 21:47 - 2018-01-18 21:47 - 000002648 _____ C:\WINDOWS\System32\Tasks\MultiControl
2018-01-18 21:47 - 2018-01-18 21:47 - 000002110 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_WILLAMETTE
2018-01-18 21:47 - 2018-01-18 21:47 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2018-01-18 21:47 - 2018-01-18 21:47 - 000000000 ____D C:\WINDOWS\System32\Tasks\Intel
2018-01-18 21:47 - 2018-01-18 21:47 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
2018-01-18 21:46 - 2018-01-18 21:47 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2018-01-18 21:46 - 2018-01-18 21:47 - 000011433 _____ C:\WINDOWS\diagerr.xml
2018-01-18 21:16 - 2018-01-18 21:16 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-01-18 21:13 - 2018-01-18 22:09 - 000000000 ____D C:\Users\user\AppData\Local\Packages
2018-01-18 21:12 - 2018-01-18 21:12 - 000000000 ____D C:\ProgramData\USOShared
2018-01-18 21:11 - 2018-01-18 21:30 - 000000000 ____D C:\Users\DefaultAppPool
2018-01-18 21:05 - 2018-01-25 06:58 - 001112096 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-18 21:04 - 2017-09-29 07:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-01-18 21:03 - 2016-05-12 15:39 - 000064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2018-01-18 21:00 - 2018-01-25 06:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-01-18 21:00 - 2018-01-19 20:10 - 000256432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-01-12 16:54 - 2018-01-18 21:50 - 000000000 ___DC C:\WINDOWS\Panther
2018-01-11 18:27 - 2018-01-18 16:40 - 000000000 ____D C:\Program Files\rempl
2017-12-31 18:12 - 2017-12-31 18:12 - 000002211 _____ C:\Users\user\AppData\Local\recently-used.xbel
2018-01-25 07:00 - 2018-01-25 07:00 - 000000000 _____ C:\Users\user\Desktop\New Text Document (2).txt
2018-01-25 06:59 - 2018-01-25 07:09 - 000027560 _____ C:\Users\user\Desktop\FRST.txt
2018-01-25 06:58 - 2018-01-25 06:59 - 000000000 ____D C:\FRST
2018-01-25 06:57 - 2018-01-27 19:26 - 002393088 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2018-01-25 06:52 - 2018-01-25 06:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-01-24 22:32 - 2018-01-24 22:32 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2018-01-24 22:30 - 2018-01-24 22:30 - 000000000 ____D C:\WINDOWS\pss
2018-01-22 12:22 - 2018-01-25 06:50 - 101187584 _____ C:\WINDOWS\system32\config\SOFTWARE
2018-01-22 12:06 - 2018-01-22 12:22 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2018-01-20 22:54 - 2018-01-21 23:30 - 000000000 ____D C:\Users\user\Documents\ArcheAge
2018-01-20 22:54 - 2018-01-20 22:54 - 000000000 ____D C:\ArcheAge
2018-01-20 08:10 - 2018-01-20 08:10 - 000000222 _____ C:\Users\user\Desktop\ArcheAge.url
2018-01-19 20:13 - 2017-12-22 07:45 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-01-19 20:13 - 2017-12-22 07:45 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-01-19 18:40 - 2018-01-01 06:34 - 007385088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-01-19 18:40 - 2018-01-01 06:23 - 021352144 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-19 18:40 - 2018-01-01 05:42 - 006479552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-01-19 18:40 - 2018-01-01 05:37 - 025247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-01-19 18:40 - 2018-01-01 05:14 - 023655936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-19 18:39 - 2018-01-01 11:15 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-01-19 18:39 - 2018-01-01 06:54 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-19 18:39 - 2018-01-01 06:53 - 001090984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-19 18:39 - 2018-01-01 06:52 - 000066712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2018-01-19 18:39 - 2018-01-01 06:51 - 001414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-19 18:39 - 2018-01-01 06:51 - 001209240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-19 18:39 - 2018-01-01 06:51 - 001055128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-01-19 18:39 - 2018-01-01 06:51 - 000191816 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-01-19 18:39 - 2018-01-01 06:51 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
2018-01-19 18:39 - 2018-01-01 06:50 - 005905752 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-01-19 18:39 - 2018-01-01 06:50 - 000780464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-01-19 18:39 - 2018-01-01 06:50 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-01-19 18:39 - 2018-01-01 06:50 - 000077208 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-01-19 18:39 - 2018-01-01 06:49 - 008605080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-19 18:39 - 2018-01-01 06:49 - 000599448 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-01-19 18:39 - 2018-01-01 06:49 - 000319352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-01-19 18:39 - 2018-01-01 06:49 - 000292376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-01-19 18:39 - 2018-01-01 06:48 - 007831760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-01-19 18:39 - 2018-01-01 06:48 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-01-19 18:39 - 2018-01-01 06:48 - 000382360 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-19 18:39 - 2018-01-01 06:47 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-19 18:39 - 2018-01-01 06:47 - 000082840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-01-19 18:39 - 2018-01-01 06:46 - 002709704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-19 18:39 - 2018-01-01 06:46 - 000898216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-01-19 18:39 - 2018-01-01 06:46 - 000733592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-01-19 18:39 - 2018-01-01 06:46 - 000471960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-19 18:39 - 2018-01-01 06:45 - 002395032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-19 18:39 - 2018-01-01 06:45 - 001277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-01-19 18:39 - 2018-01-01 06:45 - 000398744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-19 18:39 - 2018-01-01 06:43 - 001173576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-19 18:39 - 2018-01-01 06:43 - 000367336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-19 18:39 - 2018-01-01 06:43 - 000062872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-01-19 18:39 - 2018-01-01 06:42 - 001029016 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-01-19 18:39 - 2018-01-01 06:42 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-01-19 18:39 - 2018-01-01 06:42 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-19 18:39 - 2018-01-01 06:42 - 000184984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-01-19 18:39 - 2018-01-01 06:42 - 000109976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-01-19 18:39 - 2018-01-01 06:41 - 007676296 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-01-19 18:39 - 2018-01-01 06:41 - 000559512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-01-19 18:39 - 2018-01-01 06:41 - 000549552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-01-19 18:39 - 2018-01-01 06:40 - 001206680 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-01-19 18:39 - 2018-01-01 06:39 - 000902416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-19 18:39 - 2018-01-01 06:39 - 000677784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-19 18:39 - 2018-01-01 06:39 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-01-19 18:39 - 2018-01-01 06:39 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-01-19 18:39 - 2018-01-01 06:39 - 000129432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-01-19 18:39 - 2018-01-01 06:38 - 003904808 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-01-19 18:39 - 2018-01-01 06:38 - 000727448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-19 18:39 - 2018-01-01 06:38 - 000519152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-01-19 18:39 - 2018-01-01 06:38 - 000103320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-01-19 18:39 - 2018-01-01 06:38 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2018-01-19 18:39 - 2018-01-01 06:37 - 001426664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-01-19 18:39 - 2018-01-01 06:37 - 000461720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2018-01-19 18:39 - 2018-01-01 06:36 - 000413888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-01-19 18:39 - 2018-01-01 06:36 - 000374032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-01-19 18:39 - 2018-01-01 06:36 - 000166296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-01-19 18:39 - 2018-01-01 06:36 - 000113560 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-19 18:39 - 2018-01-01 06:36 - 000057752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-19 18:39 - 2018-01-01 06:35 - 001170008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-01-19 18:39 - 2018-01-01 06:35 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-01-19 18:39 - 2018-01-01 06:34 - 001336344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-19 18:39 - 2018-01-01 06:34 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-01-19 18:39 - 2018-01-01 06:34 - 000087384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-01-19 18:39 - 2018-01-01 06:33 - 002773400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-19 18:39 - 2018-01-01 06:33 - 000603920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-01-19 18:39 - 2018-01-01 06:32 - 004481240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-01-19 18:39 - 2018-01-01 06:32 - 000617304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-01-19 18:39 - 2018-01-01 06:27 - 000713624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-01-19 18:39 - 2018-01-01 06:27 - 000163736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-19 18:39 - 2018-01-01 06:26 - 000428952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-19 18:39 - 2018-01-01 06:26 - 000081304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-01-19 18:39 - 2018-01-01 06:25 - 000615768 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-01-19 18:39 - 2018-01-01 06:25 - 000147864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-01-19 18:39 - 2018-01-01 06:21 - 001103768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-19 18:39 - 2018-01-01 06:21 - 000614296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-19 18:39 - 2018-01-01 06:06 - 000311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-01-19 18:39 - 2018-01-01 06:03 - 000777904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-01-19 18:39 - 2018-01-01 06:03 - 000650328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-01-19 18:39 - 2018-01-01 06:03 - 000566664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-01-19 18:39 - 2018-01-01 06:03 - 000123512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2018-01-19 18:39 - 2018-01-01 05:53 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-01-19 18:39 - 2018-01-01 05:49 - 000481464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-01-19 18:39 - 2018-01-01 05:49 - 000258808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-01-19 18:39 - 2018-01-01 05:46 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-01-19 18:39 - 2018-01-01 05:46 - 000289816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-19 18:39 - 2018-01-01 05:45 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-01-19 18:39 - 2018-01-01 05:45 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-01-19 18:39 - 2018-01-01 05:45 - 002192624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-01-19 18:39 - 2018-01-01 05:45 - 000450928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2018-01-19 18:39 - 2018-01-01 05:43 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 004644912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 001003152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-01-19 18:39 - 2018-01-01 05:42 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2018-01-19 18:39 - 2018-01-01 05:34 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-01-19 18:39 - 2018-01-01 05:25 - 002905600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-01-19 18:39 - 2018-01-01 05:25 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-01-19 18:39 - 2018-01-01 05:25 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-01-19 18:39 - 2018-01-01 05:25 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-01-19 18:39 - 2018-01-01 05:25 - 000097792 _____ C:\WINDOWS\system32\runexehelper.exe
2018-01-19 18:39 - 2018-01-01 05:24 - 003668480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-01-19 18:39 - 2018-01-01 05:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2018-01-19 18:39 - 2018-01-01 05:24 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-01-19 18:39 - 2018-01-01 05:23 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-01-19 18:39 - 2018-01-01 05:23 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-19 18:39 - 2018-01-01 05:23 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-01-19 18:39 - 2018-01-01 05:23 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-01-19 18:39 - 2018-01-01 05:23 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-01-19 18:39 - 2018-01-01 05:21 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2018-01-19 18:39 - 2018-01-01 05:21 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-01-19 18:39 - 2018-01-01 05:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2018-01-19 18:39 - 2018-01-01 05:21 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-19 18:39 - 2018-01-01 05:20 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 018917888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-01-19 18:39 - 2018-01-01 05:20 - 000212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2018-01-19 18:39 - 2018-01-01 05:20 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 008014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-19 18:39 - 2018-01-01 05:19 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-01-19 18:39 - 2018-01-01 05:19 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-01-19 18:39 - 2018-01-01 05:19 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-01-19 18:39 - 2018-01-01 05:19 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-01-19 18:39 - 2018-01-01 05:18 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 011923968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 006564864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-19 18:39 - 2018-01-01 05:17 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 003676672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000956928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-01-19 18:39 - 2018-01-01 05:16 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 012687872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 001381888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2018-01-19 18:39 - 2018-01-01 05:15 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 002465280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 000985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-01-19 18:39 - 2018-01-01 05:14 - 000870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 013657600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 012830208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-01-19 18:39 - 2018-01-01 05:13 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 001573376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 001547776 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-01-19 18:39 - 2018-01-01 05:12 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 008108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 004748288 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 003165696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 002082304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-19 18:39 - 2018-01-01 05:11 - 001955328 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001597952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 001231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-19 18:39 - 2018-01-01 05:11 - 000715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-19 18:39 - 2018-01-01 05:10 - 003126272 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-01-19 18:39 - 2018-01-01 05:10 - 002528256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-19 18:39 - 2018-01-01 05:09 - 001487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-01-19 18:39 - 2018-01-01 05:09 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-19 18:39 - 2018-01-01 05:09 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2018-01-19 18:39 - 2018-01-01 05:09 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-01-19 18:39 - 2018-01-01 05:08 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-01-19 18:39 - 2018-01-01 05:08 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-19 18:39 - 2018-01-01 05:08 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-01-19 18:39 - 2018-01-01 05:08 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-01-19 18:39 - 2018-01-01 05:05 - 002510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-01-19 18:39 - 2018-01-01 05:05 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-01-19 18:38 - 2018-01-01 05:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-01-19 18:38 - 2018-01-01 05:24 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-01-19 18:38 - 2018-01-01 05:23 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
2018-01-19 18:38 - 2018-01-01 05:23 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-19 18:38 - 2018-01-01 05:23 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2018-01-19 18:38 - 2018-01-01 05:23 - 000047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-19 18:38 - 2018-01-01 05:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rfxvmt.dll
2018-01-19 18:38 - 2018-01-01 05:22 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-01-19 18:38 - 2018-01-01 05:22 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-01-19 18:38 - 2018-01-01 05:22 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-01-19 18:38 - 2018-01-01 05:21 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-01-19 18:38 - 2018-01-01 05:21 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2018-01-19 18:38 - 2018-01-01 05:21 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-01-19 18:38 - 2018-01-01 05:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-01-19 18:38 - 2018-01-01 05:21 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-19 18:38 - 2018-01-01 05:21 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-01-19 18:38 - 2018-01-01 05:20 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-01-19 18:38 - 2018-01-01 05:19 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-01-19 18:38 - 2018-01-01 05:19 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoert2.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-19 18:38 - 2018-01-01 05:19 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-19 18:38 - 2018-01-01 05:18 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-19 18:38 - 2018-01-01 05:17 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-19 18:38 - 2018-01-01 05:17 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2018-01-19 18:38 - 2018-01-01 05:16 - 000966656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2018-01-19 18:38 - 2018-01-01 05:16 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-01-19 18:38 - 2018-01-01 05:16 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-01-19 18:38 - 2018-01-01 05:15 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-19 18:38 - 2018-01-01 05:13 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-01-19 18:38 - 2018-01-01 05:13 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-01-19 18:38 - 2018-01-01 05:12 - 000760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-19 18:38 - 2018-01-01 05:10 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2018-01-19 18:38 - 2018-01-01 05:08 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-01-19 18:38 - 2018-01-01 05:06 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-01-19 18:38 - 2018-01-01 05:05 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-01-19 16:40 - 2018-01-20 08:10 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-01-18 22:56 - 2018-01-18 21:50 - 000000000 ____D C:\Windows.old
2018-01-18 22:48 - 2018-01-18 22:56 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-01-18 22:48 - 2018-01-18 22:48 - 000000000 ___DL C:\Users\Public\Recorded TV (1)
2018-01-18 22:48 - 2018-01-18 22:48 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2018-01-18 22:46 - 2018-01-18 22:48 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-01-18 22:46 - 2018-01-18 22:46 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-01-18 22:43 - 2018-01-18 22:43 - 000000000 ____D C:\WINDOWS\containers
2018-01-18 22:42 - 2018-01-18 22:42 - 021754368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 017159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 017084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 013703168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 006791472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 006466048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 006015200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004814848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004592640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004504456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003578368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003478016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003331520 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003186688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 003010720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002972672 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002783744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002717392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002666496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002596352 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 002573208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 002491112 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002465848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002446744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002412168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002339296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002269080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002220952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002117632 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 002105856 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001980928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001970520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001925296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001806336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001778584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001776272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001666048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001642520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001636376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001634288 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001628056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001585376 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001554216 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001528904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001507736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001490840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001490328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001488792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001474680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001463856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001454568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001432816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001420696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001377080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001323840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001261864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001259344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001148216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001145104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001124760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001015008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001003104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000979352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000975872 _____ C:\WINDOWS\system32\FaceProcessor.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000891800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000840440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000831384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000823808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000819096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000813976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000791960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000769096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000768512 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000746904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000744856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000721592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000703536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000669592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000661664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000654048 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000645528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000630752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000612760 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000610712 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000592280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000591872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000590944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000555416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-01-18 22:42 - 2018-01-18 22:42 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000525208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000506256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000495000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000464408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-01-18 22:42 - 2018-01-18 22:42 - 000436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000418712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000404888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000362176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000353848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000353688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000269696 _____ C:\WINDOWS\system32\FaceProcessorCore.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000230296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000198888 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000187288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000137544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2018-01-18 22:42 - 2018-01-18 22:42 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000097144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\hascsp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000060824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\urscx01000.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadjcsp.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KeyboardFilterShim.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrleakdiag.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000045464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdrleakdiag.exe
2018-01-18 22:42 - 2018-01-18 22:42 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2018-01-18 22:42 - 2018-01-18 22:42 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcVSp1res.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcVSp1res.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-01-18 22:36 - 2018-01-18 22:36 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2018-01-18 22:36 - 2018-01-18 22:36 - 000000000 ____D C:\WINDOWS\system32\msmq
2018-01-18 22:36 - 2018-01-18 22:36 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2018-01-18 22:36 - 2018-01-18 22:36 - 000000000 ____D C:\inetpub
2018-01-18 22:35 - 2018-01-18 22:35 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-01-18 22:35 - 2018-01-18 22:35 - 000000000 ____D C:\Program Files\MSBuild
2018-01-18 22:35 - 2018-01-18 22:35 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-01-18 22:35 - 2018-01-18 22:35 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-01-18 22:35 - 2017-09-22 20:19 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-01-18 22:35 - 2017-09-22 20:19 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-01-18 22:35 - 2017-09-22 20:19 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-01-18 22:34 - 2017-09-28 17:50 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-01-18 22:34 - 2017-09-28 17:50 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-01-18 22:34 - 2017-09-28 17:50 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-01-18 21:54 - 2018-01-18 21:54 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-01-18 21:52 - 2018-01-18 21:52 - 000000000 ___HD C:\Users\user\MicrosoftEdgeBackups
2018-01-18 21:51 - 2018-01-19 20:14 - 000000000 ___RD C:\Users\user\3D Objects
2018-01-18 21:50 - 2018-01-18 21:50 - 000000020 ___SH C:\Users\user\ntuser.ini
2018-01-18 21:47 - 2018-01-25 06:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-18 21:47 - 2018-01-18 21:48 - 000003344 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-01-18 21:47 - 2018-01-18 21:48 - 000003120 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-01-18 21:47 - 2018-01-18 21:48 - 000003110 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-01-18 21:47 - 2018-01-18 21:48 - 000002852 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-923925315-484671486-2491507011-1000
2018-01-18 21:47 - 2018-01-18 21:48 - 000002594 _____ C:\WINDOWS\System32\Tasks\CorelUpdateHelperTaskCore
2018-01-18 21:47 - 2018-01-18 21:48 - 000002406 _____ C:\WINDOWS\System32\Tasks\CorelUpdateHelperTask
2018-01-18 21:47 - 2018-01-18 21:47 - 000003000 _____ C:\WINDOWS\System32\Tasks\Tweaking.com - Windows Repair Tray Icon
2018-01-18 21:47 - 2018-01-18 21:47 - 000002648 _____ C:\WINDOWS\System32\Tasks\MultiControl
2018-01-18 21:47 - 2018-01-18 21:47 - 000002110 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_WILLAMETTE
2018-01-18 21:47 - 2018-01-18 21:47 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2018-01-18 21:47 - 2018-01-18 21:47 - 000000000 ____D C:\WINDOWS\System32\Tasks\Intel
2018-01-18 21:47 - 2018-01-18 21:47 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
2018-01-18 21:46 - 2018-01-18 21:47 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2018-01-18 21:46 - 2018-01-18 21:47 - 000011433 _____ C:\WINDOWS\diagerr.xml
2018-01-18 21:16 - 2018-01-18 21:16 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-01-18 21:13 - 2018-01-18 22:09 - 000000000 ____D C:\Users\user\AppData\Local\Packages
2018-01-18 21:12 - 2018-01-18 21:12 - 000000000 ____D C:\ProgramData\USOShared
2018-01-18 21:11 - 2018-01-18 21:30 - 000000000 ____D C:\Users\DefaultAppPool
2018-01-18 21:05 - 2018-01-25 06:58 - 001112096 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-18 21:04 - 2017-09-29 07:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-01-18 21:03 - 2016-05-12 15:39 - 000064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2018-01-18 21:00 - 2018-01-25 06:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-01-18 21:00 - 2018-01-19 20:10 - 000256432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-01-12 16:54 - 2018-01-18 21:50 - 000000000 ___DC C:\WINDOWS\Panther
2018-01-11 18:27 - 2018-01-18 16:40 - 000000000 ____D C:\Program Files\rempl
2017-12-31 18:12 - 2017-12-31 18:12 - 000002211 _____ C:\Users\user\AppData\Local\recently-used.xbel
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-01-25 06:58 - 2017-07-11 20:42 - 000000000 ____D C:\Users\user\AppData\Local\Spotify
2018-01-25 06:58 - 2017-07-11 20:41 - 000000000 ____D C:\Users\user\AppData\Roaming\Spotify
2018-01-25 06:57 - 2017-10-09 14:25 - 000000000 ____D C:\ProgramData\UMS
2018-01-25 06:57 - 2016-12-31 17:21 - 000000000 ____D C:\Users\user\AppData\Roaming\IMVU
2018-01-25 06:56 - 2016-12-29 19:28 - 000000000 ____D C:\Users\user\Documents\YouCam
2018-01-25 06:54 - 2017-09-21 17:24 - 000000000 ____D C:\Program Files (x86)\Steam
2018-01-25 06:53 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-01-25 06:52 - 2014-09-28 12:37 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2018-01-25 06:52 - 2014-09-28 11:56 - 000000000 __SHD C:\Users\user\IntelGraphicsProfiles
2018-01-25 06:51 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\Registration
2018-01-25 06:51 - 2017-08-22 18:38 - 000000000 ____D C:\ProgramData\Gramblr
2018-01-25 06:50 - 2017-09-29 02:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-01-22 10:27 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-01-22 10:03 - 2017-01-04 09:16 - 000000000 ____D C:\ProgramData\Ashampoo
2018-01-22 01:47 - 2015-04-25 12:42 - 000192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2018-01-21 22:16 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\rescache
2018-01-20 19:10 - 2017-09-29 07:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-20 04:47 - 2017-09-29 07:44 - 000000000 ____D C:\WINDOWS\INF
2018-01-19 20:14 - 2016-04-27 00:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\Provisioning
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-01-19 20:08 - 2017-09-29 02:45 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-01-19 18:53 - 2017-09-29 07:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-01-19 16:26 - 2016-06-19 11:16 - 000000000 ____D C:\Users\user\Desktop\7 Days To Die
2018-01-19 04:22 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\appcompat
2018-01-18 22:59 - 2017-09-29 07:46 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-01-18 22:56 - 2017-12-21 21:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2018-01-18 22:56 - 2017-12-21 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-01-18 22:56 - 2017-11-22 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AweEraser 2.0
2018-01-18 22:56 - 2017-11-21 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO OpticsPro 11
2018-01-18 22:56 - 2017-11-21 15:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoolz
2018-01-18 22:56 - 2017-10-09 14:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server
2018-01-18 22:56 - 2017-10-09 14:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Media Server
2018-01-18 22:56 - 2017-10-09 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth
2018-01-18 22:56 - 2017-10-09 12:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iPadian
2018-01-18 22:56 - 2017-09-29 07:49 - 000000000 ____D C:\WINDOWS\Setup
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 __SHD C:\Program Files\Windows Sidebar
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 __RHD C:\Users\Public\Libraries
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\spool
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\IME
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\schemas
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-01-18 22:56 - 2017-09-21 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-01-18 22:56 - 2017-08-18 15:46 - 000000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2018-01-18 22:56 - 2017-08-18 15:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2018-01-18 22:56 - 2017-08-14 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Decrypter
2018-01-18 22:56 - 2017-08-14 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ratDVD
2018-01-18 22:56 - 2017-08-06 17:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2018-01-18 22:56 - 2017-08-06 01:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flame Painter 3
2018-01-18 22:56 - 2017-08-03 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FotoJet Designer
2018-01-18 22:56 - 2017-07-19 18:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fast VD
2018-01-18 22:56 - 2017-07-17 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disk Master Professional
2018-01-18 22:56 - 2017-07-16 01:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasleo WinToHDD
2018-01-18 22:56 - 2017-06-26 02:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FirestormOS-Releasex64
2018-01-18 22:56 - 2017-06-19 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetaGeek
2018-01-18 22:56 - 2017-06-19 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FolderMatch
2018-01-18 22:56 - 2017-06-16 02:58 - 000000000 ____D C:\Program Files\Intel
2018-01-18 22:56 - 2017-06-14 10:27 - 000000000 ____D C:\Program Files\UNP
2018-01-18 22:56 - 2017-06-10 02:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2018-01-18 22:56 - 2017-06-10 02:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
2018-01-18 22:56 - 2017-06-10 02:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2018-01-18 22:56 - 2017-06-10 02:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoom Player
2018-01-18 22:56 - 2017-05-05 13:51 - 000000000 ____D C:\WINDOWS\SysWOW64\KDirectShow
2018-01-18 22:56 - 2017-05-05 13:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\proDAD
2018-01-18 22:56 - 2017-04-13 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LopeSoft
2018-01-18 22:56 - 2017-03-29 10:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phototheca
2018-01-18 22:56 - 2017-03-18 15:03 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-01-18 22:56 - 2017-03-04 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vopt 9
2018-01-18 22:56 - 2017-02-14 22:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Second Life Viewer
2018-01-18 22:56 - 2017-02-14 07:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel AfterShot 3
2018-01-18 22:56 - 2017-02-14 07:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro
2018-01-18 22:56 - 2017-01-31 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitFilm 4 Express
2018-01-18 22:56 - 2017-01-12 17:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfraRecorder
2018-01-18 22:56 - 2016-12-31 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO Optics Pro 9
2018-01-18 22:56 - 2016-12-31 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrazyTalk7
2018-01-18 22:56 - 2016-12-29 19:27 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam 6
2018-01-18 22:56 - 2016-12-18 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AV Music Morpher
2018-01-18 22:56 - 2016-08-31 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink
2018-01-18 22:56 - 2016-07-25 23:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2018-01-18 22:56 - 2016-06-27 02:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4 Mod Manager
2018-01-18 22:56 - 2016-06-16 16:08 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2018-01-18 22:56 - 2016-06-15 09:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sims 4 Studio
2018-01-18 22:56 - 2016-06-13 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\The Sims 4
2018-01-18 22:56 - 2016-03-15 14:06 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2018-01-18 22:56 - 2016-01-19 17:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2018-01-18 22:56 - 2016-01-19 17:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
2018-01-18 22:56 - 2015-12-23 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TagScanner
2018-01-18 22:56 - 2015-12-23 20:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FairStars CD Ripper
2018-01-18 22:56 - 2015-12-23 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex
2018-01-18 22:56 - 2015-11-26 01:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-01-18 22:56 - 2015-11-23 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark
2018-01-18 22:56 - 2015-09-29 14:26 - 000000000 ____D C:\WINDOWS\en
2018-01-18 22:56 - 2015-09-29 14:23 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2018-01-18 22:56 - 2015-09-02 17:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2018-01-18 22:56 - 2015-07-29 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2018-01-18 22:56 - 2015-07-05 12:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2018-01-18 22:56 - 2015-04-25 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-01-18 22:56 - 2015-04-25 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2018-01-18 22:56 - 2015-04-25 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2018-01-18 22:56 - 2014-09-28 13:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-01-18 22:56 - 2014-09-28 12:11 - 000000000 ____D C:\WINDOWS\system32\RaLanguages
2018-01-18 22:56 - 2009-07-13 21:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2018-01-18 22:48 - 2017-08-14 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2018-01-18 22:48 - 2017-08-10 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy
2018-01-18 22:48 - 2017-06-16 02:57 - 000000000 ____D C:\Program Files\Realtek
2018-01-18 22:48 - 2017-06-06 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2018-01-18 22:48 - 2017-06-01 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixar
2018-01-18 22:48 - 2017-06-01 19:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ON1
2018-01-18 22:48 - 2017-06-01 18:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZD Soft
2018-01-18 22:48 - 2017-04-20 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2018-01-18 22:48 - 2017-03-12 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Instruments
2018-01-18 22:48 - 2017-03-06 15:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KC Softwares
2018-01-18 22:48 - 2017-02-14 07:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KingFriends Software
2018-01-18 22:48 - 2017-01-04 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarBurn Software
2018-01-18 22:48 - 2017-01-04 09:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2018-01-18 22:48 - 2016-12-31 13:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com
2018-01-18 22:48 - 2016-08-07 12:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2018-01-18 22:48 - 2016-07-07 23:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2018-01-18 22:48 - 2016-03-14 13:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2018-01-18 22:48 - 2016-03-08 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Daum
2018-01-18 22:48 - 2015-12-21 12:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LotSoft
2018-01-18 22:48 - 2014-09-28 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2018-01-18 22:43 - 2017-09-29 08:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\si-LK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\am-ET
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\Program Files\Windows Defender
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\PerfLogs
2018-01-18 22:36 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2018-01-18 22:02 - 2017-10-31 15:19 - 000000000 ____D C:\Users\user\AppData\Roaming\discord
2018-01-18 22:02 - 2017-10-31 15:19 - 000000000 ____D C:\Users\user\AppData\Local\Discord
2018-01-18 22:01 - 2017-10-31 15:19 - 000002265 _____ C:\Users\user\Desktop\Discord.lnk
2018-01-18 22:01 - 2017-10-31 15:19 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-01-18 21:59 - 2017-04-20 18:47 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2018-01-18 21:52 - 2016-09-24 04:13 - 000000000 ____D C:\Users\user\AppData\Local\ConnectedDevicesPlatform
2018-01-18 21:51 - 2016-07-25 23:25 - 000000000 ____D C:\Users\user\AppData\Local\TileDataLayer
2018-01-18 21:50 - 2014-09-28 11:55 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2018-01-18 21:47 - 2017-09-29 02:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-01-18 21:45 - 2016-07-25 23:05 - 000023960 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-01-18 21:44 - 2017-09-29 07:46 - 000000000 __RSD C:\WINDOWS\media
2018-01-18 21:29 - 2015-05-18 02:47 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-18 21:29 - 2015-05-18 02:47 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-01-18 21:23 - 2017-10-09 14:24 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth
2018-01-18 21:23 - 2017-10-09 12:50 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MobiOne Studio
2018-01-18 21:23 - 2017-08-10 14:18 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEmu
2018-01-18 21:23 - 2017-06-28 13:23 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DP Animation Maker
2018-01-18 21:23 - 2017-06-10 02:50 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2018-01-18 21:23 - 2017-06-01 18:21 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Boot Genius
2018-01-18 21:23 - 2017-02-14 09:09 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2018-01-18 21:23 - 2016-12-31 17:21 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU
2018-01-18 21:23 - 2016-12-17 08:48 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hunter in the Woods
2018-01-18 21:23 - 2016-05-21 23:01 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
2018-01-18 21:23 - 2015-12-23 20:13 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeRIP MP3 Converter
2018-01-18 21:16 - 2017-09-29 07:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-01-18 21:15 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2018-01-18 21:14 - 2017-07-31 10:33 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Allavsoft
2018-01-18 21:14 - 2017-07-30 19:34 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\thriXXX
2018-01-18 21:14 - 2017-04-23 13:45 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DAZ 3D
2018-01-18 21:14 - 2015-09-02 17:53 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2018-01-18 21:14 - 2015-05-31 21:40 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viva Media
2018-01-18 21:12 - 2017-09-29 07:46 - 000000000 ____D C:\ProgramData\USOPrivate
2018-01-18 21:05 - 2017-06-16 02:59 - 000972260 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2018-01-18 21:04 - 2017-09-29 02:45 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-01-18 21:04 - 2017-06-16 02:58 - 000000000 ____D C:\WINDOWS\system32\DAX3
2018-01-18 21:04 - 2017-06-16 02:58 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-01-18 21:04 - 2017-06-16 02:58 - 000000000 ____D C:\ProgramData\Audyssey Labs
2018-01-18 21:03 - 2017-06-16 02:57 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-01-18 20:13 - 2014-09-28 14:04 - 000008192 __RSH C:\BOOTSECT.BAK
2018-01-14 18:07 - 2017-02-14 09:07 - 000000000 ____D C:\Users\user\AppData\Local\JDownloader v2.0
2018-01-10 09:02 - 2017-10-10 16:01 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-01-10 09:01 - 2014-09-28 13:31 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-01-01 06:07 - 2014-09-28 14:04 - 000397994 __RSH C:\bootmgr
2017-12-31 18:26 - 2017-03-29 11:07 - 000000000 ____D C:\Users\user\.gimp-2.8
2017-12-31 18:12 - 2017-03-29 11:16 - 000000000 ____D C:\Users\user\AppData\Local\gtk-2.0
2017-12-31 17:27 - 2017-11-21 16:44 - 000000000 ____D C:\Users\user\Documents\DxO OpticsPro 11 logs
2018-01-25 06:58 - 2017-07-11 20:41 - 000000000 ____D C:\Users\user\AppData\Roaming\Spotify
2018-01-25 06:57 - 2017-10-09 14:25 - 000000000 ____D C:\ProgramData\UMS
2018-01-25 06:57 - 2016-12-31 17:21 - 000000000 ____D C:\Users\user\AppData\Roaming\IMVU
2018-01-25 06:56 - 2016-12-29 19:28 - 000000000 ____D C:\Users\user\Documents\YouCam
2018-01-25 06:54 - 2017-09-21 17:24 - 000000000 ____D C:\Program Files (x86)\Steam
2018-01-25 06:53 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-01-25 06:52 - 2014-09-28 12:37 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2018-01-25 06:52 - 2014-09-28 11:56 - 000000000 __SHD C:\Users\user\IntelGraphicsProfiles
2018-01-25 06:51 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\Registration
2018-01-25 06:51 - 2017-08-22 18:38 - 000000000 ____D C:\ProgramData\Gramblr
2018-01-25 06:50 - 2017-09-29 02:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-01-22 10:27 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-01-22 10:03 - 2017-01-04 09:16 - 000000000 ____D C:\ProgramData\Ashampoo
2018-01-22 01:47 - 2015-04-25 12:42 - 000192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2018-01-21 22:16 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\rescache
2018-01-20 19:10 - 2017-09-29 07:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-20 04:47 - 2017-09-29 07:44 - 000000000 ____D C:\WINDOWS\INF
2018-01-19 20:14 - 2016-04-27 00:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\Provisioning
2018-01-19 20:08 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-01-19 20:08 - 2017-09-29 02:45 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-01-19 18:53 - 2017-09-29 07:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-01-19 16:26 - 2016-06-19 11:16 - 000000000 ____D C:\Users\user\Desktop\7 Days To Die
2018-01-19 04:22 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\appcompat
2018-01-18 22:59 - 2017-09-29 07:46 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-01-18 22:56 - 2017-12-21 21:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2018-01-18 22:56 - 2017-12-21 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-01-18 22:56 - 2017-11-22 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AweEraser 2.0
2018-01-18 22:56 - 2017-11-21 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO OpticsPro 11
2018-01-18 22:56 - 2017-11-21 15:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoolz
2018-01-18 22:56 - 2017-10-09 14:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server
2018-01-18 22:56 - 2017-10-09 14:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Media Server
2018-01-18 22:56 - 2017-10-09 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth
2018-01-18 22:56 - 2017-10-09 12:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iPadian
2018-01-18 22:56 - 2017-09-29 07:49 - 000000000 ____D C:\WINDOWS\Setup
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 __SHD C:\Program Files\Windows Sidebar
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 __RHD C:\Users\Public\Libraries
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\spool
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\IME
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\schemas
2018-01-18 22:56 - 2017-09-29 07:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-01-18 22:56 - 2017-09-21 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-01-18 22:56 - 2017-08-18 15:46 - 000000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2018-01-18 22:56 - 2017-08-18 15:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2018-01-18 22:56 - 2017-08-14 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Decrypter
2018-01-18 22:56 - 2017-08-14 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ratDVD
2018-01-18 22:56 - 2017-08-06 17:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2018-01-18 22:56 - 2017-08-06 01:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flame Painter 3
2018-01-18 22:56 - 2017-08-03 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FotoJet Designer
2018-01-18 22:56 - 2017-07-19 18:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fast VD
2018-01-18 22:56 - 2017-07-17 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disk Master Professional
2018-01-18 22:56 - 2017-07-16 01:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasleo WinToHDD
2018-01-18 22:56 - 2017-06-26 02:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FirestormOS-Releasex64
2018-01-18 22:56 - 2017-06-19 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetaGeek
2018-01-18 22:56 - 2017-06-19 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FolderMatch
2018-01-18 22:56 - 2017-06-16 02:58 - 000000000 ____D C:\Program Files\Intel
2018-01-18 22:56 - 2017-06-14 10:27 - 000000000 ____D C:\Program Files\UNP
2018-01-18 22:56 - 2017-06-10 02:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2018-01-18 22:56 - 2017-06-10 02:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
2018-01-18 22:56 - 2017-06-10 02:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2018-01-18 22:56 - 2017-06-10 02:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoom Player
2018-01-18 22:56 - 2017-05-05 13:51 - 000000000 ____D C:\WINDOWS\SysWOW64\KDirectShow
2018-01-18 22:56 - 2017-05-05 13:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\proDAD
2018-01-18 22:56 - 2017-04-13 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LopeSoft
2018-01-18 22:56 - 2017-03-29 10:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phototheca
2018-01-18 22:56 - 2017-03-18 15:03 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-01-18 22:56 - 2017-03-04 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vopt 9
2018-01-18 22:56 - 2017-02-14 22:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Second Life Viewer
2018-01-18 22:56 - 2017-02-14 07:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel AfterShot 3
2018-01-18 22:56 - 2017-02-14 07:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro
2018-01-18 22:56 - 2017-01-31 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitFilm 4 Express
2018-01-18 22:56 - 2017-01-12 17:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfraRecorder
2018-01-18 22:56 - 2016-12-31 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO Optics Pro 9
2018-01-18 22:56 - 2016-12-31 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrazyTalk7
2018-01-18 22:56 - 2016-12-29 19:27 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam 6
2018-01-18 22:56 - 2016-12-18 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AV Music Morpher
2018-01-18 22:56 - 2016-08-31 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink
2018-01-18 22:56 - 2016-07-25 23:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2018-01-18 22:56 - 2016-06-27 02:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4 Mod Manager
2018-01-18 22:56 - 2016-06-16 16:08 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2018-01-18 22:56 - 2016-06-15 09:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sims 4 Studio
2018-01-18 22:56 - 2016-06-13 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\The Sims 4
2018-01-18 22:56 - 2016-03-15 14:06 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2018-01-18 22:56 - 2016-01-19 17:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2018-01-18 22:56 - 2016-01-19 17:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
2018-01-18 22:56 - 2015-12-23 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TagScanner
2018-01-18 22:56 - 2015-12-23 20:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FairStars CD Ripper
2018-01-18 22:56 - 2015-12-23 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex
2018-01-18 22:56 - 2015-11-26 01:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-01-18 22:56 - 2015-11-23 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark
2018-01-18 22:56 - 2015-09-29 14:26 - 000000000 ____D C:\WINDOWS\en
2018-01-18 22:56 - 2015-09-29 14:23 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2018-01-18 22:56 - 2015-09-02 17:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2018-01-18 22:56 - 2015-07-29 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2018-01-18 22:56 - 2015-07-05 12:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2018-01-18 22:56 - 2015-04-25 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-01-18 22:56 - 2015-04-25 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2018-01-18 22:56 - 2015-04-25 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2018-01-18 22:56 - 2014-09-28 13:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-01-18 22:56 - 2014-09-28 12:11 - 000000000 ____D C:\WINDOWS\system32\RaLanguages
2018-01-18 22:56 - 2009-07-13 21:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2018-01-18 22:48 - 2017-08-14 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2018-01-18 22:48 - 2017-08-10 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy
2018-01-18 22:48 - 2017-06-16 02:57 - 000000000 ____D C:\Program Files\Realtek
2018-01-18 22:48 - 2017-06-06 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2018-01-18 22:48 - 2017-06-01 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixar
2018-01-18 22:48 - 2017-06-01 19:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ON1
2018-01-18 22:48 - 2017-06-01 18:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZD Soft
2018-01-18 22:48 - 2017-04-20 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2018-01-18 22:48 - 2017-03-12 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Instruments
2018-01-18 22:48 - 2017-03-06 15:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KC Softwares
2018-01-18 22:48 - 2017-02-14 07:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KingFriends Software
2018-01-18 22:48 - 2017-01-04 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarBurn Software
2018-01-18 22:48 - 2017-01-04 09:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2018-01-18 22:48 - 2016-12-31 13:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com
2018-01-18 22:48 - 2016-08-07 12:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2018-01-18 22:48 - 2016-07-07 23:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2018-01-18 22:48 - 2016-03-14 13:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2018-01-18 22:48 - 2016-03-08 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Daum
2018-01-18 22:48 - 2015-12-21 12:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LotSoft
2018-01-18 22:48 - 2014-09-28 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2018-01-18 22:43 - 2017-09-29 08:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\si-LK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\am-ET
2018-01-18 22:43 - 2017-09-29 08:41 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\Program Files\Windows Defender
2018-01-18 22:43 - 2017-09-29 07:46 - 000000000 ____D C:\PerfLogs
2018-01-18 22:36 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2018-01-18 22:02 - 2017-10-31 15:19 - 000000000 ____D C:\Users\user\AppData\Roaming\discord
2018-01-18 22:02 - 2017-10-31 15:19 - 000000000 ____D C:\Users\user\AppData\Local\Discord
2018-01-18 22:01 - 2017-10-31 15:19 - 000002265 _____ C:\Users\user\Desktop\Discord.lnk
2018-01-18 22:01 - 2017-10-31 15:19 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-01-18 21:59 - 2017-04-20 18:47 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2018-01-18 21:52 - 2016-09-24 04:13 - 000000000 ____D C:\Users\user\AppData\Local\ConnectedDevicesPlatform
2018-01-18 21:51 - 2016-07-25 23:25 - 000000000 ____D C:\Users\user\AppData\Local\TileDataLayer
2018-01-18 21:50 - 2014-09-28 11:55 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2018-01-18 21:47 - 2017-09-29 02:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-01-18 21:45 - 2016-07-25 23:05 - 000023960 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-01-18 21:44 - 2017-09-29 07:46 - 000000000 __RSD C:\WINDOWS\media
2018-01-18 21:29 - 2015-05-18 02:47 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-18 21:29 - 2015-05-18 02:47 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-01-18 21:23 - 2017-10-09 14:24 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth
2018-01-18 21:23 - 2017-10-09 12:50 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MobiOne Studio
2018-01-18 21:23 - 2017-08-10 14:18 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEmu
2018-01-18 21:23 - 2017-06-28 13:23 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DP Animation Maker
2018-01-18 21:23 - 2017-06-10 02:50 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2018-01-18 21:23 - 2017-06-01 18:21 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Boot Genius
2018-01-18 21:23 - 2017-02-14 09:09 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2018-01-18 21:23 - 2016-12-31 17:21 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU
2018-01-18 21:23 - 2016-12-17 08:48 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hunter in the Woods
2018-01-18 21:23 - 2016-05-21 23:01 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
2018-01-18 21:23 - 2015-12-23 20:13 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeRIP MP3 Converter
2018-01-18 21:16 - 2017-09-29 07:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-01-18 21:15 - 2017-09-29 07:46 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2018-01-18 21:14 - 2017-07-31 10:33 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Allavsoft
2018-01-18 21:14 - 2017-07-30 19:34 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\thriXXX
2018-01-18 21:14 - 2017-04-23 13:45 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DAZ 3D
2018-01-18 21:14 - 2015-09-02 17:53 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2018-01-18 21:14 - 2015-05-31 21:40 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viva Media
2018-01-18 21:12 - 2017-09-29 07:46 - 000000000 ____D C:\ProgramData\USOPrivate
2018-01-18 21:05 - 2017-06-16 02:59 - 000972260 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2018-01-18 21:04 - 2017-09-29 02:45 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-01-18 21:04 - 2017-06-16 02:58 - 000000000 ____D C:\WINDOWS\system32\DAX3
2018-01-18 21:04 - 2017-06-16 02:58 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-01-18 21:04 - 2017-06-16 02:58 - 000000000 ____D C:\ProgramData\Audyssey Labs
2018-01-18 21:03 - 2017-06-16 02:57 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-01-18 20:13 - 2014-09-28 14:04 - 000008192 __RSH C:\BOOTSECT.BAK
2018-01-14 18:07 - 2017-02-14 09:07 - 000000000 ____D C:\Users\user\AppData\Local\JDownloader v2.0
2018-01-10 09:02 - 2017-10-10 16:01 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-01-10 09:01 - 2014-09-28 13:31 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-01-01 06:07 - 2014-09-28 14:04 - 000397994 __RSH C:\bootmgr
2017-12-31 18:26 - 2017-03-29 11:07 - 000000000 ____D C:\Users\user\.gimp-2.8
2017-12-31 18:12 - 2017-03-29 11:16 - 000000000 ____D C:\Users\user\AppData\Local\gtk-2.0
2017-12-31 17:27 - 2017-11-21 16:44 - 000000000 ____D C:\Users\user\Documents\DxO OpticsPro 11 logs
==================== Files in the root of some directories =======
2015-05-18 02:53 - 2015-05-18 02:53 - 006420480 _____ () C:\Program Files (x86)\GUTAEA7.tmp
2015-11-26 11:10 - 2015-11-26 11:10 - 000003584 _____ () C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-12-31 18:12 - 2017-12-31 18:12 - 000002211 _____ () C:\Users\user\AppData\Local\recently-used.xbel
2015-11-26 11:10 - 2015-11-26 11:10 - 000003584 _____ () C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-12-31 18:12 - 2017-12-31 18:12 - 000002211 _____ () C:\Users\user\AppData\Local\recently-used.xbel
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-01-18 21:00
==================== End of FRST.txt ============================
And the Additional scan:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27.01.2018
Ran by user (25-01-2018 07:10:06)
Running from C:\Users\user\Desktop
Windows 10 Pro Version 1709 16299.192 (X64) (2018-01-19 03:50:15)
Boot Mode: Normal
==========================================================
Ran by user (25-01-2018 07:10:06)
Running from C:\Users\user\Desktop
Windows 10 Pro Version 1709 16299.192 (X64) (2018-01-19 03:50:15)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-923925315-484671486-2491507011-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-923925315-484671486-2491507011-503 - Limited - Disabled)
Guest (S-1-5-21-923925315-484671486-2491507011-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-923925315-484671486-2491507011-1004 - Limited - Enabled)
user (S-1-5-21-923925315-484671486-2491507011-1000 - Administrator - Enabled) => C:\Users\user
WDAGUtilityAccount (S-1-5-21-923925315-484671486-2491507011-504 - Limited - Disabled)
DefaultAccount (S-1-5-21-923925315-484671486-2491507011-503 - Limited - Disabled)
Guest (S-1-5-21-923925315-484671486-2491507011-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-923925315-484671486-2491507011-1004 - Limited - Enabled)
user (S-1-5-21-923925315-484671486-2491507011-1000 - Administrator - Enabled) => C:\Users\user
WDAGUtilityAccount (S-1-5-21-923925315-484671486-2491507011-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.)
3DYD Youtube Source (remove only) (HKLM-x32\...\3DYD Youtube Source) (Version: - )
7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
7-Zip 16.04 (HKLM-x32\...\7-Zip) (Version: 16.04 - Igor Pavlov)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
Acronis True Image (HKLM-x32\...\{4AF9B183-3620-49EA-93B5-FDF77818DBC7}) (Version: 20.0.8053 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{4AF9B183-3620-49EA-93B5-FDF77818DBC7}Visible) (Version: 20.0.8053 - Acronis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Albums Spider (HKLM-x32\...\{597D7D4E-94B1-4b6c-980B-D80EBF89E603}) (Version: 1.0.0.3 - KingFriends Software) Hidden
Albums Spider (HKLM-x32\...\InstallShield_{597D7D4E-94B1-4b6c-980B-D80EBF89E603}) (Version: 1.0.0.3 - KingFriends Software)
Allavsoft 3.14.8.6417 (HKLM-x32\...\{6EBED4D8-13D9-4270-8D44-B57DDB7A787C}_is1) (Version: - Allavsoft Corporation)
Apple Application Support (32-bit) (HKLM-x32\...\{BC7C46A4-D7A7-48EC-A98C-32A7762B5EFA}) (Version: 6.2.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{F0C4B709-8BF4-4A72-B527-12E7BF5482F8}) (Version: 6.2.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BD6778C5-6FA5-492A-ADD6-E706339C2A7B}) (Version: 11.0.2.4 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{19589375-5C58-4AFA-842F-8B34744CCEAD}) (Version: 2.5.0.1 - Apple Inc.)
Ashampoo Burning Studio 2017 (HKLM-x32\...\{91B33C97-C878-6579-69BA-23E5405C7AAB}_is1) (Version: 18.0.6 - Ashampoo GmbH & Co. KG)
Ashampoo Cover Studio 2017 (HKLM-x32\...\{91B33C97-6D7D-102A-7711-56C011AFB81B}_is1) (Version: 3.0.0 - Ashampoo GmbH & Co. KG)
Ashampoo HDD Control 2017 (HKLM-x32\...\{4209F371-0379-F90A-4356-52C930989916}_is1) (Version: 3.10.01 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Card 2 (HKLM-x32\...\{BB339C1F-9669-833A-7A3A-D142D43B14E5}_is1) (Version: 2.0.3 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Commander 14 (HKLM-x32\...\{0A11EA01-616B-A905-B3D2-3B7C238851DC}_is1) (Version: 14.0.6 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 8 (HKLM-x32\...\{0A11EA01-3B65-B79C-9019-8640F02B7C58}_is1) (Version: 8.0.11 - Ashampoo GmbH & Co. KG)
AV Music Morpher (HKLM-x32\...\AV Music Morpher) (Version: - )
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.8.566 - AVG Technologies)
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
AweEraserEraser Trial 2.0 (HKLM-x32\...\AweEraser Trial 2.0_is1) (Version: - Magoshare)
Bass Audio Decoder (remove only) (HKLM-x32\...\Bass Audio Decoder) (Version: - )
BDlot DVD ISO Master 3.0.2 (HKLM-x32\...\BDlot DVD ISO Master_is1) (Version: - LotSoft)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
calibre 64bit (HKLM\...\{B74D8371-98D2-42AD-9D94-3531FF4EA328}) (Version: 2.31.0 - Kovid Goyal)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6499 - CDBurnerXP)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.79.0.2015 - Georgy Berdyshev)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Corel AfterShot 3 - ICA x64 (HKLM\...\{FE875B02-11A1-4D1E-B57A-8DE2C00C0B51}) (Version: 3.2 - Corel Corporation) Hidden
Corel AfterShot 3 - IPM Content x64 (HKLM\...\{3E064BED-C9D8-4BEF-A2EE-8D67E99C3932}) (Version: 3.2 - Corel Corporation) Hidden
Corel AfterShot 3 - IPM x64 (HKLM\...\{5059B47C-4D7B-46E9-9D7A-1E2FCF5DDBED}) (Version: 3.2.0.205 - Corel Corporation) Hidden
Corel AfterShot 3 x64 (HKLM\...\{FB96A937-BCF7-4AD6-B6D2-216FF162A744}) (Version: 3.0 - Corel Corporation) Hidden
Corel AfterShot 3(64-bit) (HKLM\...\_{FE875B02-11A1-4D1E-B57A-8DE2C00C0B51}) (Version: 3.2.0.205 - Corel Corporation)
Corel Update Manager (HKLM\...\{B6C0FB43-0C9B-46E6-93E4-DF171ED80C53}) (Version: 2.4.245 - Corel corporation) Hidden
CPUID CPU-Z 1.75 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CrazyTalk v7.32 Standard (HKLM-x32\...\{27C4EA98-84A3-4CDF-A436-F984A0283357}) (Version: 7.32.3114.1 - Reallusion Inc.)
CyberLink PowerDirector 13 (HKLM-x32\...\{BA385AFC-00B1-417C-8C20-74B996EF3AF0}) (Version: 13.0.3420.0 - CyberLink Corp.)
CyberLink YouCam 6 (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.3918.0 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAZ Install Manager (HKLM-x32\...\DAZ Install Manager 1.1.0.67) (Version: 1.1.0.67 - DAZ 3D)
DCoder Image Source (remove only) (HKLM-x32\...\DCoder Image Source) (Version: - )
Desktop iPhone (HKLM-x32\...\{EDBE26EE-6FD1-6E94-D066-9460B9C17194}) (Version: 3.60 - UNKNOWN) Hidden
Desktop iPhone (HKLM-x32\...\iPhone.F4B6EDD4861104DF103CA831FC6755522BBBD9C1.1) (Version: v3.60 - UNKNOWN)
DirectVobSub (remove only) (HKLM-x32\...\DirectVobSub) (Version: - )
Discord (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Discord) (Version: 0.0.300 - Discord Inc.)
Disk Master Professional version 4.3 (HKLM\...\{8213CE5C-49D8-45CC-98C1-7355D18995C5}_is1) (Version: 4.3 - QILING Tech Co., Ltd.)
DP Animation Maker (HKLM-x32\...\DP Animation Maker) (Version: 3.3.9 - DesktopPaints.com)
DVD Decrypter (Remove Only) (HKLM-x32\...\DVD Decrypter) (Version: - )
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DxO Optics Pro 9 (HKLM\...\{CD5F5030-44C8-4432-9F61-209BA3F2F4BA}) (Version: 9.5.2 - DxO Labs)
DxO OpticsPro 11 (HKLM\...\{88CD09A5-EC52-474B-867F-0E147A9C4C6E}) (Version: 11.4.2 - DxO)
Emerland Solitaire (HKLM-x32\...\Emerland Solitaire) (Version: 1.0 - Viva Media, LLC)
FairStars CD Ripper 1.90 (HKLM-x32\...\FairStars CD Ripper_is1) (Version: - FairStars Soft)
Fast VD 3.0.0.12 (HKLM-x32\...\9ED08AFF-E977-47db-8923-2499D74C97C5_Fast VD_is1) (Version: 3.0.0.12 - FastPcTools)
ffdshow v1.3.4533 [2014-09-29] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4533.0 - )
FFMPEG Core Files (remove only) (HKLM-x32\...\FFMPEG Core Files) (Version: - )
FileMenu Tools (HKLM\...\FileMenu Tools_is1) (Version: 7.4 - LopeSoft)
FirestormOS-Releasex64 (HKLM\...\FirestormOS-Releasex64) (Version: 5.0.7.52912 - The Phoenix Firestorm Project, Inc.)
Flame Painter 3 (HKLM\...\Flame Painter 3_is1) (Version: 3.2.0 - Escape Motions, s.r.o)
FolderMatch v3.7.3 (HKLM-x32\...\FolderMatch_is1) (Version: - )
FotoJet Designer 1.1.0 (HKLM-x32\...\{853D7E66-C706-4EF6-8DEF-C61DA889951F}_is1) (Version: 1.1.0 - PearlMountain)
Freemake Video Converter version 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Ellora Assets Corporation)
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.8.0 - Ellora Assets Corporation)
FreeRIP MP3 Converter 5.5.0.2 (HKLM-x32\...\{501451DE-5808-4599-B544-8BD0915B6B24}_is1) (Version: 5.5.0.2 - GreenTree Applications SRL)
GIMP 2.8.20 (HKLM\...\GIMP-2_is1) (Version: 2.8.20 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.132 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{6D5E5B27-D872-4A5F-A1D9-CE681DB7B96A}) (Version: 7.1.7.2606 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.24.7 - Google Inc.) Hidden
Gramblr (HKLM\...\Gramblr) (Version: 2.9.103 - Gramblr Team)
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME)
iCloud (HKLM\...\{99868C9C-C141-4DDE-A2C7-9DDF00F68F17}) (Version: 7.2.0.67 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IMVU Avatar Chat Software (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\IMVU Avatar chat client software BETA) (Version: - )
In search of the Lost Temple (HKLM-x32\...\In search of the Lost Temple ) (Version: 1.0 - Alawar Entertainment Inc.)
InfraRecorder (HKLM-x32\...\InfraRecorder) (Version: - Christian Kindahl)
inSSIDer (HKLM-x32\...\{65A5E87D-7A3F-4819-807D-B86990D5F369}) (Version: 2.1.6 - MetaGeek)
inSSIDer Office (HKLM-x32\...\{661DE192-35CA-432B-9F71-37A18352D4B4}) (Version: 4.3.10.6 - MetaGeek, LLC)
Intel® Driver Update Utility 2.6 (HKLM-x32\...\{2B710CA5-99F0-4D29-962C-29A7CFF7A989}) (Version: 2.6.0.32 - Intel) Hidden
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36279 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Wireless Bluetooth®(patch version 17.1.1532.1813) (HKLM\...\{302600C1-6BDF-4FD1-1507-148929CC1385}) (Version: 17.1.1507.0532 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{3e714701-b89c-4cf2-bf3b-41b2c105ffdc}) (Version: 2.6.0.32 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{795ee3a0-97fa-489a-9543-7564ccc43be4}) (Version: 18.12.0 - Intel Corporation)
iPadian version 1.5 (HKLM-x32\...\{0DB90A1C-2C08-429C-8595-FD9848121D28}_is1) (Version: 1.5 - iPadian, Inc.)
iTunes (HKLM\...\{D7D4465C-B3B6-4BC1-B336-2803FB57BFAF}) (Version: 12.7.2.60 - Apple Inc.)
Java 7 Update 80 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417080FF}) (Version: 7.0.800 - Oracle)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KC Softwares SUMo (HKLM-x32\...\KC Softwares SUMo_is1) (Version: 5.1.3.353 - KC Softwares)
LAV Filters 0.70.2 (HKLM-x32\...\lavfilters_is1) (Version: 0.70.2 - Hendrik Leppkes)
Lexmark Pro200-S500 Series (HKLM\...\Lexmark Pro200-S500 Series) (Version: - Lexmark International, Inc.)
LopeEdit (HKLM-x32\...\LopeEdit_is1) (Version: 5.7 - LopeSoft)
MadVR (remove only) (HKLM-x32\...\MadVR) (Version: - )
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MEmu (HKLM-x32\...\MEmu) (Version: 3.1.2.4 - Microvirt Software Technology Co. Ltd.)
Microsoft OneDrive (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\OneDriveSetup.exe) (Version: 17.3.7131.1115 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MobiOne 2.3.2 (hot-fix 1) (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\com.poweredbypulse.profile-0-rb-10081-1507574927866) (Version: 2.3.2 (hot-fix 1) - Genuitec, LLC)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 55.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 55.0.2 (x64 en-US)) (Version: 55.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0 - Mozilla)
MultiControl (HKLM-x32\...\{F314155C-7E67-4BEA-9372-658FC6FC1B5F}) (Version: 2.00.1005 - Hotkey)
MusicBrainz Picard (HKLM-x32\...\MusicBrainz Picard) (Version: 1.3.2 - MusicBrainz)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NirSoft Wireless Network Watcher (HKLM-x32\...\NirSoft Wireless Network Watcher) (Version: - )
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project)
ON1 Effects 10 (HKLM\...\ON1 Effects 10 PE) (Version: 10.5.2 - ON1)
ooVoo 7.0.4 (only current user) (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\049b9bab-da71-504c-b43e-9ea7c92c660f) (Version: 7.0.4 - ooVoo LLC)
Path of Exile (HKLM-x32\...\{160bcd27-4a6e-402b-ba44-40fc0b13af2f}) (Version: 3.0.0.16184 - Grinding Gear Games)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 3.0.0.16184 - Grinding Gear Games) Hidden
Phototheca 2.8.0.1972 (HKLM-x32\...\{B685A488-2894-465F-95C0-AE287DF86447}_is1) (Version: 2.8.0.1972 - Lunarship Software)
Pixar RenderMan Pro Server 21.4 (HKLM\...\{8BCAC011-3B37-11E7-890E-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
Plex Media Server (HKLM-x32\...\{66263041-84c1-4c6d-ad3f-70c1e5fd8c75}) (Version: 1.9.2.4285 - Plex, Inc.)
Plex Media Server (HKLM-x32\...\{EAE03C2C-C259-4609-B5AD-D3A8D2E6F604}) (Version: 1.9.4285 - Plex, Inc.) Hidden
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.3795 - Kakao Corp.)
proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.108.1 - proDAD GmbH)
proDAD Mercalli Easy Video Stabilizer 2.0 (HKLM-x32\...\proDAD-MercalliEasy-2.0) (Version: 2.0.4700 - proDAD GmbH)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Ralink Bluetooth Stack64 (HKLM\...\{F286F326-4BD7-46FD-873C-FFA30CD9D786}) (Version: 9.0.656.5 - Ralink Corporation)
Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.9.0 - Ralink)
ratDVD 0.78.1444 (HKLM-x32\...\ratDVD) (Version: 0.78.1444 - ratDVD)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.53.216.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
RenderManForKatana-21.4-katana2.5 (HKLM\...\{C5B282E1-3B37-11E7-A500-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderManForMaya-21.4-maya2015 (HKLM\...\{C54F2D30-3B37-11E7-81FA-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderManForMaya-21.4-maya2016 (HKLM\...\{C49245D1-3B37-11E7-9168-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderManForMaya-21.4-maya2016.5 (HKLM\...\{C3AEC39E-3B37-11E7-A948-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderManForMaya-21.4-maya2017 (HKLM\...\{C3219ECF-3B37-11E7-A5E4-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderMan-Installer (HKLM\...\{BE135EB0-3B37-11E7-BB4F-9C35EBEEE7A7}) (Version: 21.4.0 - Pixar)
Sacra Terra - Angelic Night CE (HKLM-x32\...\Sacra Terra - Angelic Night CE) (Version: 1.0 - Viva Media, LLC)
Sacra Terra 2 CE (HKLM-x32\...\Sacra Terra 2 CE) (Version: 1.0 - Viva Media, LLC)
SecondLifeViewer (HKLM-x32\...\SecondLifeViewer) (Version: 5.0.1.323027 - Linden Research, Inc.)
SharewareOnSale Notifier (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\SharewareOnSale Notifier) (Version: 20 - SharewareOnSale)
Silent Scream - The Dancer (HKLM-x32\...\Silent Scream - The Dancer) (Version: 1.0 - Viva Media, LLC)
Sims 4 Studio (HKLM-x32\...\{870AA913-0774-4ED0-B144-BC2C0CBE4BA0}_is1) (Version: 2.7.0.5 - Sims 4 Studio)
Software Update Wizard (Redist) 4.5 (HKLM-x32\...\Software Update Wizard (Redist)) (Version: 4.5 - PowerProgrammer)
Spotify (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Spotify) (Version: 1.0.72.117.g6bd7cc73 - Spotify AB)
StarBurn Version 15.5 (Build 0x20151030) (HKLM-x32\...\StarBurn_is1) (Version: 15.5 - StarBurn Software)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stones of Rome (HKLM-x32\...\Stones of Rome_is1) (Version: 1.0 - MyPlayCity, Inc.)
Stopping Plex (HKLM-x32\...\{22F64911-9B44-42E7-A3A5-43490846841F}) (Version: 1.9.4285 - Plex, Inc.) Hidden
Stray Souls 2 CE (HKLM-x32\...\Stray Souls 2 CE) (Version: 1.0 - Viva Media, LLC)
Style Windows (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\f00f1920b400237f) (Version: 2.1.0.3 - Hunter in the Woods)
System Requirements Lab for Intel (HKLM-x32\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC)
TagScanner 5.1.668 (HKLM-x32\...\TagScanner_is1) (Version: - Sergey Serkov)
The Saint Abyss of Despair (HKLM-x32\...\The Saint Abyss of Despair) (Version: 1.0 - Viva Media, LLC)
The Sims 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.797.20 - Electronic Arts)
The Sims 4 Mod Manager version 2.2.0 (HKLM-x32\...\The Sims 4 Mod Manager_is1) (Version: 2.2.0 - )
Treasures of Mystery Island 3 - The Ghost Ship (HKLM-x32\...\Treasures of Mystery Island 3 - The Ghost Ship) (Version: 1.0 - Viva Media, LLC)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.9.4 - Tweaking.com)
Universal Media Server (HKLM-x32\...\Universal Media Server) (Version: 6.7.4 - Universal Media Server)
Unlimited Filters 1.2.2 (HKLM\...\{8B775809-D58C-4351-ACBF-4ED5231514FA}_is1) (Version: 1.2.2 - Picture Instruments)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{EC5A6438-850E-4AD1-9169-DD071C8EFFEF}) (Version: 2.10.0.0 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vopt 9 (HKLM-x32\...\{548CC5A0-F2E2-11DD-6172-0DC7E1C11916}) (Version: 9.21 - Golden Bow Systems)
VUDU To Go (HKLM-x32\...\{62E563B4-6C20-4AE6-DFC0-C77E9BA962D0}) (Version: 2.3.2 - Vudu) Hidden
VUDU To Go (HKLM-x32\...\com.vudu.air.Downloader) (Version: 2.3.2 - Vudu)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Boot Genius (HKLM-x32\...\Windows Boot Genius) (Version: - Tenorshare, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinToHDD version 2.5 (HKLM\...\WinToHDD_is1) (Version: 2.5 - Hasleo Software.)
WinX DVD Ripper Platinum 8.5.1 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version: - )
Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version: - Yahoo! Inc.)
ZD Soft Screen Recorder 10.4.6 (HKLM-x32\...\{7A9A63B3-6701-46BE-94F4-BD879BABDCAD}) (Version: 10.4.6.0 - ZD Soft)
Zoolz2 (HKLM-x32\...\Zoolz2) (Version: 2.1 - Genie9)
Zoom Player (remove only) (HKLM-x32\...\ZoomPlayer) (Version: 13.7.1 - Inmatrix LTD)
3DYD Youtube Source (remove only) (HKLM-x32\...\3DYD Youtube Source) (Version: - )
7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
7-Zip 16.04 (HKLM-x32\...\7-Zip) (Version: 16.04 - Igor Pavlov)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
Acronis True Image (HKLM-x32\...\{4AF9B183-3620-49EA-93B5-FDF77818DBC7}) (Version: 20.0.8053 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{4AF9B183-3620-49EA-93B5-FDF77818DBC7}Visible) (Version: 20.0.8053 - Acronis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Albums Spider (HKLM-x32\...\{597D7D4E-94B1-4b6c-980B-D80EBF89E603}) (Version: 1.0.0.3 - KingFriends Software) Hidden
Albums Spider (HKLM-x32\...\InstallShield_{597D7D4E-94B1-4b6c-980B-D80EBF89E603}) (Version: 1.0.0.3 - KingFriends Software)
Allavsoft 3.14.8.6417 (HKLM-x32\...\{6EBED4D8-13D9-4270-8D44-B57DDB7A787C}_is1) (Version: - Allavsoft Corporation)
Apple Application Support (32-bit) (HKLM-x32\...\{BC7C46A4-D7A7-48EC-A98C-32A7762B5EFA}) (Version: 6.2.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{F0C4B709-8BF4-4A72-B527-12E7BF5482F8}) (Version: 6.2.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BD6778C5-6FA5-492A-ADD6-E706339C2A7B}) (Version: 11.0.2.4 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{19589375-5C58-4AFA-842F-8B34744CCEAD}) (Version: 2.5.0.1 - Apple Inc.)
Ashampoo Burning Studio 2017 (HKLM-x32\...\{91B33C97-C878-6579-69BA-23E5405C7AAB}_is1) (Version: 18.0.6 - Ashampoo GmbH & Co. KG)
Ashampoo Cover Studio 2017 (HKLM-x32\...\{91B33C97-6D7D-102A-7711-56C011AFB81B}_is1) (Version: 3.0.0 - Ashampoo GmbH & Co. KG)
Ashampoo HDD Control 2017 (HKLM-x32\...\{4209F371-0379-F90A-4356-52C930989916}_is1) (Version: 3.10.01 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Card 2 (HKLM-x32\...\{BB339C1F-9669-833A-7A3A-D142D43B14E5}_is1) (Version: 2.0.3 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Commander 14 (HKLM-x32\...\{0A11EA01-616B-A905-B3D2-3B7C238851DC}_is1) (Version: 14.0.6 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 8 (HKLM-x32\...\{0A11EA01-3B65-B79C-9019-8640F02B7C58}_is1) (Version: 8.0.11 - Ashampoo GmbH & Co. KG)
AV Music Morpher (HKLM-x32\...\AV Music Morpher) (Version: - )
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.8.566 - AVG Technologies)
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
AweEraserEraser Trial 2.0 (HKLM-x32\...\AweEraser Trial 2.0_is1) (Version: - Magoshare)
Bass Audio Decoder (remove only) (HKLM-x32\...\Bass Audio Decoder) (Version: - )
BDlot DVD ISO Master 3.0.2 (HKLM-x32\...\BDlot DVD ISO Master_is1) (Version: - LotSoft)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
calibre 64bit (HKLM\...\{B74D8371-98D2-42AD-9D94-3531FF4EA328}) (Version: 2.31.0 - Kovid Goyal)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6499 - CDBurnerXP)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.79.0.2015 - Georgy Berdyshev)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Corel AfterShot 3 - ICA x64 (HKLM\...\{FE875B02-11A1-4D1E-B57A-8DE2C00C0B51}) (Version: 3.2 - Corel Corporation) Hidden
Corel AfterShot 3 - IPM Content x64 (HKLM\...\{3E064BED-C9D8-4BEF-A2EE-8D67E99C3932}) (Version: 3.2 - Corel Corporation) Hidden
Corel AfterShot 3 - IPM x64 (HKLM\...\{5059B47C-4D7B-46E9-9D7A-1E2FCF5DDBED}) (Version: 3.2.0.205 - Corel Corporation) Hidden
Corel AfterShot 3 x64 (HKLM\...\{FB96A937-BCF7-4AD6-B6D2-216FF162A744}) (Version: 3.0 - Corel Corporation) Hidden
Corel AfterShot 3(64-bit) (HKLM\...\_{FE875B02-11A1-4D1E-B57A-8DE2C00C0B51}) (Version: 3.2.0.205 - Corel Corporation)
Corel Update Manager (HKLM\...\{B6C0FB43-0C9B-46E6-93E4-DF171ED80C53}) (Version: 2.4.245 - Corel corporation) Hidden
CPUID CPU-Z 1.75 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CrazyTalk v7.32 Standard (HKLM-x32\...\{27C4EA98-84A3-4CDF-A436-F984A0283357}) (Version: 7.32.3114.1 - Reallusion Inc.)
CyberLink PowerDirector 13 (HKLM-x32\...\{BA385AFC-00B1-417C-8C20-74B996EF3AF0}) (Version: 13.0.3420.0 - CyberLink Corp.)
CyberLink YouCam 6 (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.3918.0 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAZ Install Manager (HKLM-x32\...\DAZ Install Manager 1.1.0.67) (Version: 1.1.0.67 - DAZ 3D)
DCoder Image Source (remove only) (HKLM-x32\...\DCoder Image Source) (Version: - )
Desktop iPhone (HKLM-x32\...\{EDBE26EE-6FD1-6E94-D066-9460B9C17194}) (Version: 3.60 - UNKNOWN) Hidden
Desktop iPhone (HKLM-x32\...\iPhone.F4B6EDD4861104DF103CA831FC6755522BBBD9C1.1) (Version: v3.60 - UNKNOWN)
DirectVobSub (remove only) (HKLM-x32\...\DirectVobSub) (Version: - )
Discord (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Discord) (Version: 0.0.300 - Discord Inc.)
Disk Master Professional version 4.3 (HKLM\...\{8213CE5C-49D8-45CC-98C1-7355D18995C5}_is1) (Version: 4.3 - QILING Tech Co., Ltd.)
DP Animation Maker (HKLM-x32\...\DP Animation Maker) (Version: 3.3.9 - DesktopPaints.com)
DVD Decrypter (Remove Only) (HKLM-x32\...\DVD Decrypter) (Version: - )
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DxO Optics Pro 9 (HKLM\...\{CD5F5030-44C8-4432-9F61-209BA3F2F4BA}) (Version: 9.5.2 - DxO Labs)
DxO OpticsPro 11 (HKLM\...\{88CD09A5-EC52-474B-867F-0E147A9C4C6E}) (Version: 11.4.2 - DxO)
Emerland Solitaire (HKLM-x32\...\Emerland Solitaire) (Version: 1.0 - Viva Media, LLC)
FairStars CD Ripper 1.90 (HKLM-x32\...\FairStars CD Ripper_is1) (Version: - FairStars Soft)
Fast VD 3.0.0.12 (HKLM-x32\...\9ED08AFF-E977-47db-8923-2499D74C97C5_Fast VD_is1) (Version: 3.0.0.12 - FastPcTools)
ffdshow v1.3.4533 [2014-09-29] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4533.0 - )
FFMPEG Core Files (remove only) (HKLM-x32\...\FFMPEG Core Files) (Version: - )
FileMenu Tools (HKLM\...\FileMenu Tools_is1) (Version: 7.4 - LopeSoft)
FirestormOS-Releasex64 (HKLM\...\FirestormOS-Releasex64) (Version: 5.0.7.52912 - The Phoenix Firestorm Project, Inc.)
Flame Painter 3 (HKLM\...\Flame Painter 3_is1) (Version: 3.2.0 - Escape Motions, s.r.o)
FolderMatch v3.7.3 (HKLM-x32\...\FolderMatch_is1) (Version: - )
FotoJet Designer 1.1.0 (HKLM-x32\...\{853D7E66-C706-4EF6-8DEF-C61DA889951F}_is1) (Version: 1.1.0 - PearlMountain)
Freemake Video Converter version 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Ellora Assets Corporation)
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.8.0 - Ellora Assets Corporation)
FreeRIP MP3 Converter 5.5.0.2 (HKLM-x32\...\{501451DE-5808-4599-B544-8BD0915B6B24}_is1) (Version: 5.5.0.2 - GreenTree Applications SRL)
GIMP 2.8.20 (HKLM\...\GIMP-2_is1) (Version: 2.8.20 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.132 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{6D5E5B27-D872-4A5F-A1D9-CE681DB7B96A}) (Version: 7.1.7.2606 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.24.7 - Google Inc.) Hidden
Gramblr (HKLM\...\Gramblr) (Version: 2.9.103 - Gramblr Team)
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME)
iCloud (HKLM\...\{99868C9C-C141-4DDE-A2C7-9DDF00F68F17}) (Version: 7.2.0.67 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IMVU Avatar Chat Software (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\IMVU Avatar chat client software BETA) (Version: - )
In search of the Lost Temple (HKLM-x32\...\In search of the Lost Temple ) (Version: 1.0 - Alawar Entertainment Inc.)
InfraRecorder (HKLM-x32\...\InfraRecorder) (Version: - Christian Kindahl)
inSSIDer (HKLM-x32\...\{65A5E87D-7A3F-4819-807D-B86990D5F369}) (Version: 2.1.6 - MetaGeek)
inSSIDer Office (HKLM-x32\...\{661DE192-35CA-432B-9F71-37A18352D4B4}) (Version: 4.3.10.6 - MetaGeek, LLC)
Intel® Driver Update Utility 2.6 (HKLM-x32\...\{2B710CA5-99F0-4D29-962C-29A7CFF7A989}) (Version: 2.6.0.32 - Intel) Hidden
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36279 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Wireless Bluetooth®(patch version 17.1.1532.1813) (HKLM\...\{302600C1-6BDF-4FD1-1507-148929CC1385}) (Version: 17.1.1507.0532 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{3e714701-b89c-4cf2-bf3b-41b2c105ffdc}) (Version: 2.6.0.32 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{795ee3a0-97fa-489a-9543-7564ccc43be4}) (Version: 18.12.0 - Intel Corporation)
iPadian version 1.5 (HKLM-x32\...\{0DB90A1C-2C08-429C-8595-FD9848121D28}_is1) (Version: 1.5 - iPadian, Inc.)
iTunes (HKLM\...\{D7D4465C-B3B6-4BC1-B336-2803FB57BFAF}) (Version: 12.7.2.60 - Apple Inc.)
Java 7 Update 80 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417080FF}) (Version: 7.0.800 - Oracle)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KC Softwares SUMo (HKLM-x32\...\KC Softwares SUMo_is1) (Version: 5.1.3.353 - KC Softwares)
LAV Filters 0.70.2 (HKLM-x32\...\lavfilters_is1) (Version: 0.70.2 - Hendrik Leppkes)
Lexmark Pro200-S500 Series (HKLM\...\Lexmark Pro200-S500 Series) (Version: - Lexmark International, Inc.)
LopeEdit (HKLM-x32\...\LopeEdit_is1) (Version: 5.7 - LopeSoft)
MadVR (remove only) (HKLM-x32\...\MadVR) (Version: - )
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MEmu (HKLM-x32\...\MEmu) (Version: 3.1.2.4 - Microvirt Software Technology Co. Ltd.)
Microsoft OneDrive (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\OneDriveSetup.exe) (Version: 17.3.7131.1115 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MobiOne 2.3.2 (hot-fix 1) (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\com.poweredbypulse.profile-0-rb-10081-1507574927866) (Version: 2.3.2 (hot-fix 1) - Genuitec, LLC)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 55.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 55.0.2 (x64 en-US)) (Version: 55.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0 - Mozilla)
MultiControl (HKLM-x32\...\{F314155C-7E67-4BEA-9372-658FC6FC1B5F}) (Version: 2.00.1005 - Hotkey)
MusicBrainz Picard (HKLM-x32\...\MusicBrainz Picard) (Version: 1.3.2 - MusicBrainz)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NirSoft Wireless Network Watcher (HKLM-x32\...\NirSoft Wireless Network Watcher) (Version: - )
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project)
ON1 Effects 10 (HKLM\...\ON1 Effects 10 PE) (Version: 10.5.2 - ON1)
ooVoo 7.0.4 (only current user) (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\049b9bab-da71-504c-b43e-9ea7c92c660f) (Version: 7.0.4 - ooVoo LLC)
Path of Exile (HKLM-x32\...\{160bcd27-4a6e-402b-ba44-40fc0b13af2f}) (Version: 3.0.0.16184 - Grinding Gear Games)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 3.0.0.16184 - Grinding Gear Games) Hidden
Phototheca 2.8.0.1972 (HKLM-x32\...\{B685A488-2894-465F-95C0-AE287DF86447}_is1) (Version: 2.8.0.1972 - Lunarship Software)
Pixar RenderMan Pro Server 21.4 (HKLM\...\{8BCAC011-3B37-11E7-890E-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
Plex Media Server (HKLM-x32\...\{66263041-84c1-4c6d-ad3f-70c1e5fd8c75}) (Version: 1.9.2.4285 - Plex, Inc.)
Plex Media Server (HKLM-x32\...\{EAE03C2C-C259-4609-B5AD-D3A8D2E6F604}) (Version: 1.9.4285 - Plex, Inc.) Hidden
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.3795 - Kakao Corp.)
proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.108.1 - proDAD GmbH)
proDAD Mercalli Easy Video Stabilizer 2.0 (HKLM-x32\...\proDAD-MercalliEasy-2.0) (Version: 2.0.4700 - proDAD GmbH)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Ralink Bluetooth Stack64 (HKLM\...\{F286F326-4BD7-46FD-873C-FFA30CD9D786}) (Version: 9.0.656.5 - Ralink Corporation)
Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.9.0 - Ralink)
ratDVD 0.78.1444 (HKLM-x32\...\ratDVD) (Version: 0.78.1444 - ratDVD)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.53.216.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
RenderManForKatana-21.4-katana2.5 (HKLM\...\{C5B282E1-3B37-11E7-A500-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderManForMaya-21.4-maya2015 (HKLM\...\{C54F2D30-3B37-11E7-81FA-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderManForMaya-21.4-maya2016 (HKLM\...\{C49245D1-3B37-11E7-9168-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderManForMaya-21.4-maya2016.5 (HKLM\...\{C3AEC39E-3B37-11E7-A948-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderManForMaya-21.4-maya2017 (HKLM\...\{C3219ECF-3B37-11E7-A5E4-9C35EBEEE7A7}) (Version: 21.4.1747743 - Pixar)
RenderMan-Installer (HKLM\...\{BE135EB0-3B37-11E7-BB4F-9C35EBEEE7A7}) (Version: 21.4.0 - Pixar)
Sacra Terra - Angelic Night CE (HKLM-x32\...\Sacra Terra - Angelic Night CE) (Version: 1.0 - Viva Media, LLC)
Sacra Terra 2 CE (HKLM-x32\...\Sacra Terra 2 CE) (Version: 1.0 - Viva Media, LLC)
SecondLifeViewer (HKLM-x32\...\SecondLifeViewer) (Version: 5.0.1.323027 - Linden Research, Inc.)
SharewareOnSale Notifier (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\SharewareOnSale Notifier) (Version: 20 - SharewareOnSale)
Silent Scream - The Dancer (HKLM-x32\...\Silent Scream - The Dancer) (Version: 1.0 - Viva Media, LLC)
Sims 4 Studio (HKLM-x32\...\{870AA913-0774-4ED0-B144-BC2C0CBE4BA0}_is1) (Version: 2.7.0.5 - Sims 4 Studio)
Software Update Wizard (Redist) 4.5 (HKLM-x32\...\Software Update Wizard (Redist)) (Version: 4.5 - PowerProgrammer)
Spotify (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\Spotify) (Version: 1.0.72.117.g6bd7cc73 - Spotify AB)
StarBurn Version 15.5 (Build 0x20151030) (HKLM-x32\...\StarBurn_is1) (Version: 15.5 - StarBurn Software)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stones of Rome (HKLM-x32\...\Stones of Rome_is1) (Version: 1.0 - MyPlayCity, Inc.)
Stopping Plex (HKLM-x32\...\{22F64911-9B44-42E7-A3A5-43490846841F}) (Version: 1.9.4285 - Plex, Inc.) Hidden
Stray Souls 2 CE (HKLM-x32\...\Stray Souls 2 CE) (Version: 1.0 - Viva Media, LLC)
Style Windows (HKU\S-1-5-21-923925315-484671486-2491507011-1000\...\f00f1920b400237f) (Version: 2.1.0.3 - Hunter in the Woods)
System Requirements Lab for Intel (HKLM-x32\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC)
TagScanner 5.1.668 (HKLM-x32\...\TagScanner_is1) (Version: - Sergey Serkov)
The Saint Abyss of Despair (HKLM-x32\...\The Saint Abyss of Despair) (Version: 1.0 - Viva Media, LLC)
The Sims 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.797.20 - Electronic Arts)
The Sims 4 Mod Manager version 2.2.0 (HKLM-x32\...\The Sims 4 Mod Manager_is1) (Version: 2.2.0 - )
Treasures of Mystery Island 3 - The Ghost Ship (HKLM-x32\...\Treasures of Mystery Island 3 - The Ghost Ship) (Version: 1.0 - Viva Media, LLC)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.9.4 - Tweaking.com)
Universal Media Server (HKLM-x32\...\Universal Media Server) (Version: 6.7.4 - Universal Media Server)
Unlimited Filters 1.2.2 (HKLM\...\{8B775809-D58C-4351-ACBF-4ED5231514FA}_is1) (Version: 1.2.2 - Picture Instruments)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{EC5A6438-850E-4AD1-9169-DD071C8EFFEF}) (Version: 2.10.0.0 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vopt 9 (HKLM-x32\...\{548CC5A0-F2E2-11DD-6172-0DC7E1C11916}) (Version: 9.21 - Golden Bow Systems)
VUDU To Go (HKLM-x32\...\{62E563B4-6C20-4AE6-DFC0-C77E9BA962D0}) (Version: 2.3.2 - Vudu) Hidden
VUDU To Go (HKLM-x32\...\com.vudu.air.Downloader) (Version: 2.3.2 - Vudu)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Boot Genius (HKLM-x32\...\Windows Boot Genius) (Version: - Tenorshare, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinToHDD version 2.5 (HKLM\...\WinToHDD_is1) (Version: 2.5 - Hasleo Software.)
WinX DVD Ripper Platinum 8.5.1 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version: - )
Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version: - Yahoo! Inc.)
ZD Soft Screen Recorder 10.4.6 (HKLM-x32\...\{7A9A63B3-6701-46BE-94F4-BD879BABDCAD}) (Version: 10.4.6.0 - ZD Soft)
Zoolz2 (HKLM-x32\...\Zoolz2) (Version: 2.1 - Genie9)
Zoom Player (remove only) (HKLM-x32\...\ZoomPlayer) (Version: 13.7.1 - Inmatrix LTD)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-923925315-484671486-2491507011-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] ()
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] ()
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] ()
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] ()
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov)
ContextMenuHandlers1: [AweFileSyncShlMenu] -> {ABE7BF64-6790-4873-8704-606E622B3E8D} => C:\Program Files (x86)\Magoshare\AweEraser\AweExtMenux64.dll [2017-11-12] (Magoshare)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2017-12-08] (Apple Inc.)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers3: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2017-11-17] (LopeSoft)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov)
ContextMenuHandlers4: [AweFileSyncShlMenu] -> {ABE7BF64-6790-4873-8704-606E622B3E8D} => C:\Program Files (x86)\Magoshare\AweEraser\AweExtMenux64.dll [2017-11-12] (Magoshare)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers4: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2017-11-17] (LopeSoft)
ContextMenuHandlers4: [ZPShellExt] -> {ABE00001-0123-ABED-1248-0248ADFA1909} => C:\Program Files (x86)\Zoom Player\zpshlext64.dll [2017-07-04] ()
ContextMenuHandlers5: [AweFileSyncShlMenu] -> {ABE7BF64-6790-4873-8704-606E622B3E8D} => C:\Program Files (x86)\Magoshare\AweEraser\AweExtMenux64.dll [2017-11-12] (Magoshare)
ContextMenuHandlers5: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2017-11-17] (LopeSoft)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-12] (Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-05-12] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov)
ContextMenuHandlers6: [AweFileSyncShlMenu] -> {ABE7BF64-6790-4873-8704-606E622B3E8D} => C:\Program Files (x86)\Magoshare\AweEraser\AweExtMenux64.dll [2017-11-12] (Magoshare)
ContextMenuHandlers6: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2017-11-17] (LopeSoft)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] ()
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] ()
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] ()
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] ()
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov)
ContextMenuHandlers1: [AweFileSyncShlMenu] -> {ABE7BF64-6790-4873-8704-606E622B3E8D} => C:\Program Files (x86)\Magoshare\AweEraser\AweExtMenux64.dll [2017-11-12] (Magoshare)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2017-12-08] (Apple Inc.)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers3: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2017-11-17] (LopeSoft)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov)
ContextMenuHandlers4: [AweFileSyncShlMenu] -> {ABE7BF64-6790-4873-8704-606E622B3E8D} => C:\Program Files (x86)\Magoshare\AweEraser\AweExtMenux64.dll [2017-11-12] (Magoshare)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers4: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2017-11-17] (LopeSoft)
ContextMenuHandlers4: [ZPShellExt] -> {ABE00001-0123-ABED-1248-0248ADFA1909} => C:\Program Files (x86)\Zoom Player\zpshlext64.dll [2017-07-04] ()
ContextMenuHandlers5: [AweFileSyncShlMenu] -> {ABE7BF64-6790-4873-8704-606E622B3E8D} => C:\Program Files (x86)\Magoshare\AweEraser\AweExtMenux64.dll [2017-11-12] (Magoshare)
ContextMenuHandlers5: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2017-11-17] (LopeSoft)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-12] (Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-05-12] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov)
ContextMenuHandlers6: [AweFileSyncShlMenu] -> {ABE7BF64-6790-4873-8704-606E622B3E8D} => C:\Program Files (x86)\Magoshare\AweEraser\AweExtMenux64.dll [2017-11-12] (Magoshare)
ContextMenuHandlers6: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2017-11-17] (LopeSoft)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0557E464-3D88-46C0-83CE-7B7E77F705E2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-17] (Adobe Systems Incorporated)
Task: {117FBF69-E9F4-47A8-9672-7B1FDAB7DA4C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {19333B9D-C1EB-40B3-A123-A332DDDE7722} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {20201D61-DD85-45E7-9BD5-5CFEB3E01939} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {26587793-DF9A-4EEF-ACA3-9CC369FD081D} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {27624C8C-C708-42D1-9693-94889037B499} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [2017-09-26] (Corel Corporation)
Task: {2A0E5CE5-C8C1-42F2-9D37-F9373D685503} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {2D9945E3-ABA2-41D4-B733-E2487DD203FD} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3338D47A-E595-4610-B767-D80707DC4BED} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-19] (Microsoft Corporation)
Task: {336CE5DC-A999-4619-83A0-45A2F24DE572} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-19] (Microsoft Corporation)
Task: {392C3C2F-5068-4246-8481-D24F7DB4B501} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {404B3445-25CC-4B18-97C3-4099B680BADC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {437DFB38-E377-46D8-8B95-676125D2879E} - System32\Tasks\CorelUpdateHelperTask => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [2017-09-26] (Corel Corporation)
Task: {47E268DB-FB03-4682-86A2-7E7CC19DABB0} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {486A9AEC-5ACC-49E8-95F0-7B51C0E26D8D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-19] (Microsoft Corporation)
Task: {48DF4872-2271-4BD2-89C0-E0BBC80F4EBD} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2015-03-11] (Tweaking.com)
Task: {49A3C466-03BE-4668-8157-5DD1D847FAF0} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {4D3C4A93-FCCB-4E58-80B1-90E15702B5DB} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {50020E26-5C14-4ACE-83F7-FC291C7DD8AE} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {597DDB37-681D-4655-8D78-69CFA9C07CE3} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
Task: {600E3DF2-D43C-47D0-8A56-D7AA341BD13E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {6D044598-4893-444B-ACFB-57C359C78533} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {6EB9AD8A-4FE2-4574-B5D5-BF554A7CD311} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {774A5DFF-3B3D-4066-AC9D-657DCD085E18} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {82250AAB-B5CF-4FA3-99A5-52A7FEBAF231} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-19] (Microsoft Corporation)
Task: {847DBE1E-618E-4B59-8CF4-6849506BD04B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {89D6EBF6-46DD-4B59-B897-BC39E76CB106} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8EEDE64C-6DCE-4341-9198-3643410912E2} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8FDE86CB-A47E-435A-8D6C-62EA25138B2B} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {90599F3D-6918-479C-BEE3-8650AFD86DE4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9079D555-59CB-4130-A852-16A98816B3F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {913825B5-D196-4452-9058-233A604BC3E3} - System32\Tasks\MultiControl => C:\Program Files (x86)\MultiControl\MultiControl.exe [2012-09-30] ()
Task: {96C4F865-52BD-4DD0-871F-F38653A497AD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {97F371C4-A24B-4D33-9ABF-6EAE521EEF9F} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A1A4CA02-E890-458C-BB98-B283C9234F1C} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {A58A97E2-1907-4DA3-9190-0C5B50D26310} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-10-12] (Apple Inc.)
Task: {A9BF04CA-B685-4F6F-BA86-D956BCEB884D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {ACE5B4FD-D393-4E78-92BD-82F885293359} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {C21226D7-BE28-47B8-A58E-DAAD100EC83E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {C3366AC7-2B67-498F-B950-216A67F19C25} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C53C184B-B7CA-4565-8F60-F242750FB1E4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {C9E1D9FE-D649-4C86-B449-7E25D1AC5C17} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {D0C76AD7-4B8F-4F62-B6A6-C5F1FB294DD4} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DC2B6B55-C5E5-4936-B5FF-3A36195EBB2E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {DCD79FFF-1C3B-45DC-B516-536BC4E0BB8C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E2A57A97-99E5-4614-9904-061D237806F1} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {E5FA97AE-C8DA-4A0F-9A2E-7FDC2906D915} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E7FDFC3C-4C40-4380-8668-4E99F8DDB6A8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {EBED81EF-A777-4DAC-BDB6-DC69A6D858F6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {ED0D139E-E5F0-4498-B99D-129E9649EE3D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EE6BDD09-6959-48EA-95F7-DD8486A3FEF9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EFEF5CDD-265E-4C04-A7DA-FB2851194958} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {117FBF69-E9F4-47A8-9672-7B1FDAB7DA4C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {19333B9D-C1EB-40B3-A123-A332DDDE7722} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {20201D61-DD85-45E7-9BD5-5CFEB3E01939} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {26587793-DF9A-4EEF-ACA3-9CC369FD081D} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {27624C8C-C708-42D1-9693-94889037B499} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [2017-09-26] (Corel Corporation)
Task: {2A0E5CE5-C8C1-42F2-9D37-F9373D685503} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {2D9945E3-ABA2-41D4-B733-E2487DD203FD} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3338D47A-E595-4610-B767-D80707DC4BED} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-19] (Microsoft Corporation)
Task: {336CE5DC-A999-4619-83A0-45A2F24DE572} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-19] (Microsoft Corporation)
Task: {392C3C2F-5068-4246-8481-D24F7DB4B501} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {404B3445-25CC-4B18-97C3-4099B680BADC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {437DFB38-E377-46D8-8B95-676125D2879E} - System32\Tasks\CorelUpdateHelperTask => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [2017-09-26] (Corel Corporation)
Task: {47E268DB-FB03-4682-86A2-7E7CC19DABB0} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {486A9AEC-5ACC-49E8-95F0-7B51C0E26D8D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-19] (Microsoft Corporation)
Task: {48DF4872-2271-4BD2-89C0-E0BBC80F4EBD} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2015-03-11] (Tweaking.com)
Task: {49A3C466-03BE-4668-8157-5DD1D847FAF0} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {4D3C4A93-FCCB-4E58-80B1-90E15702B5DB} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {50020E26-5C14-4ACE-83F7-FC291C7DD8AE} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {597DDB37-681D-4655-8D78-69CFA9C07CE3} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
Task: {600E3DF2-D43C-47D0-8A56-D7AA341BD13E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {6D044598-4893-444B-ACFB-57C359C78533} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {6EB9AD8A-4FE2-4574-B5D5-BF554A7CD311} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {774A5DFF-3B3D-4066-AC9D-657DCD085E18} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {82250AAB-B5CF-4FA3-99A5-52A7FEBAF231} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-19] (Microsoft Corporation)
Task: {847DBE1E-618E-4B59-8CF4-6849506BD04B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {89D6EBF6-46DD-4B59-B897-BC39E76CB106} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8EEDE64C-6DCE-4341-9198-3643410912E2} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8FDE86CB-A47E-435A-8D6C-62EA25138B2B} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {90599F3D-6918-479C-BEE3-8650AFD86DE4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9079D555-59CB-4130-A852-16A98816B3F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {913825B5-D196-4452-9058-233A604BC3E3} - System32\Tasks\MultiControl => C:\Program Files (x86)\MultiControl\MultiControl.exe [2012-09-30] ()
Task: {96C4F865-52BD-4DD0-871F-F38653A497AD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {97F371C4-A24B-4D33-9ABF-6EAE521EEF9F} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A1A4CA02-E890-458C-BB98-B283C9234F1C} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {A58A97E2-1907-4DA3-9190-0C5B50D26310} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-10-12] (Apple Inc.)
Task: {A9BF04CA-B685-4F6F-BA86-D956BCEB884D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {ACE5B4FD-D393-4E78-92BD-82F885293359} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {C21226D7-BE28-47B8-A58E-DAAD100EC83E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {C3366AC7-2B67-498F-B950-216A67F19C25} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C53C184B-B7CA-4565-8F60-F242750FB1E4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {C9E1D9FE-D649-4C86-B449-7E25D1AC5C17} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {D0C76AD7-4B8F-4F62-B6A6-C5F1FB294DD4} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DC2B6B55-C5E5-4936-B5FF-3A36195EBB2E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {DCD79FFF-1C3B-45DC-B516-536BC4E0BB8C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E2A57A97-99E5-4614-9904-061D237806F1} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {E5FA97AE-C8DA-4A0F-9A2E-7FDC2906D915} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E7FDFC3C-4C40-4380-8668-4E99F8DDB6A8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {EBED81EF-A777-4DAC-BDB6-DC69A6D858F6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {ED0D139E-E5F0-4498-B99D-129E9649EE3D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EE6BDD09-6959-48EA-95F7-DD8486A3FEF9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EFEF5CDD-265E-4C04-A7DA-FB2851194958} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DAZ 3D\DAZ Install Manager\DAZ Install Manager Read Me.lnk -> hxxp:docs.daz3d.com\doku.php\public\read_me\index\1481
==================== Loaded Modules (Whitelisted) ==============
2017-09-29 07:41 - 2017-09-29 07:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-02-22 11:31 - 2017-10-20 15:22 - 000981576 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2016-02-15 20:01 - 2016-02-15 20:01 - 000031256 _____ () C:\WINDOWS\System32\us008lm.dll
2015-11-23 13:54 - 2009-11-04 13:18 - 000189440 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\lxebdrpp.dll
2017-04-24 13:25 - 2017-04-24 13:25 - 001278720 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
2017-12-08 01:48 - 2017-12-08 01:48 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-12-08 01:48 - 2017-12-08 01:48 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-06-06 23:25 - 2017-06-06 23:25 - 006086232 _____ () C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
2017-08-22 18:41 - 2017-12-15 04:44 - 011836496 _____ () C:\Program Files\Gramblr\gramblr.exe
2017-01-12 18:59 - 2016-07-13 16:05 - 000332120 _____ () c:\program files (x86)\ashampoo\ashampoo hdd control 2017\hddc2017service.exe
2017-03-02 10:46 - 2017-03-02 10:46 - 005823600 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-11-23 14:05 - 2013-01-23 13:29 - 000772712 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
2015-11-23 14:05 - 2013-01-23 13:29 - 000150264 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
2017-04-24 13:15 - 2017-04-24 13:15 - 000588360 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
2017-12-11 11:05 - 2017-12-11 11:05 - 000088888 _____ () C:\Program Files\iTunes\zlib1.dll
2017-12-11 11:05 - 2017-12-11 11:05 - 001356088 _____ () C:\Program Files\iTunes\libxml2.dll
2016-08-07 11:02 - 2016-12-17 08:41 - 001008816 _____ () C:\ProgramData\SharewareOnSale Notifier\SharewareOnSale Notifier.exe
2017-09-28 00:23 - 2017-09-28 00:23 - 000193536 _____ () C:\Program Files\Genie9\Zoolz2\IconOverlayComm.dll
2017-09-28 00:23 - 2017-09-28 00:23 - 000095744 _____ () C:\Program Files\Genie9\Zoolz2\Communicator.dll
2017-09-28 00:33 - 2017-09-28 00:33 - 000051712 _____ () C:\Program Files\Genie9\Zoolz2\GSLogging.dll
2017-11-20 14:03 - 2017-11-20 14:03 - 000217568 _____ () C:\Users\user\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe
2015-09-02 17:53 - 2017-08-30 12:37 - 000087552 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
2016-07-30 23:02 - 2017-10-20 15:22 - 002187336 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
2017-04-24 14:14 - 2017-04-24 14:14 - 005109952 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
2017-05-01 09:54 - 2018-01-17 09:54 - 000765512 _____ () C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
2016-07-25 23:33 - 2016-06-08 17:12 - 000416408 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
2016-05-19 14:21 - 2016-06-08 17:18 - 000709272 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll
2017-04-24 14:05 - 2017-04-24 14:05 - 003637720 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\atih_mms_addon.dll
2017-04-24 14:05 - 2017-04-24 14:05 - 001314952 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\services_mms_addon.dll
2016-08-29 20:16 - 2016-08-29 20:16 - 000685488 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sqlite3.dll
2017-04-24 14:04 - 2017-04-24 14:04 - 020913240 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll
2017-04-24 13:15 - 2017-04-24 13:15 - 000396720 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\resource.dll
2016-08-15 10:28 - 2016-08-15 10:28 - 000129968 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\afcdpapi.dll
2017-03-07 10:48 - 2017-03-07 10:48 - 000248240 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sync_agent_api.dll
2016-11-23 13:41 - 2016-11-23 13:41 - 000160168 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\libevent.dll
2017-09-25 03:50 - 2017-09-25 03:50 - 000083432 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000203240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
2015-11-23 14:05 - 2010-04-01 12:23 - 000389120 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebscw.dll
2015-11-23 14:05 - 2009-05-27 07:16 - 000192512 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebdatr.dll
2015-11-23 14:05 - 2010-04-01 12:24 - 001159168 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebDRS.dll
2015-11-23 14:05 - 2009-03-10 00:43 - 000155648 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebcaps.dll
2015-11-23 14:05 - 2010-04-05 05:55 - 000159890 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\customui.dll
2015-11-23 14:05 - 2010-04-05 05:55 - 000061604 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Epfunct.DLL
2015-11-23 14:05 - 2010-04-05 05:54 - 000123033 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Eputil.DLL
2015-11-23 14:05 - 2010-04-05 05:54 - 000143502 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Imagutil.DLL
2015-11-23 14:05 - 2010-04-05 05:56 - 000716954 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Epwizard.DLL
2015-11-23 14:05 - 2010-04-05 05:56 - 002203803 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\EPWizRes.dll
2015-11-23 14:05 - 2010-04-05 05:56 - 000045221 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\epstring.dll
2015-11-23 14:05 - 2010-04-05 05:56 - 000094359 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\EPOEMDll.dll
2015-11-23 14:05 - 2009-04-07 14:25 - 000409600 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\iptk.dll
2015-11-23 14:05 - 2009-03-02 09:25 - 000151552 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebptp.dll
2017-12-06 19:25 - 2017-12-06 19:25 - 000102088 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\UpdateRingSettings.dll
2017-12-08 01:49 - 2017-12-08 01:49 - 001042232 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2017-12-08 01:49 - 2017-12-08 01:49 - 000076088 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2017-12-08 01:48 - 2017-12-08 01:48 - 000189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 001076808 _____ () C:\Program Files (x86)\GOG Galaxy\PocoNet.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 001854536 _____ () C:\Program Files (x86)\GOG Galaxy\PocoData.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000507976 _____ () C:\Program Files (x86)\GOG Galaxy\PocoUtil.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000307784 _____ () C:\Program Files (x86)\GOG Galaxy\PocoNetSSL.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000393288 _____ () C:\Program Files (x86)\GOG Galaxy\PocoDataSQLite.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000330824 _____ () C:\Program Files (x86)\GOG Galaxy\PocoJSON.dll
2017-07-23 21:19 - 2018-01-17 09:54 - 000130120 _____ () C:\Program Files (x86)\GOG Galaxy\xdelta3.dll
2017-04-20 18:47 - 2017-03-16 15:46 - 053018112 _____ () C:\Program Files (x86)\GOG Galaxy\libcef.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000104008 _____ () C:\Program Files (x86)\GOG Galaxy\zlib.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 001589320 _____ () C:\Program Files (x86)\GOG Galaxy\PocoFoundation.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000272456 _____ () C:\Program Files (x86)\GOG Galaxy\PocoZip.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000157768 _____ () C:\Program Files (x86)\GOG Galaxy\PocoCrypto.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000425544 _____ () C:\Program Files (x86)\GOG Galaxy\pcre.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000680008 _____ () C:\Program Files (x86)\GOG Galaxy\sqlite.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000520776 _____ () C:\Program Files (x86)\GOG Galaxy\PocoXML.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000152136 _____ () C:\Program Files (x86)\GOG Galaxy\expat.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 001083368 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000115688 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000059880 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
2017-09-25 03:50 - 2017-09-25 03:50 - 000772072 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 001741288 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 001962984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000025576 _____ () C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 001549104 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000127136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll
2017-04-24 13:14 - 2017-04-24 13:14 - 008055728 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_resources.dll
2017-04-24 13:14 - 2017-04-24 13:14 - 000049584 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\rpc_client.dll
2016-08-29 22:57 - 2016-08-29 22:57 - 000444336 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2016-08-29 20:16 - 2016-08-29 20:16 - 000115632 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\expat.dll
2016-01-19 17:40 - 2012-05-25 04:25 - 000921600 _____ () C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
2017-04-20 18:47 - 2017-03-16 15:46 - 001738752 _____ () C:\Program Files (x86)\GOG Galaxy\libglesv2.dll
2017-04-20 18:47 - 2017-03-16 15:46 - 000078848 _____ () C:\Program Files (x86)\GOG Galaxy\libegl.dll
2017-09-25 03:50 - 2017-09-25 03:50 - 000050152 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000071656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000024552 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000041448 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000930280 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
2017-09-25 03:49 - 2017-09-25 03:49 - 000074728 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000190952 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
2017-09-25 03:50 - 2017-09-25 03:50 - 000218088 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000018920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000095720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000143336 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000694248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000064488 _____ () C:\Program Files (x86)\Plex\Plex Media Server\TeVii.dll
2014-09-28 12:24 - 2012-03-28 08:36 - 000128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
2017-03-07 10:57 - 2017-03-07 10:57 - 007014728 _____ () C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
2014-09-28 12:24 - 2012-03-28 08:18 - 001198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2016-02-22 11:31 - 2017-10-20 15:22 - 000981576 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2016-02-15 20:01 - 2016-02-15 20:01 - 000031256 _____ () C:\WINDOWS\System32\us008lm.dll
2015-11-23 13:54 - 2009-11-04 13:18 - 000189440 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\lxebdrpp.dll
2017-04-24 13:25 - 2017-04-24 13:25 - 001278720 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
2017-12-08 01:48 - 2017-12-08 01:48 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-12-08 01:48 - 2017-12-08 01:48 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-06-06 23:25 - 2017-06-06 23:25 - 006086232 _____ () C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
2017-08-22 18:41 - 2017-12-15 04:44 - 011836496 _____ () C:\Program Files\Gramblr\gramblr.exe
2017-01-12 18:59 - 2016-07-13 16:05 - 000332120 _____ () c:\program files (x86)\ashampoo\ashampoo hdd control 2017\hddc2017service.exe
2017-03-02 10:46 - 2017-03-02 10:46 - 005823600 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-01-18 22:42 - 2018-01-18 22:42 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-11-23 14:05 - 2013-01-23 13:29 - 000772712 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
2015-11-23 14:05 - 2013-01-23 13:29 - 000150264 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
2017-04-24 13:15 - 2017-04-24 13:15 - 000588360 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
2017-12-11 11:05 - 2017-12-11 11:05 - 000088888 _____ () C:\Program Files\iTunes\zlib1.dll
2017-12-11 11:05 - 2017-12-11 11:05 - 001356088 _____ () C:\Program Files\iTunes\libxml2.dll
2016-08-07 11:02 - 2016-12-17 08:41 - 001008816 _____ () C:\ProgramData\SharewareOnSale Notifier\SharewareOnSale Notifier.exe
2017-09-28 00:23 - 2017-09-28 00:23 - 000193536 _____ () C:\Program Files\Genie9\Zoolz2\IconOverlayComm.dll
2017-09-28 00:23 - 2017-09-28 00:23 - 000095744 _____ () C:\Program Files\Genie9\Zoolz2\Communicator.dll
2017-09-28 00:33 - 2017-09-28 00:33 - 000051712 _____ () C:\Program Files\Genie9\Zoolz2\GSLogging.dll
2017-11-20 14:03 - 2017-11-20 14:03 - 000217568 _____ () C:\Users\user\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe
2015-09-02 17:53 - 2017-08-30 12:37 - 000087552 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
2016-07-30 23:02 - 2017-10-20 15:22 - 002187336 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
2017-04-24 14:14 - 2017-04-24 14:14 - 005109952 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
2017-05-01 09:54 - 2018-01-17 09:54 - 000765512 _____ () C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
2016-07-25 23:33 - 2016-06-08 17:12 - 000416408 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
2016-05-19 14:21 - 2016-06-08 17:18 - 000709272 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll
2017-04-24 14:05 - 2017-04-24 14:05 - 003637720 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\atih_mms_addon.dll
2017-04-24 14:05 - 2017-04-24 14:05 - 001314952 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\services_mms_addon.dll
2016-08-29 20:16 - 2016-08-29 20:16 - 000685488 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sqlite3.dll
2017-04-24 14:04 - 2017-04-24 14:04 - 020913240 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll
2017-04-24 13:15 - 2017-04-24 13:15 - 000396720 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\resource.dll
2016-08-15 10:28 - 2016-08-15 10:28 - 000129968 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\afcdpapi.dll
2017-03-07 10:48 - 2017-03-07 10:48 - 000248240 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sync_agent_api.dll
2016-11-23 13:41 - 2016-11-23 13:41 - 000160168 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\libevent.dll
2017-09-25 03:50 - 2017-09-25 03:50 - 000083432 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000203240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
2015-11-23 14:05 - 2010-04-01 12:23 - 000389120 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebscw.dll
2015-11-23 14:05 - 2009-05-27 07:16 - 000192512 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebdatr.dll
2015-11-23 14:05 - 2010-04-01 12:24 - 001159168 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebDRS.dll
2015-11-23 14:05 - 2009-03-10 00:43 - 000155648 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebcaps.dll
2015-11-23 14:05 - 2010-04-05 05:55 - 000159890 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\customui.dll
2015-11-23 14:05 - 2010-04-05 05:55 - 000061604 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Epfunct.DLL
2015-11-23 14:05 - 2010-04-05 05:54 - 000123033 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Eputil.DLL
2015-11-23 14:05 - 2010-04-05 05:54 - 000143502 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Imagutil.DLL
2015-11-23 14:05 - 2010-04-05 05:56 - 000716954 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Epwizard.DLL
2015-11-23 14:05 - 2010-04-05 05:56 - 002203803 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\EPWizRes.dll
2015-11-23 14:05 - 2010-04-05 05:56 - 000045221 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\epstring.dll
2015-11-23 14:05 - 2010-04-05 05:56 - 000094359 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\EPOEMDll.dll
2015-11-23 14:05 - 2009-04-07 14:25 - 000409600 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\iptk.dll
2015-11-23 14:05 - 2009-03-02 09:25 - 000151552 _____ () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebptp.dll
2017-12-06 19:25 - 2017-12-06 19:25 - 000102088 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\UpdateRingSettings.dll
2017-12-08 01:49 - 2017-12-08 01:49 - 001042232 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2017-12-08 01:49 - 2017-12-08 01:49 - 000076088 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2017-12-08 01:48 - 2017-12-08 01:48 - 000189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 001076808 _____ () C:\Program Files (x86)\GOG Galaxy\PocoNet.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 001854536 _____ () C:\Program Files (x86)\GOG Galaxy\PocoData.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000507976 _____ () C:\Program Files (x86)\GOG Galaxy\PocoUtil.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000307784 _____ () C:\Program Files (x86)\GOG Galaxy\PocoNetSSL.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000393288 _____ () C:\Program Files (x86)\GOG Galaxy\PocoDataSQLite.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000330824 _____ () C:\Program Files (x86)\GOG Galaxy\PocoJSON.dll
2017-07-23 21:19 - 2018-01-17 09:54 - 000130120 _____ () C:\Program Files (x86)\GOG Galaxy\xdelta3.dll
2017-04-20 18:47 - 2017-03-16 15:46 - 053018112 _____ () C:\Program Files (x86)\GOG Galaxy\libcef.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000104008 _____ () C:\Program Files (x86)\GOG Galaxy\zlib.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 001589320 _____ () C:\Program Files (x86)\GOG Galaxy\PocoFoundation.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000272456 _____ () C:\Program Files (x86)\GOG Galaxy\PocoZip.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000157768 _____ () C:\Program Files (x86)\GOG Galaxy\PocoCrypto.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000425544 _____ () C:\Program Files (x86)\GOG Galaxy\pcre.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000680008 _____ () C:\Program Files (x86)\GOG Galaxy\sqlite.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000520776 _____ () C:\Program Files (x86)\GOG Galaxy\PocoXML.dll
2017-04-20 18:47 - 2018-01-17 09:54 - 000152136 _____ () C:\Program Files (x86)\GOG Galaxy\expat.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 001083368 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000115688 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000059880 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
2017-09-25 03:50 - 2017-09-25 03:50 - 000772072 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 001741288 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 001962984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000025576 _____ () C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 001549104 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000127136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll
2017-04-24 13:14 - 2017-04-24 13:14 - 008055728 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_resources.dll
2017-04-24 13:14 - 2017-04-24 13:14 - 000049584 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\rpc_client.dll
2016-08-29 22:57 - 2016-08-29 22:57 - 000444336 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2016-08-29 20:16 - 2016-08-29 20:16 - 000115632 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\expat.dll
2016-01-19 17:40 - 2012-05-25 04:25 - 000921600 _____ () C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
2017-04-20 18:47 - 2017-03-16 15:46 - 001738752 _____ () C:\Program Files (x86)\GOG Galaxy\libglesv2.dll
2017-04-20 18:47 - 2017-03-16 15:46 - 000078848 _____ () C:\Program Files (x86)\GOG Galaxy\libegl.dll
2017-09-25 03:50 - 2017-09-25 03:50 - 000050152 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000071656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000024552 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000041448 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000930280 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
2017-09-25 03:49 - 2017-09-25 03:49 - 000074728 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
2017-09-25 03:49 - 2017-09-25 03:49 - 000190952 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
2017-09-25 03:50 - 2017-09-25 03:50 - 000218088 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000018920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000095720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000143336 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000694248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
2017-09-25 03:50 - 2017-09-25 03:50 - 000064488 _____ () C:\Program Files (x86)\Plex\Plex Media Server\TeVii.dll
2014-09-28 12:24 - 2012-03-28 08:36 - 000128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
2017-03-07 10:57 - 2017-03-07 10:57 - 007014728 _____ () C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
2014-09-28 12:24 - 2012-03-28 08:18 - 001198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 20:34 - 2016-06-10 14:16 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-923925315-484671486-2491507011-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{71D0AD6C-EBC6-4175-8440-6170E3D45540}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{03B3C35F-5F30-4176-9C52-93E733E241F7}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{BACC68FC-E6B0-47D6-987C-6DE4A6B6C7C0}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{4DB6F9A9-E950-4EA6-869B-49046494BF6B}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
FirewallRules: [{C4AA2337-4F04-44CE-AEE8-F8A94BA1CA14}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
FirewallRules: [{BA6DC0F6-79B7-46FE-B41B-FB1F0D2387E0}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
FirewallRules: [{478AE3A1-41CD-491D-A077-FA9C27639C2C}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
FirewallRules: [UDP Query User{EA20B9FF-A94B-4128-9022-CD4B6DEE729B}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{1DBAD2EA-D888-4DE1-A13C-CB383BE8FCD6}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{B61279A8-2BB1-4B05-A7FF-240F38E8664C}C:\users\user\appdata\local\mobione studio\mobione 2.3.2 (hot-fix 1)\mobione.exe] => (Allow) C:\users\user\appdata\local\mobione studio\mobione 2.3.2 (hot-fix 1)\mobione.exe
FirewallRules: [TCP Query User{C0198E7B-40B4-452E-AFDF-BF4D890A3C39}C:\users\user\appdata\local\mobione studio\mobione 2.3.2 (hot-fix 1)\mobione.exe] => (Allow) C:\users\user\appdata\local\mobione studio\mobione 2.3.2 (hot-fix 1)\mobione.exe
FirewallRules: [UDP Query User{D634E891-2A0C-45C8-8AEA-DD064C01388F}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\user\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{BA50D7EB-0EF1-4DDC-92E0-6116AB94088B}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\user\appdata\roaming\spotify\spotify.exe
FirewallRules: [{B4DCB427-81B5-4095-8AB3-3601607BE139}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F1F75E59-8CE5-42B5-A111-8FD22C457700}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{3905E5A3-687E-4A5E-A615-35D8784A85E9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C5CD4771-2F45-48A3-A532-D1DD513E6DC4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{AE7EE9BA-01A1-43DF-8CEC-5B9AB63DE261}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{4591FF6F-7521-4CDF-8240-3FF3A6AEC355}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{5185AD40-AAA5-46ED-B44C-0FEE111EFCC1}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{FB4A215B-BED3-4273-9403-CBD8B15A6B4D}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{67361E49-A69F-4586-8594-6C18275703BC}] => (Allow) C:\Users\user\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{92363C74-2528-46B4-B8C2-6A2E632D93E9}] => (Allow) C:\Users\user\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{B1CADC2D-7653-4799-ACC9-B8401D4D1179}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{66A99FD1-CEB7-4FD6-9117-2A4F4B2FF973}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{1CC0B88B-93FB-4B6A-9076-22CAA7559E9C}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{778607C2-BFA0-46C1-AF5A-B619EEE0E7B9}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{051A914F-A235-4B27-90A9-B07D39AF24EF}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{7E934B1A-65AA-482F-A103-2ABC165D44DE}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{B2959992-EF7F-4073-B59C-624091C4625B}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{97A61088-FBA9-4686-BA2D-57027C5B707B}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{B02E6176-CF99-4670-B2C3-5F8DD1475F05}] => (Allow) C:\Users\user\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{6E469ED5-9CA6-4741-817A-BA479AA42313}] => (Allow) C:\Users\user\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{BA112D03-7719-440B-96D2-33CDCDFB4317}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{318A554E-52E3-4118-8A9F-84B1373AECE3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{51C5ED82-12F6-49E1-BA7D-CD02B1BEB9FE}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{DD637938-5202-4D68-9EF9-6A91A5089F29}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{40345FA6-6B23-4435-8DAE-1EFA01B1F34F}C:\windows\syswow64\lxebcoms.exe] => (Block) C:\windows\syswow64\lxebcoms.exe
FirewallRules: [TCP Query User{CE92FF2B-DCFB-45E0-9008-D5607D63EEAB}C:\windows\syswow64\lxebcoms.exe] => (Block) C:\windows\syswow64\lxebcoms.exe
FirewallRules: [{60ECA5CD-2CC2-4C86-9E2E-15B92B7D6BBB}] => (Allow) C:\Program Files\CyberLink\PowerDirector13\PDR10.EXE
FirewallRules: [UDP Query User{8CC0BE89-1644-4590-B755-CB7CF07F0180}C:\windows\syswow64\lxebcoms.exe] => (Allow) C:\windows\syswow64\lxebcoms.exe
FirewallRules: [TCP Query User{832CBDEC-5147-40E4-8DF9-C82D19FAADD7}C:\windows\syswow64\lxebcoms.exe] => (Allow) C:\windows\syswow64\lxebcoms.exe
FirewallRules: [{62FCB9E3-D73F-4D1A-8E5D-35E0071159FB}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{52254F5B-82DF-4840-BD91-98D122DDD83D}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{26D07282-8736-4CD6-B06A-23F2B0B03630}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{9059AE2D-1FE3-4577-831C-B90FD84E36B6}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{F78D9A1A-DEF9-4E0C-BA9C-045B158FE3D3}] => (Allow) C:\Users\user\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{145F7CBB-2A9D-44D0-8436-0B9EC34020D1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9C811A31-EECA-43FE-9182-F16B21F0D8A4}] => (Allow) LPort=2869
FirewallRules: [{83FE3AE4-AC17-4EF5-97F9-C610AD372C0C}] => (Allow) LPort=1900
FirewallRules: [{8DFFD362-001B-4E49-A6A7-D39B46607596}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{82A7B24A-FC6F-4F72-BF63-F9470B0433F1}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{63CFEB09-6ADC-4460-9A49-1B697B4E9F29}] => (Allow) C:\Windows\system32\lxebcoms.exe
FirewallRules: [{326686F8-34C0-4229-A892-7D2B76C072D3}] => (Allow) C:\Windows\system32\LXEBcoms.exe
FirewallRules: [{F9042476-5692-4732-83FA-870863408221}] => (Allow) C:\Windows\system32\LXEBcoms.exe
FirewallRules: [{8C7E43E9-3AA3-4A0D-A60B-05DDE6DFD499}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{9D496217-990D-4D14-A67D-B1481594897A}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{0C808D1E-DE77-4E2A-B816-859C1ECE9A2F}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FD66A5D2-EA3D-4732-85FC-DD1D928FC31A}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{84BE61CC-4959-494C-BFE0-337FF8EF29D6}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{75709B18-DBD3-485F-88A3-87D15BBD6526}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D5F8A77F-485D-4140-94A8-CE03CF40C0FD}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C9C9BE6B-E1B9-4EB2-9D33-3E8DB7B90264}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6EFAB9C5-90C3-438A-9F2F-9391A1F6814C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [TCP Query User{603B078C-1BA9-47D9-89CF-34D00057FC3F}C:\users\user\desktop\7 days to die\igg-7.days.to.die.alpha.14.6.64.bit\7daystodie.exe] => (Allow) C:\users\user\desktop\7 days to die\igg-7.days.to.die.alpha.14.6.64.bit\7daystodie.exe
FirewallRules: [UDP Query User{E85E478B-F1E5-4565-85F0-688821966631}C:\users\user\desktop\7 days to die\igg-7.days.to.die.alpha.14.6.64.bit\7daystodie.exe] => (Allow) C:\users\user\desktop\7 days to die\igg-7.days.to.die.alpha.14.6.64.bit\7daystodie.exe
FirewallRules: [{574EE399-F645-4266-9D99-57101716EA4A}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{DB38F19D-40E4-4947-8E0E-7B500363D4F1}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{24F97298-B02C-4623-83A7-122712D7A9A1}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{B25A5C39-A529-4165-87D9-9A687D0E355D}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{729C85A1-10A1-42D3-8710-9A9D8B3984C8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{318F92CC-7B37-4287-AB35-B9B90AF8580A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{5AD19517-B9C5-4BEB-A18F-C996131C6B05}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{4D96978B-0B89-4E4A-B483-57C1C4066B03}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{9253F90C-EAAB-4284-85E1-15D23C30340F}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) C:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [UDP Query User{AAF6D9D7-85B0-469E-9BDD-A51DDF673847}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) C:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [{CCEC6480-B45A-42E7-BC06-6BC63CC7D555}] => (Block) C:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [{5DEC68F3-0DE7-4C89-83BE-F4BF15E8FDA7}] => (Block) C:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [TCP Query User{DF96F6CF-411A-49BF-91D1-9575A110320D}C:\program files\firestormos-releasex64\slvoice.exe] => (Allow) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [UDP Query User{79AA2E57-64CE-47DE-B33C-82D7B0077755}C:\program files\firestormos-releasex64\slvoice.exe] => (Allow) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [{5025C476-7DBB-425B-9040-F194B94A9F4E}] => (Block) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [{9DE90C23-DCFF-4DCA-BEE8-487C8579B988}] => (Block) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [{D3A5426D-20A6-49F2-9CBE-839379B51AE5}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{EA98F323-0B85-45D5-AF44-BFBAC2E36540}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{CA208BD0-560D-471B-8C03-5EA885F5C03A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe
FirewallRules: [{C84E9D26-AB6B-4DD0-A94C-AC91B4713FEA}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
FirewallRules: [{D71ED35B-1C20-4212-AF3B-916811A930E1}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe
FirewallRules: [{B6D9AC97-5248-40CC-9C09-4C3AA0F0DF83}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe
FirewallRules: [{6764BA28-8762-432D-9356-303236C32FBC}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe
FirewallRules: [{38EC7631-22BD-4345-B132-71B4F1C5E33A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe
FirewallRules: [{5024B2AA-67D7-48BE-96FE-5D70A2C184F0}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe
FirewallRules: [{653781C4-4D08-4642-9732-1BD2212AA6E4}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
FirewallRules: [{623CCC06-0738-4CC8-9942-315FD8368225}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe
FirewallRules: [{342D2873-3F46-4A5E-A171-C6F5E5A474C7}] => (Allow) C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe
FirewallRules: [{B24065DA-40F9-4576-B668-953FA7CC875F}] => (Allow) C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe
FirewallRules: [{2838E67C-8DAD-4605-ADD1-958A076A33D8}] => (Allow) E:\SteamLibrary\steamapps\common\ArcheAge\GlyphClient.exe
FirewallRules: [{844DB315-D799-47F1-91CB-C1D073D8AD1F}] => (Allow) E:\SteamLibrary\steamapps\common\ArcheAge\GlyphClient.exe
FirewallRules: [{03B3C35F-5F30-4176-9C52-93E733E241F7}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{BACC68FC-E6B0-47D6-987C-6DE4A6B6C7C0}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{4DB6F9A9-E950-4EA6-869B-49046494BF6B}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
FirewallRules: [{C4AA2337-4F04-44CE-AEE8-F8A94BA1CA14}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
FirewallRules: [{BA6DC0F6-79B7-46FE-B41B-FB1F0D2387E0}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
FirewallRules: [{478AE3A1-41CD-491D-A077-FA9C27639C2C}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
FirewallRules: [UDP Query User{EA20B9FF-A94B-4128-9022-CD4B6DEE729B}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{1DBAD2EA-D888-4DE1-A13C-CB383BE8FCD6}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{B61279A8-2BB1-4B05-A7FF-240F38E8664C}C:\users\user\appdata\local\mobione studio\mobione 2.3.2 (hot-fix 1)\mobione.exe] => (Allow) C:\users\user\appdata\local\mobione studio\mobione 2.3.2 (hot-fix 1)\mobione.exe
FirewallRules: [TCP Query User{C0198E7B-40B4-452E-AFDF-BF4D890A3C39}C:\users\user\appdata\local\mobione studio\mobione 2.3.2 (hot-fix 1)\mobione.exe] => (Allow) C:\users\user\appdata\local\mobione studio\mobione 2.3.2 (hot-fix 1)\mobione.exe
FirewallRules: [UDP Query User{D634E891-2A0C-45C8-8AEA-DD064C01388F}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\user\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{BA50D7EB-0EF1-4DDC-92E0-6116AB94088B}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\user\appdata\roaming\spotify\spotify.exe
FirewallRules: [{B4DCB427-81B5-4095-8AB3-3601607BE139}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F1F75E59-8CE5-42B5-A111-8FD22C457700}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{3905E5A3-687E-4A5E-A615-35D8784A85E9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C5CD4771-2F45-48A3-A532-D1DD513E6DC4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{AE7EE9BA-01A1-43DF-8CEC-5B9AB63DE261}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{4591FF6F-7521-4CDF-8240-3FF3A6AEC355}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{5185AD40-AAA5-46ED-B44C-0FEE111EFCC1}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{FB4A215B-BED3-4273-9403-CBD8B15A6B4D}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{67361E49-A69F-4586-8594-6C18275703BC}] => (Allow) C:\Users\user\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{92363C74-2528-46B4-B8C2-6A2E632D93E9}] => (Allow) C:\Users\user\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{B1CADC2D-7653-4799-ACC9-B8401D4D1179}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{66A99FD1-CEB7-4FD6-9117-2A4F4B2FF973}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{1CC0B88B-93FB-4B6A-9076-22CAA7559E9C}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{778607C2-BFA0-46C1-AF5A-B619EEE0E7B9}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{051A914F-A235-4B27-90A9-B07D39AF24EF}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{7E934B1A-65AA-482F-A103-2ABC165D44DE}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{B2959992-EF7F-4073-B59C-624091C4625B}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{97A61088-FBA9-4686-BA2D-57027C5B707B}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{B02E6176-CF99-4670-B2C3-5F8DD1475F05}] => (Allow) C:\Users\user\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{6E469ED5-9CA6-4741-817A-BA479AA42313}] => (Allow) C:\Users\user\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{BA112D03-7719-440B-96D2-33CDCDFB4317}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{318A554E-52E3-4118-8A9F-84B1373AECE3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{51C5ED82-12F6-49E1-BA7D-CD02B1BEB9FE}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{DD637938-5202-4D68-9EF9-6A91A5089F29}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{40345FA6-6B23-4435-8DAE-1EFA01B1F34F}C:\windows\syswow64\lxebcoms.exe] => (Block) C:\windows\syswow64\lxebcoms.exe
FirewallRules: [TCP Query User{CE92FF2B-DCFB-45E0-9008-D5607D63EEAB}C:\windows\syswow64\lxebcoms.exe] => (Block) C:\windows\syswow64\lxebcoms.exe
FirewallRules: [{60ECA5CD-2CC2-4C86-9E2E-15B92B7D6BBB}] => (Allow) C:\Program Files\CyberLink\PowerDirector13\PDR10.EXE
FirewallRules: [UDP Query User{8CC0BE89-1644-4590-B755-CB7CF07F0180}C:\windows\syswow64\lxebcoms.exe] => (Allow) C:\windows\syswow64\lxebcoms.exe
FirewallRules: [TCP Query User{832CBDEC-5147-40E4-8DF9-C82D19FAADD7}C:\windows\syswow64\lxebcoms.exe] => (Allow) C:\windows\syswow64\lxebcoms.exe
FirewallRules: [{62FCB9E3-D73F-4D1A-8E5D-35E0071159FB}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{52254F5B-82DF-4840-BD91-98D122DDD83D}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{26D07282-8736-4CD6-B06A-23F2B0B03630}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{9059AE2D-1FE3-4577-831C-B90FD84E36B6}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{F78D9A1A-DEF9-4E0C-BA9C-045B158FE3D3}] => (Allow) C:\Users\user\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{145F7CBB-2A9D-44D0-8436-0B9EC34020D1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9C811A31-EECA-43FE-9182-F16B21F0D8A4}] => (Allow) LPort=2869
FirewallRules: [{83FE3AE4-AC17-4EF5-97F9-C610AD372C0C}] => (Allow) LPort=1900
FirewallRules: [{8DFFD362-001B-4E49-A6A7-D39B46607596}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{82A7B24A-FC6F-4F72-BF63-F9470B0433F1}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{63CFEB09-6ADC-4460-9A49-1B697B4E9F29}] => (Allow) C:\Windows\system32\lxebcoms.exe
FirewallRules: [{326686F8-34C0-4229-A892-7D2B76C072D3}] => (Allow) C:\Windows\system32\LXEBcoms.exe
FirewallRules: [{F9042476-5692-4732-83FA-870863408221}] => (Allow) C:\Windows\system32\LXEBcoms.exe
FirewallRules: [{8C7E43E9-3AA3-4A0D-A60B-05DDE6DFD499}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{9D496217-990D-4D14-A67D-B1481594897A}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{0C808D1E-DE77-4E2A-B816-859C1ECE9A2F}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FD66A5D2-EA3D-4732-85FC-DD1D928FC31A}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{84BE61CC-4959-494C-BFE0-337FF8EF29D6}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{75709B18-DBD3-485F-88A3-87D15BBD6526}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D5F8A77F-485D-4140-94A8-CE03CF40C0FD}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C9C9BE6B-E1B9-4EB2-9D33-3E8DB7B90264}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6EFAB9C5-90C3-438A-9F2F-9391A1F6814C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [TCP Query User{603B078C-1BA9-47D9-89CF-34D00057FC3F}C:\users\user\desktop\7 days to die\igg-7.days.to.die.alpha.14.6.64.bit\7daystodie.exe] => (Allow) C:\users\user\desktop\7 days to die\igg-7.days.to.die.alpha.14.6.64.bit\7daystodie.exe
FirewallRules: [UDP Query User{E85E478B-F1E5-4565-85F0-688821966631}C:\users\user\desktop\7 days to die\igg-7.days.to.die.alpha.14.6.64.bit\7daystodie.exe] => (Allow) C:\users\user\desktop\7 days to die\igg-7.days.to.die.alpha.14.6.64.bit\7daystodie.exe
FirewallRules: [{574EE399-F645-4266-9D99-57101716EA4A}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{DB38F19D-40E4-4947-8E0E-7B500363D4F1}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{24F97298-B02C-4623-83A7-122712D7A9A1}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{B25A5C39-A529-4165-87D9-9A687D0E355D}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{729C85A1-10A1-42D3-8710-9A9D8B3984C8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{318F92CC-7B37-4287-AB35-B9B90AF8580A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{5AD19517-B9C5-4BEB-A18F-C996131C6B05}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{4D96978B-0B89-4E4A-B483-57C1C4066B03}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{9253F90C-EAAB-4284-85E1-15D23C30340F}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) C:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [UDP Query User{AAF6D9D7-85B0-469E-9BDD-A51DDF673847}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) C:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [{CCEC6480-B45A-42E7-BC06-6BC63CC7D555}] => (Block) C:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [{5DEC68F3-0DE7-4C89-83BE-F4BF15E8FDA7}] => (Block) C:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [TCP Query User{DF96F6CF-411A-49BF-91D1-9575A110320D}C:\program files\firestormos-releasex64\slvoice.exe] => (Allow) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [UDP Query User{79AA2E57-64CE-47DE-B33C-82D7B0077755}C:\program files\firestormos-releasex64\slvoice.exe] => (Allow) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [{5025C476-7DBB-425B-9040-F194B94A9F4E}] => (Block) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [{9DE90C23-DCFF-4DCA-BEE8-487C8579B988}] => (Block) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [{D3A5426D-20A6-49F2-9CBE-839379B51AE5}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{EA98F323-0B85-45D5-AF44-BFBAC2E36540}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{CA208BD0-560D-471B-8C03-5EA885F5C03A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe
FirewallRules: [{C84E9D26-AB6B-4DD0-A94C-AC91B4713FEA}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
FirewallRules: [{D71ED35B-1C20-4212-AF3B-916811A930E1}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe
FirewallRules: [{B6D9AC97-5248-40CC-9C09-4C3AA0F0DF83}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe
FirewallRules: [{6764BA28-8762-432D-9356-303236C32FBC}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe
FirewallRules: [{38EC7631-22BD-4345-B132-71B4F1C5E33A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe
FirewallRules: [{5024B2AA-67D7-48BE-96FE-5D70A2C184F0}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe
FirewallRules: [{653781C4-4D08-4642-9732-1BD2212AA6E4}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
FirewallRules: [{623CCC06-0738-4CC8-9942-315FD8368225}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe
FirewallRules: [{342D2873-3F46-4A5E-A171-C6F5E5A474C7}] => (Allow) C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe
FirewallRules: [{B24065DA-40F9-4576-B668-953FA7CC875F}] => (Allow) C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe
FirewallRules: [{2838E67C-8DAD-4605-ADD1-958A076A33D8}] => (Allow) E:\SteamLibrary\steamapps\common\ArcheAge\GlyphClient.exe
FirewallRules: [{844DB315-D799-47F1-91CB-C1D073D8AD1F}] => (Allow) E:\SteamLibrary\steamapps\common\ArcheAge\GlyphClient.exe
==================== Restore Points =========================
21-01-2018 23:39:36 Scheduled Checkpoint
==================== Faulty Device Manager Devices =============
Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/21/2018 10:22:42 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program ArcheAge because of this error.
==================
Error: (01/21/2018 10:22:42 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program ArcheAge because of this error.
Program: ArcheAge
File:
File:
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000026E
Disk type: 0
Error value: C000026E
Disk type: 0
Error: (01/21/2018 10:22:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ArcheAge.exe, version: 4.0.2.0, time stamp: 0x5a584217
Faulting module name: dbghelp.dll, version: 6.12.2.633, time stamp: 0x4b6734ba
Exception code: 0xc0000006
Fault offset: 0x0005e800
Faulting process id: 0x375c
Faulting application start time: 0x01d39337abc716b1
Faulting application path: E:\SteamLibrary\steamapps\common\ArcheAge\Games\ArcheAge\Live\bin32\ArcheAge.exe
Faulting module path: E:\SteamLibrary\steamapps\common\ArcheAge\Games\ArcheAge\Live\bin32\dbghelp.dll
Report Id: 6ef6a9b3-4239-428a-8497-c70854e781ee
Faulting package full name:
Faulting package-relative application ID:
Description: Faulting application name: ArcheAge.exe, version: 4.0.2.0, time stamp: 0x5a584217
Faulting module name: dbghelp.dll, version: 6.12.2.633, time stamp: 0x4b6734ba
Exception code: 0xc0000006
Fault offset: 0x0005e800
Faulting process id: 0x375c
Faulting application start time: 0x01d39337abc716b1
Faulting application path: E:\SteamLibrary\steamapps\common\ArcheAge\Games\ArcheAge\Live\bin32\ArcheAge.exe
Faulting module path: E:\SteamLibrary\steamapps\common\ArcheAge\Games\ArcheAge\Live\bin32\dbghelp.dll
Report Id: 6ef6a9b3-4239-428a-8497-c70854e781ee
Faulting package full name:
Faulting package-relative application ID:
Error: (01/21/2018 03:24:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 0000000004283EB0 Our Record 3 lost: 8BEC3D76 16 user-PC.local. AAAA FE80:0000:0000:0000:A4CF:BEFB:8284:16AF
Description: ResolveSimultaneousProbe: 0000000004283EB0 Our Record 3 lost: 8BEC3D76 16 user-PC.local. AAAA FE80:0000:0000:0000:A4CF:BEFB:8284:16AF
Error: (01/21/2018 03:24:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 0000000004283EB0 Pkt Record: 8F8C97EE 16 user-PC.local. AAAA FE80:0000:0000:0000:DD2A:C90E:98C1:3556
Description: ResolveSimultaneousProbe: 0000000004283EB0 Pkt Record: 8F8C97EE 16 user-PC.local. AAAA FE80:0000:0000:0000:DD2A:C90E:98C1:3556
Error: (01/21/2018 03:24:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 0000000004283EB0 Our Record 3 won: 8BEC3D76 16 user-PC.local. AAAA FE80:0000:0000:0000:A4CF:BEFB:8284:16AF
Description: ResolveSimultaneousProbe: 0000000004283EB0 Our Record 3 won: 8BEC3D76 16 user-PC.local. AAAA FE80:0000:0000:0000:A4CF:BEFB:8284:16AF
Error: (01/21/2018 03:24:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 0000000004283EB0 Pkt Record: 002C2A30 4 user-PC.local. Addr 169.254.53.86
Description: ResolveSimultaneousProbe: 0000000004283EB0 Pkt Record: 002C2A30 4 user-PC.local. Addr 169.254.53.86
Error: (01/21/2018 03:24:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 0000000004283EB0 Our Record 3 lost: 00303448 4 user-PC.local. Addr 192.168.1.73
Description: ResolveSimultaneousProbe: 0000000004283EB0 Our Record 3 lost: 00303448 4 user-PC.local. Addr 192.168.1.73
Error: (01/21/2018 03:24:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 0000000004283EB0 Pkt Record: 8F8C97EE 16 user-PC.local. AAAA FE80:0000:0000:0000:DD2A:C90E:98C1:3556
Description: ResolveSimultaneousProbe: 0000000004283EB0 Pkt Record: 8F8C97EE 16 user-PC.local. AAAA FE80:0000:0000:0000:DD2A:C90E:98C1:3556
Error: (01/21/2018 03:24:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 0000000004283EB0 Our Record 3 won: 00303448 4 user-PC.local. Addr 192.168.1.73
Description: ResolveSimultaneousProbe: 0000000004283EB0 Our Record 3 won: 00303448 4 user-PC.local. Addr 192.168.1.73
Error: (01/21/2018 03:24:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 0000000004283EB0 Pkt Record: 002C2A30 4 user-PC.local. Addr 169.254.53.86
Description: ResolveSimultaneousProbe: 0000000004283EB0 Pkt Record: 002C2A30 4 user-PC.local. Addr 169.254.53.86
System errors:
=============
Error: (01/25/2018 07:04:04 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Acronis Sync Agent Service service hung on starting.
Error: (01/25/2018 07:01:48 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Downloaded Maps Manager service hung on starting.
Description: The Downloaded Maps Manager service hung on starting.
Error: (01/25/2018 06:59:33 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Energy Server Service WILLAMETTE service hung on starting.
Description: The Energy Server Service WILLAMETTE service hung on starting.
Error: (01/25/2018 06:57:11 AM) (Source: DCOM) (EventID: 10016) (User: user-PC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user user-PC\user SID (S-1-5-21-923925315-484671486-2491507011-1000) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user user-PC\user SID (S-1-5-21-923925315-484671486-2491507011-1000) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (01/25/2018 06:56:59 AM) (Source: DCOM) (EventID: 10016) (User: user-PC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user user-PC\user SID (S-1-5-21-923925315-484671486-2491507011-1000) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user user-PC\user SID (S-1-5-21-923925315-484671486-2491507011-1000) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (01/25/2018 06:51:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SystemUsageReportSvc_WILLAMETTE service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Description: The SystemUsageReportSvc_WILLAMETTE service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Error: (01/25/2018 06:51:50 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the SystemUsageReportSvc_WILLAMETTE service to connect.
Description: A timeout was reached (30000 milliseconds) while waiting for the SystemUsageReportSvc_WILLAMETTE service to connect.
Error: (01/25/2018 06:51:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Freemake Improver service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Description: The Freemake Improver service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Error: (01/25/2018 06:51:50 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Freemake Improver service to connect.
Description: A timeout was reached (30000 milliseconds) while waiting for the Freemake Improver service to connect.
Error: (01/25/2018 06:51:24 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The lxebCATSCustConnectService service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Description: The lxebCATSCustConnectService service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
CodeIntegrity:
===================================
Date: 2018-01-25 07:11:04.117
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 07:11:04.116
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 07:10:41.114
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 07:10:41.112
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 07:10:33.111
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 07:10:33.110
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 07:10:31.110
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 07:10:31.109
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 07:10:30.116
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 07:10:30.115
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: Intel® Core™ i5-3210M CPU @ 2.50GHz
Percentage of memory in use: 34%
Total physical RAM: 8081.28 MB
Available physical RAM: 5314.59 MB
Total Virtual: 16273.28 MB
Available Virtual: 13263.82 MB
Percentage of memory in use: 34%
Total physical RAM: 8081.28 MB
Available physical RAM: 5314.59 MB
Total Virtual: 16273.28 MB
Available Virtual: 13263.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:297.65 GB) (Free:63.03 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (USB20FD) (Removable) (Total:29.73 GB) (Free:29.27 GB) FAT32
Drive e: (USB20FD) (Removable) (Total:29.73 GB) (Free:29.27 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: FE0A98B4)
Partition 1: (Active) - (Size=297.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: FE0A98B4)
Partition 1: (Active) - (Size=297.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 29.7 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=29.7 GB) - (Type=0C)
Disk: 1 (MBR Code: Windows XP) (Size: 29.7 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=29.7 GB) - (Type=0C)
==================== End of Addition.txt ============================
any help will be aprechated and thanks.
Sign In
Create Account
