This has been going on for about a month, it goes away with a computer restart, but doesnt last long. IT is exacerbated with downloads, or multiple tabs. Some times when any media is played.
the computer right now downloading games during the Steam Summer sale I have about 7 seconds of normal function, followed by a 2-3 second pause.
I dont know if this is virus/malware or if any parts in my computer are nearing the end of their life.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2019
Ran by Beleg (administrator) on DESKTOP-VS50KFR (Gigabyte Technology Co., Ltd. X299 AORUS Gaming 7) (28-06-2019 18:29:47)
Running from C:\Users\Beleg\Desktop
Loaded Profiles: Beleg (Available Profiles: Beleg)
Platform: Windows 10 Pro Version 1803 17134.829 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19041.16510.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Connection Service\Creative.AudPosService.exe
(Creative Technology Ltd.) [File not signed] C:\Program Files (x86)\Creative\Connection Service\Connection Service.exe
(Creative Technology Ltd.) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Creative.SBConnect.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel® INTELND1617S2 -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel® Rapid Storage Technology enterprise -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology enterprise\IAStorDataMgrSvc.exe
(Intel® Rapid Storage Technology enterprise -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology enterprise\IAStorIcon.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Beleg\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Sysinternals - www.sysinternals.com) C:\Users\Beleg\Desktop\procexp64.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20174.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20174.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\Creative.UWPRPCService.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Qualcomm Atheros -> Windows ® Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Razer USA Ltd. -> Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer USA Ltd. -> Razer, Inc.) C:\Users\Beleg\AppData\Local\Razer\InGameEngine\cache\RzSynapse\rzcefrenderprocess.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Killer Control Center\KillerControlCenter.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Killer Control Center\KillerNetworkService.exe
(TEFINCOM S.A. -> ) C:\Program Files (x86)\NordVPN\nordvpn-service.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Games\Steam\Steam.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Zenimax Media Inc. -> Bethesda Softworks) C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetLauncher.exe
(Zenimax Media Inc. -> Bethesda Softworks) C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230816 2017-07-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology enterprise\IAStorIcon.exe [289880 2017-10-09] (Intel® Rapid Storage Technology enterprise -> Intel Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942744 2018-12-17] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [597688 2018-05-15] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\Run: [Creative.SBConnect] => C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Creative.SBConnect.exe [82432 2017-04-20] (Creative Technology Ltd.) [File not signed]
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\Run: [Creative.CreativeConnectionService] => C:\Program Files (x86)\Creative\Connection Service\Connection Service.exe [156672 2017-02-28] (Creative Technology Ltd.) [File not signed]
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\Run: [Steam] => "C:\Program Files (x86)\Steam\steam.exe" -silent
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\Run: [Spotify] => C:\Users\Beleg\AppData\Roaming\Spotify\Spotify.exe [26118888 2019-02-17] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35519888 2019-06-20] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7514200 2019-06-11] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe [2019-06-18] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Control Center.lnk [2018-01-06]
ShortcutTarget: Killer Control Center.lnk -> C:\Program Files\Killer Networking\Killer Control Center\KillerControlCenter.exe (Rivet Networks LLC -> Rivet Networks)
Startup: C:\Users\Beleg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2018-02-08]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Beleg\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {13C47E26-5755-4031-90EA-7AF09B00324C} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [491832 2019-06-13] (Bitdefender SRL -> Bitdefender)
Task: {23D49560-9A46-4902-9741-8BBF683ACA4F} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {2C8B6112-EE01-4BDF-8908-FE2FDBB24C68} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3297832 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {393AC21C-BD90-40B0-92D8-A16E0FAEABC4} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {461B7BF5-AB0F-45C3-A8BE-0A0E4809C0F3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [982568 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BFDFF6D-0DED-43EC-8319-086787C7CD57} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-06] (Google Inc -> Google Inc.)
Task: {6E690AC3-A986-4B8D-97A5-9C96DAF30A88} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6F875326-A267-42B6-BE91-C024E462667C} - System32\Tasks\Process Explorer-DESKTOP-VS50KFR-Beleg => C:\USERS\BELEG\DESKTOP\PROCEXP64.EXE [1458856 2018-01-09] (Microsoft Corporation -> Sysinternals - www.sysinternals.com)
Task: {B5D23CEA-380B-4D8A-8885-D8BE952060C7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B95E0F93-DDD9-457D-B5A3-50EB845A6A89} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-06] (Google Inc -> Google Inc.)
Task: {BE7DC582-DFF5-4D88-82B1-7CE70C7111A7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C21B6EEF-E528-4304-AFFD-CC3BF9BC32BA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {C41CB8EA-D0D3-412F-8D5A-D762EFDD30F4} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel® Trust Services -> Intel® Corporation)
Task: {CAA13042-73A6-487F-AD8C-8679061A80FC} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D8CB24F2-C475-46ED-8A26-6245B5B35E41} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DA8FD5C4-7B2B-4AEA-ADBD-BD144AA199B0} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_207_Plugin.exe [1457208 2019-06-11] (Adobe Inc. -> Adobe)
Task: {DFB81143-134F-4446-9A15-F57D59936A1A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [856616 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0E9BE16-6A64-49F6-A5B2-A946F9769AA3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [856616 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ECF2F897-C699-4D71-A7A6-59F4EA723AC0} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [647720 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EF0DD601-4FE4-4375-BE4E-DEE92BE0BADD} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-06-11] (Adobe Inc. -> Adobe)
Task: {F5DF9148-0CB2-4479-B89B-EACD133CE691} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9E59C4C-04B9-421E-92CA-6C2BF7AF6133} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232880 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {FFAAC3D6-6056-4035-AF29-7E3D4AF31E02} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-874985295-1933766520-4160478332-1001 => C:\Users\Beleg\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2019-03-13] (Mega Limited -> Mega Limited)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 172.16.0.1
Tcpip\..\Interfaces\{31703abd-1878-409c-af1c-e4d1f0c48e41}: [DhcpNameServer] 172.16.0.1
Tcpip\..\Interfaces\{cc8d91ff-1afb-4a79-bfdf-8d0ab83afc55}: [DhcpNameServer] 172.16.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-874985295-1933766520-4160478332-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-05-23] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-23] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
FireFox:
========
FF DefaultProfile: 8erf914x.default
FF ProfilePath: C:\Users\Beleg\AppData\Roaming\Mozilla\Firefox\Profiles\8erf914x.default [2019-06-28]
FF Homepage: Mozilla\Firefox\Profiles\8erf914x.default -> hxxps://www.google.com/
FF HomepageOverride: Mozilla\Firefox\Profiles\8erf914x.default -> Disabled: web@Transit
FF NewTabOverride: Mozilla\Firefox\Profiles\8erf914x.default -> Disabled: web@Transit
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_207.dll [2019-06-11] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_207.dll [2019-06-11] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1231201.dll [2017-11-02] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-14] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-14] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-02] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default [2019-06-09]
CHR Extension: (Slides) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-06]
CHR Extension: (Docs) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-28]
CHR Extension: (Google Drive) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-28]
CHR Extension: (YouTube) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-28]
CHR Extension: (Adobe Acrobat) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-01-28]
CHR Extension: (Sheets) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-06]
CHR Extension: (Google Docs Offline) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-06-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-27]
CHR Extension: (Gmail) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-09]
CHR Extension: (Chrome Media Router) - C:\Users\Beleg\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-09]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 bdredline; C:\Program Files\Bitdefender Antivirus Free\bdredline.exe [2500144 2019-05-28] (Bitdefender SRL -> Bitdefender)
R2 Creative.AudPosService; C:\Program Files (x86)\Creative\Connection Service\Creative.AudPosService.exe [10752 2017-02-28] (Creative Technology Ltd) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2019-02-04] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142792 2018-10-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [732448 2017-02-24] (Intel® Trust Services -> Intel® Corporation)
S2 Intel® TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [548648 2017-02-24] (Intel® Trust Services -> Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [196712 2017-04-24] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 Killer Network Service x64; C:\Program Files\Killer Networking\Killer Control Center\KillerNetworkService.exe [2193088 2017-05-05] (Rivet Networks LLC -> Rivet Networks)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 nordvpn-service; C:\Program Files (x86)\NordVPN\nordvpn-service.exe [184784 2018-12-04] (TEFINCOM S.A. -> )
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [767472 2018-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
R2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [123824 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1294448 2019-05-14] (Bitdefender SRL -> Bitdefender)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [439936 2018-01-09] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943232 2018-01-09] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189776 2018-03-14] (Razer USA Ltd. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5074120 2019-03-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [238376 2019-05-28] (Bitdefender SRL -> Bitdefender)
R2 UWPService; C:\WINDOWS\SysWOW64\Creative.UWPRPCService.exe [351320 2018-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [238376 2019-05-28] (Bitdefender SRL -> Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [238376 2019-05-28] (Bitdefender SRL -> Bitdefender)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28760 2019-06-11] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1551768 2019-05-28] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [395728 2019-05-06] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22960 2019-04-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 e2xw10x64; C:\WINDOWS\System32\drivers\e2xw10x64.sys [164592 2017-04-17] (Rivet Networks LLC -> Qualcomm Atheros, Inc.)
R3 edrsensor; C:\WINDOWS\System32\DRIVERS\edrsensor.sys [298488 2019-05-28] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
S3 gdrv; C:\WINDOWS\gdrv.sys [26792 2018-05-23] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\WINDOWS\gdrv2.sys [32720 2018-12-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 Gemma; C:\WINDOWS\System32\DRIVERS\Gemma.sys [374632 2019-01-31] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
S3 GLCKIO; C:\ProgramData\ASUS\GLKIO\690b33e1-0462-4e84-9bea-c7552b45432a.sys [18712 2018-09-11] (ASUSTeK Computer Inc. -> )
R2 GLCKIO2; C:\Program Files (x86)\GIGABYTE\RGBFusion\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> )
R0 gzflt; C:\WINDOWS\System32\drivers\gzflt.sys [188384 2019-04-24] (Bitdefender SRL -> BitDefender LLC)
R0 iaStorE; C:\WINDOWS\System32\drivers\iaStorE.sys [1007712 2017-10-09] (Intel® Rapid Storage Technology enterprise -> Intel Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-06-24] (Malwarebytes Corporation -> Malwarebytes)
R3 MBfilt; C:\WINDOWS\system32\drivers\MBfilt64.sys [34896 2018-12-10] (WDKTestCert ctl_avpbuild,131450919658074287 -> Creative Technology Ltd.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_adc520364db29861\nvlddmkm.sys [17213832 2018-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
R3 Qcamain10x64; C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys [2421680 2017-05-03] (Qualcomm Atheros -> Qualcomm Atheros, Inc.)
R2 RfeCoSvc; C:\WINDOWS\system32\DRIVERS\RfeCo10X64.sys [123624 2017-05-05] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RzDev_0221; C:\WINDOWS\System32\drivers\RzDev_0221.sys [50152 2018-01-23] (Razer USA Ltd. -> Razer Inc)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [52240 2017-07-19] (Razer USA Ltd. -> Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44160 2018-03-14] (Razer USA Ltd. -> Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [140040 2018-03-20] (Razer USA Ltd. -> Razer, Inc.)
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2018-12-21] (SteelSeries ApS -> )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-06-13] (TEFINCOM S.A. -> The OpenVPN Project)
R2 trufos; C:\WINDOWS\System32\drivers\trufos.sys [611152 2019-05-28] (Bitdefender SRL -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-06-28 18:29 - 2019-06-28 18:30 - 000034836 _____ C:\Users\Beleg\Desktop\FRST.txt
2019-06-28 18:28 - 2019-06-28 18:29 - 000000000 ____D C:\FRST
2019-06-28 18:28 - 2019-06-28 18:28 - 002418688 _____ (Farbar) C:\Users\Beleg\Desktop\FRST64.exe
2019-06-28 18:08 - 2019-06-28 18:08 - 000000208 _____ C:\Users\Beleg\Desktop\No Man's Sky.url
2019-06-25 18:02 - 2019-06-25 18:02 - 000074588 _____ C:\ProgramData\agent.update.1561500151.bdinstall.v2.bin
2019-06-24 15:38 - 2019-06-24 15:38 - 000000000 ____D C:\ProgramData\dbg
2019-06-24 15:32 - 2019-06-24 15:32 - 000000000 _____ C:\Users\Beleg\AppData\Local\{F992C20E-29E1-4CE6-967B-14F5F8BA81E0}
2019-06-23 09:51 - 2019-06-24 15:33 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-06-23 03:44 - 2019-06-23 03:44 - 010490928 _____ C:\Users\Beleg\Desktop\bitdefender_online.exe
2019-06-18 14:50 - 2019-06-18 14:50 - 000000000 ____D C:\Program Files\UNP
2019-06-17 21:57 - 2019-06-24 15:33 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-06-11 17:26 - 2019-06-07 07:04 - 021388752 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-06-11 17:26 - 2019-06-07 01:57 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-06-11 17:26 - 2019-06-07 01:46 - 006569344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-06-11 17:26 - 2019-06-07 01:38 - 025857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-06-11 17:26 - 2019-06-07 01:27 - 022718976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-06-11 17:26 - 2019-05-17 02:19 - 004515840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-06-11 17:26 - 2019-05-17 01:31 - 004937216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-06-11 17:26 - 2019-05-17 01:31 - 003293184 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-06-11 17:25 - 2019-06-07 07:04 - 001633136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-06-11 17:25 - 2019-06-07 06:48 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-06-11 17:25 - 2019-06-07 06:47 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-06-11 17:25 - 2019-06-07 06:45 - 012756480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-06-11 17:25 - 2019-06-07 06:42 - 003613696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-06-11 17:25 - 2019-06-07 06:41 - 004055552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-06-11 17:25 - 2019-06-07 06:40 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-06-11 17:25 - 2019-06-07 06:40 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-06-11 17:25 - 2019-06-07 06:23 - 001453920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-06-11 17:25 - 2019-06-07 06:19 - 020383832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-06-11 17:25 - 2019-06-07 06:10 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-06-11 17:25 - 2019-06-07 06:07 - 011942400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-06-11 17:25 - 2019-06-07 06:04 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-06-11 17:25 - 2019-06-07 06:04 - 002881536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-06-11 17:25 - 2019-06-07 06:04 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-06-11 17:25 - 2019-06-07 02:07 - 000707384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-06-11 17:25 - 2019-06-07 02:01 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-06-11 17:25 - 2019-06-07 01:58 - 001220112 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-06-11 17:25 - 2019-06-07 01:58 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-06-11 17:25 - 2019-06-07 01:58 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-06-11 17:25 - 2019-06-07 01:58 - 000422416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2019-06-11 17:25 - 2019-06-07 01:58 - 000135176 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-06-11 17:25 - 2019-06-07 01:58 - 000076304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-06-11 17:25 - 2019-06-07 01:57 - 007436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-06-11 17:25 - 2019-06-07 01:57 - 002811192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-06-11 17:25 - 2019-06-07 01:57 - 002719032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-06-11 17:25 - 2019-06-07 01:57 - 001934808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-06-11 17:25 - 2019-06-07 01:57 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-06-11 17:25 - 2019-06-07 01:57 - 000792888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-06-11 17:25 - 2019-06-07 01:57 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-06-11 17:25 - 2019-06-07 01:57 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-06-11 17:25 - 2019-06-07 01:57 - 000494304 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-06-11 17:25 - 2019-06-07 01:57 - 000435000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-06-11 17:25 - 2019-06-07 01:57 - 000413720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-06-11 17:25 - 2019-06-07 01:57 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-06-11 17:25 - 2019-06-07 01:57 - 000383504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-06-11 17:25 - 2019-06-07 01:57 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-06-11 17:25 - 2019-06-07 01:57 - 000148280 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-06-11 17:25 - 2019-06-07 01:57 - 000137448 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2019-06-11 17:25 - 2019-06-07 01:56 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-06-11 17:25 - 2019-06-07 01:56 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-06-11 17:25 - 2019-06-07 01:47 - 000380432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-06-11 17:25 - 2019-06-07 01:47 - 000097272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2019-06-11 17:25 - 2019-06-07 01:46 - 006043496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-06-11 17:25 - 2019-06-07 01:46 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-06-11 17:25 - 2019-06-07 01:46 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-06-11 17:25 - 2019-06-07 01:46 - 000581048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-06-11 17:25 - 2019-06-07 01:46 - 000357072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-06-11 17:25 - 2019-06-07 01:46 - 000128792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-06-11 17:25 - 2019-06-07 01:37 - 022019584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-06-11 17:25 - 2019-06-07 01:31 - 019372544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-06-11 17:25 - 2019-06-07 01:24 - 005784064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-06-11 17:25 - 2019-06-07 01:24 - 003400704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-06-11 17:25 - 2019-06-07 01:24 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-06-11 17:25 - 2019-06-07 01:23 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-06-11 17:25 - 2019-06-07 01:23 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-06-11 17:25 - 2019-06-07 01:23 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-06-11 17:25 - 2019-06-07 01:22 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-06-11 17:25 - 2019-06-07 01:22 - 003710976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-06-11 17:25 - 2019-06-07 01:22 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-06-11 17:25 - 2019-06-07 01:22 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2019-06-11 17:25 - 2019-06-07 01:22 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2019-06-11 17:25 - 2019-06-07 01:21 - 007588864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-06-11 17:25 - 2019-06-07 01:21 - 004866048 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-06-11 17:25 - 2019-06-07 01:21 - 001778688 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-06-11 17:25 - 2019-06-07 01:21 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-06-11 17:25 - 2019-06-07 01:21 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-06-11 17:25 - 2019-06-07 01:21 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-06-11 17:25 - 2019-06-07 01:20 - 002610688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-06-11 17:25 - 2019-06-07 01:20 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-06-11 17:25 - 2019-06-07 01:20 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-06-11 17:25 - 2019-06-07 01:20 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-06-11 17:25 - 2019-06-07 01:19 - 003212288 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-06-11 17:25 - 2019-06-07 01:19 - 002175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-06-11 17:25 - 2019-06-07 01:19 - 001560576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-06-11 17:25 - 2019-06-07 01:19 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-06-11 17:25 - 2019-06-07 01:19 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-06-11 17:25 - 2019-06-07 01:19 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2019-06-11 17:25 - 2019-06-07 01:18 - 002166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-06-11 17:25 - 2019-06-07 01:18 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-06-11 17:25 - 2019-06-07 01:18 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-06-11 17:25 - 2019-06-07 01:17 - 001920000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-06-11 17:25 - 2019-06-07 01:17 - 000961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-06-11 17:25 - 2019-06-07 01:17 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-06-11 17:25 - 2019-06-07 01:16 - 001102336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-06-11 17:25 - 2019-06-07 01:16 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-06-11 17:25 - 2019-06-07 01:16 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-06-11 17:25 - 2019-06-07 01:16 - 000478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2019-06-11 17:25 - 2019-06-07 00:00 - 000001308 _____ C:\WINDOWS\system32\tcbres.wim
2019-06-11 17:25 - 2019-05-18 18:12 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-06-11 17:25 - 2019-05-18 18:12 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-06-11 17:25 - 2019-05-18 18:12 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-06-11 17:25 - 2019-05-18 18:12 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-06-11 17:25 - 2019-05-17 08:44 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-06-11 17:25 - 2019-05-17 08:40 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-06-11 17:25 - 2019-05-17 08:40 - 000280888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2019-06-11 17:25 - 2019-05-17 08:27 - 006586880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-06-11 17:25 - 2019-05-17 08:26 - 004393984 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-06-11 17:25 - 2019-05-17 08:25 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-06-11 17:25 - 2019-05-17 08:25 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-06-11 17:25 - 2019-05-17 08:25 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-06-11 17:25 - 2019-05-17 08:24 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-06-11 17:25 - 2019-05-17 08:23 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2019-06-11 17:25 - 2019-05-17 08:23 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2019-06-11 17:25 - 2019-05-17 08:23 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-06-11 17:25 - 2019-05-17 08:22 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-06-11 17:25 - 2019-05-17 08:22 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-06-11 17:25 - 2019-05-17 08:21 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-06-11 17:25 - 2019-05-17 08:21 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-06-11 17:25 - 2019-05-17 08:21 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-06-11 17:25 - 2019-05-17 08:21 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3gpui.dll
2019-06-11 17:25 - 2019-05-17 08:21 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-06-11 17:25 - 2019-05-17 08:20 - 002084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-06-11 17:25 - 2019-05-17 08:20 - 001970688 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2019-06-11 17:25 - 2019-05-17 08:20 - 000725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCacheProvider.dll
2019-06-11 17:25 - 2019-05-17 08:20 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSh.dll
2019-06-11 17:25 - 2019-05-17 08:20 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll
2019-06-11 17:25 - 2019-05-17 08:19 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-06-11 17:25 - 2019-05-17 08:07 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-06-11 17:25 - 2019-05-17 08:00 - 005658112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-06-11 17:25 - 2019-05-17 07:58 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-06-11 17:25 - 2019-05-17 07:58 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll
2019-06-11 17:25 - 2019-05-17 07:56 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-06-11 17:25 - 2019-05-17 07:56 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3gpui.dll
2019-06-11 17:25 - 2019-05-17 07:55 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-06-11 17:25 - 2019-05-17 07:55 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-06-11 17:25 - 2019-05-17 07:55 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2019-06-11 17:25 - 2019-05-17 07:55 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDistSh.dll
2019-06-11 17:25 - 2019-05-17 07:54 - 002016768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-06-11 17:25 - 2019-05-17 07:54 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-06-11 17:25 - 2019-05-17 05:33 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-06-11 17:25 - 2019-05-17 04:52 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-06-11 17:25 - 2019-05-17 03:07 - 000105272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-06-11 17:25 - 2019-05-17 02:44 - 000829960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-06-11 17:25 - 2019-05-17 02:44 - 000550520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-06-11 17:25 - 2019-05-17 02:43 - 000297688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 005625160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 002256560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 001989552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 001980256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 001620264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 001380096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2019-06-11 17:25 - 2019-05-17 02:42 - 000125504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-06-11 17:25 - 2019-05-17 02:30 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-06-11 17:25 - 2019-05-17 02:26 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-06-11 17:25 - 2019-05-17 02:23 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-06-11 17:25 - 2019-05-17 02:23 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-06-11 17:25 - 2019-05-17 02:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-06-11 17:25 - 2019-05-17 02:22 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2019-06-11 17:25 - 2019-05-17 02:22 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2019-06-11 17:25 - 2019-05-17 02:21 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-06-11 17:25 - 2019-05-17 02:21 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2019-06-11 17:25 - 2019-05-17 02:21 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2019-06-11 17:25 - 2019-05-17 02:20 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-06-11 17:25 - 2019-05-17 02:20 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-06-11 17:25 - 2019-05-17 02:19 - 001630720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-06-11 17:25 - 2019-05-17 02:19 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-06-11 17:25 - 2019-05-17 02:19 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-06-11 17:25 - 2019-05-17 02:19 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2019-06-11 17:25 - 2019-05-17 02:19 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-06-11 17:25 - 2019-05-17 02:18 - 002796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-06-11 17:25 - 2019-05-17 02:18 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-06-11 17:25 - 2019-05-17 02:18 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-06-11 17:25 - 2019-05-17 02:08 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-06-11 17:25 - 2019-05-17 02:08 - 000723432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-06-11 17:25 - 2019-05-17 02:08 - 000491200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-06-11 17:25 - 2019-05-17 02:08 - 000401328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2019-06-11 17:25 - 2019-05-17 02:07 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-06-11 17:25 - 2019-05-17 02:07 - 002768960 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-06-11 17:25 - 2019-05-17 02:07 - 002571640 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-06-11 17:25 - 2019-05-17 02:07 - 002467320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-06-11 17:25 - 2019-05-17 02:07 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-06-11 17:25 - 2019-05-17 02:07 - 001288712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-06-11 17:25 - 2019-05-17 02:07 - 001260272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-06-11 17:25 - 2019-05-17 02:07 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-06-11 17:25 - 2019-05-17 02:07 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-06-11 17:25 - 2019-05-17 02:07 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-06-11 17:25 - 2019-05-17 02:06 - 001943136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-06-11 17:25 - 2019-05-17 02:06 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-06-11 17:25 - 2019-05-17 02:06 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-06-11 17:25 - 2019-05-17 02:06 - 001140992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-06-11 17:25 - 2019-05-17 02:06 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-06-11 17:25 - 2019-05-17 02:06 - 000983424 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-06-11 17:25 - 2019-05-17 02:06 - 000151888 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-06-11 17:25 - 2019-05-17 02:04 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-06-11 17:25 - 2019-05-17 02:00 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-06-11 17:25 - 2019-05-17 01:44 - 016597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-06-11 17:25 - 2019-05-17 01:38 - 004709376 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-06-11 17:25 - 2019-05-17 01:37 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-06-11 17:25 - 2019-05-17 01:37 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2019-06-11 17:25 - 2019-05-17 01:37 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2019-06-11 17:25 - 2019-05-17 01:36 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-06-11 17:25 - 2019-05-17 01:36 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-06-11 17:25 - 2019-05-17 01:36 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-06-11 17:25 - 2019-05-17 01:36 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2019-06-11 17:25 - 2019-05-17 01:36 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-06-11 17:25 - 2019-05-17 01:36 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-06-11 17:25 - 2019-05-17 01:36 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-06-11 17:25 - 2019-05-17 01:35 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-06-11 17:25 - 2019-05-17 01:35 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2019-06-11 17:25 - 2019-05-17 01:35 - 000322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-06-11 17:25 - 2019-05-17 01:34 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-06-11 17:25 - 2019-05-17 01:34 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-06-11 17:25 - 2019-05-17 01:34 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2019-06-11 17:25 - 2019-05-17 01:34 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2019-06-11 17:25 - 2019-05-17 01:34 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2019-06-11 17:25 - 2019-05-17 01:34 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-06-11 17:25 - 2019-05-17 01:34 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-06-11 17:25 - 2019-05-17 01:34 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2019-06-11 17:25 - 2019-05-17 01:33 - 003091456 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-06-11 17:25 - 2019-05-17 01:33 - 002912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-06-11 17:25 - 2019-05-17 01:33 - 002370560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-06-11 17:25 - 2019-05-17 01:33 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-06-11 17:25 - 2019-05-17 01:33 - 001214464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-06-11 17:25 - 2019-05-17 01:33 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-06-11 17:25 - 2019-05-17 01:33 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2019-06-11 17:25 - 2019-05-17 01:32 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2019-06-11 17:25 - 2019-05-17 01:32 - 000815104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-06-11 17:25 - 2019-05-17 01:31 - 003376640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-06-11 17:25 - 2019-05-17 01:31 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-06-11 17:25 - 2019-05-17 01:31 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-06-11 17:25 - 2019-05-17 01:31 - 001383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-06-11 17:25 - 2019-05-17 01:31 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-06-11 17:25 - 2019-05-17 01:31 - 001211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-06-11 17:25 - 2019-05-17 01:31 - 001027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2019-06-11 17:25 - 2019-05-17 01:31 - 000620032 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-06-11 17:25 - 2019-05-17 01:31 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-06-11 17:25 - 2019-05-17 01:30 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-06-11 17:25 - 2019-05-17 01:30 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-06-11 17:25 - 2019-05-17 01:30 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2019-06-11 17:21 - 2019-02-13 01:47 - 001909560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2019-06-09 02:54 - 2019-06-09 04:33 - 1317364233 _____ C:\Users\Beleg\Desktop\Spawn - The Dark Ages (01-28) (1999-2001) GetComics.INFO.zip
2019-06-07 20:42 - 2019-06-07 20:42 - 000000000 ____D C:\Users\Beleg\AppData\Local\Trover
2019-06-05 07:16 - 2019-06-05 07:16 - 000000209 _____ C:\Users\Beleg\Desktop\Trover Saves the Universe.url
2019-06-05 07:03 - 2019-06-05 07:03 - 000000207 _____ C:\Users\Beleg\Desktop\Fallout New Vegas.url
2019-06-04 03:04 - 2019-06-04 03:04 - 000000000 ____D C:\Primal Fetish - Vampire Protege
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-06-28 18:30 - 2018-01-06 15:28 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2019-06-28 18:24 - 2018-01-27 17:44 - 000000000 ____D C:\Program Files (x86)\Bethesda.net Launcher
2019-06-28 17:53 - 2018-04-11 19:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-28 17:12 - 2018-05-23 17:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-28 15:37 - 2018-04-11 17:04 - 000131072 _____ C:\WINDOWS\system32\config\ELAM
2019-06-28 15:37 - 2018-01-27 17:44 - 000000000 ____D C:\Users\Beleg\AppData\Local\Bethesda.net Launcher
2019-06-28 12:25 - 2018-01-06 14:38 - 000000000 ____D C:\ProgramData\NVIDIA
2019-06-27 15:11 - 2019-05-24 06:15 - 000000000 ____D C:\Users\Beleg\AppData\LocalLow\uTorrent
2019-06-27 15:11 - 2018-01-09 04:52 - 000000000 ____D C:\Users\Beleg\AppData\Roaming\uTorrent
2019-06-27 06:12 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-06-27 06:11 - 2018-04-11 19:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-25 18:02 - 2018-01-06 15:27 - 000000000 ____D C:\Program Files\Bitdefender Agent
2019-06-24 17:28 - 2018-06-14 19:43 - 000000000 ____D C:\WINDOWS\Minidump
2019-06-24 15:39 - 2018-05-23 17:58 - 000840376 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-06-24 15:39 - 2018-04-11 19:36 - 000000000 ____D C:\WINDOWS\INF
2019-06-24 15:37 - 2018-01-06 15:23 - 000000000 ____D C:\Users\Beleg\AppData\LocalLow\Mozilla
2019-06-24 15:33 - 2018-05-23 17:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-24 15:33 - 2018-05-23 17:54 - 000000000 ____D C:\Users\Beleg
2019-06-24 15:33 - 2018-01-06 15:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-06-23 17:56 - 2018-01-06 15:23 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-06-23 02:57 - 2019-03-31 16:56 - 000000000 ____D C:\Program Files (x86)\Cheat Engine 6.8.3
2019-06-20 18:38 - 2018-11-15 20:29 - 000000000 ____D C:\Program Files\rempl
2019-06-18 18:03 - 2019-04-23 20:51 - 000000000 ____D C:\Users\Beleg\AppData\Local\MK11
2019-06-18 12:54 - 2018-01-06 15:24 - 000002310 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-06-17 22:34 - 2018-04-29 23:29 - 000000000 ____D C:\Users\Beleg\AppData\Roaming\discord
2019-06-17 21:56 - 2018-04-11 17:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-06-17 10:04 - 2019-02-25 16:10 - 000000000 ____D C:\Users\Beleg\AppData\Local\BitTorrentHelper
2019-06-13 22:36 - 2018-01-06 15:27 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-06-13 10:28 - 2018-05-23 17:58 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-874985295-1933766520-4160478332-1001
2019-06-13 10:28 - 2018-05-23 17:54 - 000002372 _____ C:\Users\Beleg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-06-13 10:28 - 2018-01-06 14:16 - 000000000 ___RD C:\Users\Beleg\OneDrive
2019-06-12 16:17 - 2018-04-11 19:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-06-11 17:53 - 2018-05-23 17:53 - 000322944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-06-11 17:51 - 2018-01-06 15:25 - 000000000 ____D C:\Program Files (x86)\Java
2019-06-11 17:48 - 2018-09-12 18:56 - 000000000 ____D C:\Users\Beleg\AppData\Roaming\Vortex
2019-06-11 17:48 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-06-11 17:48 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-06-11 17:48 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\Provisioning
2019-06-11 17:48 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-06-11 17:48 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-06-11 17:25 - 2018-01-06 16:08 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-06-11 17:24 - 2018-01-06 16:08 - 135349160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-06-11 05:07 - 2018-05-23 17:58 - 000004588 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-06-11 05:07 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-06-11 05:07 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-06-10 11:14 - 2018-01-06 21:00 - 000000000 ____D C:\Users\Beleg\AppData\Local\CrashDumps
2019-06-07 23:07 - 2018-02-24 22:30 - 000000000 ____D C:\Users\Beleg\AppData\Local\FalloutNV
2019-06-07 21:48 - 2018-01-06 20:09 - 000000000 ____D C:\Users\Beleg\Documents\My Games
2019-06-07 20:42 - 2018-01-06 15:42 - 000000000 ____D C:\ProgramData\Package Cache
2019-06-03 21:54 - 2019-05-17 00:59 - 000000000 ____D C:\ProgramData\USVFS
2019-05-30 21:57 - 2018-04-11 19:41 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-05-30 21:57 - 2018-04-11 19:41 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories ================
2019-06-24 15:32 - 2019-06-24 15:32 - 000000000 _____ () C:\Users\Beleg\AppData\Local\{F992C20E-29E1-4CE6-967B-14F5F8BA81E0}
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-06-2019
Ran by Beleg (28-06-2019 18:31:47)
Running from C:\Users\Beleg\Desktop
Windows 10 Pro Version 1803 17134.829 (X64) (2018-05-23 21:59:37)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-874985295-1933766520-4160478332-500 - Administrator - Disabled)
Beleg (S-1-5-21-874985295-1933766520-4160478332-1001 - Administrator - Enabled) => C:\Users\Beleg
DefaultAccount (S-1-5-21-874985295-1933766520-4160478332-503 - Limited - Disabled)
Guest (S-1-5-21-874985295-1933766520-4160478332-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-874985295-1933766520-4160478332-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {51405D0C-825B-964D-00BD-77E435F203F3}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.18.0709.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.18.0709.1 - GIGABYTE)
µTorrent (HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\uTorrent) (Version: 3.5.5.45263 - BitTorrent Inc.)
7-Zip 17.01 beta (x64) (HKLM\...\7-Zip) (Version: 17.01 beta - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.012.20035 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 28.0.0.127 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.207 - Adobe)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.1.201 - Adobe Systems, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.18.1030.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.18.1030.1 - GIGABYTE)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.38.1 - Asmedia Technology)
Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.59 - Bitdefender)
Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.9.69 - Bitdefender)
CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
Cheat Engine 6.8.3 (HKLM-x32\...\Cheat Engine 6.8.3_is1) (Version: - Cheat Engine)
Connection Service version 1.1.2.0 (HKLM-x32\...\Connection Service_is1) (Version: 1.1.2.0 - Creative Technology Ltd.)
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.45 - Creative Technology Limited)
Discord (HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.24 - NVIDIA Corporation) Hidden
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.18.1019.2 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.18.1019.2 - GIGABYTE)
Epic Games Launcher (HKLM-x32\...\{A398FCC0-8E8B-409E-90E9-ACF4671633F2}) (Version: 1.1.183.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Express Burn Disc Burning Software (HKLM-x32\...\ExpressBurn) (Version: 6.21 - NCH Software)
Fallout 76 (HKLM-x32\...\Fallout 76) (Version: - Bethesda Softworks)
Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0006 - Gigabyte) Hidden
Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0006 - Gigabyte)
GigabyteFirmwareUpdateUtility (HKLM-x32\...\{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.17.0628.1 - GIGABYTE) Hidden
GigabyteFirmwareUpdateUtility (HKLM-x32\...\InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.17.0628.1 - GIGABYTE)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1202.1 - GIGABYTE)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Host OpenAL (HKLM-x32\...\Host OpenAL) (Version: 2.02 - Creative Technology Limited)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1017 - Intel Corporation)
Intel® Network Connections 22.4.16.0 (HKLM\...\PROSetDX) (Version: 22.4.16.0 - Intel)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.8.1.1007 - Intel Corporation)
Intel® Rapid Storage Technology enterprise (HKLM-x32\...\{c5a854f6-5169-4e5c-81c6-e1aacb4f5098}) (Version: 5.3.0.1412 - Intel Corporation)
Java 8 Update 211 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Killer Performance Suite (HKLM\...\{9D19C9E8-92C7-4825-AD7C-E0D25BE7A6ED}) (Version: 1.2.1268 - Rivet Networks)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 5.4.4.2 (HKLM\...\{36E72E7B-9992-4C69-88B1-5E466E4A1386}) (Version: 5.4.4.2 - The Document Foundation)
LOOT version 0.13.4 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.13.4 - LOOT Team)
Malwarebytes version 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft OneDrive (HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\OneDriveSetup.exe) (Version: 19.086.0502.0006 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Mozilla Firefox 67.0.4 (x64 en-US) (HKLM\...\Mozilla Firefox 67.0.4 (x64 en-US)) (Version: 67.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.4 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
NordVPN (HKLM-x32\...\{F11DDED0-213C-41B7-B120-514E402A7B53}) (Version: 6.19.6 - NordVPN) Hidden
NordVPN (HKLM-x32\...\NordVPN 6.19.6) (Version: 6.19.6 - NordVPN)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.24 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.1.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.1.48 - NVIDIA Corporation)
NVIDIA Graphics Driver 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.24 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.0 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.19.529 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8210 - Realtek Semiconductor Corp.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.19.0308.1 - GIGABYTE)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.18.0918.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.18.0918.1 - GIGABYTE)
Sound Blaster Connect 2 version 2.1.4.0 (HKLM-x32\...\Sound Blaster Connect 2_is1) (Version: 2.1.4.0 - Creative Technology Ltd.)
Spotify (HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\Spotify) (Version: 1.1.0.237.g378f6f25 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 0.9.1 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.9.1 - General Workings, Inc.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TAP-NordVPN 9.21.2 (HKLM\...\TAP-NordVPN) (Version: 9.21.2 - NordVPN.com)
Twitch (HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F14FB68A-9188-4036-AD0D-D054BC9C9291}) (Version: 2.59.0.0 - Microsoft Corporation)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 0.17.11 - Black Tree Gaming Ltd.)
Web Companion (HKLM-x32\...\{5104a2f4-9f3a-4de1-b79a-fb8d5171dba3}) (Version: 4.7.1993.3887 - Lavasoft)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22329 - Microsoft Corporation)
Wrye Bash (HKLM-x32\...\Wrye Bash) (Version: 307.2018.0704.0057 - Wrye & Wrye Bash Development Team)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.2.0_x64__tf1gferkr813w [2019-05-28] (Autodesk Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_95.1.531.0_x64__v10z8vjag6ke6 [2019-03-20] (HP Inc.)
Mail and Calendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20174.0_x64__8wekyb3d8bbwe [2019-05-31] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.11723.0_x64__8wekyb3d8bbwe [2019-06-26] (Microsoft Corporation) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.93.478.0_x64__mcm4njqhnhss8 [2019-06-26] (Netflix, Inc.)
Sound Blaster Connect -> C:\Program Files\WindowsApps\CreativeTechnologyLtd.SoundBlasterConnect_2.2.3.0_x86__13fcda18mhdz2 [2019-01-02] (Creative Technology Ltd.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-08-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-08-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Beleg\AppData\Local\MEGAsync\ShellExtX64.dll [2019-03-13] (Mega Limited -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-08-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Beleg\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm
==================== Loaded Modules (Whitelisted) ==============
2018-04-21 12:36 - 2018-04-21 12:36 - 000114688 _____ ( ) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV2.dll
2018-01-27 17:44 - 2018-10-17 20:01 - 001947648 _____ () [File not signed] C:\program files (x86)\bethesda.net launcher\ffmpeg.dll
2018-01-27 17:44 - 2018-10-17 20:01 - 066996224 _____ () [File not signed] C:\program files (x86)\bethesda.net launcher\libcef.dll
2018-01-27 17:44 - 2018-10-17 20:00 - 000012800 _____ () [File not signed] C:\program files (x86)\bethesda.net launcher\libEGL.DLL
2018-01-27 17:44 - 2018-10-17 20:00 - 002046976 _____ () [File not signed] C:\program files (x86)\bethesda.net launcher\libGLESv2.dll
2015-06-25 10:45 - 2015-06-25 10:45 - 000017920 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
2018-10-30 16:26 - 2018-10-30 16:26 - 001863680 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2018-05-24 08:45 - 2018-05-24 08:45 - 000250368 _____ () [File not signed] C:\Program Files (x86)\NordVPN\x86\Liberation.Native.Firewall.dll
2018-06-12 23:16 - 2017-09-08 17:22 - 050656768 _____ () [File not signed] C:\Users\Beleg\AppData\Local\razer\InGameEngine\cache\RzSynapse\cef\libcef.dll
2018-06-12 23:16 - 2017-09-08 17:22 - 000075264 _____ () [File not signed] C:\Users\Beleg\AppData\Local\razer\InGameEngine\cache\RzSynapse\cef\libegl.dll
2018-06-12 23:16 - 2017-09-08 17:22 - 001874944 _____ () [File not signed] C:\Users\Beleg\AppData\Local\razer\InGameEngine\cache\RzSynapse\cef\libglesv2.dll
2018-01-06 15:45 - 2017-02-28 21:06 - 000010752 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Connection Service\Creative.AudPosService.exe
2018-01-06 15:45 - 2017-02-28 21:06 - 000156672 _____ (Creative Technology Ltd.) [File not signed] C:\Program Files (x86)\Creative\Connection Service\Connection Service.exe
2018-01-06 15:45 - 2017-04-20 20:12 - 000082432 _____ (Creative Technology Ltd.) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Creative.SBConnect.exe
2018-01-06 15:45 - 2017-04-20 20:14 - 000411136 _____ (Creative Technology Ltd.) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Platform\Creative.Platform.PropStore.dll
2018-04-20 18:45 - 2018-04-20 18:45 - 000080896 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2018-10-17 20:00 - 2018-10-17 20:01 - 000443904 _____ (The Chromium Authors) [File not signed] C:\program files (x86)\bethesda.net launcher\chrome_elf.dll
2018-01-27 17:44 - 2018-10-17 20:00 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\program files (x86)\bethesda.net launcher\imageformats\qico.dll
2018-01-27 17:44 - 2018-10-17 20:00 - 001154560 _____ (The Qt Company Ltd.) [File not signed] C:\program files (x86)\bethesda.net launcher\platforms\qwindows.dll
2018-01-27 17:44 - 2018-10-17 20:00 - 005017088 _____ (The Qt Company Ltd.) [File not signed] C:\program files (x86)\bethesda.net launcher\Qt5Core.dll
2018-01-27 17:44 - 2018-10-17 20:00 - 005113344 _____ (The Qt Company Ltd.) [File not signed] C:\program files (x86)\bethesda.net launcher\Qt5Gui.dll
2018-01-27 17:44 - 2018-10-17 20:00 - 004760576 _____ (The Qt Company Ltd.) [File not signed] C:\program files (x86)\bethesda.net launcher\Qt5Widgets.dll
2015-10-14 02:15 - 2015-10-14 02:15 - 002042368 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll
2018-10-18 11:44 - 2018-10-18 11:44 - 002069504 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-07-16 07:47 - 2016-07-16 07:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\ProgramData\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL;C:\Program Files\Intel\Intel® Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT;C:\Program Files\Intel\Intel® Management Engine Components\IPT;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 172.16.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-874985295-1933766520-4160478332-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{AD1257F8-003D-4A20-8363-1C7FCE60A047}] => (Allow) LPort=9009
FirewallRules: [{E9FA2B89-CB9A-4D38-9D7A-9D84CDFA7BD8}] => (Allow) LPort=9009
FirewallRules: [{CC7C28F1-B1DD-4342-B24E-E83EBD5DC722}] => (Allow) LPort=9009
FirewallRules: [UDP Query User{BC71F7B1-E443-4A14-8397-0C797865137C}C:\programdata\battle.net\agent\agent.6160\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.6160\agent.exe No File
FirewallRules: [TCP Query User{ABBC7277-3F8C-41C8-A383-193BA1A43453}C:\programdata\battle.net\agent\agent.6160\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.6160\agent.exe No File
FirewallRules: [{291233C3-9DD0-4E1D-BCB1-25536A766598}] => (Allow) LPort=9009
FirewallRules: [{9B16B92F-D4C2-443C-9EE1-9FD7579B0316}] => (Allow) LPort=9009
FirewallRules: [{64697217-C976-41E8-8D81-B8132886AD16}] => (Allow) LPort=9009
FirewallRules: [{3515DACC-A7C1-448E-852E-D83E1330D14E}] => (Allow) LPort=9009
FirewallRules: [UDP Query User{17668350-4529-48B0-B4D8-AF9AF2853838}D:\program files\hearthstone\hearthstone.exe] => (Allow) D:\program files\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{8BF458DE-CD37-4C2D-9A88-5AECC7490F88}D:\program files\hearthstone\hearthstone.exe] => (Allow) D:\program files\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{4DAF9352-E43F-4CCA-83BE-66FC7E71B3B2}] => (Allow) LPort=9009
FirewallRules: [{CAAD1389-775C-4C17-9F64-E41AAFC1C996}] => (Allow) LPort=9009
FirewallRules: [{42D39B23-17C2-444E-A22A-84994AF729DA}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{361FD581-CE25-4E89-9F9E-E73F8D46A344}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{5C3006AF-A17C-4C12-93FB-E8F5944C8E64}] => (Allow) LPort=9009
FirewallRules: [{05F516C1-92E5-4F0C-8965-BC748965E1E5}] => (Allow) LPort=9009
FirewallRules: [{F9CB4FE0-77B8-46BE-9703-F575F0AE44E2}] => (Allow) LPort=9009
FirewallRules: [UDP Query User{07F44134-85BA-4CFA-9100-63C817D95E9B}C:\users\beleg\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\beleg\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{2178938B-2320-4DCE-95BE-244C245B3F0C}C:\users\beleg\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\beleg\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{840107A0-C07A-44C2-8957-7AA93969FBD1}] => (Allow) LPort=9009
FirewallRules: [{84C55358-4272-441C-8615-932F61D758AD}] => (Allow) LPort=9009
FirewallRules: [{9077E1C3-9AA4-4B52-80AE-B4C422FB297B}] => (Allow) LPort=9009
FirewallRules: [UDP Query User{F2B6AE5F-DE54-414C-8F9C-36E57F162DA2}C:\users\beleg\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\beleg\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{614627B6-E581-466C-B9B3-2A3A5F0E8154}C:\users\beleg\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\beleg\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{F78FC770-092F-41A7-8754-4E2383DBD8E3}C:\program files (x86)\steam\steamapps\common\fallout 4\creationkit.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\fallout 4\creationkit.exe No File
FirewallRules: [TCP Query User{EAF95A21-8EC6-4BFE-AAF4-9D79E45238D4}C:\program files (x86)\steam\steamapps\common\fallout 4\creationkit.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\fallout 4\creationkit.exe No File
FirewallRules: [UDP Query User{8984DE13-3C14-43AC-B103-38BB9D4520FF}D:\program files\steam\steamapps\common\fallout 4\creationkit.exe] => (Allow) D:\program files\steam\steamapps\common\fallout 4\creationkit.exe No File
FirewallRules: [TCP Query User{1C42B9A9-B064-4E8D-95DD-3C6B242EA8F3}D:\program files\steam\steamapps\common\fallout 4\creationkit.exe] => (Allow) D:\program files\steam\steamapps\common\fallout 4\creationkit.exe No File
FirewallRules: [{4B23309B-A40B-4EA5-B8CA-9ADD35578C03}] => (Allow) D:\Program Files\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe No File
FirewallRules: [{00688C37-9923-4C63-8883-1A26D6190A4A}] => (Allow) D:\Program Files\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe No File
FirewallRules: [{33789FCC-1D20-4A7D-92C1-96A57F82E6D9}] => (Allow) LPort=9009
FirewallRules: [{44BD0E38-04F6-4B46-BF29-EF64407FC34D}] => (Allow) C:\Users\Beleg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{7A339B6A-80C9-4E36-B1C6-64CC9F027624}] => (Allow) C:\Users\Beleg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{C6B19729-01B6-4572-9DC0-2B3474DD9351}] => (Allow) C:\Users\Beleg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{16E2FBD0-B754-46B5-B2F9-685307F9211F}] => (Allow) C:\Users\Beleg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{9D852CFB-4D58-4EBB-947C-2067154F0341}] => (Allow) C:\Users\Beleg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5C25A7F4-98E7-4578-80C5-06A0F17F0FFB}] => (Allow) C:\Users\Beleg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{1CA57E78-6B1B-44C7-A8B1-7C380E276649}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{98DD7BDA-FC05-4198-9627-001ADA34C836}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{D2504879-8D1C-496F-8BA2-2BD58F35FA15}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{F6D346E4-11F7-4129-BB00-6FD55E443385}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{888E0362-9EF9-4677-ADC5-6E713A1849B3}] => (Allow) D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{DA0D0C51-95D1-45BB-A9E1-886889EF342A}] => (Allow) D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{DC69569B-38A7-483A-B6D5-94E43CA8DDBF}] => (Allow) D:\Program Files\Steam\Steam.exe No File
FirewallRules: [{0158D37B-2D18-4A8E-AE3F-CCD2BBE2ED56}] => (Allow) D:\Program Files\Steam\Steam.exe No File
FirewallRules: [{92EB6375-A875-423D-A027-833EA5D011B8}] => (Allow) LPort=9009
FirewallRules: [{9D7936AC-3707-48A6-A8D8-49B5544E4A9E}] => (Allow) LPort=9009
FirewallRules: [UDP Query User{3524ABBC-E57E-4291-A3C6-4D5A18A0B987}C:\program files (x86)\creative\connection service\connection service.exe] => (Allow) C:\program files (x86)\creative\connection service\connection service.exe (Creative Technology Ltd.) [File not signed]
FirewallRules: [TCP Query User{CBFB25D9-30E4-4BEE-AE1E-E63A1B6D57EE}C:\program files (x86)\creative\connection service\connection service.exe] => (Allow) C:\program files (x86)\creative\connection service\connection service.exe (Creative Technology Ltd.) [File not signed]
FirewallRules: [{21490B3D-3ED4-41DB-AA2D-FB386A546E60}] => (Block) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{922080F8-6525-4F7D-9E14-940E571FA95E}] => (Block) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [UDP Query User{8CEA3344-97AD-4E8B-8A9B-D8420053B14B}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [TCP Query User{B66B0B6F-913C-4905-8BD6-7B424B8C14C4}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{5446A594-E839-4D23-8953-24A326A2957F}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{A716CE6D-8B35-4222-A5F9-5145CC8FC148}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{29A67B33-926A-4EAE-9956-98CB4D23FCB7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8A21F67F-AA20-4CF2-9841-9C0BC0D695F1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8FEB8F0F-B098-450C-AE06-9417E01F6F6B}] => (Allow) LPort=9009
FirewallRules: [{8682C1CF-A9AD-4728-989F-D9E0B611B9B2}] => (Allow) LPort=9009
FirewallRules: [{7DAE16BA-1202-4402-80DB-BC715D5F8A0B}] => (Allow) LPort=9009
FirewallRules: [{4A2A7C9F-1E27-4B72-A0F8-F2A9E2A30FDD}] => (Allow) LPort=9009
FirewallRules: [{DA326FD3-B54E-48C7-965D-CEA7BF6B8BAE}] => (Allow) LPort=9009
FirewallRules: [{931EB875-DCD5-4C82-8B66-B3E039055284}] => (Allow) LPort=9009
FirewallRules: [{5874865E-9D13-4CCB-9D3A-B25A38A72E67}] => (Allow) LPort=9009
FirewallRules: [{D8EAF1AB-C646-4C1F-A163-2E4E7AAC1104}] => (Allow) LPort=9009
FirewallRules: [{7DE25827-50C7-4D02-B8B9-C3F2985623A1}] => (Allow) LPort=9009
FirewallRules: [{8657CD84-DD15-40AA-88F9-C9B8A4BFCB14}] => (Allow) LPort=9009
FirewallRules: [{C91BFC17-3270-44C9-A23F-67CE4FEDA46D}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{7EAA68E0-2FAB-4350-876F-158DDB2764AA}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{3A325D17-FC0D-47FD-811A-42FA628ABAE6}] => (Allow) LPort=9009
FirewallRules: [{A0CB9EC5-73AE-495B-8BAB-978EE2147E01}] => (Allow) LPort=9009
FirewallRules: [{BE529A2C-3A37-4CA0-80FE-0EAE8244DF00}] => (Allow) LPort=9009
FirewallRules: [{FA1E9A9A-8AE3-4332-8B52-9C2CE3E21747}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4C53B08A-706A-41F3-BFB8-6275A800E7B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F2C1CC90-DC65-420F-90DA-5C9B23B5B0CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{326C3A94-65FE-4B3A-B9AA-D66E95E6F140}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4935DCBD-6811-49CE-A9D0-B5B58C51D238}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BAB33F3D-6F01-4596-8A94-98B86D5B4527}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D0397393-A1FB-4CB2-8D9D-4B5BFBD63627}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{B4A3685D-E4B1-4148-8EDC-8399DE99D724}C:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [UDP Query User{6D3E67A4-481E-4E55-BBF2-738DEB49A915}C:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [{64B64D3B-EDD4-4D87-9E5A-CD9049424A1D}] => (Allow) LPort=9009
FirewallRules: [{660831C7-BF3E-4AEE-BFBE-5F3164B7E405}] => (Allow) LPort=9009
FirewallRules: [{9A0E7504-E497-40A8-B264-F65E6516D72E}] => (Allow) LPort=9009
FirewallRules: [{AF6E4DF2-9C5E-4162-A66D-0C3CB9250CB0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [{B09391E8-674B-4E55-A0AC-42B14B80507D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [TCP Query User{929786E0-B5BC-49D0-9492-F43575A789AF}C:\users\beleg\appdata\roaming\utorrent\updates\3.5.4_44575.exe] => (Block) C:\users\beleg\appdata\roaming\utorrent\updates\3.5.4_44575.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{9597DF7D-D81F-4802-AA52-EAFF20677EC4}C:\users\beleg\appdata\roaming\utorrent\updates\3.5.4_44575.exe] => (Block) C:\users\beleg\appdata\roaming\utorrent\updates\3.5.4_44575.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{13755718-3207-4B29-A2D2-4A9ED2AE1376}] => (Allow) LPort=9009
FirewallRules: [{D4684E63-4FF0-4BCF-990B-3F43BA052F3F}] => (Allow) LPort=9009
FirewallRules: [{8E8774E2-0C8A-4848-A726-D9A389E5651F}] => (Allow) LPort=9009
FirewallRules: [{4623BF53-3E17-4412-BA53-786717634934}] => (Allow) LPort=9009
FirewallRules: [{FDFADE2C-91CE-49D8-AD84-7107D37B0C6F}] => (Allow) LPort=9009
FirewallRules: [{9E52AC94-2683-48F5-ABE9-EC969A1CC8E1}] => (Allow) LPort=9009
FirewallRules: [{A1506B59-0DA9-4D71-A955-0710D24FCD9C}] => (Allow) LPort=9009
FirewallRules: [{A3B2092E-6DF0-41A0-8672-B42E6CA508A0}] => (Allow) LPort=9009
FirewallRules: [{B95889A6-6DEA-4ECB-9D66-8D436851EB02}] => (Allow) LPort=9009
FirewallRules: [{C410A5A3-88B4-450E-8900-5E84C22BEEDE}] => (Allow) LPort=9009
FirewallRules: [{4C9C8A2D-E470-4DEF-A2E1-3BAB7068E723}] => (Allow) LPort=9009
FirewallRules: [{E67732E2-0EC5-487B-8CAB-13A84458666D}] => (Allow) LPort=9009
FirewallRules: [{BF3833E7-F606-4F88-A066-DB9CF2C549BF}] => (Allow) LPort=9009
FirewallRules: [{EEEABBE4-239D-4F7A-94A2-47A6958D40D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\CreationKit.exe No File
FirewallRules: [{03D17A5B-28E2-46FD-9015-59A2FF5D3DB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\CreationKit.exe No File
FirewallRules: [{10E9415A-4F4B-4857-A0C6-7798C6DE5BD3}] => (Allow) LPort=9009
FirewallRules: [{97411AC7-147C-4DA7-87E6-DDAF2A837EAD}] => (Allow) LPort=9009
FirewallRules: [{55C2E696-3C04-4698-B27A-75501A2E7E0B}] => (Allow) LPort=9009
FirewallRules: [{E3E6F011-162E-4685-A8A0-52F983B3452F}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{2D0FC309-7265-46F3-A1E1-9B9DFB0B7BBB}C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe] => (Allow) C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe (Bethesda Softworks) [File not signed]
FirewallRules: [UDP Query User{C2C799A5-EE67-41C3-8086-626323B97AB0}C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe] => (Allow) C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{B1B5B289-2110-42A9-AEAD-D078789F2876}] => (Allow) LPort=9009
FirewallRules: [{7EFEB1E5-F6A9-4EFE-B865-CB1C8E4496FB}] => (Allow) LPort=9009
FirewallRules: [{E2EC25E6-3848-4973-9729-81DB614227D9}] => (Allow) LPort=9009
FirewallRules: [{440DBFE7-73CB-4EF2-949D-DFFCC47E4BC6}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{346A4500-A249-42B9-B36B-883116D1B2E1}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{52D62572-2F15-42BC-AE58-DA147B9D85AF}] => (Allow) LPort=9009
FirewallRules: [{79FB3B15-2224-4605-8912-B58AE91DCF74}] => (Allow) LPort=9009
FirewallRules: [{CEC4CB08-64B9-4195-8C47-BCA3A2EC35B8}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{6719DF37-85DB-4FDB-8929-D2D788716DE6}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{29F9082C-FA94-4005-8D32-B523D98A42AF}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{2FF7EB46-6A18-4F34-9B6B-0109069003AA}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{DE88012A-EF18-4098-A477-4148F5C3C6DA}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{4C3A6FB5-FC59-42FE-90FA-F7138CA9D37F}] => (Allow) LPort=9009
FirewallRules: [{9CF6D73A-94B1-453A-A84A-20B2939AA02E}] => (Allow) LPort=9009
FirewallRules: [{4E9FD963-40C8-4B37-B244-6D9C9736A8FB}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{D89C89FA-5C5B-48EE-8967-17A9BEA442E1}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [UDP Query User{277BD322-14B2-4D14-ADED-4CF34445EFC0}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [{1ACE44E7-5156-4F92-8234-86492AA7A096}] => (Allow) LPort=9009
FirewallRules: [{CBD081F8-9BC3-4CFB-BB29-8CDA6343DD59}] => (Allow) LPort=9009
FirewallRules: [{45EB7A6C-4A17-43FB-B442-46F3AA83091B}] => (Allow) LPort=9009
FirewallRules: [{CAD1E00F-6EEF-44F7-9A23-83A049BE153A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mortal Kombat 11\Binaries\Retail\MK11.exe No File
FirewallRules: [{F6C6EEBD-4CEC-4AEB-93F4-FB91F41DBF3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mortal Kombat 11\Binaries\Retail\MK11.exe No File
FirewallRules: [{046F27EF-EF0B-4F22-AEFD-E9F08EB262C2}] => (Allow) LPort=9009
FirewallRules: [{8A78337F-D554-4237-89CA-84842F5E85B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe No File
FirewallRules: [{EF0794B4-7F15-4838-B848-9CB7FF05D57B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe No File
FirewallRules: [{E39D130D-966D-40F0-9FE2-652658EECF49}] => (Allow) LPort=9009
FirewallRules: [{6AAF1033-DF3B-49C6-877F-D640ED992654}] => (Allow) C:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{2F28735A-46C0-4E3C-A653-D98FB012B121}] => (Allow) C:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{13F1231B-CBE6-421F-862C-06A5AD0CD6D5}] => (Allow) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{178FE166-EAAC-4260-91CB-2F9230CDC0DE}] => (Allow) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3CC298F5-4341-4003-BEE7-DCF9BAD242BB}] => (Allow) C:\Games\Steam\steamapps\common\Mortal Kombat 11\Binaries\Retail\MK11.exe (WB Games, Inc.) [File not signed]
FirewallRules: [{9034861B-CD6E-4ECF-9D03-2E27BAF931BC}] => (Allow) C:\Games\Steam\steamapps\common\Mortal Kombat 11\Binaries\Retail\MK11.exe (WB Games, Inc.) [File not signed]
FirewallRules: [{5B6A4583-40AA-4B16-B369-C844DB3A14D7}] => (Allow) C:\Games\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)
FirewallRules: [{9182854F-4976-41D0-B147-27FBAF94E269}] => (Allow) C:\Games\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)
FirewallRules: [{612E4CF9-2B4E-485B-80FE-A9A1C6536AD6}] => (Allow) C:\Games\Steam\steamapps\common\Trover Saves the Universe\Trover.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{8F40B771-9E23-4502-8210-4721907E9FC7}] => (Allow) C:\Games\Steam\steamapps\common\Trover Saves the Universe\Trover.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{2A5BD0B1-6C7D-4B55-8299-23DBA278C585}C:\games\steam\steamapps\common\trover saves the universe\trover\binaries\win64\trover-win64-shipping.exe] => (Allow) C:\games\steam\steamapps\common\trover saves the universe\trover\binaries\win64\trover-win64-shipping.exe (Squanch Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{26D2FBAD-6DC4-4F0C-A819-51FD289AFE4B}C:\games\steam\steamapps\common\trover saves the universe\trover\binaries\win64\trover-win64-shipping.exe] => (Allow) C:\games\steam\steamapps\common\trover saves the universe\trover\binaries\win64\trover-win64-shipping.exe (Squanch Games, Inc.) [File not signed]
FirewallRules: [{6657E82B-A42A-4FCF-BA8F-5A448195FD3E}] => (Allow) LPort=9009
FirewallRules: [{CD26B4BD-008A-40B2-8DBD-44939054EFD1}] => (Allow) LPort=9009
FirewallRules: [{CB1C60E5-CDFE-46B2-B6B0-FA824401AEE9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{AA6C0179-FE9B-4842-AEF2-A87F7C4C1090}] => (Allow) LPort=9009
==================== Restore Points =========================
20-06-2019 18:37:20 Windows Update
27-06-2019 19:33:07 Scheduled Checkpoint
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/27/2019 10:26:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Fallout76.exe version 1.2.0.24 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 5100
Start Time: 01d52d20374b9959
Termination Time: 5
Application Path: C:\Program Files (x86)\Bethesda.net Launcher\games\Fallout76\Fallout76.exe
Report Id: c1ce954b-fe63-4930-bb79-0874b81499cb
Faulting package full name:
Faulting package-relative application ID:
Error: (06/10/2019 11:14:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: utorrentie.exe, version: 1.0.0.45263, time stamp: 0x5cf1b053
Faulting module name: mshtml.dll, version: 11.0.17134.765, time stamp: 0xbd25de4f
Exception code: 0xc0000005
Fault offset: 0x006ce7b8
Faulting process id: 0x13f0
Faulting application start time: 0x01d51aa1861a6181
Faulting application path: C:\Users\Beleg\AppData\Roaming\uTorrent\updates\3.5.5_45263\utorrentie.exe
Faulting module path: C:\Windows\System32\mshtml.dll
Report Id: 10bb1aed-5e2e-420a-a6cc-aafe7ba33b01
Faulting package full name:
Faulting package-relative application ID:
Error: (06/04/2019 07:23:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Fallout76.exe, version: 1.1.5.7, time stamp: 0x5ce815e3
Faulting module name: Fallout76.exe, version: 1.1.5.7, time stamp: 0x5ce815e3
Exception code: 0xc0000005
Fault offset: 0x0000000001d83201
Faulting process id: 0x6a78
Faulting application start time: 0x01d51b2c82f0264d
Faulting application path: C:\program files (x86)\bethesda.net launcher\games\Fallout76\Fallout76.exe
Faulting module path: C:\program files (x86)\bethesda.net launcher\games\Fallout76\Fallout76.exe
Report Id: 5db6ae3e-fd0a-48e1-9858-554aafbdfcfa
Faulting package full name:
Faulting package-relative application ID:
Error: (06/04/2019 07:22:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Fallout76.exe, version: 1.1.5.7, time stamp: 0x5ce815e3
Faulting module name: Fallout76.exe, version: 1.1.5.7, time stamp: 0x5ce815e3
Exception code: 0xc0000005
Fault offset: 0x0000000001d83201
Faulting process id: 0x75d4
Faulting application start time: 0x01d51b2c477b4744
Faulting application path: C:\program files (x86)\bethesda.net launcher\games\Fallout76\Fallout76.exe
Faulting module path: C:\program files (x86)\bethesda.net launcher\games\Fallout76\Fallout76.exe
Report Id: d0bba8e0-d55b-4ebc-b6e3-4c435722bfa4
Faulting package full name:
Faulting package-relative application ID:
Error: (06/04/2019 07:19:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Fallout76.exe, version: 1.1.5.7, time stamp: 0x5ce815e3
Faulting module name: Fallout76.exe, version: 1.1.5.7, time stamp: 0x5ce815e3
Exception code: 0xc0000005
Fault offset: 0x0000000001d83201
Faulting process id: 0x4360
Faulting application start time: 0x01d51b2be0482338
Faulting application path: C:\program files (x86)\bethesda.net launcher\games\Fallout76\Fallout76.exe
Faulting module path: C:\program files (x86)\bethesda.net launcher\games\Fallout76\Fallout76.exe
Report Id: a4f119ae-08c8-494f-9b91-cdfc9c1cef50
Faulting package full name:
Faulting package-relative application ID:
Error: (06/04/2019 07:17:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Fallout76.exe, version: 1.1.5.7, time stamp: 0x5ce815e3
Faulting module name: Fallout76.exe, version: 1.1.5.7, time stamp: 0x5ce815e3
Exception code: 0xc0000005
Fault offset: 0x0000000001d83201
Faulting process id: 0x4814
Faulting application start time: 0x01d51b2b7a7f4987
Faulting application path: C:\program files (x86)\bethesda.net launcher\games\Fallout76\Fallout76.exe
Faulting module path: C:\program files (x86)\bethesda.net launcher\games\Fallout76\Fallout76.exe
Report Id: 8a8e123e-fb50-4626-ad63-ad2f550976e6
Faulting package full name:
Faulting package-relative application ID:
Error: (05/29/2019 04:19:08 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "F:\Windows\avastSS.scr".
Dependent Assembly Avast.VC140.CRT,processorArchitecture="x86",publicKeyToken="fcc99ee6193ebbca",type="win32",version="14.0.23918.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (05/29/2019 01:42:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WWAHost.exe, version: 10.0.17134.441, time stamp: 0x21faecc2
Faulting module name: WWAHost.exe, version: 10.0.17134.441, time stamp: 0x21faecc2
Exception code: 0xc0000409
Fault offset: 0x00000000000574dc
Faulting process id: 0x290
Faulting application start time: 0x01d515e14927a309
Faulting application path: C:\Windows\System32\WWAHost.exe
Faulting module path: C:\Windows\System32\WWAHost.exe
Report Id: 092a68ee-dd35-4087-a8df-b5ee512c0bc9
Faulting package full name:
Faulting package-relative application ID:
System errors:
=============
Error: (06/28/2019 03:18:37 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-VS50KFR)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user DESKTOP-VS50KFR\Beleg SID (S-1-5-21-874985295-1933766520-4160478332-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
Error: (06/28/2019 03:18:00 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-VS50KFR)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user DESKTOP-VS50KFR\Beleg SID (S-1-5-21-874985295-1933766520-4160478332-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
Error: (06/28/2019 11:18:59 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-VS50KFR)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user DESKTOP-VS50KFR\Beleg SID (S-1-5-21-874985295-1933766520-4160478332-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
Error: (06/28/2019 07:19:29 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-VS50KFR)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user DESKTOP-VS50KFR\Beleg SID (S-1-5-21-874985295-1933766520-4160478332-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
Error: (06/28/2019 03:20:07 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-VS50KFR)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user DESKTOP-VS50KFR\Beleg SID (S-1-5-21-874985295-1933766520-4160478332-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
Error: (06/27/2019 11:20:43 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-VS50KFR)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user DESKTOP-VS50KFR\Beleg SID (S-1-5-21-874985295-1933766520-4160478332-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
Error: (06/27/2019 07:21:39 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-VS50KFR)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user DESKTOP-VS50KFR\Beleg SID (S-1-5-21-874985295-1933766520-4160478332-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
Error: (06/27/2019 03:22:08 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-VS50KFR)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user DESKTOP-VS50KFR\Beleg SID (S-1-5-21-874985295-1933766520-4160478332-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
CodeIntegrity:
===================================
Date: 2019-06-23 02:56:01.741
Description:
Windows blocked file \Device\HarddiskVolume8\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-06-23 02:55:39.869
Description:
Windows blocked file \Device\HarddiskVolume8\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-06-12 08:50:02.514
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-06-12 08:50:02.505
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-06-12 08:50:02.487
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-06-12 08:46:50.546
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-06-12 08:46:50.537
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-06-12 08:46:50.400
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
BIOS: American Megatrends Inc. F5 06/04/2017
Motherboard: Gigabyte Technology Co., Ltd. X299 AORUS Gaming 7
Processor: Intel® Core i7-7800X CPU @ 3.50GHz
Percentage of memory in use: 38%
Total physical RAM: 32461.36 MB
Available physical RAM: 19875.41 MB
Total Virtual: 64922.73 MB
Available Virtual: 47203.96 MB
==================== Drives ================================
Drive c: (Main Disk) (Fixed) (Total:476.39 GB) (Free:54.53 GB) NTFS
Drive d: (Beleg) (Fixed) (Total:3725.9 GB) (Free:7.77 GB) NTFS
Drive e: (Meldazzar) (Fixed) (Total:5589.03 GB) (Free:36.46 GB) NTFS
Drive f: () (Fixed) (Total:111.78 GB) (Free:8.51 GB) NTFS ==>[system with boot components (obtained from drive)]
\\?\Volume{03d57e52-4559-4634-9172-fa900b163f10}\ (Recovery) (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
\\?\Volume{07fa7a74-5322-4109-aadf-0d6ee47aef9c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 085C5EB2)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 3726 GB) (Disk ID: 7D12F909)
Partition: GPT.
========================================================
Disk: 3 (Size: 5589 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt ============================