Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

There was a problem starting StartupCheckLibrary.dll

StartupCheckLibrary.dll

  • Please log in to reply

#1
arma96

arma96

    New Member

  • Member
  • Pip
  • 4 posts
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2019
Ran by PC (administrator) on ADMINRG-UO7FCI4 (08-10-2019 13:10:09)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: defaultuser0 & PC & Administrator)
Platform: Windows 10 Pro Version 1809 17763.775 (X64) Language: English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19091.313.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Popcorn Time) [File not signed] C:\Program Files (x86)\Popcorn Time\Updater.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skillbrains) [File not signed] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8899592 2016-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] (OOO Lightshot -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3211040 2019-10-02] (Valve -> Valve Corporation)
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\Run: [Discord] => C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24916512 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\MountPoints2: {e85540fd-5d09-11e9-bb2a-2cfda1e2af21} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\MountPoints2: {e85541de-5d09-11e9-bb2a-2cfda1e2af21} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-18\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24916512 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-25] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2019-09-25]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0110843B-04E6-4951-978C-9117980EB2CC} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {0FDB234E-7F5D-418E-B3A1-C2B729E1094B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18732320 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)
Task: {33232E4A-9A05-4A01-8E21-C0CA48F40A32} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION
Task: {37102774-EA8D-4BD2-9FF2-1CCD2582BE73} - System32\Tasks\update-S-1-5-21-4123778966-855139210-2178784077-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {3BC150D4-4C0F-4BEE-9589-AD01C9576B7D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {47703624-5EA7-4AF8-955B-114528364D97} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {4AB27887-6735-42E6-9F3C-9114D32DB8B5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3310688 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {704FF539-3C56-423A-9DE3-C810F7553BE7} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)
Task: {721D3A19-6BEF-4BCA-B6AD-A3939C0995EC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-01] (Google Inc -> Google Inc.)
Task: {789A305C-39FA-4F8E-90D6-15AB33B4DFCF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7A208444-8ECE-45E7-8AD4-0EA5D726E602} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {81070785-9003-4072-8682-DB5EBD585DBB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8397A5B4-F663-4826-885B-7FAF736BB1F9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {92E3971B-78F6-4AC6-952D-A454AB440859} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {952B289C-B4A3-48F9-A891-1DAA198CDF21} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-10-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9B92FF29-119E-48BF-B7FB-93C47F334DF8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-01] (Google Inc -> Google Inc.)
Task: {BF97A369-184C-4942-BCA3-3F92B5DF7A48} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-09-10] (Adobe Inc. -> Adobe)
Task: {C6469399-E30A-43D3-A693-3B473640C14F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C8CFD49F-9AD4-4080-B58A-A5E024F7BDEB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D8E628EB-3EC4-4A3B-A96D-7377003346FB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EAC8790E-33C0-400D-A2CA-15D68CDD66B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ED86986B-4D20-4362-B53E-20F0E2673D83} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EDD26408-6B58-4F13-8458-F4FC04440A5D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FB1FC5B3-9748-431A-AFA6-8F63878096B2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653864 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FC34D2EB-AF19-4D90-A171-9F9AC65CD7AA} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {FF59769E-A963-4641-A105-020B7B333534} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\update-S-1-5-21-4123778966-855139210-2178784077-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{625eeba6-84fa-4cac-a68f-02c0af6439b8}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{625eeba6-84fa-4cac-a68f-02c0af6439b8}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-10-08] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-10-08] (Oracle America, Inc. -> Oracle Corporation)
 
FireFox:
========
FF DefaultProfile: 69aksfp8.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\69aksfp8.default [2019-05-25]
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\sq4m6mdy.default-release [2019-10-08]
FF Extension: (AdBlock) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\sq4m6mdy.default-release\Extensions\[email protected] [2019-08-24]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-10-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-10-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-02] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-02] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-02-16] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2019-10-08]
CHR DownloadDir: C:\Users\PC\Desktop
CHR Extension: (Slides) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-04-01]
CHR Extension: (BetterTTV) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2019-10-03]
CHR Extension: (Docs) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-01]
CHR Extension: (Google Drive) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-04-01]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-04-01]
CHR Extension: (Sheets) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-04-01]
CHR Extension: (Google Docs Offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (AdBlock) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7234640 2018-07-12] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-03-31] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
R2 QMEmulatorService; D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [148840 2019-09-25] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5378320 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2018-04-06] (Popcorn Time) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34568 2019-04-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24424 2016-08-13] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [137496 2018-09-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R2 aow_drv; D:\Program Files\TxGameAssistant\UI\2.0.12832.123\aow_drv_x64_ev.sys [863616 2019-09-27] (Tencent Technology (Shenzhen) Company Limited -> Tencent)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2016-11-18] (ASUSTeK Computer Inc. -> )
R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [15288688 2019-05-16] (FACE IT LIMITED -> )
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [55232 2018-07-30] (SurfRight B.V. -> )
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_827405c7c65146ab\nvlddmkm.sys [22377352 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [947712 2017-02-20] (Realtek Semiconductor Corp. -> Realtek )
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-05-24] (SteelSeries ApS -> )
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [47824 2019-05-24] (SteelSeries ApS -> SteelSeries ApS)
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [442128 2019-09-27] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 TesSafe; C:\WINDOWS\system32\TesSafe.sys [555064 2019-09-27] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-09-26] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2019-10-08 13:10 - 2019-10-08 13:11 - 000024101 _____ C:\Users\PC\Desktop\FRST.txt
2019-10-08 13:09 - 2019-10-08 13:10 - 000000000 ____D C:\FRST
2019-10-08 13:07 - 2019-10-08 13:07 - 001615872 _____ (Farbar) C:\Users\PC\Desktop\FRST64.exe
2019-10-08 12:25 - 2019-10-08 12:25 - 000101444 _____ C:\Users\PC\Documents\cc_20191008_122458.reg
2019-10-08 12:06 - 2019-10-08 12:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2019-10-08 12:06 - 2019-10-08 12:06 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-10-08 12:04 - 2019-10-08 12:29 - 000000000 ____D C:\ProgramData\AVAST Software
2019-10-08 12:03 - 2019-10-08 12:03 - 025441808 _____ (Piriform Software Ltd) C:\Users\PC\Downloads\ccsetup562.exe
2019-10-08 12:02 - 2019-10-08 12:02 - 000002864 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2019-10-07 21:54 - 2019-10-07 21:54 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-10-07 21:52 - 2019-09-27 23:15 - 011561728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 009936640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 001012640 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 001012640 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000876448 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000876448 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000447120 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000351888 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000301472 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-10-07 21:52 - 2019-09-27 23:15 - 000301472 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-10-07 21:52 - 2019-09-27 23:15 - 000273312 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-10-07 21:52 - 2019-09-27 23:15 - 000273312 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-10-07 21:52 - 2019-09-27 23:14 - 000823552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2019-10-07 21:52 - 2019-09-27 23:14 - 000676744 _____ C:\WINDOWS\system32\nvofapi64.dll
2019-10-07 21:52 - 2019-09-27 23:14 - 000633224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-10-07 21:52 - 2019-09-27 23:14 - 000544456 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 040445128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 035333888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 017301248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 014922440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 005358464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 004697288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 002051512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001726720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6443648.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001551240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001491144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6443648.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001477512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001246976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001140424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 000959416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 000812800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 000523520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-10-07 21:52 - 2019-09-27 23:09 - 004263512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-10-06 13:39 - 2019-10-06 17:53 - 000000000 ____D C:\Users\PC\Desktop\zelektro
2019-10-03 20:49 - 2019-10-03 20:49 - 026806272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 023454720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 020815872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 019013632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 012259840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 006444544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 006316792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 005767168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 005605560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 005309080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 003614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 003428864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002349056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002279304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002096640 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-03 20:49 - 2019-10-03 20:49 - 002018304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-03 20:49 - 2019-10-03 20:49 - 001924976 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplaySwitch.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 001764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001750528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 001247344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shellstyle.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shellstyle.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000791864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000767800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000661096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000589824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2019-10-03 20:49 - 2019-10-03 20:49 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000452992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2019-10-03 20:49 - 2019-10-03 20:49 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-10-03 20:49 - 2019-10-03 20:49 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000241976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-10-03 20:49 - 2019-10-03 20:49 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-03 20:49 - 2019-10-03 20:49 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.OneCore.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSTheme.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000038184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PasswordOnWakeSettingFlyout.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000030720 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 022135584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 017485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 015220224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 009680184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 007698432 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 006928384 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 006058032 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 005573016 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 005299712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 004588536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 004352472 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 004057088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003820976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 003634688 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003198976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003000832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002924344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002839040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002779784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 002699768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 002415928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002200376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002118656 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001966392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001864704 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001751424 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001720120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001701880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-03 20:48 - 2019-10-03 20:48 - 001701176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001522488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001484896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001399608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001390888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-03 20:48 - 2019-10-03 20:48 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001308672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001294272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001272120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001170432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-10-03 20:48 - 2019-10-03 20:48 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001052984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 001048888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001006392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000938296 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-10-03 20:48 - 2019-10-03 20:48 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000817464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000780408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000775216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000770096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000613176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000605368 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000598328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000588600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000506192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2019-10-03 20:48 - 2019-10-03 20:48 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000439096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000434952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000384272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000290616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000278416 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.OneCore.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000193704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000156512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000155968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000138552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000135816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000079032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000065608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000057656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000052536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSTheme.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000044912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordOnWakeSettingFlyout.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000018744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msisadrv.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-09-27 17:45 - 2019-09-27 17:55 - 000555064 _____ (TENCENT) C:\WINDOWS\system32\TesSafe.sys
2019-09-27 17:45 - 2019-09-27 17:45 - 000442128 _____ (TENCENT) C:\WINDOWS\system32\Drivers\tesrsdt.sys
2019-09-21 12:06 - 2019-09-22 14:02 - 000000000 ____D C:\WINDOWS\Minidump
2019-09-15 13:17 - 2019-09-06 20:26 - 001726400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6443630.dll
2019-09-15 13:17 - 2019-09-06 20:26 - 001491336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6443630.dll
2019-09-11 10:30 - 2019-09-10 21:48 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-09-11 10:30 - 2019-09-10 21:48 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-10 22:45 - 2019-09-16 19:39 - 000000000 ____D C:\Users\PC\Documents\Black Desert
2019-09-10 22:44 - 2019-09-26 14:00 - 000074552 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2019-09-10 22:44 - 2019-09-10 22:44 - 000000016 _____ C:\ProgramData\mntemp
2019-09-10 21:44 - 2019-09-10 21:44 - 008903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 006065664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 004874752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 003096576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 002099752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001782272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001655976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001604760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001573240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001272560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001075832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000968192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000798736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2019-09-10 21:44 - 2019-09-10 21:44 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000774968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000660544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000652832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000622392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000540240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000409256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000386048 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\SysWOW64\curl.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000349144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000279416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000195224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000144080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000140088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000106048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000098080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2019-09-10 21:43 - 2019-09-10 21:44 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 005569024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 003490816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 003333984 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002593032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002148864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001743168 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001721360 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001563880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001387512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001191512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001187840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AgentService.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 001081656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001022824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000865576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000851272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000811024 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000807760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000806568 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-09-10 21:43 - 2019-09-10 21:43 - 000806568 _____ C:\WINDOWS\system32\locale.nls
2019-09-10 21:43 - 2019-09-10 21:43 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000793824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000791352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000751928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000740904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000736056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000652600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000652304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000603784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000554000 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000532192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000515152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000464912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000402368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000398208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000351432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000347576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000330672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000330592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpprov.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000177176 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000168248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000164504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000140600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000130872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiAcpiClient.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2019-09-10 19:21 - 2019-09-10 19:21 - 000000222 _____ C:\Users\PC\Desktop\Black Desert Online.url
 
==================== One month (modified) ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2019-10-08 12:40 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-08 12:33 - 2018-03-20 21:53 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-08 12:32 - 2018-03-22 14:29 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-08 12:29 - 2019-03-13 21:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-08 12:28 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-08 12:17 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-10-08 12:17 - 2018-06-12 18:19 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2019-10-08 12:15 - 2018-12-27 13:17 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2019-10-08 12:14 - 2018-03-20 21:45 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-10-08 12:14 - 2018-03-20 21:45 - 000000916 _____ C:\ProgramData\Desktop\VLC media player.lnk
2019-10-08 12:09 - 2018-04-01 12:20 - 000098288 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-10-08 12:09 - 2018-04-01 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-10-08 12:09 - 2018-04-01 12:19 - 000000000 ____D C:\Program Files (x86)\Java
2019-10-08 12:06 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-10-08 12:06 - 2018-03-23 02:37 - 000001044 _____ C:\Users\Public\Desktop\WinRAR.lnk
2019-10-08 12:06 - 2018-03-23 02:37 - 000001044 _____ C:\ProgramData\Desktop\WinRAR.lnk
2019-10-08 12:06 - 2018-03-23 02:37 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-10-08 12:06 - 2018-03-23 02:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-10-08 12:06 - 2018-03-23 02:37 - 000000000 ____D C:\Program Files\WinRAR
2019-10-08 12:05 - 2018-07-30 20:01 - 000000000 ____D C:\Program Files\CCleaner
2019-10-08 12:04 - 2019-03-13 21:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-08 12:04 - 2018-07-30 20:01 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-08 12:04 - 2018-07-30 20:01 - 000000863 _____ C:\ProgramData\Desktop\CCleaner.lnk
2019-10-08 11:56 - 2019-03-13 20:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-08 11:45 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-08 11:45 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-08 11:27 - 2019-03-28 14:18 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2019-10-08 11:26 - 2018-07-24 22:07 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2019-10-08 11:12 - 2018-12-15 12:24 - 000000000 ____D C:\Program Files (x86)\Popcorn Time
2019-10-08 11:06 - 2019-03-13 21:22 - 000004160 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E4EFCEC2-F0F1-422B-BEC7-301ECF79F9D2}
2019-10-07 21:54 - 2018-03-20 21:54 - 000000000 ____D C:\Users\PC\AppData\Local\NVIDIA
2019-10-07 21:54 - 2018-03-20 21:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-10-06 10:37 - 2019-03-13 21:16 - 000840848 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-04 11:11 - 2018-03-24 14:22 - 000000000 ____D C:\Users\PC\AppData\Roaming\discord
2019-10-04 11:10 - 2018-03-23 16:09 - 000000000 ___RD C:\Users\PC\3D Objects
2019-10-04 11:10 - 2018-03-21 12:25 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-04 11:08 - 2019-03-13 20:59 - 000442384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-04 00:24 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-04 00:23 - 2018-09-15 19:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-10-04 00:23 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-04 00:23 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-10-04 00:23 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-04 00:23 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-03 20:52 - 2018-09-15 19:41 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-10-03 20:52 - 2018-09-15 19:41 - 000018002 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-03 20:52 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-02 22:13 - 2019-03-13 21:22 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-02 22:13 - 2019-03-13 21:22 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-02 22:13 - 2018-03-21 12:28 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-02 11:49 - 2018-03-23 11:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-01 14:20 - 2018-03-23 15:54 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2019-09-27 23:13 - 2019-05-31 12:51 - 000659328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-09-27 23:09 - 2019-03-06 14:31 - 005002192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2019-09-27 17:38 - 2019-07-22 15:33 - 000000889 _____ C:\Users\PC\Desktop\Gameloop.lnk
2019-09-27 11:21 - 2019-03-13 21:22 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4123778966-855139210-2178784077-1001
2019-09-27 11:21 - 2019-03-13 21:05 - 000002354 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-09-27 11:21 - 2018-03-21 12:27 - 000000000 ___RD C:\Users\PC\OneDrive
2019-09-27 03:27 - 2019-03-06 14:31 - 000054700 _____ C:\WINDOWS\system32\nvinfo.pb
2019-09-27 01:23 - 2018-03-20 21:53 - 005468016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 002635248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 001767464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 000653680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 000451056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 000124784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 000083440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2019-09-26 14:00 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\System
2019-09-26 09:55 - 2018-03-20 21:53 - 008716712 _____ C:\WINDOWS\system32\nvcoproc.bin
2019-09-26 00:02 - 2018-05-24 20:14 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2019-09-25 15:14 - 2018-04-01 12:04 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-25 15:14 - 2018-04-01 12:04 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-09-25 15:14 - 2018-04-01 12:04 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2019-09-25 14:39 - 2018-06-01 09:01 - 000000000 ____D C:\Users\PC\AppData\Roaming\steelseries-engine-3-client
2019-09-25 00:57 - 2019-03-13 21:05 - 000000000 ____D C:\Users\PC
2019-09-24 19:49 - 2019-08-31 01:46 - 000000224 _____ C:\Users\PC\Downloads\uopilot.ini
2019-09-24 10:02 - 2019-08-30 23:54 - 000000000 ____D C:\Users\PC\Downloads\Scripts
2019-09-24 10:00 - 2019-08-31 17:16 - 000000599 _____ C:\Users\PC\Desktop\uopilot.exe - Shortcut.lnk
2019-09-17 13:09 - 2018-12-28 15:56 - 000000000 ____D C:\Program Files (x86)\TalismanOnline
2019-09-15 13:22 - 2018-03-20 21:53 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-09-15 13:10 - 2019-05-31 12:44 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-05-31 12:44 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-05-31 12:44 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-05-31 12:44 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2018-03-20 21:54 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-09-15 13:10 - 2018-03-20 21:54 - 000001443 _____ C:\ProgramData\Desktop\GeForce Experience.lnk
2019-09-15 13:10 - 2018-03-20 21:52 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-09-11 01:13 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-09-11 01:13 - 2018-09-15 09:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-09-11 01:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-09-11 01:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-09-10 23:22 - 2019-03-13 21:22 - 000004594 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2019-09-10 23:22 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-10 23:22 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
 
==================== Files in the root of some directories ================
 
2018-03-27 23:25 - 2018-03-27 23:25 - 000000003 _____ () C:\Users\PC\AppData\Local\updater.log
2018-03-27 23:25 - 2018-03-27 23:25 - 000000425 _____ () C:\Users\PC\AppData\Local\UserProducts.xml
 
==================== SigCheck ===============================
 
(There is no automatic fix for files that do not pass verification.)
 
==================== End of FRST.txt ============================Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2019
Ran by PC (08-10-2019 13:12:08)
Running from C:\Users\PC\Desktop
Windows 10 Pro Version 1809 17763.775 (X64) (2019-03-13 19:23:46)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-4123778966-855139210-2178784077-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-4123778966-855139210-2178784077-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-4123778966-855139210-2178784077-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-4123778966-855139210-2178784077-501 - Limited - Disabled)
PC (S-1-5-21-4123778966-855139210-2178784077-1001 - Administrator - Enabled) => C:\Users\PC
WDAGUtilityAccount (S-1-5-21-4123778966-855139210-2178784077-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Photoshop CS6 version 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
Adobe Reader XI (11.0.02) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.02 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
AutoHotkey 1.1.29.01 (HKLM\...\AutoHotkey) (Version: 1.1.29.01 - Lexikos)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Core Temp 1.14 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.14 - ALCPU)
Discord (HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FACEIT (HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\FACEITApp) (Version: 1.22.0 - FACEIT Ltd.)
FACEIT AC version 1.0 (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 1.0 - FACEIT LTD)
Gameloop (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
GPU Temp version 1.0 (HKLM-x32\...\{8C8711FD-0FC8-4801-B33E-ED19BB0350B1}_is1) (Version: 1.0 - gputemp.com)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
K-Lite Codec Pack 9.7.5 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.7.5 - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0009 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.0.118 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.118 - NVIDIA Corporation)
NVIDIA Graphics Driver 436.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.48 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
PBE (HKLM-x32\...\PBE 1.0) (Version: 1.0 - Riot Games, Inc)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.13.1223.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7910 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.16.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.16.1 - SteelSeries ApS)
Talisman Online Ver.4024 (HKLM-x32\...\Talisman Online_is1) (Version:  - Mira Game / Miracle Castle)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{E1D7CB46-BAE9-4D58-99C4-582332B1755A}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
 
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.2.0_x64__tf1gferkr813w [2019-05-27] (Autodesk Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2058.0_x64__rz1tebttyb220 [2019-09-05] (Dolby Laboratories)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-05] (Microsoft Studios) [MS Ad]
MSN Vrijeme -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
Pošta i kalendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad]
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
==================== Loaded Modules (Whitelisted) ==============
 
2019-03-06 20:18 - 2019-03-06 20:18 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2019-03-06 20:18 - 2019-03-06 20:18 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2010-11-18 22:08 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2018-03-27 23:25 - 2017-05-23 14:59 - 000494080 _____ (Skillbrains) [File not signed] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.dll
2018-03-27 23:25 - 2017-05-23 14:59 - 000256000 _____ (Skillbrains) [File not signed] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\uploader.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\WINDOWS\System32:tdsrset.gfc [5846]
AlternateDataStreams: C:\Users\PC\Application Data:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\PC\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Public\AppData:CSM [472]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PC\Desktop\wallpapers\mossawi_518115656916_20150701120828_245594033040.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
If an entry is included in the fixlist, it will be removed.
 
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\StartupApproved\Run: => "OneDrive"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{F7531581-451E-48A8-BFEE-30F809EA8981}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{54DB6B48-858D-4641-BEC9-0DF6922ECD74}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{B237B730-4688-4215-A9A5-2207FBC375F3}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{712CF5DF-A543-4ECC-BC8C-A8C929B38459}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{CB309170-1833-42B7-946F-FC45327A14A4}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{1FBE95C2-1403-42A1-B2AA-27107474D902}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{6B1D0465-434A-4301-B803-8ADF2ADEA7CA}] => (Allow) D:\Program Files\TxGameAssistant\UI\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{59B21095-21E1-446F-9CF0-CE1380AFE03C}] => (Allow) D:\Program Files\TxGameAssistant\UI\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{2BE9822A-4374-47AF-8A9A-30F2199B7898}] => (Allow) D:\Program Files\TxGameAssistant\UI\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{55B3E017-A684-471C-BBAC-1367C2B11807}] => (Allow) D:\Program Files\TxGameAssistant\UI\adb.exe () [File not signed]
FirewallRules: [{5C96EEF4-2E80-49F9-BB0E-8328E355294E}] => (Allow) D:\Program Files\TxGameAssistant\UI\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{776250F8-1F94-4A24-BD33-7963A0EBC685}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{11F0A1D1-D935-4F72-AD88-D3ED0F25EE22}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{04CE9AEB-F7BA-4394-9EA7-0741378674F1}] => (Allow) D:\Program Files\TxGameAssistant\UI\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{28824797-6D82-462C-A081-9FCFFC916323}] => (Allow) D:\Program Files\TxGameAssistant\UI\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A5C623EC-5307-4FC4-9F87-CC5666D61266}] => (Allow) D:\Program Files\TxGameAssistant\UI\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A8488261-A215-4EAA-AF03-8DA99F3FB7C7}] => (Allow) D:\Program Files\TxGameAssistant\UI\adb.exe () [File not signed]
FirewallRules: [{EBF77D5E-4184-4C14-974C-F6A2CACD1044}] => (Allow) D:\Program Files\TxGameAssistant\UI\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{29E27147-CA40-4DA0-842C-DD8850016A70}] => (Allow) C:\Users\PC\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D71B11D6-E868-4CDA-AA3F-D2EDE6A32358}] => (Allow) C:\Users\PC\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{CE151274-BA28-43C3-BFB7-E333743D970A}] => (Allow) C:\Users\PC\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{7A24B172-67B3-4545-9EE6-652B6F6C8168}] => (Allow) C:\Users\PC\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{1E4D36C0-7DEA-4C12-83E6-CCC57A4D42DF}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{19A37EA5-906B-4864-B6F3-41EAF34FD795}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{8B1C00AD-2BF5-431F-BE8B-0B4CB7C533E7}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A10448D4-CB8C-4D3F-B747-68667BB70959}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{EF37E5E6-8F1C-42E5-8613-3A1B0389EB2C}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{FA58F728-1186-44FC-92E7-139E34FC2BEF}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{4C5D438E-BFB2-4D0B-B100-6EB6DD5044BB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{58B0B171-9D1B-4998-8B52-F2AA11C4C01C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{474E4616-855E-4861-AF13-6C4CE6FC5C46}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{0D635472-4371-4AE4-92D2-7CFECFE10F1D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{66F76C9A-9524-4E73-A8DE-91B9C85BFB92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{44863E92-89DD-4791-ABC4-06396061AC94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{335E0A3B-D611-4159-B2D1-CF6E4E4D0CAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{73C5694F-42D7-4B9C-A4D1-D5BFBCCF1D74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C717C259-4D95-49F7-8CF3-D176399C8CDD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F06601B1-1F47-4EFB-9835-A360FF1BB8C0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{9A57293C-8CCA-4E36-9F4A-EDD12AB216F0}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{DA8CD6D4-DBC9-480F-BC29-56CD54592125}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{55E76969-E1CF-43C4-9388-0F3B445761CF}] => (Allow) d:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{71EBE1A5-5933-4940-A907-7442E5FB18E9}] => (Allow) d:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{28FCF428-FB90-4DDC-9588-DEE8BDD2243F}] => (Allow) d:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A1CA143A-6DB1-489E-B32B-629027BF8569}] => (Allow) d:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{07D31BDC-7E3F-40CF-AA89-D13DD9675544}] => (Allow) d:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{3EA71E3A-C902-47EF-8600-F129EB6B0C0B}] => (Allow) d:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A1ED303F-39C8-4CEF-A870-4A341C6A1732}] => (Allow) d:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{CDB5303F-2D43-47D3-8F67-DC0288217745}] => (Allow) d:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{0CE6EAED-59C5-48EE-A757-ED094BB1CBFD}] => (Allow) d:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{87B5300C-0F17-432E-850D-AABABD9914B8}] => (Allow) d:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A7E1DC63-D250-4F90-B2F0-1221AB4196FD}] => (Allow) d:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A4585543-0FF2-4443-8670-63067A2F453D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{E249FCE9-AAE9-4168-A5E3-8CE6A1197149}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [TCP Query User{BF43A945-8736-48F7-B8C2-7DF77E26AE91}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{659D2E74-47D4-4814-8EFA-03A79EED78D0}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [{C40778A0-A26E-4BDD-8840-94A6413B41BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{6668B165-5497-4383-ABA8-9C55E32B65EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [TCP Query User{22CA87B1-4989-4B06-9A31-06ED945B8B8A}C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe (PearlAbyss Corp. -> )
FirewallRules: [UDP Query User{5FC25846-1E4E-4F08-AF07-B15AFE3D9EEC}C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe (PearlAbyss Corp. -> )
FirewallRules: [{E2B39BC8-58C1-496F-9129-42165A4A1ECB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BF07A814-7C1B-4AC8-A754-BDB6728DC70B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CF53E4D3-5098-430D-AF4A-BE28CAF95B9D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5FDA6DEB-302B-4A40-A826-4FED9EA4B2DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{07B4DC9B-15C5-4697-AACA-B30123790334}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{2D0E6FDD-CDC6-46AE-993B-1B35A5309C86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{88EA0D1B-068A-4715-B23E-994DB916CFD3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{8D59AB45-ED4D-4828-9B66-7F71B0D3E543}] => (Allow) d:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{599B3436-2C6C-4E16-A129-70CFC396E17C}] => (Allow) d:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{26E23FB7-7845-4B83-89C5-A36CC74B2567}] => (Allow) d:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{BF21B842-0E45-4850-807D-CCF7C4F754E4}] => (Allow) d:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{C5CB454B-5E01-4982-81C6-DCEF0275623A}] => (Allow) d:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{EE482A0C-0664-446E-8B8D-E2C8B1CED803}] => (Allow) d:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{0F8EECE3-0CFC-4A3F-8317-A089987FFDFD}] => (Allow) d:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{F1254AC5-A2E2-4467-B334-B1B22782BFB3}] => (Allow) d:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{A9826D50-38F1-4AE3-B17D-BB1E4C7454A4}] => (Allow) d:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{5A4B7757-9373-473E-9E45-EB54991E3EE4}] => (Allow) d:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{C47A3DD5-C9E8-4C74-8742-B47B43E0E683}] => (Allow) d:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
 
==================== Codecs (Whitelisted) ==================
 
 
==================== Restore Points =========================
 
19-09-2019 18:02:23 Scheduled Checkpoint
29-09-2019 15:01:26 Scheduled Checkpoint
03-10-2019 20:35:22 Windows Update
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/04/2019 11:09:51 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Windows\System32\svchost.exe, PID: 1944, ProfSvc PID: 1868.
 
Error: (09/28/2019 09:20:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Solitaire.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 129c
 
Start Time: 01d57631baca7fd3
 
Termination Time: 4294967295
 
Application Path: C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe\Solitaire.exe
 
Report Id: 53b398ea-6295-4113-aa54-a3267559cde6
 
Faulting package full name: Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe
 
Faulting package-relative application ID: App
 
Hang type: Quiesce
 
Error: (09/25/2019 02:39:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine QueryFullProcessImageNameW.  hr = 0x80070006, The handle is invalid.
.
 
 
Operation:
   Executing Asynchronous Operation
 
Context:
   Current State: DoSnapshotSet
 
Error: (09/18/2019 12:02:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: bad_module_info, version: 0.0.0.0, time stamp: 0x00000000
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000409
Fault offset: 0x0ab72718
Faulting process id: 0x5bc
Faulting application start time: 0x01d56d9c27d6d748
Faulting application path: bad_module_info
Faulting module path: unknown
Report Id: 9c9f3c98-5102-49f7-bf31-ad98342080e3
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (09/15/2019 12:54:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program BlackDesert64.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 1168
 
Start Time: 01d56bb23ec202e6
 
Termination Time: 9
 
Application Path: C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\bin64\BlackDesert64.exe
 
Report Id: ca3a53e9-d9b3-42dd-a948-9c7180dee3d7
 
Faulting package full name: 
 
Faulting package-relative application ID: 
 
Hang type: Unknown
 
Error: (09/15/2019 12:18:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program BlackDesert64.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: b4c
 
Start Time: 01d56bad0701c17c
 
Termination Time: 9
 
Application Path: C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\bin64\BlackDesert64.exe
 
Report Id: dbcd669c-ea01-48fd-84a1-f4245ac07ddf
 
Faulting package full name: 
 
Faulting package-relative application ID: 
 
Hang type: Unknown
 
Error: (09/15/2019 12:03:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program BlackDesert64.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 19a8
 
Start Time: 01d56bab3dc64300
 
Termination Time: 9
 
Application Path: C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\bin64\BlackDesert64.exe
 
Report Id: e5f998f5-406e-47a7-aede-a9fdd1ca7fb0
 
Faulting package full name: 
 
Faulting package-relative application ID: 
 
Hang type: Unknown
 
Error: (09/11/2019 05:33:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program ShellExperienceHost.exe version 10.0.17763.719 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 2244
 
Start Time: 01d568b631891f7b
 
Termination Time: 4294967295
 
Application Path: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
 
Report Id: d59db934-9d87-468d-8752-33856f1833e5
 
Faulting package full name: Microsoft.Windows.ShellExperienceHost_10.0.17763.1_neutral_neutral_cw5n1h2txyewy
 
Faulting package-relative application ID: App
 
Hang type: Quiesce
 
 
System errors:
=============
Error: (10/08/2019 01:00:02 PM) (Source: DCOM) (EventID: 10016) (User: ADMINRG-UO7FCI4)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ADMINRG-UO7FCI4\PC SID (S-1-5-21-4123778966-855139210-2178784077-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 12:58:35 PM) (Source: DCOM) (EventID: 10000) (User: ADMINRG-UO7FCI4)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"0"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
 
Error: (10/08/2019 12:41:07 PM) (Source: DCOM) (EventID: 10016) (User: ADMINRG-UO7FCI4)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ADMINRG-UO7FCI4\PC SID (S-1-5-21-4123778966-855139210-2178784077-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 12:36:14 PM) (Source: DCOM) (EventID: 10016) (User: ADMINRG-UO7FCI4)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ADMINRG-UO7FCI4\PC SID (S-1-5-21-4123778966-855139210-2178784077-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 12:33:15 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.WscBrokerManager
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 12:33:15 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.SecurityAppBroker
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 12:33:15 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.WscDataProtection
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 12:32:24 PM) (Source: DCOM) (EventID: 10016) (User: ADMINRG-UO7FCI4)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ADMINRG-UO7FCI4\PC SID (S-1-5-21-4123778966-855139210-2178784077-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
 
Windows Defender:
===================================
Date: 2019-10-07 15:48:49.372
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
Name: Trojan:Win32/Tiggre!plock
ID: 2147723626
Severity: Severe
Category: Trojan
Path: file:_C:\WINDOWS\system32\StartupCheckLibrary.dll
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: Unknown
Signature Version: AV: 1.303.1088.0, AS: 1.303.1088.0, NIS: 1.303.1088.0
Engine Version: AM: 1.1.16400.2, NIS: 1.1.16400.2
 
Date: 2019-10-06 12:01:36.525
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {7B9D1E7A-1AC9-457F-98EA-5BC6E00966B6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-10-05 19:23:26.583
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {29CC6559-C671-4162-BE9C-620642987E34}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-10-05 15:12:10.676
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {F3061620-48FC-4751-BA7F-82DA10F560D3}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-10-05 11:30:29.028
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {161001E4-C25A-4678-B678-3F441D0215AC}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
==================== Memory info =========================== 
 
BIOS: American Megatrends Inc. 3203 11/09/2017
Motherboard: ASUSTeK COMPUTER INC. PRIME A320M-K
Processor: AMD Ryzen 5 1500X Quad-Core Processor 
Percentage of memory in use: 46%
Total physical RAM: 8121.72 MB
Available physical RAM: 4361.73 MB
Total Virtual: 9273.72 MB
Available Virtual: 4130.31 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:232.79 GB) (Free:93.43 GB) NTFS
Drive d: (New Volume) (Fixed) (Total:232.42 GB) (Free:218.04 GB) NTFS
 
\\?\Volume{50fda09e-73c9-4b42-8644-0bd5474abbc9}\ () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS
\\?\Volume{68a26e3a-ed43-48e6-92c8-1db7eb8b1da6}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,906 posts
  • MVP

Uninstall your old version of Java:

Java 8 Update 191

 

 

Download the attached fixlist.txt to the same location as FRST

Attached File  fixlist.txt   2.51KB   13 downloads

Run FRST and press Fix
A fix log will be generated please post that

Reboot if the fix doesn't reboot it for you

Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.
 

You have an older version of Windows.  Time to update to 1903

Easiest way is to go to:

https://www.microsof...nload/windows10

and hit Update Now then follow the prompts.

After the upgrade go to Settings, Update & Security and check for Updates as there are always more after a major update.


  • 1

#3
arma96

arma96

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts

I uninstall old version of java, and install new one. I download that fixlist.txt, run FRST and press fix as u say. After reboot there is no more error "there was a problem starting startupchecklibrary.dll the specified module could not be found", and here is the fixlog:

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 06-10-2019

Ran by PC (08-10-2019 16:52:43) Run:1
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: defaultuser0 & PC & Administrator)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
Task: {33232E4A-9A05-4A01-8E21-C0CA48F40A32} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION
Task: {FC34D2EB-AF19-4D90-A171-9F9AC65CD7AA} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\update-S-1-5-21-4123778966-855139210-2178784077-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
AlternateDataStreams: C:\WINDOWS\System32:tdsrset.gfc [5846]
AlternateDataStreams: C:\Users\PC\Application Data:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\PC\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Public\AppData:CSM [472]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]
CMD: mkdir  C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer
CMD: mkdir  C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
Reboot:
 
 
 
 
 
 
 
*****************
 
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{33232E4A-9A05-4A01-8E21-C0CA48F40A32}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{33232E4A-9A05-4A01-8E21-C0CA48F40A32}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Application Experience\StartupCheckLibrary" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FC34D2EB-AF19-4D90-A171-9F9AC65CD7AA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FC34D2EB-AF19-4D90-A171-9F9AC65CD7AA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
C:\WINDOWS\Tasks\update-S-1-5-21-4123778966-855139210-2178784077-1001.job => moved successfully
C:\WINDOWS\Tasks\update-sys.job => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
C:\WINDOWS\System32 => ":tdsrset.gfc" ADS removed successfully
C:\Users\PC\Application Data => ":6699d3ee8dd9cf775caae782c8f44f03" ADS removed successfully
"C:\Users\PC\AppData\Roaming" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found.
C:\Users\Public\AppData => ":CSM" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
 
========= mkdir  C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer =========
 
 
========= End of CMD: =========
 
 
========= mkdir  C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database =========
 
 
========= End of CMD: =========
 
 
========= FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" =========
 
Failed to clear log Microsoft-Windows-LiveId/Analytic.
Access is denied.
Failed to clear log Microsoft-Windows-LiveId/Operational.
Access is denied.
 
========= End of CMD: =========
 
 
 
The system needed a reboot.
 
==== End of Fixlog 16:55:11 ====
 
 
Did i need to run FRST scan now and post both logs, because its looks like problem is solved? Or just update windows to 1903?
Sorry for bad english, and a big THANK YOU man!!

  • 0

#4
arma96

arma96

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts

Here is the new logs after scan:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2019
Ran by PC (administrator) on ADMINRG-UO7FCI4 (08-10-2019 17:52:19)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: defaultuser0 & PC & Administrator)
Platform: Windows 10 Pro Version 1809 17763.775 (X64) Language: English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19091.313.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skillbrains) [File not signed] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8899592 2016-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] (OOO Lightshot -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3211040 2019-10-02] (Valve -> Valve Corporation)
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\Run: [Discord] => C:\Users\PC\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24916512 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\MountPoints2: {e85540fd-5d09-11e9-bb2a-2cfda1e2af21} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\MountPoints2: {e85541de-5d09-11e9-bb2a-2cfda1e2af21} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-18\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24916512 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-25] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2019-09-25]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0110843B-04E6-4951-978C-9117980EB2CC} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {0FDB234E-7F5D-418E-B3A1-C2B729E1094B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18732320 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)
Task: {37102774-EA8D-4BD2-9FF2-1CCD2582BE73} - System32\Tasks\update-S-1-5-21-4123778966-855139210-2178784077-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {3BC150D4-4C0F-4BEE-9589-AD01C9576B7D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {47703624-5EA7-4AF8-955B-114528364D97} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {4AB27887-6735-42E6-9F3C-9114D32DB8B5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3310688 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {704FF539-3C56-423A-9DE3-C810F7553BE7} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)
Task: {721D3A19-6BEF-4BCA-B6AD-A3939C0995EC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-01] (Google Inc -> Google Inc.)
Task: {789A305C-39FA-4F8E-90D6-15AB33B4DFCF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7A208444-8ECE-45E7-8AD4-0EA5D726E602} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {81070785-9003-4072-8682-DB5EBD585DBB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8397A5B4-F663-4826-885B-7FAF736BB1F9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {92E3971B-78F6-4AC6-952D-A454AB440859} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {952B289C-B4A3-48F9-A891-1DAA198CDF21} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-10-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9B92FF29-119E-48BF-B7FB-93C47F334DF8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-01] (Google Inc -> Google Inc.)
Task: {BF97A369-184C-4942-BCA3-3F92B5DF7A48} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-09-10] (Adobe Inc. -> Adobe)
Task: {C6469399-E30A-43D3-A693-3B473640C14F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C8CFD49F-9AD4-4080-B58A-A5E024F7BDEB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D8E628EB-3EC4-4A3B-A96D-7377003346FB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EAC8790E-33C0-400D-A2CA-15D68CDD66B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ED86986B-4D20-4362-B53E-20F0E2673D83} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EDD26408-6B58-4F13-8458-F4FC04440A5D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FB1FC5B3-9748-431A-AFA6-8F63878096B2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653864 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FF59769E-A963-4641-A105-020B7B333534} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{625eeba6-84fa-4cac-a68f-02c0af6439b8}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{625eeba6-84fa-4cac-a68f-02c0af6439b8}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-10-08] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-10-08] (Oracle America, Inc. -> Oracle Corporation)
 
FireFox:
========
FF DefaultProfile: 69aksfp8.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\69aksfp8.default [2019-05-25]
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\sq4m6mdy.default-release [2019-10-08]
FF Extension: (AdBlock) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\sq4m6mdy.default-release\Extensions\[email protected] [2019-08-24]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-10-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-10-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-02] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-02] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-02-16] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2019-10-08]
CHR DownloadDir: C:\Users\PC\Desktop
CHR Extension: (Slides) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-04-01]
CHR Extension: (BetterTTV) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2019-10-03]
CHR Extension: (Docs) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-01]
CHR Extension: (Google Drive) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-04-01]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-04-01]
CHR Extension: (Sheets) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-04-01]
CHR Extension: (Google Docs Offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (AdBlock) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7234640 2018-07-12] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-03-31] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
R2 QMEmulatorService; D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [148840 2019-09-25] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5378320 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34568 2019-04-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24424 2016-08-13] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [137496 2018-09-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R2 aow_drv; D:\Program Files\TxGameAssistant\UI\2.0.12832.123\aow_drv_x64_ev.sys [863616 2019-09-27] (Tencent Technology (Shenzhen) Company Limited -> Tencent)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2016-11-18] (ASUSTeK Computer Inc. -> )
R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [15288688 2019-05-16] (FACE IT LIMITED -> )
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [55232 2018-07-30] (SurfRight B.V. -> )
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_827405c7c65146ab\nvlddmkm.sys [22377352 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [947712 2017-02-20] (Realtek Semiconductor Corp. -> Realtek )
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-05-24] (SteelSeries ApS -> )
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [47824 2019-05-24] (SteelSeries ApS -> SteelSeries ApS)
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [442128 2019-09-27] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 TesSafe; C:\WINDOWS\system32\TesSafe.sys [555064 2019-09-27] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-09-26] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2019-10-08 16:52 - 2019-10-08 16:55 - 000003960 _____ C:\Users\PC\Desktop\Fixlog.txt
2019-10-08 16:51 - 2019-10-08 16:51 - 000098288 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-10-08 16:51 - 2019-10-08 16:51 - 000000000 ____D C:\Users\PC\AppData\Roaming\Sun
2019-10-08 16:51 - 2019-10-08 16:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-10-08 16:50 - 2019-10-08 16:50 - 000000000 ____D C:\Program Files (x86)\Java
2019-10-08 16:49 - 2019-10-08 16:49 - 002065880 _____ (Oracle Corporation) C:\Users\PC\Desktop\JavaSetup8u221.exe
2019-10-08 15:41 - 2019-10-08 15:42 - 000000000 ____D C:\Users\PC\Desktop\New folder
2019-10-08 15:39 - 2019-10-08 15:39 - 001728127 _____ C:\Users\PC\Desktop\Autoruns.zip
2019-10-08 15:12 - 2019-10-08 15:12 - 000000000 ____D C:\Users\PC\AppData\Local\OneDrive
2019-10-08 13:46 - 2019-10-08 13:46 - 000001244 _____ C:\Users\PC\Documents\cc_20191008_134626.reg
2019-10-08 13:12 - 2019-10-08 13:13 - 000040439 _____ C:\Users\PC\Desktop\Addition.txt
2019-10-08 13:10 - 2019-10-08 17:53 - 000023455 _____ C:\Users\PC\Desktop\FRST.txt
2019-10-08 13:09 - 2019-10-08 17:52 - 000000000 ____D C:\FRST
2019-10-08 13:07 - 2019-10-08 13:07 - 001615872 _____ (Farbar) C:\Users\PC\Desktop\FRST64.exe
2019-10-08 12:25 - 2019-10-08 12:25 - 000101444 _____ C:\Users\PC\Documents\cc_20191008_122458.reg
2019-10-08 12:06 - 2019-10-08 12:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2019-10-08 12:06 - 2019-10-08 12:06 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-10-08 12:04 - 2019-10-08 12:29 - 000000000 ____D C:\ProgramData\AVAST Software
2019-10-08 12:03 - 2019-10-08 12:03 - 025441808 _____ (Piriform Software Ltd) C:\Users\PC\Downloads\ccsetup562.exe
2019-10-08 12:02 - 2019-10-08 12:02 - 000002864 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2019-10-07 21:54 - 2019-10-07 21:54 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-10-07 21:52 - 2019-09-27 23:15 - 011561728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 009936640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 001012640 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 001012640 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000876448 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000876448 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000447120 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000351888 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-10-07 21:52 - 2019-09-27 23:15 - 000301472 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-10-07 21:52 - 2019-09-27 23:15 - 000301472 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-10-07 21:52 - 2019-09-27 23:15 - 000273312 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-10-07 21:52 - 2019-09-27 23:15 - 000273312 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-10-07 21:52 - 2019-09-27 23:14 - 000823552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2019-10-07 21:52 - 2019-09-27 23:14 - 000676744 _____ C:\WINDOWS\system32\nvofapi64.dll
2019-10-07 21:52 - 2019-09-27 23:14 - 000633224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-10-07 21:52 - 2019-09-27 23:14 - 000544456 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 040445128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 035333888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 017301248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 014922440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 005358464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 004697288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 002051512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001726720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6443648.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001551240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001491144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6443648.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001477512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001246976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 001140424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 000959416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 000812800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-10-07 21:52 - 2019-09-27 23:13 - 000523520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-10-07 21:52 - 2019-09-27 23:09 - 004263512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-10-06 13:39 - 2019-10-06 17:53 - 000000000 ____D C:\Users\PC\Desktop\zelektro
2019-10-03 20:49 - 2019-10-03 20:49 - 026806272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 023454720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 020815872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 019013632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 012259840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 006444544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 006316792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 005767168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 005605560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 005309080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 003614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 003428864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002349056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002279304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 002096640 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-03 20:49 - 2019-10-03 20:49 - 002018304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-03 20:49 - 2019-10-03 20:49 - 001924976 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplaySwitch.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 001764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001750528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 001247344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shellstyle.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shellstyle.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000791864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000767800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000661096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000589824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2019-10-03 20:49 - 2019-10-03 20:49 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000452992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2019-10-03 20:49 - 2019-10-03 20:49 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-10-03 20:49 - 2019-10-03 20:49 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000241976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-10-03 20:49 - 2019-10-03 20:49 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-03 20:49 - 2019-10-03 20:49 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.OneCore.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSTheme.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000038184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PasswordOnWakeSettingFlyout.exe
2019-10-03 20:49 - 2019-10-03 20:49 - 000030720 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2019-10-03 20:49 - 2019-10-03 20:49 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 022135584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 017485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 015220224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 009680184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 007698432 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 006928384 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 006058032 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 005573016 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 005299712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 004588536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 004352472 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 004057088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003820976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 003634688 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003198976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 003000832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002924344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002839040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002779784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 002699768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 002415928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002200376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002118656 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001966392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001864704 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001751424 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001720120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001701880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-03 20:48 - 2019-10-03 20:48 - 001701176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001522488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001484896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001399608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001390888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-03 20:48 - 2019-10-03 20:48 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001308672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001294272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001272120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001170432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-10-03 20:48 - 2019-10-03 20:48 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001052984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 001048888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 001006392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000938296 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-10-03 20:48 - 2019-10-03 20:48 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000817464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000780408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000775216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000770096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000613176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000605368 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000598328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000588600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000506192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2019-10-03 20:48 - 2019-10-03 20:48 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000439096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000434952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000384272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000290616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000278416 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.OneCore.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000193704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000156512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000155968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000138552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000135816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000079032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000065608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000057656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000052536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSTheme.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000044912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordOnWakeSettingFlyout.exe
2019-10-03 20:48 - 2019-10-03 20:48 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll
2019-10-03 20:48 - 2019-10-03 20:48 - 000018744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msisadrv.sys
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-03 20:48 - 2019-10-03 20:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-09-27 17:45 - 2019-09-27 17:55 - 000555064 _____ (TENCENT) C:\WINDOWS\system32\TesSafe.sys
2019-09-27 17:45 - 2019-09-27 17:45 - 000442128 _____ (TENCENT) C:\WINDOWS\system32\Drivers\tesrsdt.sys
2019-09-21 12:06 - 2019-09-22 14:02 - 000000000 ____D C:\WINDOWS\Minidump
2019-09-15 13:17 - 2019-09-06 20:26 - 001726400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6443630.dll
2019-09-15 13:17 - 2019-09-06 20:26 - 001491336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6443630.dll
2019-09-11 10:30 - 2019-09-10 21:48 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-09-11 10:30 - 2019-09-10 21:48 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-10 22:45 - 2019-09-16 19:39 - 000000000 ____D C:\Users\PC\Documents\Black Desert
2019-09-10 22:44 - 2019-09-26 14:00 - 000074552 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2019-09-10 22:44 - 2019-09-10 22:44 - 000000016 _____ C:\ProgramData\mntemp
2019-09-10 21:44 - 2019-09-10 21:44 - 008903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 006065664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 004874752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 003096576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 002099752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001782272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001655976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001604760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001573240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001272560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001075832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000968192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000798736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2019-09-10 21:44 - 2019-09-10 21:44 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000774968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000660544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000652832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000622392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000540240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000409256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000386048 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\SysWOW64\curl.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000349144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000279416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000195224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000144080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000140088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000106048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000098080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2019-09-10 21:44 - 2019-09-10 21:44 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2019-09-10 21:44 - 2019-09-10 21:44 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2019-09-10 21:43 - 2019-09-10 21:44 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 005569024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 003490816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 003333984 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002593032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 002148864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001743168 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001721360 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001563880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001387512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001191512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001187840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AgentService.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 001081656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 001022824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000865576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000851272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000811024 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000807760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000806568 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-09-10 21:43 - 2019-09-10 21:43 - 000806568 _____ C:\WINDOWS\system32\locale.nls
2019-09-10 21:43 - 2019-09-10 21:43 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000793824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000791352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000751928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000740904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000736056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000652600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000652304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000603784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000554000 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000532192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000515152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000464912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000402368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000398208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000351432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000347576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000330672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000330592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpprov.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000177176 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000168248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000164504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000140600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000130872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-09-10 21:43 - 2019-09-10 21:43 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-09-10 21:43 - 2019-09-10 21:43 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiAcpiClient.sys
2019-09-10 21:43 - 2019-09-10 21:43 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2019-09-10 19:21 - 2019-09-10 19:21 - 000000222 _____ C:\Users\PC\Desktop\Black Desert Online.url
 
==================== One month (modified) ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2019-10-08 17:51 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-08 17:39 - 2018-07-31 02:23 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2019-10-08 17:38 - 2019-03-13 21:22 - 000004160 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E4EFCEC2-F0F1-422B-BEC7-301ECF79F9D2}
2019-10-08 17:02 - 2018-03-20 21:53 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-08 17:01 - 2018-03-22 14:29 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-08 16:57 - 2019-03-13 21:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-08 16:56 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-08 16:38 - 2019-03-13 20:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-08 15:10 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-08 14:01 - 2019-03-13 21:22 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4123778966-855139210-2178784077-1001
2019-10-08 14:01 - 2019-03-13 21:05 - 000002354 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-08 14:01 - 2018-03-21 12:27 - 000000000 ___RD C:\Users\PC\OneDrive
2019-10-08 13:13 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-10-08 12:17 - 2018-06-12 18:19 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2019-10-08 12:15 - 2018-12-27 13:17 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2019-10-08 12:14 - 2018-03-20 21:45 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-10-08 12:14 - 2018-03-20 21:45 - 000000916 _____ C:\ProgramData\Desktop\VLC media player.lnk
2019-10-08 12:06 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-10-08 12:06 - 2018-03-23 02:37 - 000001044 _____ C:\Users\Public\Desktop\WinRAR.lnk
2019-10-08 12:06 - 2018-03-23 02:37 - 000001044 _____ C:\ProgramData\Desktop\WinRAR.lnk
2019-10-08 12:06 - 2018-03-23 02:37 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-10-08 12:06 - 2018-03-23 02:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-10-08 12:06 - 2018-03-23 02:37 - 000000000 ____D C:\Program Files\WinRAR
2019-10-08 12:05 - 2018-07-30 20:01 - 000000000 ____D C:\Program Files\CCleaner
2019-10-08 12:04 - 2019-03-13 21:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-08 12:04 - 2018-07-30 20:01 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-08 12:04 - 2018-07-30 20:01 - 000000863 _____ C:\ProgramData\Desktop\CCleaner.lnk
2019-10-08 11:45 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-08 11:45 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-08 11:27 - 2019-03-28 14:18 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2019-10-08 11:26 - 2018-07-24 22:07 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2019-10-08 11:12 - 2018-12-15 12:24 - 000000000 ____D C:\Program Files (x86)\Popcorn Time
2019-10-07 21:54 - 2018-03-20 21:54 - 000000000 ____D C:\Users\PC\AppData\Local\NVIDIA
2019-10-07 21:54 - 2018-03-20 21:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-10-06 10:37 - 2019-03-13 21:16 - 000840848 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-04 11:11 - 2018-03-24 14:22 - 000000000 ____D C:\Users\PC\AppData\Roaming\discord
2019-10-04 11:10 - 2018-03-23 16:09 - 000000000 ___RD C:\Users\PC\3D Objects
2019-10-04 11:10 - 2018-03-21 12:25 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-04 11:08 - 2019-03-13 20:59 - 000442384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-04 00:24 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-04 00:23 - 2018-09-15 19:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-10-04 00:23 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-04 00:23 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-10-04 00:23 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-04 00:23 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-03 20:52 - 2018-09-15 19:41 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-10-03 20:52 - 2018-09-15 19:41 - 000018002 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-02 22:13 - 2019-03-13 21:22 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-02 22:13 - 2019-03-13 21:22 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-02 22:13 - 2018-03-21 12:28 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-02 11:49 - 2018-03-23 11:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-01 14:20 - 2018-03-23 15:54 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2019-09-27 23:13 - 2019-05-31 12:51 - 000659328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-09-27 23:09 - 2019-03-06 14:31 - 005002192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2019-09-27 17:38 - 2019-07-22 15:33 - 000000889 _____ C:\Users\PC\Desktop\Gameloop.lnk
2019-09-27 03:27 - 2019-03-06 14:31 - 000054700 _____ C:\WINDOWS\system32\nvinfo.pb
2019-09-27 01:23 - 2018-03-20 21:53 - 005468016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 002635248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 001767464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 000653680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 000451056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 000124784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2019-09-27 01:23 - 2018-03-20 21:53 - 000083440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2019-09-26 14:00 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\System
2019-09-26 09:55 - 2018-03-20 21:53 - 008716712 _____ C:\WINDOWS\system32\nvcoproc.bin
2019-09-26 00:02 - 2018-05-24 20:14 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2019-09-25 15:14 - 2018-04-01 12:04 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-25 15:14 - 2018-04-01 12:04 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-09-25 15:14 - 2018-04-01 12:04 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2019-09-25 14:39 - 2018-06-01 09:01 - 000000000 ____D C:\Users\PC\AppData\Roaming\steelseries-engine-3-client
2019-09-25 00:57 - 2019-03-13 21:05 - 000000000 ____D C:\Users\PC
2019-09-24 19:49 - 2019-08-31 01:46 - 000000224 _____ C:\Users\PC\Downloads\uopilot.ini
2019-09-24 10:02 - 2019-08-30 23:54 - 000000000 ____D C:\Users\PC\Downloads\Scripts
2019-09-24 10:00 - 2019-08-31 17:16 - 000000599 _____ C:\Users\PC\Desktop\uopilot.exe - Shortcut.lnk
2019-09-17 13:09 - 2018-12-28 15:56 - 000000000 ____D C:\Program Files (x86)\TalismanOnline
2019-09-15 13:22 - 2018-03-20 21:53 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-09-15 13:10 - 2019-05-31 12:44 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-05-31 12:44 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-05-31 12:44 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-05-31 12:44 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2019-03-13 21:22 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-09-15 13:10 - 2018-03-20 21:54 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-09-15 13:10 - 2018-03-20 21:54 - 000001443 _____ C:\ProgramData\Desktop\GeForce Experience.lnk
2019-09-15 13:10 - 2018-03-20 21:52 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-09-11 01:13 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-09-11 01:13 - 2018-09-15 09:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-09-11 01:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-09-11 01:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-09-10 23:22 - 2019-03-13 21:22 - 000004594 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2019-09-10 23:22 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-10 23:22 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
 
==================== Files in the root of some directories ================
 
2018-03-27 23:25 - 2018-03-27 23:25 - 000000003 _____ () C:\Users\PC\AppData\Local\updater.log
2018-03-27 23:25 - 2018-03-27 23:25 - 000000425 _____ () C:\Users\PC\AppData\Local\UserProducts.xml
 
==================== SigCheck ===============================
 
(There is no automatic fix for files that do not pass verification.)
 
==================== End of FRST.txt ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2019
Ran by PC (08-10-2019 17:54:52)
Running from C:\Users\PC\Desktop
Windows 10 Pro Version 1809 17763.775 (X64) (2019-03-13 19:23:46)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-4123778966-855139210-2178784077-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-4123778966-855139210-2178784077-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-4123778966-855139210-2178784077-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-4123778966-855139210-2178784077-501 - Limited - Disabled)
PC (S-1-5-21-4123778966-855139210-2178784077-1001 - Administrator - Enabled) => C:\Users\PC
WDAGUtilityAccount (S-1-5-21-4123778966-855139210-2178784077-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Photoshop CS6 version 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
Adobe Reader XI (11.0.02) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.02 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
AutoHotkey 1.1.29.01 (HKLM\...\AutoHotkey) (Version: 1.1.29.01 - Lexikos)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Core Temp 1.14 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.14 - ALCPU)
Discord (HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FACEIT (HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\FACEITApp) (Version: 1.22.0 - FACEIT Ltd.)
FACEIT AC version 1.0 (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 1.0 - FACEIT LTD)
Gameloop (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
GPU Temp version 1.0 (HKLM-x32\...\{8C8711FD-0FC8-4801-B33E-ED19BB0350B1}_is1) (Version: 1.0 - gputemp.com)
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
K-Lite Codec Pack 9.7.5 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.7.5 - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.0.118 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.118 - NVIDIA Corporation)
NVIDIA Graphics Driver 436.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.48 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
PBE (HKLM-x32\...\PBE 1.0) (Version: 1.0 - Riot Games, Inc)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.13.1223.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7910 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.16.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.16.1 - SteelSeries ApS)
Talisman Online Ver.4024 (HKLM-x32\...\Talisman Online_is1) (Version:  - Mira Game / Miracle Castle)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{E1D7CB46-BAE9-4D58-99C4-582332B1755A}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
 
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.2.0_x64__tf1gferkr813w [2019-05-27] (Autodesk Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2058.0_x64__rz1tebttyb220 [2019-09-05] (Dolby Laboratories)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-05] (Microsoft Studios) [MS Ad]
MSN Vrijeme -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
Pošta i kalendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad]
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
==================== Loaded Modules (Whitelisted) ==============
 
2019-03-06 20:18 - 2019-03-06 20:18 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2019-03-06 20:18 - 2019-03-06 20:18 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2010-11-18 22:08 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2018-03-27 23:25 - 2017-05-23 14:59 - 000494080 _____ (Skillbrains) [File not signed] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.dll
2018-03-27 23:25 - 2017-05-23 14:59 - 000256000 _____ (Skillbrains) [File not signed] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\uploader.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PC\Desktop\wallpapers\mossawi_518115656916_20150701120828_245594033040.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
If an entry is included in the fixlist, it will be removed.
 
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKU\S-1-5-21-4123778966-855139210-2178784077-1001\...\StartupApproved\Run: => "OneDrive"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{F7531581-451E-48A8-BFEE-30F809EA8981}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{54DB6B48-858D-4641-BEC9-0DF6922ECD74}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{B237B730-4688-4215-A9A5-2207FBC375F3}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{712CF5DF-A543-4ECC-BC8C-A8C929B38459}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{CB309170-1833-42B7-946F-FC45327A14A4}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{1FBE95C2-1403-42A1-B2AA-27107474D902}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{6B1D0465-434A-4301-B803-8ADF2ADEA7CA}] => (Allow) D:\Program Files\TxGameAssistant\UI\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{59B21095-21E1-446F-9CF0-CE1380AFE03C}] => (Allow) D:\Program Files\TxGameAssistant\UI\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{2BE9822A-4374-47AF-8A9A-30F2199B7898}] => (Allow) D:\Program Files\TxGameAssistant\UI\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{55B3E017-A684-471C-BBAC-1367C2B11807}] => (Allow) D:\Program Files\TxGameAssistant\UI\adb.exe () [File not signed]
FirewallRules: [{5C96EEF4-2E80-49F9-BB0E-8328E355294E}] => (Allow) D:\Program Files\TxGameAssistant\UI\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{776250F8-1F94-4A24-BD33-7963A0EBC685}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{11F0A1D1-D935-4F72-AD88-D3ED0F25EE22}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{04CE9AEB-F7BA-4394-9EA7-0741378674F1}] => (Allow) D:\Program Files\TxGameAssistant\UI\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{28824797-6D82-462C-A081-9FCFFC916323}] => (Allow) D:\Program Files\TxGameAssistant\UI\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A5C623EC-5307-4FC4-9F87-CC5666D61266}] => (Allow) D:\Program Files\TxGameAssistant\UI\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A8488261-A215-4EAA-AF03-8DA99F3FB7C7}] => (Allow) D:\Program Files\TxGameAssistant\UI\adb.exe () [File not signed]
FirewallRules: [{EBF77D5E-4184-4C14-974C-F6A2CACD1044}] => (Allow) D:\Program Files\TxGameAssistant\UI\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{29E27147-CA40-4DA0-842C-DD8850016A70}] => (Allow) C:\Users\PC\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D71B11D6-E868-4CDA-AA3F-D2EDE6A32358}] => (Allow) C:\Users\PC\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{CE151274-BA28-43C3-BFB7-E333743D970A}] => (Allow) C:\Users\PC\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{7A24B172-67B3-4545-9EE6-652B6F6C8168}] => (Allow) C:\Users\PC\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{1E4D36C0-7DEA-4C12-83E6-CCC57A4D42DF}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{19A37EA5-906B-4864-B6F3-41EAF34FD795}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{8B1C00AD-2BF5-431F-BE8B-0B4CB7C533E7}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A10448D4-CB8C-4D3F-B747-68667BB70959}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{EF37E5E6-8F1C-42E5-8613-3A1B0389EB2C}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{FA58F728-1186-44FC-92E7-139E34FC2BEF}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{4C5D438E-BFB2-4D0B-B100-6EB6DD5044BB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{58B0B171-9D1B-4998-8B52-F2AA11C4C01C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{474E4616-855E-4861-AF13-6C4CE6FC5C46}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{0D635472-4371-4AE4-92D2-7CFECFE10F1D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{66F76C9A-9524-4E73-A8DE-91B9C85BFB92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{44863E92-89DD-4791-ABC4-06396061AC94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{335E0A3B-D611-4159-B2D1-CF6E4E4D0CAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{73C5694F-42D7-4B9C-A4D1-D5BFBCCF1D74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C717C259-4D95-49F7-8CF3-D176399C8CDD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F06601B1-1F47-4EFB-9835-A360FF1BB8C0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{9A57293C-8CCA-4E36-9F4A-EDD12AB216F0}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{DA8CD6D4-DBC9-480F-BC29-56CD54592125}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{55E76969-E1CF-43C4-9388-0F3B445761CF}] => (Allow) d:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{71EBE1A5-5933-4940-A907-7442E5FB18E9}] => (Allow) d:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{28FCF428-FB90-4DDC-9588-DEE8BDD2243F}] => (Allow) d:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A1CA143A-6DB1-489E-B32B-629027BF8569}] => (Allow) d:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{07D31BDC-7E3F-40CF-AA89-D13DD9675544}] => (Allow) d:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{3EA71E3A-C902-47EF-8600-F129EB6B0C0B}] => (Allow) d:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A1ED303F-39C8-4CEF-A870-4A341C6A1732}] => (Allow) d:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{CDB5303F-2D43-47D3-8F67-DC0288217745}] => (Allow) d:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{0CE6EAED-59C5-48EE-A757-ED094BB1CBFD}] => (Allow) d:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{87B5300C-0F17-432E-850D-AABABD9914B8}] => (Allow) d:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A7E1DC63-D250-4F90-B2F0-1221AB4196FD}] => (Allow) d:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A4585543-0FF2-4443-8670-63067A2F453D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{E249FCE9-AAE9-4168-A5E3-8CE6A1197149}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [TCP Query User{BF43A945-8736-48F7-B8C2-7DF77E26AE91}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{659D2E74-47D4-4814-8EFA-03A79EED78D0}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [{C40778A0-A26E-4BDD-8840-94A6413B41BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{6668B165-5497-4383-ABA8-9C55E32B65EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [TCP Query User{22CA87B1-4989-4B06-9A31-06ED945B8B8A}C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe (PearlAbyss Corp. -> )
FirewallRules: [UDP Query User{5FC25846-1E4E-4F08-AF07-B15AFE3D9EEC}C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe (PearlAbyss Corp. -> )
FirewallRules: [{E2B39BC8-58C1-496F-9129-42165A4A1ECB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BF07A814-7C1B-4AC8-A754-BDB6728DC70B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CF53E4D3-5098-430D-AF4A-BE28CAF95B9D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5FDA6DEB-302B-4A40-A826-4FED9EA4B2DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{07B4DC9B-15C5-4697-AACA-B30123790334}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{2D0E6FDD-CDC6-46AE-993B-1B35A5309C86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{88EA0D1B-068A-4715-B23E-994DB916CFD3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{8D59AB45-ED4D-4828-9B66-7F71B0D3E543}] => (Allow) d:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{599B3436-2C6C-4E16-A129-70CFC396E17C}] => (Allow) d:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{26E23FB7-7845-4B83-89C5-A36CC74B2567}] => (Allow) d:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{BF21B842-0E45-4850-807D-CCF7C4F754E4}] => (Allow) d:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{C5CB454B-5E01-4982-81C6-DCEF0275623A}] => (Allow) d:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{EE482A0C-0664-446E-8B8D-E2C8B1CED803}] => (Allow) d:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{0F8EECE3-0CFC-4A3F-8317-A089987FFDFD}] => (Allow) d:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{F1254AC5-A2E2-4467-B334-B1B22782BFB3}] => (Allow) d:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{A9826D50-38F1-4AE3-B17D-BB1E4C7454A4}] => (Allow) d:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{5A4B7757-9373-473E-9E45-EB54991E3EE4}] => (Allow) d:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{C47A3DD5-C9E8-4C74-8742-B47B43E0E683}] => (Allow) d:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
 
==================== Codecs (Whitelisted) ==================
 
 
==================== Restore Points =========================
 
19-09-2019 18:02:23 Scheduled Checkpoint
29-09-2019 15:01:26 Scheduled Checkpoint
03-10-2019 20:35:22 Windows Update
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
 
System errors:
=============
Error: (10/08/2019 05:42:03 PM) (Source: DCOM) (EventID: 10016) (User: ADMINRG-UO7FCI4)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ADMINRG-UO7FCI4\PC SID (S-1-5-21-4123778966-855139210-2178784077-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 05:05:12 PM) (Source: DCOM) (EventID: 10016) (User: ADMINRG-UO7FCI4)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ADMINRG-UO7FCI4\PC SID (S-1-5-21-4123778966-855139210-2178784077-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 05:01:20 PM) (Source: DCOM) (EventID: 10016) (User: ADMINRG-UO7FCI4)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ADMINRG-UO7FCI4\PC SID (S-1-5-21-4123778966-855139210-2178784077-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 04:59:31 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.WscDataProtection
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/08/2019 04:55:41 PM) (Source: DCOM) (EventID: 10010) (User: ADMINRG-UO7FCI4)
Description: The server windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel did not register with DCOM within the required timeout.
 
 
Windows Defender:
===================================
Date: 2019-10-08 16:55:52.314
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.303.1193.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16400.2
Error code: 0x80240022
Error description: The program can't check for definition updates. 
 
Date: 2019-10-08 16:55:52.313
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.303.1193.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16400.2
Error code: 0x80240022
Error description: The program can't check for definition updates. 
 
==================== Memory info =========================== 
 
BIOS: American Megatrends Inc. 3203 11/09/2017
Motherboard: ASUSTeK COMPUTER INC. PRIME A320M-K
Processor: AMD Ryzen 5 1500X Quad-Core Processor 
Percentage of memory in use: 45%
Total physical RAM: 8121.72 MB
Available physical RAM: 4394.39 MB
Total Virtual: 9273.72 MB
Available Virtual: 3917.68 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:232.79 GB) (Free:91.91 GB) NTFS
Drive d: (New Volume) (Fixed) (Total:232.42 GB) (Free:218.04 GB) NTFS
 
\\?\Volume{50fda09e-73c9-4b42-8644-0bd5474abbc9}\ () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS
\\?\Volume{68a26e3a-ed43-48e6-92c8-1db7eb8b1da6}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

  • 0

#5
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,906 posts
  • MVP

Update to 1903 as soon as you can but looks like we're done.

 

Time to clean up:
If we used FRST to clean your PC:

right click on FRST.exe or FRST64.exe (whichever you used) and rename it to uninstall.exe.  Then right click on uninstall.exe and Run as Admin.

 

Also make sure you have the latest versions of any adobe.com products you use like Shockwave, Flash or Acrobat.  Flash is now the most malware targeted program so it must be kept up to date.  Be careful with Adobe.  They are fond of offering optional downloads like yahoo or Ask toolbars or that worthless McAfee Security Scan.  Go slow and uncheck the optional stuff.

Whether you use adobe reader, acrobat or fox-it to read pdf files you need to disable Javascript in the program.  There is an exploit out there now that can use it to get on your PC.  For Adobe Reader:  Start, All Programs, Adobe Reader, Edit, Preferences, Click on Javascript in the left column and uncheck Enable Acrobat Javascript.  OK Close program.  It's the same for Foxit reader except you uncheck Enable Javascript Actions.


If you use Chrome/Firefox/Edge then get the Ublock Origin extension.  For IE go to adblockplus.org  and get the program.
If Chrome/Firefox is slow loading make sure it only has the current Java add-on.  Then download and run Speedy Fox.
http://www.crystalidea.com/speedyfox. Close Chrome/Firefox/Skpe. Hit Optimize.   You can run it any time that Chrome/Firefox seems slow starting..
(If it complains about Chrome still running you can stop it with Task Manager or go into Chrome then go to:

chrome://settings/

Hit Advanced at the bottom of the page then scroll down to near the bottom where it says System.

Change
Continue running background apps when Google Chrome is closed
to Off (slide the blue thing to the left and it turns brown)
Close Chrome.


If the browser is still slow then go in and disable all of your extensions, close the browser and Optimize with SpeedyFox then restart the browser.  If that helps then one or more of your extensions is at fault.  Go back in and turn them on one at a time and see if you can figure out which ones slow things down the most.

If you are a Facebook user get the FB Purity extension for your browser:
http://www.fbpurity.com/
This will stop all of the suggested pages and ads so that Facebook loads much quicker.


Be warned:  If you use Limewire, utorrent or any of the other P2P programs you will probably be coming back to the Malware Removal forum.  If you must use P2P then submit any files you get to http://virustotal.combeforeyouopen them.

Due to a recent rise in the number of Cryptolocker infections I am now recommending you install:

https://www.bleeping...somware/dl/306/
It's currently a free version.

If you have a router, log on to it today and change the default password!  If using a Wireless router you really should be using encryption on the link.  Use the strongest (newest) encryption method that your router and PC wireless adapter support especially if you own a business.  See http://www.king5.com...ted-1344185.phpfor why encryption is important.  If you don't know how, visit the router maker's website.  They all have detailed step by step instructions or a wizard you can download.

Special note on Java.  Old Java versions should be removed after first clearing the Java Cache by following the instructions in:
http://www.java.com/...lugin_cache.xml
Then remove the old versions by going to Control Panel, Programs and Features and Uninstall all Java programs which are not the latest.  If in doubt uninstall all.  These may call themselves: Java Runtime, Runtime Environment, Runtime, JRE, Java Virtual Machine, Virtual Machine, Java VM, JVM, VM, J2RE, J2SE.  Get the latest version from Java.com.  They will usually attempt to foist some garbage like the Ask toolbar, Yahoo toolbar or McAfee Security Scan on you as part of the download.  Just uncheck the garbage before the download (or install) starts.  If you use a 64-bit browser and want the 64-bit version of Java you need to use it to visit java.com.
Due to multiple security problems with Java we are now recommending that it not be installed unless you absolutely know you need it.  IF that is the case then go to Control Panel, Java, Security and slide it up to the highest level.  OK.

If you are running Win 10 you probably want OpenShell:

https://github.com/O...Open-Shell-Menu

  This program will make Win 10 act like Win 7 with the same controls you are used to.
Download Link:
https://github.com/O...tup_4_4_131.exe


Recommended software: (I'm not saying you should download these just that if you have a need for a new program these are safe and work)  
Compression:  7-zip.  Avoid WinRar and WinZip as the free versions have adware.
Video Player:  VLC  Unlike Windows Media Player it never seems to need extra files to work.
Office like free program:  Open Office: https://www.openoffice.org/download/
or
LibreOffice: https://www.libreoffice.org/
Free Anti-Virus:  Avast
Free Malware prevention:  MBAM: Free version at https://www.malwareb...m/mwb-download/
Can run with your anti-virus.
Paid Anti-Virus:  Kaspersky or BitDefender
Utilities:
Root Kit Detector:  MBAR: https://www.malwareb...om/antirootkit/
Process Explorer:  Show you what is running on the PC.  Like Task manager but better:  http://live.sysinter...com/procexp.exe
WhoCrashed: Why did your system crash?
http://www.resplendence.com/downloads
Then click on Download free home edition
where it says:
WhoCrashed 5.51
Comprehensible crash dump analysis tool
for Windows 10/8.1/8/7/Vista/XP/2012/2008/2003 (x86 and x64)
System Health:
Speccy:  
http://www.filehippo...download_speccy(Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  Decline CCleaner if offered.  Pay attention to SMART info on your hard drives and to temps.  If in doubt about temps try:
SpeedFan:  Try speedfan
http://www.filehippo...nload_speedfan/
Download, save and Install it (Win 7 or Vista right click and Run As Admin.) then run it.
Video Downloader Professional  To save online video.   This extension (available for Chrome or Firefox)  allows you to start a recording and then switch to a different window and record another video.

With Win 10 only there is a new Game recorder program.  It's supposed to only work for games but it works nicely to record any video you watch.  Hit the Win key + Alt + r to start the recorder.  The first time it asks you if it is looking at a game.  Just tell it yes.  After that it starts recording whenever you bring it up.  Videos are saved to the Captures folder under Videos.  You can only record what you watch so limited to only one video at a time.  Best to go to full screen before starting the recorder.

Avoid:  
Advanced System Care
SuperAntiSpyware
HitmanPro
Spybot S&D
Any P2P software especially if it comes from Conduit.
Registry Cleaners
Driver updating software.
PC fixing or Speed up software.
Running more than one anti-virus.
Seagate hard drives.  If you have one it's going to fail on you so backup your data now!



Ron


  • 0

#6
arma96

arma96

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts

Thanks for the time you set aside for my problem Ron!

Enjoy rest of the day!  :wave:


  • 0






Similar Topics


Also tagged with one or more of these keywords: StartupCheckLibrary.dll

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP