Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

RunDLL error StartupCheckLibrary.dll

dll startupchecklibrary.dll

  • Please log in to reply

#1
Auvbri

Auvbri

    New Member

  • Member
  • Pip
  • 3 posts

I'm getting an error when starting Windows 10 saying there was a problem with StartupCheckLibrary.dll

 

I'm pasting FRST.txt, Addition.txt and CKScanner

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2019 02
Ran by Sachse (administrator) on RENESACHSE (MSI MS-7978) (13-10-2019 20:03:19)
Running from C:\Users\Sachse\Downloads
Loaded Profiles: Sachse (Available Profiles: defaultuser0 & Sachse)
Platform: Windows 10 Home Version 1809 17763.805 (X64) Language: English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
(Discord Inc. -> Discord Inc.) C:\Users\Sachse\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Sachse\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Sachse\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Sachse\AppData\Local\Discord\app-0.0.305\Discord.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Logitech Inc -> Logitech) C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19092.399.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe
(TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe
(TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe
(TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3148576 2019-06-15] (Valve -> Valve Corporation)
HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\Run: [Discord] => C:\Users\Sachse\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3115792 2019-10-06] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\RunOnce: [Application Restart #5] => C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe [2107904 2016-07-12] (TODO: <Company name>) [File not signed]
HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\RunOnce: [Application Restart #2] => C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe [2107904 2016-07-12] (TODO: <Company name>) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-10] (Google LLC -> Google LLC)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {054F13B0-354F-4FE4-BD39-918A7B04BB9C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {093C1E01-D77A-4487-83BD-0E0DD52C17DF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0B08801A-4BF7-45FA-A3DC-A327DE8F4620} - System32\Tasks\AdobeAAMUpdater-1.0-RENESACHSE-Sachse => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {0FC81EAB-8039-429A-9D7B-4E4A1CE3BF39} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2C1085F8-37AF-4CB4-8775-01E9D554BDC9} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2E5EB8C7-11AB-472B-97C7-2604C503F97B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2EACEE79-00D7-472E-8FBF-BE2AD5AEC426} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-09-29] (Google Inc -> Google Inc.)
Task: {38C708F4-3DAA-4A93-83C9-10CE51F7E39A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {3EE911E3-81CB-4203-A6C6-066B37233F93} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {41D82756-C5E6-4F52-80C8-0D8E08091199} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {53EA3C1C-F770-422B-98FA-027DC32C6692} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302384 2019-08-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5A0B901E-1445-40D4-851D-F9C102CFA132} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {61FA1B28-9F20-465A-9042-D804B736BA5E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654136 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B2971DC-A338-4074-877C-DEF178C83941} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {8F6854FA-20AA-4936-A730-0A130D1F69B4} - System32\Tasks\Monitor => C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe [2688976 2016-07-22] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {960D8E96-2DE2-484B-A2B0-3874BF49988B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A1DCC98B-C878-46E7-A40F-8933E0FDC579} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1552544 2015-05-18] (ASUSTeK Computer Inc. -> ) [File not signed]
Task: {B4C1F0A3-535C-4128-BF24-3E5F4E4B7DE3} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C22AC08B-F7AF-419B-9AB3-83D7C0F255B6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4E43E53-BC89-4D9A-BEFF-4C33491927FA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CD730848-8033-4022-9C17-CD107BF62D06} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DAFB864E-A6A8-4674-B065-7436FCE3A1F1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-09-29] (Google Inc -> Google Inc.)
Task: {ED8E1AF1-3F5C-44A2-8F9D-415A289ED646} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
Task: {F0354F07-1D32-41F8-BB33-AA668527BD3E} - System32\Tasks\AURA => C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe [2107904 2016-07-12] (TODO: <Company name>) [File not signed]
Task: {F5A24257-BEE1-460F-9283-F7BFAC449002} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION
Task: {FA286D30-14FB-41DF-B3DF-8ACF1B380F40} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{178ed3e7-739e-4554-aaa3-daca2bc503bf}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e7d722bc-386c-46f8-a8a7-32eac73e5b1e}: [DhcpNameServer] 192.168.0.1
 
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-803547898-1414606443-1952184765-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D053118-A5AF4E3D53C&form=CONBDF&conlogo=CT3335878&q={searchTerms}
SearchScopes: HKU\S-1-5-21-803547898-1414606443-1952184765-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D053118-A5AF4E3D53C&form=CONBDF&conlogo=CT3335878&q={searchTerms}
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File
 
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-01] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-01] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [No File]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Default Search
CHR Profile: C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default [2019-10-13]
CHR Extension: (Slides) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15]
CHR Extension: (Docs) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Google Drive) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-22]
CHR Extension: (YouTube) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-29]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-08-27]
CHR Extension: (ComfyFlix) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddnipedkkjbiclaomlalefpeljjamhma [2019-08-15]
CHR Extension: (Tags for YouTube™) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\dggphokdgjikekfiakjcpidcclbmkfga [2019-03-31]
CHR Extension: (Sheets) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Google Docs Offline) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-18]
CHR Extension: (AdBlock) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-13]
CHR Extension: (Flix Assist) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeeccngbdajjccceabkpadjmbakhdbnp [2017-10-02]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Social Profile view notification) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\pegkceflonohbcefcbflfpficfkmpeod [2019-10-08]
CHR Extension: (Listen on Repeat Youtube Video Repeater) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjcgpbffennccofdpganblbjiglnbip [2017-09-29]
CHR Extension: (Gmail) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\Sachse\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-02]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-01-29] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 nebula; C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe [4486896 2018-06-26] (Logitech Inc -> Logitech)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-06] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228464 2019-10-06] (Electronic Arts, Inc. -> Electronic Arts)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 CY3014.X64; C:\WINDOWS\system32\DRIVERS\CY3014.X64.SYS [3717608 2018-10-18] (Elgato Systems LLC -> )
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ElgatoVAD; C:\WINDOWS\system32\DRIVERS\ElgatoVAD.sys [39208 2018-07-20] (Elgato Systems LLC -> Elgato Systems GmbH)
S3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [84264 2015-07-20] (Intel Corporation - Client Components Group -> Intel Corporation)
R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-10-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-09-15] (Microsoft Windows -> Qualcomm Atheros, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ff72214788d99390\nvlddmkm.sys [22366088 2019-08-26] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation)
S3 qcusbser; C:\WINDOWS\System32\drivers\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-09-05] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-10-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-03] (Microsoft Windows -> Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2019-10-13 20:03 - 2019-10-13 20:03 - 000025924 _____ C:\Users\Sachse\Downloads\FRST.txt
2019-10-13 20:03 - 2019-10-13 20:03 - 000000000 ____D C:\FRST
2019-10-13 20:02 - 2019-10-13 20:02 - 001616384 _____ (Farbar) C:\Users\Sachse\Downloads\FRST64.exe
2019-10-13 18:40 - 2017-04-26 15:53 - 011794392 _____ (Broadcom Corp) C:\WINDOWS\system32\Drivers\bcmwl63a.sys
2019-10-13 18:40 - 2017-04-26 15:53 - 003787288 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvui64.dll
2019-10-13 18:39 - 2017-04-26 15:53 - 004132376 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvsrv64.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 026806784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 024616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 023455744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 022135584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 017485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 015220224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 012960768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 012259840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 009680400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 008903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 007698432 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 006928384 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 006444544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 006316792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 006058032 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 005767168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 005605560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 005573016 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 005309080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 005299712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 004873728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 004628992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 004352472 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 004057088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 003820976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 003634688 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 003428864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 003198976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 003000832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002924344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002839040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002779784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 002699768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002699264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002437344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002429768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-08 21:20 - 2019-10-08 21:20 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 002349056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002279304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-08 21:20 - 2019-10-08 21:20 - 002118656 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002110472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002096640 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-08 21:20 - 2019-10-08 21:20 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 002018304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-08 21:20 - 2019-10-08 21:20 - 002015400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001966392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001924976 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplaySwitch.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001864704 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001750528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001701880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-08 21:20 - 2019-10-08 21:20 - 001701176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001677816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001666232 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001590072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001484896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001390888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-08 21:20 - 2019-10-08 21:20 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001308672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001294272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001272120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001247560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001201136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001170432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shellstyle.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shellstyle.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-10-08 21:20 - 2019-10-08 21:20 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001056056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001052984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 001048888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 001006392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000938296 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000895560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-10-08 21:20 - 2019-10-08 21:20 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000860160 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-08 21:20 - 2019-10-08 21:20 - 000851272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2019-10-08 21:20 - 2019-10-08 21:20 - 000843264 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000805296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000791864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000780408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000775216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000770096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000767800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000764216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000681720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Devices.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000662024 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000661096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000613176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000605496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000605368 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000598328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000589824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000588600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000522104 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000508728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2019-10-08 21:20 - 2019-10-08 21:20 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000453432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000452992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000449368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000439096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000434952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000421176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000385336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000384272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000376568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2019-10-08 21:20 - 2019-10-08 21:20 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000294512 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000290616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000282424 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000278416 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.OneCore.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000224568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-08 21:20 - 2019-10-08 21:20 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000201736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000193704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-08 21:20 - 2019-10-08 21:20 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000163232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000156512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.OneCore.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000155968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000147944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000138552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000135816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscmmc.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000104464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000079032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxgraphics.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000065608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000057656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSTheme.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000052536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPCRYPT.DLL
2019-10-08 21:20 - 2019-10-08 21:20 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSTheme.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000044912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordOnWakeSettingFlyout.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000038184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PasswordOnWakeSettingFlyout.exe
2019-10-08 21:20 - 2019-10-08 21:20 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll
2019-10-08 21:20 - 2019-10-08 21:20 - 000018744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msisadrv.sys
2019-10-08 21:20 - 2019-10-08 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-08 21:20 - 2019-10-08 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-08 21:20 - 2019-10-08 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-08 21:20 - 2019-10-08 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-08 21:20 - 2019-10-08 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-08 21:20 - 2019-10-08 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-08 21:20 - 2019-10-08 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-08 21:20 - 2019-10-08 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-10-07 20:34 - 2019-10-07 20:46 - 000000000 ____D C:\Users\Sachse\Documents\Overwatch
2019-10-07 20:28 - 2019-10-07 20:30 - 000000000 ____D C:\Program Files (x86)\PlayStationNow
2019-10-07 20:28 - 2019-10-07 20:29 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\playstation-now
2019-10-07 20:28 - 2019-10-07 20:28 - 000000000 ____D C:\Users\Sachse\AppData\Local\Sony Interactive Entertainment Network America LLC
2019-10-07 20:28 - 2019-10-07 20:28 - 000000000 ____D C:\Program Files\DIFX
2019-10-07 20:27 - 2019-10-07 20:28 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\Sony Interactive Entertainment Network America LLC
2019-10-07 20:13 - 2019-10-10 20:26 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\DS4Windows
2019-10-07 20:12 - 2019-10-07 21:48 - 000000000 ____D C:\Users\Sachse\Desktop\DS4
2019-10-07 20:11 - 2019-10-07 20:11 - 000000000 ____D C:\Users\Sachse\AppData\Local\TeamViewer
2019-10-07 20:10 - 2019-10-07 20:10 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\TeamViewer
2019-10-07 18:32 - 2019-10-07 18:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2019-10-07 18:05 - 2019-10-07 18:32 - 000000000 ____D C:\Program Files (x86)\Overwatch
2019-10-06 21:26 - 2019-10-06 21:26 - 000000000 ____D C:\Progra
2019-10-06 13:59 - 2019-10-13 19:38 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2019-10-03 19:50 - 2019-10-10 14:53 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-10-03 19:50 - 2019-10-10 14:53 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2019-10-03 19:50 - 2019-10-03 19:50 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2019-10-01 23:00 - 2019-10-01 23:00 - 000000000 ____D C:\Users\Sachse\Documents\Diablo III
2019-10-01 22:38 - 2019-10-01 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2019-10-01 22:35 - 2019-10-01 22:59 - 000000000 ____D C:\Program Files (x86)\Diablo III
2019-10-01 22:33 - 2019-10-10 22:29 - 000000000 ____D C:\Users\Sachse\AppData\Local\Battle.net
2019-10-01 22:33 - 2019-10-10 22:29 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-10-01 22:33 - 2019-10-01 23:00 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\Battle.net
2019-10-01 22:33 - 2019-10-01 22:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2019-10-01 21:59 - 2019-10-01 21:59 - 000017957 _____ C:\Users\Sachse\Desktop\LØNAFREGNING  JUNI 2019.PDF
2019-10-01 21:46 - 2019-10-01 21:46 - 000018087 _____ C:\Users\Sachse\Desktop\LØNAFREGNING  SEPTEMBER 2019.PDF
2019-10-01 21:45 - 2019-10-01 21:45 - 000063667 _____ C:\Users\Sachse\Desktop\forskudsopgørelse - Rene.pdf
2019-09-16 18:32 - 2019-09-21 08:14 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-09-16 18:31 - 2019-09-21 08:14 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-09-16 18:31 - 2019-09-16 18:31 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2019-09-16 18:31 - 2019-09-16 18:31 - 000002124 _____ C:\ProgramData\Desktop\Acrobat Reader DC.lnk
2019-09-16 13:16 - 2019-09-16 13:16 - 000000000 ____D C:\ProgramData\Reprise
2019-09-16 13:15 - 2019-09-16 13:31 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\Maxon
2019-09-15 22:10 - 2019-09-16 19:06 - 000000000 ____D C:\Users\Sachse\Documents\Cat Tail Logo
 
==================== One month (modified) ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2019-10-13 20:02 - 2019-01-29 18:49 - 001372962 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-13 20:02 - 2019-01-29 18:30 - 000469480 _____ C:\WINDOWS\system32\perfh006.dat
2019-10-13 20:02 - 2019-01-29 18:30 - 000083062 _____ C:\WINDOWS\system32\perfc006.dat
2019-10-13 20:02 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-10-13 19:59 - 2017-09-29 18:27 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-13 19:57 - 2019-01-29 18:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-13 19:57 - 2019-01-29 18:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-13 19:57 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-13 19:57 - 2017-09-29 18:53 - 000000000 ____D C:\ProgramData\Origin
2019-10-13 19:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-10-13 19:39 - 2018-05-14 13:50 - 000000000 ____D C:\Users\Sachse\AppData\Local\D3DSCache
2019-10-13 19:37 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-13 19:37 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-13 19:36 - 2019-01-09 16:30 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\Origin
2019-10-13 19:34 - 2019-08-31 20:51 - 000000000 ____D C:\Users\Sachse\Downloads\Adobe.Illustrator.CC.2019.v23.0.5.634.X64.Multilingual-WEBiSO
2019-10-13 18:42 - 2017-09-29 18:58 - 000000000 ____D C:\Users\Sachse\AppData\Local\Adobe
2019-10-10 22:38 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-10 22:29 - 2018-09-19 19:46 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\discord
2019-10-10 20:59 - 2017-09-29 18:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-10 20:23 - 2017-09-29 18:56 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-10-09 12:14 - 2019-01-29 18:40 - 000281384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-09 12:14 - 2017-12-04 20:00 - 000000000 ___RD C:\Users\Sachse\3D Objects
2019-10-09 12:14 - 2016-12-23 03:36 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-09 00:01 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-09 00:01 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-09 00:01 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-09 00:01 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-09 00:01 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-10-09 00:01 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-10-09 00:01 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-09 00:01 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-08 21:23 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-08 21:22 - 2017-10-01 17:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-08 21:21 - 2018-09-15 19:40 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-10-08 21:21 - 2018-09-15 19:40 - 000018002 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-08 21:21 - 2017-10-01 17:49 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-07 22:44 - 2018-04-18 22:15 - 000000000 ____D C:\Users\Sachse\AppData\Local\Blizzard Entertainment
2019-10-06 13:58 - 2017-09-29 18:54 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-03 11:38 - 2018-02-13 17:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-01 22:33 - 2018-04-18 22:15 - 000000000 ____D C:\Users\Sachse\AppData\Local\Blizzard
2019-10-01 21:48 - 2019-01-29 18:46 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-01 21:48 - 2019-01-29 18:46 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-01 21:48 - 2017-12-04 19:56 - 000000000 ____D C:\Users\Sachse\AppData\Local\Packages
2019-10-01 21:48 - 2017-09-29 18:44 - 000000000 ____D C:\Program Files (x86)\Google
2019-09-16 18:33 - 2017-09-29 19:00 - 000000000 ____D C:\ProgramData\Adobe
2019-09-16 18:33 - 2017-09-29 18:32 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\Adobe
2019-09-16 18:33 - 2016-12-27 20:39 - 000000000 ____D C:\Users\Sachse\AppData\LocalLow\Adobe
2019-09-16 18:31 - 2019-08-17 16:33 - 000000000 ____D C:\Program Files (x86)\Adobe
2019-09-15 15:34 - 2017-11-11 11:15 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\obs-studio
2019-09-15 15:16 - 2019-02-17 21:53 - 000000000 ____D C:\Users\Sachse\AppData\Local\CrashDumps
2019-09-15 15:14 - 2017-10-03 19:03 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\vlc
2019-09-14 20:56 - 2018-12-16 17:48 - 000000000 ____D C:\Users\Sachse\AppData\Roaming\slobs-client
2019-09-13 22:40 - 2016-12-22 22:21 - 000000000 ____D C:\Users\Sachse\Desktop\House Ideas
 
==================== Files in the root of some directories ================
 
2018-09-29 16:27 - 2018-09-29 16:27 - 000000000 _____ () C:\Users\Sachse\AppData\Local\oobelibMkey.log
2019-02-16 20:27 - 2019-02-16 20:27 - 000007602 _____ () C:\Users\Sachse\AppData\Local\Resmon.ResmonCfg
 
==================== SigCheck ===============================
 
(There is no automatic fix for files that do not pass verification.)
 
==================== End of FRST.txt ============================

  • 0

Advertisements


#2
Auvbri

Auvbri

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts

Addition

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-10-2019 02
Ran by Sachse (13-10-2019 20:04:09)
Running from C:\Users\Sachse\Downloads
Windows 10 Home Version 1809 17763.805 (X64) (2019-01-29 16:46:22)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-803547898-1414606443-1952184765-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-803547898-1414606443-1952184765-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-803547898-1414606443-1952184765-1000 - Limited - Enabled) => C:\Users\defaultuser0
Guest (S-1-5-21-803547898-1414606443-1952184765-501 - Limited - Disabled)
Sachse (S-1-5-21-803547898-1414606443-1952184765-1001 - Administrator - Enabled) => C:\Users\Sachse
WDAGUtilityAccount (S-1-5-21-803547898-1414606443-1952184765-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\uTorrent) (Version: 3.5.5.45311 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Dansk (HKLM-x32\...\{AC76BA86-7AD7-1030-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe After Effects 2019 (HKLM-x32\...\AEFT_16_1_2) (Version: 16.1.2 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.7.0.400 - Adobe Systems Incorporated)
Adobe Illustrator 2019 (HKLM-x32\...\ILST_23_0_5) (Version: 23.0.5 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0) (Version: 20.0.0 - Adobe Systems Incorporated)
Adobe Premiere Pro 2019 (HKLM-x32\...\PPRO_13_1_4) (Version: 13.1.4 - Adobe Systems Incorporated)
ASUS GPU TweakII (HKLM-x32\...\{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.3.3.2 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.3.3.2 - ASUSTek COMPUTER INC.)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.031 - ASUSTek Computer Inc.)
Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team)
AURA(GRAPHICS CARD) (HKLM-x32\...\{C365F6B9-B9F8-4B0F-B7E2-A58FBA55C00B}) (Version: 0.0.4.1 - )
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandicam.com)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Elgato Game Capture HD (HKLM\...\{44C19F03-DE41-4E4F-B750-8B8665C268C8}) (Version: 3.70.32.3032 - Elgato Systems GmbH)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Hi-Rez Studios Games (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel® C++ Redistributables on Intel® 64 (HKLM-x32\...\{5C0B869E-82CA-48FB-92B6-4A476984611F}) (Version: 19.0.190 - Intel Corporation)
League of Legends (HKLM-x32\...\{4D78B137-434D-466E-A4D8-98E7EA3F73E5}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Logi Firmware Update Tool for C930e (HKLM-x32\...\FWUpdateC930e) (Version: 8.0.916.0 - Logitech Europe S.A.)
Logitech Camera Settings (HKLM-x32\...\LogiUCDPP) (Version: 2.5.17.0 - Logitech Europe S.A.)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27033 (HKLM-x32\...\{cc3a7c63-31fb-4129-9024-63ebefd86a95}) (Version: 14.16.27033.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation)
NVIDIA Graphics Driver 436.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.15 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.1.1 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.5.48.31055 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
PS4 Remote Play (HKLM-x32\...\{979E6AE0-D1CE-4CB6-A322-AF6E966D4E02}) (Version: 2.7.0.07270 - Sony Interactive Entertainment Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Smite Texture DLC (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF100171}) (Version: 6.9.5607.6 - Hi-Rez Studios)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StreamLabels 0.2.13 (only current user) (HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\8000d50a-fcb7-5b38-8a3b-a02a0ec79daa) (Version: 0.2.13 - Streamlabs)
Streamlabs OBS 0.11.7 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.11.7 - General Workings, Inc.)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.56.52.1020 - Electronic Arts Inc.)
Twitch Sings (HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372C0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
Windows Driver Package - Sony Computer Entertainment Inc. Wireless controller for PLAYSTATION®3 Driver Package (01/20/2012 1.4.0.0) (HKLM\...\D5410AE5FA467EF0F19558D5F60C991A79E11B51) (Version: 01/20/2012 1.4.0.0 - Sony Computer Entertainment Inc.)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
WizTree v3.26 (HKLM\...\WizTree_is1) (Version: 3.26 - Antibody Software)
Wondershare Filmora9(Build 9.1.4) (HKLM\...\Wondershare Filmora9_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
 
Packages:
=========
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_4.3.0.7_x86__h6adky7gbf63m [2019-09-11] (Gameloft.)
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-08-01] (Keeper Security Inc)
Mail og Kalender -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-10-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-803547898-1414606443-1952184765-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-132D4FAF8339} -> [Creative Cloud Files] => C:\Users\Sachse\Creative Cloud Files [2017-09-29 19:02]
CustomCLSID: HKU\S-1-5-21-803547898-1414606443-1952184765-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Sachse\AppData\Local\Microsoft\OneDrive\18.192.0920.0015\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-803547898-1414606443-1952184765-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Sachse\AppData\Local\Microsoft\OneDrive\18.192.0920.0015\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-803547898-1414606443-1952184765-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Sachse\AppData\Local\Microsoft\OneDrive\18.192.0920.0015\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-803547898-1414606443-1952184765-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll => No File
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
 
==================== Codecs (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Drivers32: [vidc.mjpg] => C:\WINDOWS\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\WINDOWS\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\WINDOWS\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2018-09-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2018-09-26] (Beepa P/L) [File not signed]
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
==================== Loaded Modules (Whitelisted) ==============
 
2018-02-13 17:02 - 2016-07-05 22:18 - 001744384 _____ () [File not signed] C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\Vender.dll
2016-07-18 18:22 - 2016-07-18 18:22 - 000061440 _____ () [File not signed] C:\Program Files (x86)\ASUS\GPU TweakII\Exeio.dll
2016-07-13 11:46 - 2016-07-13 11:46 - 001746944 _____ () [File not signed] C:\Program Files (x86)\ASUS\GPU TweakII\Vender.dll
2019-01-09 16:31 - 2019-10-06 13:58 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2019-01-09 16:31 - 2019-10-06 13:58 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2016-06-24 17:39 - 2016-06-24 17:39 - 000095744 _____ (ASUSTek Computer Inc.,) [File not signed] C:\Program Files (x86)\ASUS\GPU TweakII\EIO.DLL
2010-11-02 12:00 - 2010-11-02 12:00 - 000053248 _____ (NVIDIA Corporation) [File not signed] C:\Program Files (x86)\ASUS\GPU TweakII\nvgpio.dll
2019-01-09 16:30 - 2019-10-06 13:58 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2019-01-09 16:30 - 2019-10-06 13:58 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2019-01-09 16:31 - 2019-10-06 13:58 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-01-09 16:31 - 2019-10-06 13:58 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2019-01-09 16:30 - 2019-10-06 13:58 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2019-01-09 16:30 - 2019-10-06 13:58 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2019-01-09 16:30 - 2019-10-06 13:58 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2019-01-09 16:30 - 2019-10-06 13:58 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2019-01-09 16:30 - 2019-10-06 13:58 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2019-01-09 16:30 - 2019-10-06 13:58 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2019-01-09 16:31 - 2019-10-06 13:58 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 054071296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2019-01-24 17:15 - 2019-10-06 13:58 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2019-01-09 16:31 - 2019-10-06 13:58 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2018-02-13 17:02 - 2016-07-01 11:31 - 001624576 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\VGA_Extra.dll
2016-05-26 20:52 - 2016-05-26 20:52 - 002001920 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\GPU TweakII\ChartEx.ocx
2016-07-18 18:26 - 2016-07-18 18:26 - 001853952 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\GPU TweakII\TweakInterface.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\webcompanion.com -> hxxp://webcompanion.com
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2017-09-29 20:21 - 2017-09-29 20:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64_win\compiler;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-803547898-1414606443-1952184765-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Sachse\Downloads\995565.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
If an entry is included in the fixlist, it will be removed.
 
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-803547898-1414606443-1952184765-1001\...\StartupApproved\Run: => "uTorrent"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [UDP Query User{478F872A-3ADB-4F0E-B419-FFC68704D588}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{1002329F-3523-444D-9B34-E17710D078F6}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{9DE42125-EDC7-495E-BA7E-9C74DC7CCB55}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{72D42098-4ED2-48D2-AB7D-881740CD6A66}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{6F262577-659D-474D-AD16-DF238E5820B7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{4A4C3DE1-0772-48D6-88C1-FDED20880694}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{54B9E1A9-2D76-4E97-B4F2-976E4DAC0DC1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{77088867-8DEB-4470-83F4-D1680AA0D2EE}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{07556770-798F-4FB5-BFBA-C66D0033F38A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2A7B7A14-64D2-4803-8FFD-A202F6344ADE}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{B4F5C41B-FD28-4667-AE69-5E8703EB41FD}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{649CDF87-4514-4992-BCC6-8036A51814A2}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{58184487-C6B8-4E0D-B038-E0F23A6BA96B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{40DFD7A1-F59C-4E18-B8FE-33F17080223B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe No File
FirewallRules: [{D3EE38E5-DFDA-4526-96A5-69ECA562E9C2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3A5B2510-D804-425F-9E2A-48CE4D1D09CB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{11B1C568-B501-4E35-84D1-45F73DE923F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
FirewallRules: [{B7327FAF-BF70-4462-ACF1-D29CC585EBA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
FirewallRules: [UDP Query User{20EBA97A-CC7F-4631-AF40-934D84D9B06E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{BB58C2FA-32E9-4103-8614-934C66B92BB5}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{942E0256-FCDA-4EB0-8BF4-BF94C5694C6B}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe No File
FirewallRules: [TCP Query User{FA9AFE87-5AA1-41D7-B401-2CA5E81C3D79}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe No File
FirewallRules: [UDP Query User{FC6FE37D-75B5-452D-BB99-A8C0D8A16967}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{B4B96D4A-8EAE-4F0D-BA32-73BFB63F30F4}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{7481C198-BB97-459E-9A6B-76AC7EB1B651}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{CB5C0A1A-E8CE-4799-AEEE-F44E7FEA6733}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{4CD7FD9E-C8A3-45FD-B806-91CF666D93FF}C:\users\sachse\appdata\local\gpmdp_3\app-4.6.1\google play music desktop player.exe] => (Allow) C:\users\sachse\appdata\local\gpmdp_3\app-4.6.1\google play music desktop player.exe (Samuel Attard -> Samuel Attard)
FirewallRules: [TCP Query User{A2778FB9-E67F-4D62-AE88-7B036DFD7D83}C:\users\sachse\appdata\local\gpmdp_3\app-4.6.1\google play music desktop player.exe] => (Allow) C:\users\sachse\appdata\local\gpmdp_3\app-4.6.1\google play music desktop player.exe (Samuel Attard -> Samuel Attard)
FirewallRules: [UDP Query User{EC6EF288-70D5-4AD4-B820-CFFCC0F909B9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{1FF1D9FF-7066-47CC-AD0C-E478BFB36BD9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1B735541-3262-4DBA-BE60-74E8BE2CA2E3}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{519234FF-9CB3-41E3-B9CF-A87799BCB8D9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{109A2C83-1560-4310-B0F1-457B8E2E0F38}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{9EFF50F5-1171-42AD-9757-5595EB763388}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{AAA6E1C8-4B81-420D-9926-5F2238A1D08C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{F9C2A516-ADCB-43C0-84DE-31CBC506041C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{55F78CE2-2F71-4C30-8779-C4718242E57A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E52A5FE5-4526-42F6-BB4A-528FDB6FD63D}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{CBF80B11-B765-465E-8EA8-4C0F02A7AD87}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{32C3B52C-5F28-4FA9-95A2-00E474D88591}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{B5D13649-3F42-4662-A0D3-C98CEABAC129}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{F9224342-40E7-4794-A4DC-CD85AECD71F3}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{3929E573-64E1-4198-A8ED-BB0CFAFB88F7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{D1225773-0522-4B1D-A5A4-B1AD6E57A9E9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C0D9D9C8-CDE0-48A0-9A00-008B10F5ED32}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{D5D51B50-FCC9-434F-B057-63BCD894FEED}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{491C4227-D9D9-43C5-8EC2-4C8921ED7AC9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{FA06F29D-03E5-4469-9194-E4F54669E956}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{E7CEB657-EAFE-4ED6-93CA-F9C22ED3EAE2}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{9E8A8E37-E988-47FB-887E-A66C4B1EC34F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{BF510E4E-E5FA-4C50-9022-2E7BF1E23E23}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{ACAE7187-7590-4B3B-A222-FB283FDCACB1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{AD94E3D8-289A-4E56-B7DB-E04B83701C8D}C:\users\sachse\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sachse\appdata\roaming\spotify\spotify.exe No File
FirewallRules: [TCP Query User{4970CB17-DD7A-4C24-942C-400CE9F58C73}C:\users\sachse\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sachse\appdata\roaming\spotify\spotify.exe No File
FirewallRules: [UDP Query User{C6A39493-F37F-4319-AE4B-5AE4994B486B}C:\windows.old\users\sachse\appdata\roaming\spotify\spotify.exe] => (Allow) C:\windows.old\users\sachse\appdata\roaming\spotify\spotify.exe No File
FirewallRules: [TCP Query User{7CDDE538-AF35-4410-A2A1-761EB33EAF9E}C:\windows.old\users\sachse\appdata\roaming\spotify\spotify.exe] => (Allow) C:\windows.old\users\sachse\appdata\roaming\spotify\spotify.exe No File
FirewallRules: [{128B98DC-F68E-4E4A-A82A-25EDA245C052}] => (Allow) C:\Users\Sachse\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{EE0F5155-4C9D-4D4C-9EEA-53A8FDED619E}] => (Allow) C:\Users\Sachse\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A7A3DC68-BDB7-4D63-A5C3-4028EB836A35}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{5576B416-6C2A-460B-AA9C-432641E9ED30}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{883C5BBD-E1E4-4146-8B11-07687E94AC2D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F7F80489-8E15-426B-8DC2-7D7A6A45482A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D21326C9-751C-4022-B635-79AF2533D12F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe No File
FirewallRules: [TCP Query User{3D017E22-C7E4-4312-8032-128C0B920A81}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{3125E75A-6DC9-42EA-8EE9-F4198533F26D}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{FC7D47A1-915E-4891-AA2E-289CDF6C1292}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.132\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.132\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D6449C28-DF40-449E-A077-C07F4821C138}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.132\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.132\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E493EE34-E90D-456A-8FE1-359D6006C927}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{042BD878-56D6-4962-85DD-CC9191A63993}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{01D9A572-C73F-4412-BB73-A83BCDEFF190}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F82D5E1B-70A5-453A-9E4F-5E2710E68FC2}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{285CBC8E-49A2-4AD9-B490-4662CF85ABCB}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1D6C59E5-37A2-4C5A-95ED-67203306352B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{CC74BDD1-108C-4ADD-9DE1-C186138C7343}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{2964CFC8-9642-4743-BACF-65D1E125AA06}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{622F21A0-E868-493F-98D3-191E4FD7034B}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{6FF78D3B-0033-4209-9688-89B8B8D67EF5}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{67B40E59-E464-4E64-A4DA-612DCECA22B8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{15C9B04B-2E1E-4CA3-BD6C-6DB92684923C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe No File
FirewallRules: [{01FD67B7-38DB-41C2-88F1-336091E5DA9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eco\Eco.exe () [File not signed]
FirewallRules: [{02909D8F-6EC5-44C4-B740-23800581F42B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eco\Eco.exe () [File not signed]
FirewallRules: [{426238C1-11D1-44FE-BB04-D179193230AE}] => (Allow) C:\Program Files (x86)\Sony\PS4 Remote Play\RemotePlay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [{510783E6-2AB1-4938-AFAC-F9A894AEC17B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6526597F-792A-445E-8BBE-D7022D4180D3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{2B84BFF0-2658-45FE-9462-5C2851E60ECA}C:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{4A67EBDB-608D-4259-B940-743E3B73E980}C:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{83886BAF-C47D-4B6B-A650-9AC88FD02803}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{80D87544-3ABF-45E6-84DB-DEB898F51E85}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe No File
FirewallRules: [{1516B201-FA7D-49C4-92BC-89CEFD24E984}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [{7EA10F5A-07B0-442E-BFC4-6E6B90BD3D4C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [{BCF243EB-2A5B-45D3-9089-10FAA694FD50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
FirewallRules: [{21B92C99-308F-4FC2-9B6A-BA1820DC23A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
FirewallRules: [TCP Query User{B303937A-0378-4FBC-B513-4A2E1258A7F7}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{2CA1DB5D-9A84-4285-966B-ACE0DC77F064}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{74151C55-5804-4A98-8FB4-51D7F27212CE}C:\users\sachse\appdata\roaming\twitch sings\twitch sings.exe] => (Allow) C:\users\sachse\appdata\roaming\twitch sings\twitch sings.exe () [File not signed]
FirewallRules: [UDP Query User{C4ADDFDD-44B8-489A-BC5A-5F4F7759E56C}C:\users\sachse\appdata\roaming\twitch sings\twitch sings.exe] => (Allow) C:\users\sachse\appdata\roaming\twitch sings\twitch sings.exe () [File not signed]
FirewallRules: [{818E8996-4FB9-468E-B66F-7FA99E69BE18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9F5C20CD-220D-4F97-A406-71F1A7916F12}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{25D652F6-044E-4E8E-BC74-361605A0A961}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2414D810-DCD7-4C71-AACD-8C32F93A1FC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4A531AB3-B7A0-48A4-B9B6-D4E6CDA6BF01}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F253C935-4855-4AF0-8680-5DB18B015420}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{9D3E3CD6-2BA3-4669-9B3E-16E9D5C1EB01}C:\hirezgames\smite\binaries\win64\smite.exe] => (Allow) C:\hirezgames\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [File not signed]
FirewallRules: [UDP Query User{D34B538A-C42B-4176-86F4-91BD6EF36981}C:\hirezgames\smite\binaries\win64\smite.exe] => (Allow) C:\hirezgames\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [File not signed]
FirewallRules: [{F747EB01-BAE6-4890-A555-5241158ECA7C}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{E33CB7F9-ECE9-4049-81ED-8C7638E69BD5}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{FF4F8EBC-6B44-4E4D-8609-E9403C993A04}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{182D2DCE-26E7-49E7-A9DF-3DE98F8D67CA}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [TCP Query User{68A37B5E-7A7D-4BC1-8D02-F29A190D723F}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{54D5ABF8-4F00-4698-B8D1-A4A8E6530038}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{6BD82913-DB06-4FA7-BCE7-E88CCB9D53EF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
 
==================== Restore Points =========================
 
03-10-2019 19:52:17 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
03-10-2019 19:52:28 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
07-10-2019 20:27:47 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660
 
==================== Faulty Device Manager Devices =============
 
Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/09/2019 12:14:50 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Windows\System32\svchost.exe, PID: 4924, ProfSvc PID: 1844.
 
Error: (09/15/2019 03:16:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TS4_x64.exe, version: 1.55.105.1020, time stamp: 0x5d5b49e5
Faulting module name: TS4_x64.exe, version: 1.55.105.1020, time stamp: 0x5d5b49e5
Exception code: 0xc0000005
Fault offset: 0x0000000000ad2d30
Faulting process ID: 0x25f0
Faulting application start time: 0x01d56bc7bca5de66
Faulting application path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
Faulting module path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
Report ID: 20cd4687-40e2-4dd1-a093-ad95c713b005
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (09/14/2019 09:00:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program TS4_x64.exe version 1.55.105.1020 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 17b4
 
Start Time: 01d56b19538903e1
 
Termination Time: 15
 
Application Path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
 
Report Id: 4a7fccd3-7329-43f0-9041-f039a818688f
 
Faulting package full name: 
 
Faulting package-relative application ID: 
 
Hang type: Cross-thread
 
Error: (09/11/2019 08:47:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program TS4_x64.exe version 1.55.105.1020 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: fe8
 
Start Time: 01d568c0a8413ea1
 
Termination Time: 8
 
Application Path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
 
Report Id: 736d5753-7873-4fd4-b1f1-8d0d0c6f2bf2
 
Faulting package full name: 
 
Faulting package-relative application ID: 
 
Hang type: Cross-thread
 
Error: (09/01/2019 10:06:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program TS4_x64.exe version 1.54.120.1020 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 2cb8
 
Start Time: 01d560e4b88b679a
 
Termination Time: 84
 
Application Path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
 
Report Id: 820ae2d5-ecd8-4fca-a44c-f814b3e8a102
 
Faulting package full name: 
 
Faulting package-relative application ID: 
 
Hang type: Cross-thread
 
Error: (09/01/2019 06:45:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TS4_x64.exe, version: 1.54.120.1020, time stamp: 0x5d3b8ce1
Faulting module name: TS4_x64.exe, version: 1.54.120.1020, time stamp: 0x5d3b8ce1
Exception code: 0xc0000005
Fault offset: 0x0000000000a5d6d0
Faulting process ID: 0x3b4
Faulting application start time: 0x01d560e49a5d633e
Faulting application path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
Faulting module path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
Report ID: 8dac76c3-1c1c-4198-9ddc-fe85b96c61f6
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (09/01/2019 06:44:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TS4_x64.exe, version: 1.54.120.1020, time stamp: 0x5d3b8ce1
Faulting module name: TS4_x64.exe, version: 1.54.120.1020, time stamp: 0x5d3b8ce1
Exception code: 0xc0000005
Fault offset: 0x0000000000a5d6d0
Faulting process ID: 0x11e8
Faulting application start time: 0x01d560e485f98ab2
Faulting application path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
Faulting module path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
Report ID: 32947a99-56ca-4a16-977d-27c055ec989c
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (08/18/2019 07:06:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TS4_x64.exe, version: 1.54.120.1020, time stamp: 0x5d3b8ce1
Faulting module name: TS4_x64.exe, version: 1.54.120.1020, time stamp: 0x5d3b8ce1
Exception code: 0xc0000005
Fault offset: 0x0000000000a5d6d0
Faulting process ID: 0x5c
Faulting application start time: 0x01d555e745f51704
Faulting application path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
Faulting module path: C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
Report ID: f0dff15d-822a-49de-bfae-ba2bfafa1c87
Faulting package full name: 
Faulting package-relative application ID:
 
 
System errors:
=============
Error: (10/13/2019 07:59:53 PM) (Source: DCOM) (EventID: 10016) (User: RENESACHSE)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user RENESACHSE\Sachse SID (S-1-5-21-803547898-1414606443-1952184765-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/13/2019 07:59:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.WscDataProtection
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/13/2019 07:59:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.WscBrokerManager
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/13/2019 07:59:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.SecurityAppBroker
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/13/2019 07:57:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/13/2019 07:57:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (10/13/2019 07:57:25 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
Description: Performance power management features on Hyper-V logical processor 7 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
 
Error: (10/13/2019 07:57:25 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
Description: Performance power management features on Hyper-V logical processor 5 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
 
 
Windows Defender:
===================================
Date: 2019-10-06 14:44:23.891
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
Name: Trojan:Win32/Tiggre!plock
ID: 2147723626
Severity: Severe
Category: Trojan
Path: file:_C:\WINDOWS\system32\StartupCheckLibrary.dll
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: System
Process Name: Unknown
Signature Version: AV: 1.303.1022.0, AS: 1.303.1022.0, NIS: 1.303.1022.0
Engine Version: AM: 1.1.16400.2, NIS: 1.1.16400.2
 
Date: 2019-10-06 14:10:09.397
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {F3856FB9-B78E-4AF5-A4EA-117D6FF4FB12}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-09-01 22:20:02.079
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {E2B31438-A58F-486F-A2F1-1753C0F1815E}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-08-31 20:21:39.804
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {AC1AA3BB-1A82-468A-8E56-71F8FEF55F91}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-08-23 12:17:55.566
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {4784DAA3-C6E4-4D46-A757-D0C329DE09B5}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-10-13 18:45:19.881
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.303.1350.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2019-10-13 18:45:19.880
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.303.1350.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2019-10-13 18:45:19.880
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.303.1350.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2019-10-13 18:45:19.876
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.303.1350.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2019-10-13 18:45:19.876
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.303.1350.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
==================== Memory info =========================== 
 
BIOS: American Megatrends Inc. A.70 07/24/2016
Motherboard: MSI Z170A GAMING M3 (MS-7978)
Processor: Intel® Core™ i7-6700 CPU @ 3.40GHz
Percentage of memory in use: 25%
Total physical RAM: 16343.69 MB
Available physical RAM: 12191.87 MB
Total Virtual: 18775.69 MB
Available Virtual: 12853.73 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:464.43 GB) (Free:133.91 GB) NTFS
Drive e: (Seagate Backup Plus Drive) (Fixed) (Total:3726.02 GB) (Free:2166.99 GB) NTFS
 
\\?\Volume{ada50d11-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{ada50d11-0000-0000-0000-103b74000000}\ () (Fixed) (Total:0.84 GB) (Free:0.34 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: ADA50D11)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=857 MB) - (Type=27)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 1.
 
==================== End of Addition.txt ============================

  • 0

#3
Auvbri

Auvbri

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts

CKScanner

 

CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
c:\hirezgames\smite\battlegame\cookedpc\characters\npcs\npc_ward_firecracker.upk
c:\hirezgames\smite\battlegame\cookedpc\sounds\aud_npc_ward_firecracker.upk
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\de_de\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\de_de\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\de_de\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\en_us\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\en_us\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\en_us\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\es_es\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\es_es\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\es_es\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\fr_fr\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\fr_fr\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\fr_fr\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\it_it\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\it_it\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\it_it\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\ja_jp\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\ja_jp\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\ja_jp\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\ko_kr\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\ko_kr\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\ko_kr\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\pt_br\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\pt_br\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\pt_br\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\ru_ru\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\ru_ru\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\ru_ru\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\zh_cn\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\zh_cn\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cc 2019\plug-ins\zh_cn\vstplugins\decrackler6.dll
c:\program files (x86)\steam\steamapps\common\planet coaster\win64\ovldata\content1\environment\scenery\themes\hol_holiday\hol_nutcracker\hol_nutcracker.ovl
c:\program files (x86)\steam\steamapps\common\planet coaster\win64\ovldata\content1\environment\scenery\themes\hol_holiday\hol_nutcracker\hol_nutcracker.ovs
c:\windows\winsxs\amd64_openssh-common-components-onecore_31bf3856ad364e35_10.0.17763.1_none_ad6c66b207e8c478\ssh-keygen.exe
scanner sequence 3.ZZ.11.CANACZ
 ----- EOF ----- 

  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,907 posts
  • MVP

When you added the reply to your post you took it off the list of no replies so it almost got missed.

 

Download the attached fixlist.txt to the same location as FRST

Attached File  fixlist.txt   936bytes   10 downloads

Run FRST and press Fix
A fix log will be generated please post that

Reboot if the fix doesn't reboot it for you

Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.

 


  • 0






Similar Topics


Also tagged with one or more of these keywords: dll, startupchecklibrary.dll

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP