Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

My computer is infected

Started by artem000000 , Jun 01 2020 02:49 PM

  • Please log in to reply

#1
artem000000
Posted 01 June 2020 - 02:49 PM

artem000000

    Member

  • Member
  • PipPip
  • 18 posts

My computer has been running slower and adds have been popping up

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-05-2020 01
Ran by Remte (administrator) on DESKTOP-FBEQLD5 (01-06-2020 16:37:03)
Running from C:\Users\Remte\Desktop
Loaded Profiles: Remte
Platform: Windows 10 Home Version 1903 18362.836 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
() [File not signed] C:\Users\Remte\Documents\DS4\DS4Windows.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.799.13908.temp <3>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7037\Agent.exe
(Discord Inc. -> Discord Inc.) C:\Users\Remte\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe <2>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\TiWorker.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Spotify AB -> Spotify Ltd) C:\Users\Remte\AppData\Roaming\Spotify\Spotify.exe <5>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
 
==================== Registry (Whitelisted) ===================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3372832 2020-05-15] (Valve -> Valve Corporation)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [Discord] => C:\Users\Remte\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31867792 2020-05-19] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1136104 2020-05-28] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [CCXProcess] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe"
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe [3369464 2020-04-28] (Kristjan Skutta -> )
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [Spotify] => C:\Users\Remte\AppData\Roaming\Spotify\Spotify.exe [22824680 2020-05-21] (Spotify AB -> Spotify Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-27] (Google LLC -> Google LLC)
Startup: C:\Users\Remte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DS4Windows.lnk [2020-05-02]
ShortcutTarget: DS4Windows.lnk -> C:\Users\Remte\Documents\DS4\DS4Windows.exe () [File not signed]
 
==================== Scheduled Tasks (Whitelisted) ============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {089D7696-9E6C-4763-9D97-7F36737B0DF3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {52E7AEDC-774E-46EE-BCA7-3197BECA1D10} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-10] (Google Inc -> Google LLC)
Task: {5A8C58C4-C3CF-4483-B68A-120AE5544ACE} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_pepper.exe [1454136 2020-05-13] (Adobe Inc. -> Adobe)
Task: {78C92AC1-9EF1-4F7F-94BF-4CF7CD7259D8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-10] (Google Inc -> Google LLC)
Task: {79B67FD3-2F47-451B-80DA-D8E40AD134F1} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [491320 2020-05-12] (Bitdefender SRL -> Bitdefender)
Task: {79DCC171-165B-4045-8810-08CC79F0A326} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-13] (Adobe Inc. -> Adobe)
Task: {7E77EC56-3C1C-4C2B-A4A2-AA4E88D4E7D0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7F433401-DBA2-41E1-ABA0-97AE3E36D8CC} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {964A22F1-19A3-46D6-B5C5-B18420D55E20} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C48D2424-E23D-47AE-AB47-2CB53124F795} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CFF80DC4-884D-4538-A6D1-B2198E44F246} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D840C261-7040-43C7-A096-29263EB30BA9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EDB913E1-FB6B-4992-8A30-D30BE082697E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F46507CB-611D-4D30-AB04-EC5C5F0D0A8A} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3687154501-3704018589-8772194-1001 => C:\Users\Remte\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2696312 2019-09-12] () [File not signed]
Task: {F4CA70D1-7790-47AF-9884-EC1AFE181215} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F8CBA4B8-2BED-418A-959F-19D0225D3D09} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FC872B8D-6169-4FB9-9C20-3F106B41F1C4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7914229b-f00f-46bc-b255-bd63f1dd8d78}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
 
FireFox:
========
FF DefaultProfile: yxhgoaue.default
FF ProfilePath: C:\Users\Remte\AppData\Roaming\Mozilla\Firefox\Profiles\yxhgoaue.default [2020-06-01]
FF ProfilePath: C:\Users\Remte\AppData\Roaming\Mozilla\Firefox\Profiles\tfqa2bqd.default-release [2020-06-01]
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin HKU\S-1-5-21-3687154501-3704018589-8772194-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Remte\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-08] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
 
Chrome: 
=======
CHR Profile: C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default [2020-06-01]
CHR Notifications: Default -> hxxps://78lhg.vivom.pro; hxxps://riven.market; hxxps://warframe.market
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR Extension: (Slides) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-16]
CHR Extension: (Docs) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-16]
CHR Extension: (Google Drive) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-16]
CHR Extension: (YouTube) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-16]
CHR Extension: (MyWebFace) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcmcdoaknaojppeomaejlbjbpgocdhok [2020-05-15]
CHR Extension: (Sheets) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-16]
CHR Extension: (Google Docs Offline) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-27]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-16]
CHR Extension: (Chrome Media Router) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-27]
 
==================== Services (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 bdredline; C:\Program Files\Bitdefender Antivirus Free\bdredline.exe [2500144 2019-03-27] (Bitdefender SRL -> Bitdefender)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-04-21] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [860656 2019-12-24] (NVIDIA Corporation -> NVIDIA Corporation)
R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2496816 2020-05-06] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3449656 2020-05-06] (Electronic Arts, Inc. -> Electronic Arts)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1352120 2020-05-12] (Bitdefender SRL -> Bitdefender)
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [242024 2020-03-17] (Bitdefender SRL -> Bitdefender)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [463312 2020-05-12] (Bitdefender SRL -> Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [242024 2020-03-17] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-04-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-04-30] (Microsoft Windows Publisher -> Microsoft Corporation)
 
===================== Drivers (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [2106424 2020-05-08] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [757240 2020-04-30] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [22960 2019-03-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [231936 2019-09-11] (Microsoft Corporation) [File not signed]
R3 edrsensor; C:\Windows\System32\DRIVERS\edrsensor.sys [309120 2020-02-03] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R1 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [453344 2020-04-21] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ce13a81bcfac4a48\nvlddmkm.sys [23251968 2019-12-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] (PeerBlock, LLC -> )
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [9860088 2019-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 teVirtualMIDI64; C:\Windows\System32\drivers\teVirtualMIDI64.sys [53120 2019-12-07] (Tobias Erichsen -> Tobias Erichsen)
R2 trufos; C:\Windows\System32\drivers\trufos.sys [638368 2020-01-31] (Bitdefender SRL -> Bitdefender)
R0 vlflt; C:\Windows\System32\DRIVERS\vlflt.sys [379048 2020-04-13] (Bitdefender SRL -> Bitdefender)
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [45408 2018-03-15] (Voicemod Sociedad Limitada -> Windows ® Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45960 2020-04-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [394680 2020-04-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [64944 2020-04-30] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [2719256 2020-04-26] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) ===================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2020-06-01 16:37 - 2020-06-01 16:38 - 000022013 _____ C:\Users\Remte\Desktop\FRST.txt
2020-06-01 16:35 - 2020-06-01 16:37 - 000000000 ____D C:\FRST
2020-06-01 16:34 - 2020-06-01 16:35 - 002289152 _____ (Farbar) C:\Users\Remte\Desktop\FRST64.exe
2020-06-01 15:16 - 2020-06-01 15:16 - 000000000 ____D C:\Users\Remte\Downloads\Treasure of Nadia - PC-v.36061
2020-06-01 15:08 - 2020-06-01 15:09 - 2227449764 _____ C:\Users\Remte\Downloads\Treasure of Nadia - PC-v.36061.zip
2020-06-01 03:21 - 2020-06-01 03:21 - 000001188 _____ C:\Users\Remte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitdefender Antivirus Free.lnk
2020-06-01 03:21 - 2020-06-01 03:21 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4
2020-06-01 03:20 - 2020-06-01 03:20 - 000001203 _____ C:\Users\Public\Desktop\Bitdefender Antivirus Free.lnk
2020-06-01 03:20 - 2020-06-01 03:20 - 000001203 _____ C:\ProgramData\Desktop\Bitdefender Antivirus Free.lnk
2020-06-01 03:20 - 2020-01-31 17:11 - 000638368 _____ (Bitdefender) C:\Windows\system32\Drivers\trufos.sys
2020-06-01 03:20 - 2019-03-21 00:12 - 000022960 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys
2020-06-01 03:19 - 2020-06-01 03:19 - 000000000 ____D C:\ProgramData\Bitdefender
2020-06-01 03:19 - 2020-05-08 17:26 - 002106424 _____ (Bitdefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\atc.sys
2020-06-01 03:19 - 2020-04-30 18:04 - 000757240 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys
2020-06-01 03:19 - 2020-04-21 18:19 - 000453344 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\gemma.sys
2020-06-01 03:19 - 2020-04-13 14:56 - 000379048 _____ (Bitdefender) C:\Windows\system32\Drivers\vlflt.sys
2020-06-01 03:19 - 2020-02-03 16:53 - 000309120 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\edrsensor.sys
2020-06-01 03:18 - 2020-06-01 16:38 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2020-06-01 03:16 - 2020-06-01 03:16 - 000003802 _____ C:\Windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2020-06-01 03:14 - 2020-06-01 03:14 - 000115924 _____ C:\ProgramData\agent.1590995639.bdinstall.v2.bin
2020-06-01 03:13 - 2020-06-01 03:21 - 000000000 ____D C:\Program Files\Bitdefender Agent
2020-06-01 03:13 - 2020-06-01 03:14 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2020-06-01 03:13 - 2020-06-01 03:13 - 012444472 _____ C:\Users\Remte\Downloads\bitdefender_online.exe
2020-05-29 20:30 - 2020-05-29 20:33 - 000000000 ____D C:\Users\Remte\Downloads\BeingADIK-0.5.0-pc-lin
2020-05-29 20:28 - 2020-05-29 20:30 - 4153770982 _____ C:\Users\Remte\Downloads\BeingADIK-0.5.0-pc-lin.zip
2020-05-27 14:45 - 2020-05-27 14:45 - 002510856 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2020-05-17 02:24 - 2020-05-17 02:24 - 000000000 ____D C:\Users\Remte\AppData\LocalLow\Faerin Games
2020-05-15 14:22 - 2020-05-15 14:23 - 000000000 ____D C:\Users\Remte\Downloads\Treasure of Nadia - PC-v.34052
2020-05-15 14:16 - 2020-05-15 14:16 - 2101235246 _____ C:\Users\Remte\Downloads\Treasure of Nadia - PC-v.34052.zip
2020-05-14 16:41 - 2020-05-14 16:42 - 000000000 ____D C:\Users\Remte\Documents\STAR WARS Battlefront II
2020-05-14 16:41 - 2020-05-14 16:41 - 000000000 ____D C:\Users\Remte\AppData\Local\STAR WARS Battlefront II
2020-05-14 03:49 - 2020-05-28 14:43 - 000001412 _____ C:\Users\Public\Desktop\STAR WARS Battlefront II.lnk
2020-05-14 03:49 - 2020-05-28 14:43 - 000001412 _____ C:\ProgramData\Desktop\STAR WARS Battlefront II.lnk
2020-05-14 03:49 - 2020-05-14 03:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II
2020-05-12 19:09 - 2020-05-12 19:09 - 025902080 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 025444864 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 022638592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 019851264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 019812352 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 018029056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 014819328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 008013824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 007822888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 007756800 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 007267840 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 007011840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 006710272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 006525936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 006291456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 006082808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005945856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005911040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005757872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005340568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005111296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005098352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 004858368 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 004612608 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 003974376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 003822080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 003747328 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 003513856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 002798592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-05-12 19:09 - 2020-05-12 19:09 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-05-12 19:09 - 2020-05-12 19:09 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-05-12 19:09 - 2020-05-12 19:09 - 002584008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 002576896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 002259664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 002073176 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001990576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001975808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001952872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001934824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001835128 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001737216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001686016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001665720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001654952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001637376 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001581056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001559040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001556200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001539072 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 001525760 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001510912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001507328 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001492480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001477112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001461760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001417760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001406464 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001397560 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 001393664 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001382400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001375232 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001370112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001357312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001344000 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001343488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001336320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001306424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001306112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001284096 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001264640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001260032 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001245696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001222656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001214264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001213440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001195008 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001184256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001178608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001154656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001151824 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001125376 _____ (Microsoft Corporation) C:\Windows\system32\CBDHSvc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001107456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001099600 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001081856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001077048 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 001071616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001068032 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001048480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001034752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001011712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000994304 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000975360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000943640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000911872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000901120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000896000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000895080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000894016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000891392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000881664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000866304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000863232 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000861696 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000858112 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000852992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000847872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000843776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000843576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000814080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000813568 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000801832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000792808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputHost.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000783480 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000782336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000778552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Services.TargetedContent.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000777840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000776792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000748544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000747832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000736768 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000729600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000716800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000705536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000693672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000691712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000683848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000683288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000673456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000673296 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000672944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000668672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000655360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000652800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000649728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000628024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000614400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000613888 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000602224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000600064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000594472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000592944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000584704 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000581544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000573952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000572200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000568136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000564480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StateRepository.Core.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000557056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000553664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000540200 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000540160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000539184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000535552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000530944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000526848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000519680 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000513024 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000512512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000509952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000506368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.PredictionUnit.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000501200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp_win.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000484352 _____ (Microsoft Corporation) C:\Windows\system32\MixedReality.Broker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000466944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000466344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000453944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000453632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000451584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000441856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000441584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000435712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\AccountsRt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000418816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000408576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000406480 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000405424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Payments.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000375520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000353792 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AccountsRt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000345016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneOm.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000338432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000325432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-05-12 19:09 - 2020-05-12 19:09 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000310928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000301064 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000299064 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TaskApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000292864 _____ (Microsoft Corporation) C:\Windows\system32\CXHProvisioningServer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Preview.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000278080 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000273744 _____ (Microsoft Corporation) C:\Windows\system32\wkspbroker.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PickerPlatform.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000268008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000266552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemSettings.DataModel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000262848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000260328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConsoleLogon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000246584 _____ (Microsoft Corporation) C:\Windows\system32\DataExchangeHost.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000245336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000240128 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\HoloShellRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-05-12 19:09 - 2020-05-12 19:09 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000222720 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000211256 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000199992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000197432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000193592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000188928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000188416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000188416 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-05-12 19:09 - 2020-05-12 19:09 - 000185952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DataExchange.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000181760 _____ (Microsoft Corporation) C:\Windows\system32\rdpinput.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Clipboard.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\ConsentUxClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000176440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Management.Workplace.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HoloShellRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dialclient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000170496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000166912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000165176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Core.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\useractivitybroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000147968 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000139952 _____ (Microsoft Corporation) C:\Windows\system32\MixedRealityRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Haptics.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppExtension.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000126976 _____ (Microsoft Corporation) C:\Windows\system32\wkspbrokerAx.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000124504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gamingtcui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000117048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadWamExtension.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VoipRT.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\socialapis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000105840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MixedRealityRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\Family.Authentication.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000099104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkspbrokerAx.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraCaptureUI.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000090936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000089328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeopleAPIs.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\TSSessionUX.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DiagnosticInvoker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000073024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbussdapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000068408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceReactivation.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Printers.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000066832 _____ (Microsoft Corporation) C:\Windows\system32\iumcrypt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\coloradapterclient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\ConfigureExpandedStorage.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ffbroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConfigureExpandedStorage.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AssignedAccessRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\RdpSa.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSa.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaProxy.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaProxy.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slcext.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsregtask.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\localui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-05-12 19:08 - 2020-05-12 19:08 - 017791488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 009929528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 009339392 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 007902912 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 007604584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 007297536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 007257816 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 006435328 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 006232568 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 006168576 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 005280192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 004624880 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 004565456 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 004012032 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 004005376 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003807232 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003727360 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 003711488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003655680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003581752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 003371416 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003109376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003084800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002986808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 002854400 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002774088 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002769000 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002760704 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 002736640 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002717184 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 002504440 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002465792 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002448712 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002354688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002289152 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002284032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002256384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002235008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002157056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002150232 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002147328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002087168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002060800 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001999968 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001945600 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001943040 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001885184 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001856000 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001825280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001819648 _____ (Microsoft Corporation) C:\Windows\system32\CoreShell.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001786880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001766400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001751040 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001745208 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001722880 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001656904 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001646552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\TaskFlowDataEngine.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001540096 _____ (Microsoft Corporation) C:\Windows\system32\WindowManagement.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001536512 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001505592 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001500672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001498624 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001486336 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 001466368 _____ (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001428480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001413712 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001393960 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001391104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001385176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001373184 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001346048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001336832 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001333248 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001288648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001282560 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001274128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryPS.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001270784 _____ (Microsoft Corporation) C:\Windows\system32\SEMgrSvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001263616 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSave.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001218560 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001182208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001180672 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001158144 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001150784 _____ (Microsoft Corporation) C:\Windows\system32\InputHost.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 001132544 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001098752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001098240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Signals.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001092096 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001085752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Services.TargetedContent.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001072128 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001059328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001053696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001027816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Perception.Stub.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001023128 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001007928 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001007104 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001005056 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000999616 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000979264 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000957056 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000949760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000945192 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000943616 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000938496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000925184 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000921600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000916768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000915456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000915192 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000902656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000891544 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000888352 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000879064 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000874296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000859944 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000858112 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000854528 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000847168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000841216 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000826880 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000824832 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000822272 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000822208 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000819696 _____ (Microsoft Corporation) C:\Windows\system32\windows.applicationmodel.datatransfer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000819200 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000796904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000793088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000781312 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000777216 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000768000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000759808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000752584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000742200 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000738304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000716312 _____ (Microsoft Corporation) C:\Windows\system32\StateRepository.Core.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000710656 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000706544 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000685368 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000679424 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000676072 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000661816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000650240 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000647168 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000639400 _____ (Microsoft Corporation) C:\Windows\system32\msvcp_win.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000638464 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000637480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000636416 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000634680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2020-05-12 19:08 - 2020-05-12 19:08 - 000629760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000622592 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000621568 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000618496 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000614400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000604160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Payments.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000589384 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000580608 _____ (Microsoft Corporation) C:\Windows\system32\ddraw.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000569856 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000547992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000544256 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000543824 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000534528 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.UserService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000526336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000524208 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000518456 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000513024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Activities.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000502272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000500736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000479744 _____ (Microsoft Corporation) C:\Windows\system32\BcastDVRClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000477496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-05-12 19:08 - 2020-05-12 19:08 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountWAMExtension.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000474112 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000467952 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000460200 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000452608 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000448512 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\PhoneOm.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000434176 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000430592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000415808 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000410608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\TaskApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000408064 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000400696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000399672 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DataModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000394240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Preview.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000390968 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000386320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000380632 _____ (Microsoft Corporation) C:\Windows\system32\CredentialEnrollmentManager.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000374272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\PickerPlatform.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000353280 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000339824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000334336 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Cortana.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000333312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000333128 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000330240 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000318680 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000311096 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000306688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000290304 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000283648 _____ (Microsoft Corporation) C:\Windows\system32\ComposerFramework.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000273208 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostUser.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000270336 _____ (Microsoft Corporation) C:\Windows\system32\DesktopSwitcherDataModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000251392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000250696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000248832 _____ (Microsoft Corporation) C:\Windows\system32\PasswordEnrollmentManager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000247856 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000244736 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000238904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Workplace.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Devices.Sensors.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000231912 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000222208 _____ (Microsoft Corporation) C:\Windows\system32\DataExchange.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000221496 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\MtcModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000220160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000209208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryUpgrade.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\useractivitybroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\SwitcherDataModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Haptics.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Compression.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\AppExtension.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.CapturePicker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcui.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000152416 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\VoipRT.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000147776 _____ (Microsoft Corporation) C:\Windows\system32\aadWamExtension.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000142760 _____ (Microsoft Corporation) C:\Windows\system32\LicensingUI.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\socialapis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUser.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.RetailInfo.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000132712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000132096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Storage.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingExperienceMEM.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\CredDialogBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\UtcDecoderHost.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\CameraCaptureUI.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000128000 _____ (Microsoft Corporation) C:\Windows\system32\CaptureService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000121344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\PeopleAPIs.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\WaaSAssessment.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000107616 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AI.MachineLearning.Preview.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\BcastDVRBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000102216 _____ (Microsoft Corporation) C:\Windows\system32\changepk.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticInvoker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\winsrvext.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Printers.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000089912 _____ (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000088352 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000088280 _____ (Microsoft Corporation) C:\Windows\system32\coloradapterclient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\mbussdapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\ffbroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000069704 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000060432 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\AssignedAccessRuntime.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000059192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000058880 _____ C:\Windows\system32\runexehelper.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000058696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\ddrawex.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000047000 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryCore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\UpgradeResultsUI.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSaveTask.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\KNetPwrDepBroker.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\dsregtask.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2020-05-12 13:38 - 2020-05-12 13:38 - 000000000 ____D C:\Users\Remte\AppData\Roaming\EasyAntiCheat
2020-05-04 20:31 - 2020-05-04 20:31 - 000000000 ____D C:\Users\Remte\AppData\LocalLow\Redbeet Interactive
2020-05-04 20:06 - 2020-05-04 20:06 - 000000222 _____ C:\Users\Remte\Desktop\Raft.url
2020-05-04 19:58 - 2020-05-04 19:58 - 000000000 ____D C:\Users\Remte\Documents\Stranded Deep
2020-05-04 19:58 - 2020-05-04 19:58 - 000000000 ____D C:\Users\Remte\AppData\LocalLow\Beam Team Games
2020-05-04 19:43 - 2020-06-01 14:41 - 000000000 ____D C:\Users\Remte\AppData\Local\LogMeIn Hamachi
2020-05-04 19:43 - 2020-05-04 19:43 - 000000000 ____D C:\Users\Remte\AppData\Local\LogMeIn
2020-05-04 19:43 - 2020-05-04 19:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2020-05-04 19:43 - 2020-05-04 19:43 - 000000000 ____D C:\ProgramData\LogMeIn
2020-05-04 19:43 - 2020-05-04 19:43 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2020-05-04 19:37 - 2020-05-04 19:37 - 000000000 ____D C:\ProgramData\Unknown Worlds
2020-05-04 19:36 - 2020-05-04 19:36 - 000000000 ____D C:\Users\Remte\AppData\LocalLow\Unknown Worlds
2020-05-03 18:32 - 2020-05-03 18:33 - 000000000 ____D C:\Users\Remte\Downloads\BeingADIK-0.4.2-pc-lin
 
==================== One month (modified) ==================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2020-06-01 16:39 - 2019-07-25 17:55 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Origin
2020-06-01 16:38 - 2019-08-25 00:58 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Discord
2020-06-01 16:33 - 2019-11-16 00:57 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Spotify
2020-06-01 16:33 - 2019-09-22 02:37 - 000000000 ____D C:\Users\Remte\AppData\Local\Battle.net
2020-06-01 16:32 - 2019-09-12 22:41 - 000000000 ____D C:\Users\Remte\AppData\Local\User Data
2020-06-01 16:27 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-01 15:17 - 2019-07-16 21:58 - 000840852 _____ C:\Windows\system32\PerfStringBackup.INI
2020-06-01 15:17 - 2019-03-19 00:50 - 000000000 ____D C:\Windows\INF
2020-06-01 15:14 - 2019-07-16 21:51 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-06-01 14:44 - 2019-07-16 21:58 - 000000000 ____D C:\ProgramData\NVIDIA
2020-06-01 03:21 - 2019-03-19 00:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-05-31 21:21 - 2019-10-02 02:15 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-05-31 21:21 - 2019-10-02 02:15 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-05-31 18:29 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\system32\NDF
2020-05-29 15:13 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\AppReadiness
2020-05-29 15:08 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-29 13:36 - 2019-11-16 00:58 - 000000000 ____D C:\Users\Remte\AppData\Local\Spotify
2020-05-28 20:00 - 2019-07-16 21:03 - 000000000 ____D C:\Program Files (x86)\Steam
2020-05-28 16:34 - 2019-09-22 02:37 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-05-28 15:21 - 2019-07-16 21:07 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-05-28 14:34 - 2019-07-25 17:56 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-05-28 14:34 - 2019-07-25 17:55 - 000000000 ____D C:\Users\Remte\AppData\Local\Origin
2020-05-28 14:34 - 2019-07-25 17:55 - 000000000 ____D C:\ProgramData\Origin
2020-05-28 04:35 - 2020-02-03 04:22 - 000000000 ____D C:\Users\Remte\Documents\DS4
2020-05-28 04:34 - 2019-07-16 21:51 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-28 04:34 - 2019-03-19 00:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-05-27 15:16 - 2019-11-10 01:01 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-27 14:45 - 2019-03-19 00:37 - 000000000 ____D C:\Windows\CbsTemp
2020-05-26 23:25 - 2019-12-11 16:38 - 000000000 ____D C:\Program Files (x86)\Overwatch
2020-05-26 07:42 - 2019-10-02 02:15 - 000003522 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2020-05-26 00:15 - 2019-07-25 14:24 - 000000000 ____D C:\Users\Remte\AppData\Local\CrashDumps
2020-05-21 03:08 - 2019-07-25 17:55 - 000000000 ____D C:\Program Files (x86)\Origin
2020-05-17 21:40 - 2019-07-17 15:54 - 000000000 ____D C:\Users\Remte\AppData\Local\Warframe
2020-05-16 07:17 - 2019-07-16 21:57 - 000000000 ____D C:\Users\Remte
2020-05-15 15:48 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\LiveKernelReports
2020-05-15 06:07 - 2019-07-16 21:59 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-05-15 06:07 - 2019-07-16 21:59 - 000000000 ___RD C:\Users\Remte\3D Objects
2020-05-15 06:07 - 2019-07-16 21:51 - 000257824 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\TextInput
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\SystemResources
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\system32\oobe
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\system32\Dism
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\Provisioning
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\bcastdvr
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\PerfLogs
2020-05-15 04:10 - 2019-07-16 23:04 - 000000000 ____D C:\Users\Remte\AppData\Local\Ubisoft Game Launcher
2020-05-14 16:41 - 2019-07-16 23:07 - 000000000 ____D C:\Users\Remte\AppData\Local\D3DSCache
2020-05-14 03:49 - 2019-07-25 18:09 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-05-13 05:11 - 2019-07-16 19:51 - 000000000 ____D C:\Users\Remte\AppData\Local\ElevatedDiagnostics
2020-05-13 00:51 - 2019-11-15 16:00 - 000004600 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-05-13 00:51 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-05-13 00:51 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\system32\Macromed
2020-05-12 19:19 - 2019-07-16 20:01 - 000000000 ____D C:\Windows\system32\MRT
2020-05-12 19:15 - 2019-07-16 20:01 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-12 19:08 - 2019-07-16 21:54 - 002874880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-05-12 13:31 - 2019-08-25 13:00 - 000000000 ____D C:\Users\Remte\AppData\Local\Bethesda.net Launcher
2020-05-12 13:31 - 2019-08-25 13:00 - 000000000 ____D C:\Program Files (x86)\Bethesda.net Launcher
2020-05-05 09:51 - 2019-07-16 21:59 - 000000000 ____D C:\Users\Remte\AppData\Local\Packages
2020-05-05 09:51 - 2019-07-16 19:03 - 000000000 ____D C:\Users\Remte\AppData\Local\PlaceholderTileLogoFolder
2020-05-03 18:34 - 2019-09-18 02:49 - 000000000 ____D C:\Users\Remte\AppData\Roaming\RenPy
2020-05-02 11:18 - 2019-07-16 19:21 - 000000000 ____D C:\ProgramData\Package Cache
2020-05-02 09:36 - 2019-09-23 21:35 - 000000000 ____D C:\Users\Remte\AppData\Roaming\uTorrent
 
==================== Files in the root of some directories ========
 
2019-09-29 02:13 - 2019-09-29 02:13 - 000000410 _____ () C:\Users\Remte\AppData\Local\oobelibMkey.log
 
==================== SigCheck ============================
 
(There is no automatic fix for files that do not pass verification.)
 
==================== End of FRST.txt ========================

  • 0

Advertisements

#2
RKinner
Posted 01 June 2020 - 08:02 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Ads are probably from:

CHR Notifications: Default -> hxxps://78lhg.vivom.pro; hxxps://riven.market; hxxps://warframe.market

 

 

 
In Chrome, click on the three bars at the top right then on Settings then on Privacy and Security.
 
Find:
Control what information websites can use and what content they can show you
under Site Settings.  Click on the arrow on the right.
Scroll down to Notifications and click on the arrow on the right.
Look under Allow
for
https://78lhg.vivom.pro
Click ‘three dots’ button on the right hand side of Vivom.pro site  and click ‘Remove’.
 
Restart Chrome.
 
If that doesn't help I need the Addition.txt file that you got from your FRST scan.  IF it is still slow then I need some more info:
 
Get Process Explorer

https://live.sysinte...com/procexp.exe

Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  

Wait a full minute then:

File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.


Copy the next 2 lines:

TASKLIST /SVC  > \junk.txt
notepad \junk.txt

Open an Elevated Command Prompt:
Win 7: Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator
Win 8: http://www.eightforu...indows-8-a.html
win 10: http://www.howtogeek...-in-windows-10/

Right click and Paste (or Edit then Paste) and the copied lines should appear.
Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply.


Get the free version of Speccy:

http://www.filehippo...ownload_speccy/ 

(Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving),
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top,  10-20  lines down.) Save the file.  Attach the file to your next post.  Attaching the log is the best option as it is too big for the forum.  Attaching is a multi step process.

First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.





 

  • 0

#3
artem000000
Posted 01 June 2020 - 09:34 PM

artem000000

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 82.01 60 K 8 K 0
Discord.exe 6.64 495,780 K 310,488 K 6172 Discord Discord Inc.
procexp64.exe 2.31 47,784 K 84,556 K 7472 Sysinternals Process Explorer Sysinternals - www.sysinternals.com
dwm.exe 0.91 136,560 K 42,360 K 1168 Desktop Window Manager Microsoft Corporation
Battle.net.exe 0.90 109,476 K 61,928 K 12900 Blizzard Battle.net App Blizzard Entertainment
Interrupts 0.85 0 K 0 K n/a Hardware Interrupts and DPCs
audiodg.exe 0.79 303,112 K 49,748 K 8076 Windows Audio Device Graph Isolation Microsoft Corporation
Origin.exe 0.79 194,992 K 164,628 K 13960 Origin Electronic Arts
WmiPrvSE.exe 0.73 10,204 K 13,704 K 4568 WMI Provider Host Microsoft Corporation
EpicGamesLauncher.exe 0.59 169,852 K 66,852 K 11828 EpicGamesLauncher Epic Games, Inc.
System 0.50 208 K 3,936 K 4
svchost.exe 0.48 11,332 K 13,944 K 2516 Host Process for Windows Services Microsoft Corporation
steam.exe 0.42 108,496 K 74,288 K 9156 Steam Client Bootstrapper Valve Corporation
Taskmgr.exe 0.42 32,212 K 48,564 K 20756 Task Manager Microsoft Corporation
NVIDIA Share.exe 0.33 72,456 K 30,112 K 9768 NVIDIA Share NVIDIA Corporation
DS4Windows.exe 0.27 29,868 K 14,896 K 13588 DS4Windows
Agent.exe 0.24 46,140 K 19,012 K 13908 Blizzard Update Agent Blizzard Entertainment
csrss.exe 0.18 3,108 K 2,520 K 756 Client Server Runtime Process Microsoft Corporation
Discord.exe 0.16 43,528 K 133,220 K 11512 Discord Discord Inc.
Spotify.exe 0.11 95,152 K 59,504 K 6616 Spotify Spotify Ltd
explorer.exe 0.09 125,432 K 130,584 K 6280 Windows Explorer Microsoft Corporation
nvsphelper64.exe 0.06 2,924 K 4,384 K 9672 NVIDIA ShadowPlay Helper NVIDIA Corporation
vsserv.exe 0.06 604,108 K 407,584 K 15880 Bitdefender Security Service Bitdefender
nvcontainer.exe 0.02 13,772 K 19,700 K 3644 NVIDIA Container NVIDIA Corporation
steamwebhelper.exe 0.01 136,664 K 67,704 K 4844 Steam Client WebHelper Valve Corporation
vsservppl.exe 0.01 5,916 K 6,884 K 14544 Bitdefender Correlation Service Bitdefender
Discord.exe 0.01 16,576 K 100,724 K 12296 Discord Discord Inc.
svchost.exe 0.01 11,416 K 13,808 K 1044 Host Process for Windows Services Microsoft Corporation
chrome.exe 0.01 112,912 K 172,660 K 20960 Google Chrome Google LLC
nvcontainer.exe 0.01 7,696 K 8,232 K 6112 NVIDIA Container NVIDIA Corporation
QtWebEngineProcess.exe < 0.01 177,928 K 208,316 K 7292
steamwebhelper.exe < 0.01 26,296 K 30,304 K 6448 Steam Client WebHelper Valve Corporation
SearchIndexer.exe < 0.01 57,584 K 43,444 K 7268 Microsoft Windows Search Indexer Microsoft Corporation
svchost.exe < 0.01 42,700 K 34,420 K 3696 Host Process for Windows Services Microsoft Corporation
bdagent.exe < 0.01 108,132 K 45,648 K 7504 bdagent.exe Bitdefender
hamachi-2-ui.exe < 0.01 4,336 K 11,372 K 14084 Hamachi Client Application LogMeIn Inc.
OriginClientService.exe < 0.01 4,720 K 5,364 K 14980 OriginClientService Electronic Arts
lsass.exe < 0.01 11,104 K 14,732 K 896 Local Security Authority Process Microsoft Corporation
RuntimeBroker.exe < 0.01 4,420 K 13,856 K 9836 Runtime Broker Microsoft Corporation
Spotify.exe < 0.01 209,596 K 80,288 K 2860 Spotify Spotify Ltd
updatesrv.exe < 0.01 7,624 K 10,088 K 20412 Bitdefender Update Service Bitdefender
svchost.exe < 0.01 7,420 K 12,520 K 2424 Host Process for Windows Services Microsoft Corporation
SteamService.exe < 0.01 6,308 K 5,484 K 8340 Steam Client Service Valve Corporation
svchost.exe < 0.01 21,952 K 27,968 K 444 Host Process for Windows Services Microsoft Corporation
rundll32.exe < 0.01 1,716 K 2,004 K 4828 Windows host process (Rundll32) Microsoft Corporation
svchost.exe < 0.01 2,880 K 4,376 K 9472 Host Process for Windows Services Microsoft Corporation
hamachi-2.exe < 0.01 3,608 K 7,600 K 3572 Hamachi Client Tunneling Engine LogMeIn Inc.
UnrealCEFSubProcess.exe < 0.01 62,204 K 11,932 K 12560 UnrealCEFSubProcess Epic Games, Inc.
steamwebhelper.exe < 0.01 718,836 K 72,244 K 5868 Steam Client WebHelper Valve Corporation
Spotify.exe < 0.01 81,500 K 37,080 K 10264 Spotify Spotify Ltd
Battle.net.exe < 0.01 76,304 K 51,540 K 14352 Blizzard Battle.net App Blizzard Entertainment
NVIDIA Share.exe < 0.01 126,312 K 15,988 K 10192 NVIDIA Share NVIDIA Corporation
NVDisplay.Container.exe < 0.01 33,724 K 22,456 K 5308 NVIDIA Container NVIDIA Corporation
chrome.exe < 0.01 215,536 K 120,588 K 24308 Google Chrome Google LLC
RuntimeBroker.exe < 0.01 5,920 K 5,836 K 6760 Runtime Broker Microsoft Corporation
svchost.exe < 0.01 5,188 K 9,292 K 6404 Host Process for Windows Services Microsoft Corporation
NVIDIA Web Helper.exe < 0.01 35,304 K 49,736 K 5560 NVIDIA Web Helper Service Node.js
AGSService.exe < 0.01 6,584 K 12,112 K 3712 Adobe Genuine Software Integrity Service Adobe Systems, Incorporated
LMIGuardianSvc.exe < 0.01 2,236 K 2,628 K 3612 LMIGuardianSvc LogMeIn, Inc.
svchost.exe < 0.01 3,428 K 4,848 K 648 Host Process for Windows Services Microsoft Corporation
TrustedInstaller.exe < 0.01 1,828 K 6,756 K 2288 Windows Modules Installer Microsoft Corporation
YourPhone.exe Suspended 34,584 K 22,984 K 8252
WmiPrvSE.exe 4,348 K 9,712 K 17872 WMI Provider Host Microsoft Corporation
WinStore.App.exe Suspended 62,764 K 1,004 K 9280 Store Microsoft Corporation
winlogon.exe 2,940 K 5,212 K 856 Windows Logon Application Microsoft Corporation
wininit.exe 1,376 K 1,212 K 748 Windows Start-Up Application Microsoft Corporation
WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe 28,052 K 10,532 K 11468 WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe Microsoft Corporation
Video.UI.exe Suspended 38,860 K 28,044 K 3836
unsecapp.exe 1,612 K 2,500 K 4532 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation
TiWorker.exe 19,004 K 26,080 K 14724 Windows Modules Installer Worker Microsoft Corporation
taskhostw.exe 11,132 K 13,796 K 6224 Host Process for Windows Tasks Microsoft Corporation
taskhostw.exe 6,008 K 6,684 K 14164 Host Process for Windows Tasks Microsoft Corporation
SystemSettingsBroker.exe 7,428 K 22,772 K 17808 System Settings Broker Microsoft Corporation
SystemSettings.exe Suspended 39,628 K 836 K 16112 Settings Microsoft Corporation
svchost.exe 10,944 K 20,196 K 3492 Host Process for Windows Services Microsoft Corporation
svchost.exe 6,140 K 10,244 K 14688 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,324 K 5,648 K 2384 Host Process for Windows Services Microsoft Corporation
svchost.exe 14,208 K 9,404 K 1472 Host Process for Windows Services Microsoft Corporation
svchost.exe 4,820 K 11,736 K 5344 Host Process for Windows Services Microsoft Corporation
svchost.exe 5,980 K 9,924 K 2788 Host Process for Windows Services Microsoft Corporation
svchost.exe 5,048 K 7,464 K 1928 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,476 K 11,912 K 6728 Host Process for Windows Services Microsoft Corporation
svchost.exe 18,964 K 21,108 K 3552 Host Process for Windows Services Microsoft Corporation
svchost.exe 11,668 K 8,132 K 3260 Host Process for Windows Services Microsoft Corporation
svchost.exe 4,672 K 6,228 K 9724 Host Process for Windows Services Microsoft Corporation
svchost.exe 6,656 K 9,004 K 1144 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,704 K 4,800 K 2156 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,424 K 3,556 K 1744 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,792 K 2,204 K 1304 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,820 K 5,164 K 4676 Host Process for Windows Services Microsoft Corporation
svchost.exe 11,512 K 28,628 K 1896 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,808 K 2,636 K 3580 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,104 K 5,608 K 2020 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,540 K 10,688 K 19868 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,508 K 7,816 K 15724 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,632 K 4,672 K 1256 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,752 K 2,656 K 2916 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,676 K 4,740 K 2924 Host Process for Windows Services Microsoft Corporation
svchost.exe 4,936 K 13,756 K 1576 Host Process for Windows Services Microsoft Corporation
svchost.exe 5,488 K 14,116 K 3564 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,916 K 3,760 K 1096 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,000 K 3,704 K 3028 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,216 K 2,544 K 8632 Host Process for Windows Services Microsoft Corporation
svchost.exe 9,444 K 13,628 K 2896 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,104 K 2,524 K 3308 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,380 K 3,668 K 3824 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,920 K 3,836 K 1920 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,736 K 5,684 K 1904 Host Process for Windows Services Microsoft Corporation
svchost.exe 5,800 K 8,024 K 11932 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,528 K 7,156 K 10776 Host Process for Windows Services Microsoft Corporation
svchost.exe 7,968 K 13,720 K 10592 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,864 K 3,688 K 9100 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,628 K 12,024 K 7944 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,060 K 1,800 K 452 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,848 K 2,080 K 5684 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,728 K 3,388 K 6596 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,172 K 3,772 K 6684 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,260 K 1,372 K 5756 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,060 K 8,472 K 13672 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,032 K 3,628 K 4032 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,636 K 1,312 K 3600 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,316 K 3,000 K 2460 Host Process for Windows Services Microsoft Corporation
svchost.exe 6,192 K 12,428 K 3632 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,384 K 2,216 K 3592 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,912 K 7,168 K 3620 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,016 K 6,208 K 12484 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,456 K 4,000 K 2132 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,072 K 5,740 K 2140 Host Process for Windows Services Microsoft Corporation
svchost.exe 5,848 K 5,244 K 1812 Host Process for Windows Services Microsoft Corporation
svchost.exe 8,308 K 4,168 K 1644 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,484 K 1,588 K 1752 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,644 K 2,360 K 1416 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,944 K 4,264 K 2060 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,248 K 4,516 K 1296 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,356 K 1,564 K 1912 Host Process for Windows Services Microsoft Corporation
svchost.exe 952 K 1,132 K 100 Host Process for Windows Services Microsoft Corporation
svchost.exe 6,384 K 2,732 K 3240 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,420 K 9,524 K 2636 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,112 K 6,808 K 7644 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,008 K 5,572 K 10856 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,212 K 5,440 K 14440 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,876 K 5,444 K 22928 Host Process for Windows Services Microsoft Corporation
steamwebhelper.exe 63,804 K 36,636 K 7716 Steam Client WebHelper Valve Corporation
steamwebhelper.exe 102,636 K 57,420 K 8024 Steam Client WebHelper Valve Corporation
steamwebhelper.exe 16,316 K 18,692 K 11920 Steam Client WebHelper Valve Corporation
steamwebhelper.exe 7,904 K 7,836 K 13152 Steam Client WebHelper Valve Corporation
StartMenuExperienceHost.exe 46,012 K 43,444 K 7020
Spotify.exe 19,080 K 33,080 K 8432 Spotify Spotify Ltd
Spotify.exe 11,356 K 20,528 K 9612 Spotify Spotify Ltd
spoolsv.exe 5,376 K 4,192 K 3160 Spooler SubSystem App Microsoft Corporation
smss.exe 1,144 K 436 K 420 Windows Session Manager Microsoft Corporation
smartscreen.exe 15,412 K 29,576 K 16948 Windows Defender SmartScreen Microsoft Corporation
SkypeBridge.exe 54,044 K 36,404 K 4616 SkypeBridge Microsoft Corporation
SkypeBackgroundHost.exe Suspended 2,092 K 3,136 K 8124 Microsoft Skype Microsoft Corporation
SkypeApp.exe Suspended 237,556 K 139,752 K 8148 SkypeApp Microsoft Corporation
sihost.exe 9,748 K 23,264 K 1012 Shell Infrastructure Host Microsoft Corporation
ShellExperienceHost.exe Suspended 79,908 K 107,688 K 7840 Windows Shell Experience Host Microsoft Corporation
SgrmBroker.exe 4,228 K 4,624 K 6048 System Guard Runtime Monitor Broker Service Microsoft Corporation
SettingSyncHost.exe 16,388 K 6,268 K 5200 Host Process for Setting Synchronization Microsoft Corporation
services.exe 5,388 K 6,324 K 828 Services and Controller app Microsoft Corporation
SecurityHealthSystray.exe 1,976 K 3,488 K 11616 Windows Security notification icon Microsoft Corporation
SecurityHealthService.exe 5,304 K 10,004 K 11664 Windows Security Health Service Microsoft Corporation
SecurityHealthHost.exe 2,508 K 14,004 K 5348 Windows Security Health Host Microsoft Corporation
SearchUI.exe Suspended 96,964 K 84,432 K 23056 Search and Cortana application Microsoft Corporation
RuntimeBroker.exe 13,196 K 20,600 K 5172 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 41,632 K 40,512 K 7688 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 8,812 K 24,652 K 1512 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 6,032 K 15,740 K 10028 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 6,232 K 14,136 K 11060 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 7,848 K 20,284 K 8676 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 2,480 K 4,868 K 9024 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 6,188 K 15,988 K 6620 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 9,792 K 25,944 K 3728 Runtime Broker Microsoft Corporation
rundll32.exe 1,900 K 3,772 K 6516 Windows host process (Rundll32) Microsoft Corporation
RemindersServer.exe Suspended 8,340 K 7,704 K 8176 Reminders WinRT OOP Server Microsoft Corporation
Registry 6,028 K 34,660 K 120
QtWebEngineProcess.exe 24,292 K 6,716 K 6084
ProductAgentService.exe 7,740 K 18,380 K 18988 Bitdefender Agent Bitdefender
procexp.exe 8,308 K 10,912 K 16896 Sysinternals Process Explorer Sysinternals - www.sysinternals.com
NVIDIA Share.exe 72,676 K 47,008 K 10540 NVIDIA Share NVIDIA Corporation
NVDisplay.Container.exe 4,144 K 7,176 K 1716 NVIDIA Container NVIDIA Corporation
nvcontainer.exe 68,856 K 50,384 K 3844 NVIDIA Container NVIDIA Corporation
notepad.exe 5,272 K 16,784 K 13492 Notepad Microsoft Corporation
notepad.exe 4,716 K 16,408 K 18104 Notepad Microsoft Corporation
MicrosoftEdgeSH.exe Suspended 4,060 K 11,356 K 18812 Microsoft Edge Web Platform Microsoft Corporation
MicrosoftEdgeCP.exe Suspended 37,432 K 43,828 K 7604 Microsoft Edge Content Process Microsoft Corporation
MicrosoftEdge.exe Suspended 40,920 K 69,420 K 16496 Microsoft Edge Microsoft Corporation
Microsoft.Photos.exe Suspended 71,392 K 7,608 K 13808
Memory Compression 2,992 K 712,768 K 1524
LockApp.exe Suspended 30,516 K 25,972 K 8492 LockApp.exe Microsoft Corporation
jusched.exe 3,540 K 10,996 K 13776 Java Update Scheduler Oracle Corporation
jucheck.exe 3,664 K 4,048 K 5416 Java Update Checker Oracle Corporation
GoogleCrashHandler64.exe 1,716 K 1,104 K 9168 Google Crash Handler Google LLC
GoogleCrashHandler.exe 1,720 K 1,132 K 9180 Google Crash Handler Google LLC
fontdrvhost.exe 5,476 K 5,868 K 508 Usermode Font Driver Host Microsoft Corporation
fontdrvhost.exe 1,276 K 1,820 K 468 Usermode Font Driver Host Microsoft Corporation
dllhost.exe 4,884 K 7,896 K 6140 COM Surrogate Microsoft Corporation
DiscoverySrv.exe 2,740 K 10,808 K 20044 DiscoverySrv Bitdefender
Discord.exe 27,292 K 129,368 K 12204 Discord Discord Inc.
Discord.exe 10,788 K 96,076 K 14476 Discord Discord Inc.
Discord.exe 9,492 K 89,740 K 13024 Discord Discord Inc.
ctfmon.exe 4,436 K 8,448 K 5964 CTF Loader Microsoft Corporation
csrss.exe 1,908 K 2,220 K 660 Client Server Runtime Process Microsoft Corporation
conhost.exe 6,820 K 2,888 K 13916 Console Window Host Microsoft Corporation
conhost.exe 6,508 K 2,760 K 5580 Console Window Host Microsoft Corporation
CompPkgSrv.exe 2,576 K 3,872 K 8036 Component Package Support Server Microsoft Corporation
chrome.exe 74,036 K 105,588 K 19272 Google Chrome Google LLC
chrome.exe 20,256 K 43,896 K 15524 Google Chrome Google LLC
chrome.exe 25,820 K 41,240 K 5764 Google Chrome Google LLC
chrome.exe 6,768 K 16,716 K 15376 Google Chrome Google LLC
chrome.exe 36,800 K 66,028 K 10652 Google Chrome Google LLC
chrome.exe 24,728 K 48,956 K 4164 Google Chrome Google LLC
chrome.exe 20,336 K 44,704 K 18356 Google Chrome Google LLC
chrome.exe 12,328 K 21,808 K 3672 Google Chrome Google LLC
chrome.exe 1,684 K 7,236 K 20980 Google Chrome Google LLC
browser_broker.exe 1,624 K 7,748 K 9276 Browser_Broker Microsoft Corporation
bdredline.exe 3,036 K 10,496 K 2868 Bitdefender redline update Bitdefender
Battle.net.exe 10,096 K 12,496 K 15272 Blizzard Battle.net App Blizzard Entertainment
Battle.net.exe 56,276 K 59,176 K 21184 Blizzard Battle.net App Blizzard Entertainment
ApplicationFrameHost.exe 24,172 K 34,764 K 9268 Application Frame Host Microsoft Corporation
AGMService.exe 3,288 K 5,460 K 3688 Adobe Genuine Software Service Adobe Systems, Incorporated
 
 
 
 
 
Image Name                     PID Services                                    
========================= ======== ============================================
System Idle Process              0 N/A                                         
System                           4 N/A                                         
Registry                       120 N/A                                         
smss.exe                       420 N/A                                         
csrss.exe                      660 N/A                                         
wininit.exe                    748 N/A                                         
csrss.exe                      756 N/A                                         
services.exe                   828 N/A                                         
winlogon.exe                   856 N/A                                         
lsass.exe                      896 KeyIso, SamSs, VaultSvc                     
svchost.exe                    100 PlugPlay                                    
svchost.exe                    444 BrokerInfrastructure, DcomLaunch, Power,    
                                   SystemEventsBroker                          
fontdrvhost.exe                468 N/A                                         
fontdrvhost.exe                508 N/A                                         
svchost.exe                   1044 RpcEptMapper, RpcSs                         
svchost.exe                   1096 LSM                                         
dwm.exe                       1168 N/A                                         
svchost.exe                   1256 NcbService                                  
svchost.exe                   1296 TimeBrokerSvc                               
svchost.exe                   1304 CoreMessagingRegistrar                      
svchost.exe                   1416 hidserv                                     
svchost.exe                   1472 EventLog                                    
svchost.exe                   1576 lfsvc                                       
svchost.exe                   1644 nsi                                         
NVDisplay.Container.exe       1716 NVDisplay.ContainerLocalSystem              
svchost.exe                   1744 Dhcp                                        
svchost.exe                   1752 DispBrokerDesktopSvc                        
svchost.exe                   1812 ProfSvc                                     
svchost.exe                   1904 SysMain                                     
svchost.exe                   1912 Themes                                      
svchost.exe                   1920 EventSystem                                 
svchost.exe                   1928 NlaSvc                                      
svchost.exe                   2020 UserManager                                 
svchost.exe                   1144 Schedule                                    
Memory Compression            1524 N/A                                         
svchost.exe                   2060 SENS                                        
svchost.exe                   2132 AudioEndpointBuilder                        
svchost.exe                   2140 FontCache                                   
svchost.exe                   2156 Dnscache                                    
svchost.exe                   2384 netprofm                                    
svchost.exe                   2516 Winmgmt                                     
svchost.exe                   2788 Audiosrv                                    
svchost.exe                   2896 StateRepository                             
svchost.exe                   2916 DusmSvc                                     
svchost.exe                   2924 Wcmsvc                                      
svchost.exe                   3028 WinHttpAutoProxySvc                         
svchost.exe                   2424 WlanSvc                                     
svchost.exe                   2460 ShellHWDetection                            
spoolsv.exe                   3160 Spooler                                     
svchost.exe                   3260 BFE, mpssvc                                 
svchost.exe                   3308 LanmanWorkstation                           
svchost.exe                   3552 DiagTrack                                   
svchost.exe                   3564 WpnService                                  
hamachi-2.exe                 3572 Hamachi2Svc                                 
svchost.exe                   3580 IKEEXT                                      
svchost.exe                   3592 TrkWks                                      
svchost.exe                   3600 SstpSvc                                     
LMIGuardianSvc.exe            3612 LMIGuardianSvc                              
svchost.exe                   3620 iphlpsvc                                    
svchost.exe                   3632 CryptSvc                                    
nvcontainer.exe               3644 NvContainerLocalSystem                      
AGMService.exe                3688 AGMService                                  
svchost.exe                   3696 DPS                                         
AGSService.exe                3712 AGSService                                  
svchost.exe                   3824 LanmanServer                                
svchost.exe                   4032 WdiServiceHost                              
svchost.exe                    648 RasMan                                      
unsecapp.exe                  4532 N/A                                         
WmiPrvSE.exe                  4568 N/A                                         
rundll32.exe                  4828 N/A                                         
NVDisplay.Container.exe       5308 N/A                                         
svchost.exe                   5756 DeviceAssociationService                    
nvcontainer.exe               6112 N/A                                         
nvcontainer.exe               3844 N/A                                         
sihost.exe                    1012 N/A                                         
svchost.exe                   3492 CDPUserSvc_635db                            
svchost.exe                   1896 WpnUserService_635db                        
svchost.exe                   5344 TokenBroker                                 
svchost.exe                   5684 TabletInputService                          
ctfmon.exe                    5964 N/A                                         
taskhostw.exe                 6224 N/A                                         
explorer.exe                  6280 N/A                                         
svchost.exe                   6404 CDPSvc                                      
svchost.exe                   6596 NgcSvc                                      
svchost.exe                   6684 NgcCtnrSvc                                  
svchost.exe                   6728 cbdhsvc_635db                               
StartMenuExperienceHost.e     7020 N/A                                         
RuntimeBroker.exe             6620 N/A                                         
SettingSyncHost.exe           5200 N/A                                         
SearchIndexer.exe             7268 WSearch                                     
RuntimeBroker.exe             7688 N/A                                         
svchost.exe                   7944 LicenseManager                              
SkypeBackgroundHost.exe       8124 N/A                                         
SkypeApp.exe                  8148 N/A                                         
RemindersServer.exe           8176 N/A                                         
YourPhone.exe                 8252 N/A                                         
LockApp.exe                   8492 N/A                                         
RuntimeBroker.exe             8676 N/A                                         
svchost.exe                   9100 BthAvctpSvc                                 
GoogleCrashHandler.exe        9180 N/A                                         
GoogleCrashHandler64.exe      9168 N/A                                         
svchost.exe                   9472 SSDPSRV                                     
svchost.exe                   9724 UsoSvc                                      
nvsphelper64.exe              9672 N/A                                         
NVIDIA Share.exe              9768 N/A                                         
RuntimeBroker.exe             9836 N/A                                         
NVIDIA Share.exe             10192 N/A                                         
NVIDIA Web Helper.exe         5560 N/A                                         
conhost.exe                   5580 N/A                                         
svchost.exe                  10592 OneSyncSvc_635db,                           
                                   PimIndexMaintenanceSvc_635db,               
                                   UnistoreSvc_635db, UserDataSvc_635db        
RuntimeBroker.exe            11060 N/A                                         
NVIDIA Share.exe             10540 N/A                                         
RuntimeBroker.exe            10028 N/A                                         
svchost.exe                  10776 Appinfo                                     
SkypeBridge.exe               4616 N/A                                         
SecurityHealthSystray.exe    11616 N/A                                         
SecurityHealthService.exe    11664 SecurityHealthService                       
svchost.exe                  11932 PcaSvc                                      
Discord.exe                  11512 N/A                                         
EpicGamesLauncher.exe        11828 N/A                                         
Discord.exe                  12204 N/A                                         
Discord.exe                  12296 N/A                                         
Battle.net.exe               12900 N/A                                         
Discord.exe                  13024 N/A                                         
UnrealCEFSubProcess.exe      12560 N/A                                         
DS4Windows.exe               13588 N/A                                         
jusched.exe                  13776 N/A                                         
Agent.exe                    13908 N/A                                         
conhost.exe                  13916 N/A                                         
hamachi-2-ui.exe             14084 N/A                                         
Battle.net.exe               14352 N/A                                         
Discord.exe                  14476 N/A                                         
Battle.net.exe               15272 N/A                                         
ApplicationFrameHost.exe      9268 N/A                                         
WinStore.App.exe              9280 N/A                                         
RuntimeBroker.exe             6760 N/A                                         
svchost.exe                  14688 InstallService                              
svchost.exe                  10856 StorSvc                                     
SgrmBroker.exe                6048 SgrmBroker                                  
svchost.exe                  12484 wscsvc                                      
jucheck.exe                   5416 N/A                                         
ShellExperienceHost.exe       7840 N/A                                         
RuntimeBroker.exe             1512 N/A                                         
Video.UI.exe                  3836 N/A                                         
svchost.exe                    452 PhoneSvc                                    
RuntimeBroker.exe             9024 N/A                                         
audiodg.exe                   8076 N/A                                         
svchost.exe                   8632 QWAVE                                       
Origin.exe                   13960 N/A                                         
QtWebEngineProcess.exe        6084 N/A                                         
QtWebEngineProcess.exe        7292 N/A                                         
OriginClientService.exe      14980 Origin Client Service                       
CompPkgSrv.exe                8036 N/A                                         
Microsoft.Photos.exe         13808 N/A                                         
RuntimeBroker.exe             5172 N/A                                         
rundll32.exe                  6516 N/A                                         
svchost.exe                   4676 WbioSrvc                                    
Discord.exe                   6172 N/A                                         
WindowsInternal.Composabl    11468 N/A                                         
svchost.exe                   3240 DsSvc                                       
dllhost.exe                   6140 N/A                                         
steam.exe                     9156 N/A                                         
steamwebhelper.exe            6448 N/A                                         
SteamService.exe              8340 Steam Client Service                        
steamwebhelper.exe           13152 N/A                                         
steamwebhelper.exe            5868 N/A                                         
steamwebhelper.exe           11920 N/A                                         
steamwebhelper.exe            4844 N/A                                         
steamwebhelper.exe            8024 N/A                                         
steamwebhelper.exe            7716 N/A                                         
taskhostw.exe                14164 N/A                                         
svchost.exe                  13672 camsvc                                      
Spotify.exe                   6616 N/A                                         
Spotify.exe                   9612 N/A                                         
Spotify.exe                  10264 N/A                                         
Spotify.exe                   8432 N/A                                         
Spotify.exe                   2860 N/A                                         
SystemSettingsBroker.exe     17808 N/A                                         
svchost.exe                  15724 RmSvc                                       
smartscreen.exe              16948 N/A                                         
SecurityHealthHost.exe        5348 N/A                                         
RuntimeBroker.exe             3728 N/A                                         
MicrosoftEdge.exe            16496 N/A                                         
browser_broker.exe            9276 N/A                                         
MicrosoftEdgeSH.exe          18812 N/A                                         
MicrosoftEdgeCP.exe           7604 N/A                                         
svchost.exe                  14440 seclogon                                    
svchost.exe                  19868 Netman                                      
ProductAgentService.exe      18988 ProductAgentService                         
DiscoverySrv.exe             20044 N/A                                         
svchost.exe                   2636 upnphost                                    
bdredline.exe                 2868 bdredline                                   
vsserv.exe                   15880 vsserv                                      
vsservppl.exe                14544 vsservppl                                   
bdagent.exe                   7504 N/A                                         
updatesrv.exe                20412 updatesrv                                   
svchost.exe                  22928 lmhosts                                     
Battle.net.exe               21184 N/A                                         
chrome.exe                   20960 N/A                                         
chrome.exe                   20980 N/A                                         
chrome.exe                   24308 N/A                                         
chrome.exe                    5764 N/A                                         
chrome.exe                   15376 N/A                                         
SystemSettings.exe           16112 N/A                                         
SearchUI.exe                 23056 N/A                                         
chrome.exe                   10652 N/A                                         
svchost.exe                   7644 WdiSystemHost                               
chrome.exe                   15404 N/A                                         
chrome.exe                   21520 N/A                                         
chrome.exe                   18820 N/A                                         
chrome.exe                   16448 N/A                                         
chrome.exe                   21872 N/A                                         
WmiPrvSE.exe                 21900 N/A                                         
svchost.exe                  17576 p2pimsvc                                    
svchost.exe                  21660 PNRPsvc                                     
notepad.exe                  24536 N/A                                         
cmd.exe                      23960 N/A                                         
conhost.exe                  19312 N/A                                         
notepad.exe                  17500 N/A                                         
svchost.exe                  22988 ClipSVC                                     
chrome.exe                   19260 N/A                                         
notepad.exe                  12760 N/A                                         
notepad.exe                  11568 N/A                                         
chrome.exe                    3656 N/A                                         
chrome.exe                    4556 N/A                                         
chrome.exe                   19144 N/A                                         
notepad.exe                  14676 N/A                                         
SearchProtocolHost.exe       19512 N/A                                         
SearchFilterHost.exe         15548 N/A                                         
tasklist.exe                  2772 N/A                                         
 
 
 
 
 

 

Attached Files


  • 0

#4
RKinner
Posted 02 June 2020 - 06:14 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

I still need the Addition.txt file.  It should be in the same folder as FRST.

 

Several problems that I can see so far.

 

First you are behind in your Windows Updates.  You should be at version 1909 and you are still at 1903.  We will be getting a new version this month.  I would force the update:

 

Go to

https://www.microsof...nload/windows10

Click on Download Now.  Save the file then right click and Run As Admin. Follow the instrutctions.

This will update your system to 1909.

 

After the update go to Settings, Update & Security and Check for Updates.

 

Speccy says it is running hot but Speccy is often wrong.  Get a second opinion:

 

Run Speedfan to monitor your temps in real time:



http://www.filehippo...nload_speedfan/

Download, save and Install it (Win 7+ or Vista right click and Run As Admin.) then run it (Win 7+ or Vista right click and Run As Admin.).

It will tell you your temps in real time tho the default is to show the hard drive temp in the systray.  You can change it:  Hit Configure then click on the highest temp and check Show in tray.  
Win 10 hides icons by default so: Settings, Personalization,  Taskbar, Select which Icons appear on Taskbar,  then turn Speedfan ON.
With no other programs running what is the highest temp you see?  Run an anti-virus scan, play one of your games or watch a video for at least 5 minutes.  What is the highest temp now?
 

We don't really want it to go over about 65 under load.  If it does it usually means either the fan is defective (speedfan should tell you your fan speed so you can see if it is running) or (most likely) the interface between the fan and the heatsink is clogged with dust. The best fix for a clogged heatsink is to remove the fan (not the heatsink or heatpipe) and vacuum out the heatsink. 

 

Speccy says your SSD does not support SMART so I can't see how good it is.  Crucial makes a program called Crucial Storage Executive Tool.  If you do not have it you should:

 

https://www.crucial....orage-executive

 

Use it to Optimize and Trim your SSD.

 

Speccy also says your Wireless is using Channel 1 and there are several other signals on the same channel.  You might get better performance if you can move to an unoccupied channel.  (Requires logging in to the router).  If you have control of the router:

Download inssider

http://www.techspot....6-inssider.html
Double click to install it. Then run it by right click and Run As Admin.

It will show you a graph in the bottom left that has your signal in blue and competing signals in orange and yellow.  It may also recommend a different channel which might have less interference.

Moving to a different channel (by logging on to your router, changing channel selection from auto to manual and then selecting the desired channel, save and reboot) can drastically improve performance.

 

 

Process Explorer says the discord.exe is using too much CPU.  Check if there is a newer version.

 


  • 0

#5
artem000000
Posted 02 June 2020 - 02:07 PM

artem000000

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-05-2020 01
Ran by Remte (01-06-2020 16:39:33)
Running from C:\Users\Remte\Desktop
Windows 10 Home Version 1903 18362.836 (X64) (2019-07-17 01:52:59)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-3687154501-3704018589-8772194-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3687154501-3704018589-8772194-503 - Limited - Disabled)
Guest (S-1-5-21-3687154501-3704018589-8772194-501 - Limited - Disabled)
Remte (S-1-5-21-3687154501-3704018589-8772194-1001 - Administrator - Enabled) => C:\Users\Remte
WDAGUtilityAccount (S-1-5-21-3687154501-3704018589-8772194-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\uTorrent) (Version: 3.5.5.45628 - BitTorrent Inc.)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.371 - Adobe)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.3.8 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.51.0 - Bethesda Softworks)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 100.0.1 - Bitdefender)
Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.17.178 - Bitdefender)
Call of Duty Modern Warfare Beta (HKLM-x32\...\Call of Duty Modern Warfare Beta) (Version:  - Blizzard Entertainment)
Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version:  - Cheat Engine)
Discord (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{53041896-BE90-4A26-9954-9E9FDC7D4495}) (Version: 1.1.229.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.61 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
LOOT version 0.15.1 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.15.1 - LOOT Team)
Microsoft OneDrive (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
MidiEditor (HKLM-x32\...\D4338446-FFE6-1A12-ACFF-CB6F6A6A70A1) (Version: 3.3.0 - Markus Schwenk)
Minecraft Launcher (HKLM-x32\...\{D0972543-9D51-4A1A-A765-E5A7B1CB09E5}) (Version: 1.0.0.0 - Mojang)
Mozilla Firefox 68.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 68.0.1 (x64 en-US)) (Version: 68.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.71.2 - Black Tree Gaming)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Graphics Driver 441.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.87 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OneClickFirewall (HKLM\...\OneClickFirewall) (Version: 1.0.0.2 - hxxp://winaero.com)
Origin (HKLM-x32\...\Origin) (Version: 10.5.70.40362 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Rick and Morty version 2.1 (HKLM-x32\...\{1D87291F-AF0E-4A90-8660-BF57D705ED48}_is1) (Version: 2.1 - Ferdafs)
Rick and Morty version 2.2 (HKLM-x32\...\{7E0F309A-61C9-41D3-818A-6D407AFB5625}_is1) (Version: 2.2 - Ferdafs)
Spotify (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Spotify) (Version: 1.1.33.569.gced9e0f5 - Spotify AB)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16110 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
Uplay (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft)
Warframe (HKLM-x32\...\{F27AE699-3F63-42A9-97A7-D9B448037342}) (Version: 1.0.0 - Digital Extremes)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22807 - Microsoft Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
 
Packages:
=========
Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_2.2.5.2_x86__h6adky7gbf63m [2020-05-06] (Gameloft SE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Studios) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.93.853.2_x64__8wekyb3d8bbwe [2020-05-29] (ms-resource:PublisherDisplayName)
 
==================== Custom CLSID (Whitelisted): ==============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-3687154501-3704018589-8772194-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\Remte\AppData\Local\Microsoft\OneDrive\19.152.0801.0007\amd64\FileCoAuthLib64.dll => No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-12-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
 
==================== Codecs (Whitelisted) ====================
 
==================== Shortcuts & WMI ========================
 
==================== Loaded Modules (Whitelisted) =============
 
2020-05-09 21:56 - 2020-05-09 21:56 - 096130048 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\libcef.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000117760 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\libEGL.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 004342784 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\libGLESv2.dll
2019-09-13 13:25 - 2019-09-13 13:25 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2019-09-13 13:25 - 2019-09-13 13:25 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-09-13 13:25 - 2019-09-13 13:25 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2020-03-10 00:22 - 2020-04-29 00:06 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2020-03-10 00:22 - 2020-04-29 00:06 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000760832 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\chrome_elf.dll
2019-09-13 13:25 - 2019-09-13 13:25 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2020-03-10 00:22 - 2020-04-29 00:06 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-11-15 18:21 - 2020-04-29 00:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2020-03-10 00:22 - 2020-04-29 00:06 - 000278016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\mediaservice\dsengine.dll
2020-03-10 00:22 - 2020-04-29 00:06 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 054071296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-05-21 03:08 - 2020-04-29 00:06 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\audio\qtaudio_windows.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\imageformats\qgif.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\imageformats\qico.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\imageformats\qjpeg.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\imageformats\qmng.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\imageformats\qsvg.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\imageformats\qtiff.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\platforms\qwindows.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000041984 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\qml\QtQml\Models.2\modelsplugin.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\qml\QtQuick.2\qtquick2plugin.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000084480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000071680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000211456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\qml\QtQuick\Window.2\windowplugin.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5Core.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5Gui.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5Multimedia.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5Network.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5Qml.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5Quick.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000096256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5QuickControls2.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000681472 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5QuickTemplates2.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5Svg.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5Widgets.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5WinExtras.dll
2020-05-09 21:56 - 2020-05-09 21:56 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12008\Qt5Xml.dll
 
==================== Alternate Data Streams (Whitelisted) ========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\Users\Remte\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Remte\Application Data:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Remte\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Remte\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Remte\AppData\Local\Temp:$DATA​ [16]
 
==================== Safe Mode (Whitelisted) ==================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
 
==================== Association (Whitelisted) =================
 
==================== Internet Explorer trusted/restricted ==========
 
==================== Hosts content: =========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2019-03-19 00:49 - 2019-03-19 00:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
 
==================== Other Areas ===========================
 
(Currently there is no automatic fix for this section.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Remte\Pictures\wp1831898.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
==================== FirewallRules (Whitelisted) ================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{F01B6AA9-A0D9-45A1-87F6-E59F8D8DEC03}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B67EF164-234D-4FE9-9836-4C4A9397CF2D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1EB47D44-618E-4D1B-ACED-691573814B4D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CC967097-89AE-4E5E-9214-B38E90097427}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{8FFA2250-87DF-4F64-A0E7-D6915C5A1807}C:\users\remte\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\remte\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{A8526F7B-D81F-4DCA-A45E-DCDBE9341D4B}C:\users\remte\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\remte\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6588D09D-016F-40CD-89DB-F6078E81F8BC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8BEBA000-49CB-4536-BE1B-688A9399827C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{48B1363A-EA39-48A8-8FCD-5DDD0BDD0434}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{A0AA26D1-D70B-4A4C-A82F-7F6A935D5CD5}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{90029E1F-9AAD-4E17-999A-3C9D11C6C79E}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{D569C6B5-D4E3-4E99-ADDD-CD0D3FDF5EAE}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )
FirewallRules: [{9B8867D2-A821-4284-B96E-AEB5DA4BDD08}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{175F9C80-74A1-4108-A69B-C2EE31BDC825}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{F2746CAD-4BE9-46AB-A3AB-EB2F357F1BB0}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{4F0E4165-94BE-40D3-9872-328A99F0519F}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )
FirewallRules: [TCP Query User{BB478DCA-8E67-464B-B150-28C39053340E}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{92549CF8-04F0-4944-9924-ADE8B54C20B2}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{3C089938-B67C-4446-84C0-35207A0A2CEA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BD7AD5B0-0062-480D-9E9A-82B93147B26C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EB21AB2F-26AB-4E88-8597-9DE07FBDD821}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [File not signed]
FirewallRules: [{75C28785-99ED-4D35-ABE2-F29F42856A70}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [File not signed]
FirewallRules: [TCP Query User{E74AD905-5C96-4DAF-8855-A0AD6A46C537}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{9F368A4F-9BDD-4875-A6D3-83D21EA78AC7}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{FEF98BF6-968B-4D09-B8DE-1E3A9935AA22}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Uno\UNO.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{E1738A9B-DA89-47AC-8E24-477B778D5333}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Uno\UNO.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{902A7943-E965-4ECC-8B93-97CD386D4DD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe (Ubisoft -> ) [File not signed]
FirewallRules: [{8FF54FA4-1288-4CDC-ACF5-E0160BBD86C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe (Ubisoft -> ) [File not signed]
FirewallRules: [TCP Query User{C9822BED-0FE6-4D4F-A950-3EE6087D3A6D}C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe] => (Allow) C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe => No File
FirewallRules: [UDP Query User{121A75BD-0193-4413-8C5A-8EBEAE61189F}C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe] => (Allow) C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe => No File
FirewallRules: [TCP Query User{37284FA4-D144-4103-B0FF-DCDDEADE578C}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe => No File
FirewallRules: [UDP Query User{8E3C3390-FA82-43CB-8530-E8131AFA99C6}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe => No File
FirewallRules: [TCP Query User{B68C6EC7-68AB-4EAB-8302-D615A70B9E1B}C:\program files (x86)\steam\steamapps\common\the dark pictures anthology - man of medan\smg019\binaries\win64\manofmedan-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the dark pictures anthology - man of medan\smg019\binaries\win64\manofmedan-win64-shipping.exe => No File
FirewallRules: [UDP Query User{F275A024-2365-4744-B13E-514CA273D405}C:\program files (x86)\steam\steamapps\common\the dark pictures anthology - man of medan\smg019\binaries\win64\manofmedan-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the dark pictures anthology - man of medan\smg019\binaries\win64\manofmedan-win64-shipping.exe => No File
FirewallRules: [TCP Query User{1BF81B42-8201-487F-8794-35998B0D8C59}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{E830DE53-AF68-49F9-9258-D5E507D92C80}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [{877D793A-DE37-4830-86A7-D4DC1A099716}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{3E537827-96D9-4565-8F10-8C5AC75CEACE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B6C94F5E-8CE9-4443-B997-362DD83467A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{5F24DED0-A65C-4AB5-A064-060DF299F089}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{72FBEC0D-38CE-4400-8FCB-AD0E6BB4C950}C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe (Gearbox Software LLC -> Gearbox Software)
FirewallRules: [UDP Query User{3B8AD22F-1739-4041-B204-9A1439AC3CA7}C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe (Gearbox Software LLC -> Gearbox Software)
FirewallRules: [TCP Query User{5D998262-DDB9-403E-8242-8533A89E0157}C:\program files (x86)\call of duty modern warfare beta\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare beta\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{D3725D21-EC51-4990-B2F2-22BD822B1E9C}C:\program files (x86)\call of duty modern warfare beta\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare beta\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{5E7F4C2A-1384-4E08-8B5E-7934D8E5A8D5}] => (Allow) C:\Users\Remte\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{ABDA9F91-F5A3-49CC-BB41-6817CE7DF155}] => (Allow) C:\Users\Remte\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{19E99896-87BA-4D61-9D89-8B2D1842C96D}] => (Block) c:\program files\voicemod desktop\voicemoddesktop.exe => No File
FirewallRules: [{3D6A3CAE-4A78-4023-8DF4-10B38D5C6422}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe => No File
FirewallRules: [{BD8FF6FF-19AF-4936-87D8-6260A9FBCB79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe => No File
FirewallRules: [{DFF5AD13-2553-497B-B892-47BC4E008650}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{52A3FA0A-C8DC-474B-844D-CA2664053519}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [TCP Query User{9DD8563A-5A29-4B78-86E0-D5E7E258826A}C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe (Phoenix Labs Canada ULC -> Phoenix Labs)
FirewallRules: [UDP Query User{3A9A22F2-9898-4116-ACD9-6BCDED95A0F9}C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe (Phoenix Labs Canada ULC -> Phoenix Labs)
FirewallRules: [TCP Query User{A4C0782B-0DA8-4AD2-83ED-B74EFAE37D2B}C:\program files (x86)\steam\steamapps\common\mist survival\mistsurvival\binaries\win64\mistsurvival-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\mist survival\mistsurvival\binaries\win64\mistsurvival-win64-shipping.exe => No File
FirewallRules: [UDP Query User{4D591DF6-4625-4521-B4A1-F8699C2C658D}C:\program files (x86)\steam\steamapps\common\mist survival\mistsurvival\binaries\win64\mistsurvival-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\mist survival\mistsurvival\binaries\win64\mistsurvival-win64-shipping.exe => No File
FirewallRules: [TCP Query User{B9C0AF95-EB87-42B9-8E3A-C0C3CC57C709}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [UDP Query User{1A2EB102-B891-4CD0-BA2C-69EC6DD20DE9}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [{28C2EEAB-8EF8-45F3-AF27-D027E7E07BEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hand Simulator\Hand Simulator.exe () [File not signed]
FirewallRules: [{69BC8FFE-BBE9-47B9-AF04-98AD32A68D5B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hand Simulator\Hand Simulator.exe () [File not signed]
FirewallRules: [{ECDBBF05-55A0-494F-93CB-DF728393BEF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [File not signed]
FirewallRules: [{A9557460-675F-40C2-BB7F-0784988E666E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [File not signed]
FirewallRules: [TCP Query User{13DA2362-164D-41D7-93A1-389E4E3F11C8}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{3AB3FABD-9656-4C45-9D16-CA47FACAA722}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{C893BE01-F417-4A6B-8EB7-12350E6CFA01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory\SCPSL.exe () [File not signed]
FirewallRules: [{B4A00262-7727-4F92-B826-C04B6E733692}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory\SCPSL.exe () [File not signed]
FirewallRules: [{E41654FC-3C3A-4C34-A540-E9E73CF3B20D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe => No File
FirewallRules: [{140A566B-37E3-4361-BE49-A96992E3CD65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe => No File
FirewallRules: [{A396B303-223B-459F-AEF8-E1B7A3DB19F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Insanity Clicker\Insanity Clicker.exe () [File not signed]
FirewallRules: [{86A882FA-23E9-4E75-97DF-7CD6B6EE3B37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Insanity Clicker\Insanity Clicker.exe () [File not signed]
FirewallRules: [{FDDEB5B4-4F0A-4141-BC13-B8B7D1DFAB95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5DF0A24C-08A4-458A-8D89-66730A1B8F09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9015283C-BDA0-4AEA-A933-84864CB9D3BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EEDCF5CB-9706-4DE7-BC98-EB7B87710C2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D3920B9E-66F5-4AEC-8BA3-581311D83B0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{EBC712FB-2C02-453B-B6C5-A790438C6E02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{BE3E8291-B26B-478B-8DE0-4113F09E2F10}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{7FF58513-0638-423E-A057-800B69F30EEC}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{D71AC4BA-1626-4A0C-B725-7D08B74BAD13}] => (Allow) C:\Users\Remte\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1718A1C8-CBEF-4DB4-AB21-1F95FDAC061E}] => (Allow) C:\Users\Remte\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{0E621B0F-0C72-4F5E-AE3E-BA391165AF52}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{C8320A1E-0819-4111-8063-BAB630F82E22}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{672279C4-05B6-4DAF-9E67-91F66404F8E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lust Epidemic\Game.exe () [File not signed]
FirewallRules: [{87670897-3D7F-4F7A-9F06-485A79DA8AF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lust Epidemic\Game.exe () [File not signed]
FirewallRules: [{E38A98A2-6DA6-4710-9E66-0843FC43022A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DRAGON BALL Z KAKAROT\AT.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{3FD8FE9A-FE7D-4BE9-8607-EDD1064AD9C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DRAGON BALL Z KAKAROT\AT.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{329C466E-3EEF-4D88-8EBC-46156C02EC5D}C:\program files (x86)\steam\steamapps\common\dragon ball z kakarot\at\binaries\win64\at-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon ball z kakarot\at\binaries\win64\at-win64-shipping.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [UDP Query User{E2E5A8D5-91E6-41F8-99EF-E52A3CE5B84A}C:\program files (x86)\steam\steamapps\common\dragon ball z kakarot\at\binaries\win64\at-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon ball z kakarot\at\binaries\win64\at-win64-shipping.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [{E241A3BB-ACB9-4C53-A54E-42923060F31D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Man of the House\Man of the house.exe () [File not signed]
FirewallRules: [{EE0816D7-6D87-41FB-AB40-8202E071F0F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Man of the House\Man of the house.exe () [File not signed]
FirewallRules: [{668CBC4E-A0E6-4111-8F49-5282D64F4929}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Acting Lessons\ActingLessons.exe () [File not signed]
FirewallRules: [{F6F63AE2-B194-4DE2-AA72-1383B5115637}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Acting Lessons\ActingLessons.exe () [File not signed]
FirewallRules: [{74BC5820-FC07-443E-840F-95059C676327}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Being a DIK\BeingADIK.exe () [File not signed]
FirewallRules: [{AF525E52-90D4-4D24-807E-ADDE5D42F07A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Being a DIK\BeingADIK.exe () [File not signed]
FirewallRules: [{09E91DF8-E887-4B91-9D5C-A24CFD913A49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Raft\Raft.exe () [File not signed]
FirewallRules: [{629417EC-6DC2-4CBD-A57C-C5BC8E7C74AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Raft\Raft.exe () [File not signed]
FirewallRules: [{43073B4C-8935-46DF-8A99-868E9A995723}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{EF2F423C-4678-41CE-B495-783DF9DA8C39}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{DDAD6822-D396-4B00-84D6-968D952E5AA7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{92287B8C-7F2F-401A-B52C-FBE203B3D3E3}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{53339170-C3AE-4349-9153-65970CD30438}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{09F7AD9C-4F2A-4EA0-9F2D-7C2CA5A96EAE}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{1284520B-F939-4480-8AFB-32F5B52195A9}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{7DC18FAE-9A71-4C29-B902-AA4929C93C4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Naughty Maid 2\SuperNaughtyMaid!2.eXe () [File not signed]
FirewallRules: [{F2023832-80EA-42B8-81F0-E78737126101}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Naughty Maid 2\SuperNaughtyMaid!2.eXe () [File not signed]
 
==================== Restore Points =========================
 
21-05-2020 01:24:36 Installed DirectX
27-05-2020 14:45:38 Windows Update
 
==================== Faulty Device Manager Devices ============
 
Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: High Definition Audio Device
Description: High Definition Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HdAudAddService
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
Name: Standard SATA AHCI Controller
Description: Standard SATA AHCI Controller
Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318}
Manufacturer: Standard SATA AHCI Controller
Service: storahci
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
 
==================== Event log errors: ========================
 
Application errors:
==================
Error: (06/01/2020 03:21:01 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating  status to SECURITY_PRODUCT_STATE_SNOOZED.
 
Error: (05/28/2020 04:34:32 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
.
 
Error: (05/28/2020 04:34:32 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
 
Error: (05/28/2020 04:34:32 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
.
 
Error: (05/28/2020 04:34:32 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
 
Error: (05/26/2020 12:15:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: QtWebEngineProcess.exe, version: 0.0.0.0, time stamp: 0x5cface50
Faulting module name: Qt5WebEngineCore.dll, version: 5.8.0.0, time stamp: 0x5cfacd06
Exception code: 0x80000003
Fault offset: 0x002df6f1
Faulting process id: 0x480
Faulting application start time: 0x01d62f3ea1e2395a
Faulting application path: C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
Faulting module path: C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
Report Id: 252c4561-a77b-43eb-96e2-54d5bb22ecad
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (05/15/2020 06:07:15 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
.
 
Error: (05/15/2020 06:07:15 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
 
 
System errors:
=============
Error: (05/28/2020 04:34:54 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
 
Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126
 
Error: (05/28/2020 04:34:26 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FBEQLD5)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
 
Error: (05/28/2020 04:34:26 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FBEQLD5)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
 
Error: (05/28/2020 04:34:26 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FBEQLD5)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
 
Error: (05/28/2020 04:34:26 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FBEQLD5)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
 
Error: (05/28/2020 04:34:26 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FBEQLD5)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
 
Error: (05/28/2020 04:34:26 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FBEQLD5)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
 
Error: (05/28/2020 04:34:26 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FBEQLD5)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
 
 
Windows Defender:
===================================
Date: 2020-05-28 16:48:36.632
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {36367CB3-566F-4214-9040-3F944B894245}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2020-05-28 04:47:45.178
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.317.26.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.17100.2
Error code: 0x80072ee2
Error description: The operation timed out 
 
Date: 2020-05-28 04:30:18.116
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.317.26.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.17100.2
Error code: 0x80072ee2
Error description: The operation timed out 
 
Date: 2020-05-27 14:45:41.783
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.317.26.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.17100.2
Error code: 0x80240016
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 
Date: 2020-05-20 11:04:40.844
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.315.972.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.17000.7
Error code: 0x80072ee2
Error description: The operation timed out 
 
Date: 2020-05-19 15:02:21.903
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.315.972.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.17000.7
Error code: 0x80072ee2
Error description: The operation timed out 
 
CodeIntegrity:
===================================
 
Date: 2020-06-01 16:35:23.718
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Windows signing level requirements.
 
Date: 2020-06-01 16:35:23.712
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Windows signing level requirements.
 
Date: 2020-06-01 16:35:23.704
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Windows signing level requirements.
 
Date: 2020-06-01 16:35:23.699
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Windows signing level requirements.
 
Date: 2020-06-01 16:35:23.683
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Windows signing level requirements.
 
Date: 2020-06-01 03:21:07.664
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-01 03:21:07.652
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-01 03:21:07.638
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
==================== Memory info =========================== 
 
BIOS: American Megatrends Inc. 4.6.5 03/27/2019
Motherboard: To be filled by O.E.M. Intel X79
Processor: Intel® Core™ i7-3820 CPU @ 3.60GHz
Percentage of memory in use: 44%
Total physical RAM: 16303.97 MB
Available physical RAM: 8968.05 MB
Total Virtual: 19247.97 MB
Available Virtual: 6576.27 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:930.88 GB) (Free:103.51 GB) NTFS
 
\\?\Volume{0a8967cf-caaf-4314-82cf-74e18406405b}\ (Recovery) (Fixed) (Total:0.52 GB) (Free:0.11 GB) NTFS
\\?\Volume{9b92e947-95b7-43a0-a058-5a81d19a7895}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 
==================== MBR & Partition Table ====================
 
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 01744034)
 
Partition: GPT.
 
==================== End of Addition.txt =======================

  • 0

#6
RKinner
Posted 02 June 2020 - 02:51 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Both Discord and Origin are out of date and causing problems so please update them.

 

Are you using LogMeIn?  If not uninstall it.  IF using it it may need to be uninstalled and reinstalled with a fresh download.

 

It says your SATA driver isn't working.  Don't know how it talks to the hard Drive without it.  Let's run some checks on the system files and see if that helps.

 

Download the attached fixlist.txt to the same location as FRST

Attached File  fixlist.txt   1.35KB   187 downloads

Run FRST and press Fix.  This will take about 25 minutes.  Be patient.  It will reboot when done.
A fix log will be generated please post that

Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.


 


  • 0

#7
artem000000
Posted 02 June 2020 - 03:56 PM

artem000000

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts

I cant seem to be a able to post the first Fixlog because of how big it is. i also tried to see if i could attach it as a file but it again said it was a too big of a file. I dont know what to do about that...

 

here's this tho

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-06-2020
Ran by Remte (administrator) on DESKTOP-FBEQLD5 (02-06-2020 17:51:39)
Running from C:\Users\Remte\Desktop
Loaded Profiles: Remte
Platform: Windows 10 Home Version 1909 18363.836 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
() [File not signed] C:\Users\Remte\Documents\DS4\DS4Windows.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <4>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7037\Agent.exe
(Discord Inc. -> Discord Inc.) C:\Users\Remte\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Spotify AB -> Spotify Ltd) C:\Users\Remte\AppData\Roaming\Spotify\Spotify.exe <5>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
 
==================== Registry (Whitelisted) ===================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3375904 2020-06-01] (Valve -> Valve Corporation)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31867792 2020-05-19] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1136104 2020-05-28] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [CCXProcess] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe"
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe [3369464 2020-04-28] (Kristjan Skutta -> )
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [Spotify] => C:\Users\Remte\AppData\Roaming\Spotify\Spotify.exe [22941928 2020-06-02] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Run: [Discord] => C:\Users\Remte\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-27] (Google LLC -> Google LLC)
Startup: C:\Users\Remte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DS4Windows.lnk [2020-05-02]
ShortcutTarget: DS4Windows.lnk -> C:\Users\Remte\Documents\DS4\DS4Windows.exe () [File not signed]
 
==================== Scheduled Tasks (Whitelisted) ============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {089D7696-9E6C-4763-9D97-7F36737B0DF3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {52E7AEDC-774E-46EE-BCA7-3197BECA1D10} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-10] (Google Inc -> Google LLC)
Task: {5A8C58C4-C3CF-4483-B68A-120AE5544ACE} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_pepper.exe [1454136 2020-05-13] (Adobe Inc. -> Adobe)
Task: {78C92AC1-9EF1-4F7F-94BF-4CF7CD7259D8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-10] (Google Inc -> Google LLC)
Task: {79B67FD3-2F47-451B-80DA-D8E40AD134F1} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [491320 2020-05-12] (Bitdefender SRL -> Bitdefender)
Task: {79DCC171-165B-4045-8810-08CC79F0A326} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-13] (Adobe Inc. -> Adobe)
Task: {7E77EC56-3C1C-4C2B-A4A2-AA4E88D4E7D0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7F433401-DBA2-41E1-ABA0-97AE3E36D8CC} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {964A22F1-19A3-46D6-B5C5-B18420D55E20} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C48D2424-E23D-47AE-AB47-2CB53124F795} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CFF80DC4-884D-4538-A6D1-B2198E44F246} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D840C261-7040-43C7-A096-29263EB30BA9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EDB913E1-FB6B-4992-8A30-D30BE082697E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F46507CB-611D-4D30-AB04-EC5C5F0D0A8A} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3687154501-3704018589-8772194-1001 => C:\Users\Remte\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2696312 2019-09-12] () [File not signed]
Task: {F4CA70D1-7790-47AF-9884-EC1AFE181215} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F8CBA4B8-2BED-418A-959F-19D0225D3D09} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FC872B8D-6169-4FB9-9C20-3F106B41F1C4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7914229b-f00f-46bc-b255-bd63f1dd8d78}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
 
FireFox:
========
FF DefaultProfile: yxhgoaue.default
FF ProfilePath: C:\Users\Remte\AppData\Roaming\Mozilla\Firefox\Profiles\yxhgoaue.default [2020-06-01]
FF ProfilePath: C:\Users\Remte\AppData\Roaming\Mozilla\Firefox\Profiles\tfqa2bqd.default-release [2020-06-01]
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin HKU\S-1-5-21-3687154501-3704018589-8772194-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Remte\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-08] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
 
Chrome: 
=======
CHR Profile: C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default [2020-06-02]
CHR Notifications: Default -> hxxps://riven.market; hxxps://warframe.market
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR Extension: (Slides) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-16]
CHR Extension: (Docs) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-16]
CHR Extension: (Google Drive) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-16]
CHR Extension: (YouTube) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-16]
CHR Extension: (MyWebFace) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcmcdoaknaojppeomaejlbjbpgocdhok [2020-05-15]
CHR Extension: (Sheets) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-16]
CHR Extension: (Google Docs Offline) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-27]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-16]
CHR Extension: (Chrome Media Router) - C:\Users\Remte\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-27]
 
==================== Services (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 bdredline; C:\Program Files\Bitdefender Antivirus Free\bdredline.exe [2500144 2019-03-27] (Bitdefender SRL -> Bitdefender)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-04-21] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [860656 2019-12-24] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2508592 2020-06-02] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3459896 2020-06-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1352120 2020-05-12] (Bitdefender SRL -> Bitdefender)
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [242024 2020-03-17] (Bitdefender SRL -> Bitdefender)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [463312 2020-05-12] (Bitdefender SRL -> Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [242024 2020-03-17] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-04-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-04-30] (Microsoft Windows Publisher -> Microsoft Corporation)
 
===================== Drivers (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [2106424 2020-05-08] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [757240 2020-04-30] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [22960 2019-03-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R3 edrsensor; C:\Windows\System32\DRIVERS\edrsensor.sys [309120 2020-02-03] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R1 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [453344 2020-04-21] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ce13a81bcfac4a48\nvlddmkm.sys [23251968 2019-12-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] (PeerBlock, LLC -> )
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [9860088 2019-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 teVirtualMIDI64; C:\Windows\System32\drivers\teVirtualMIDI64.sys [53120 2019-12-07] (Tobias Erichsen -> Tobias Erichsen)
R2 trufos; C:\Windows\System32\drivers\trufos.sys [638368 2020-01-31] (Bitdefender SRL -> Bitdefender)
R0 vlflt; C:\Windows\System32\DRIVERS\vlflt.sys [379048 2020-04-13] (Bitdefender SRL -> Bitdefender)
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [45408 2018-03-15] (Voicemod Sociedad Limitada -> Windows ® Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45960 2020-04-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [394680 2020-04-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [64944 2020-04-30] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [2719256 2020-04-26] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) ===================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2020-06-02 17:36 - 2020-03-12 16:48 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2dp.sys
2020-06-02 17:19 - 2020-06-02 17:19 - 000001382 _____ C:\Users\Remte\Downloads\fixlist (1).txt
2020-06-02 17:18 - 2020-06-02 17:36 - 000000000 ____D C:\Users\Remte\Desktop\FRST-OlderVersion
2020-06-02 15:55 - 2020-06-02 15:55 - 000001072 _____ C:\Users\Remte\Desktop\SpeedFan.lnk
2020-06-02 15:55 - 2020-06-02 15:55 - 000000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2020-06-02 15:55 - 2020-06-02 15:55 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2020-06-02 15:55 - 2020-06-02 15:55 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2020-06-02 15:54 - 2020-06-02 15:54 - 003086696 _____ C:\Users\Remte\Downloads\instspeedfan452_1.exe
2020-06-02 15:47 - 2020-06-02 15:47 - 000002229 _____ C:\Users\Remte\Desktop\Discord.lnk
2020-06-02 15:47 - 2020-06-02 15:47 - 000000000 ____D C:\Users\Remte\AppData\Local\Discord
2020-06-02 15:46 - 2020-06-02 15:47 - 062620472 _____ (Discord Inc.) C:\Users\Remte\Downloads\DiscordSetup.exe
2020-06-01 23:15 - 2020-06-01 23:16 - 000287295 _____ C:\Users\Remte\Desktop\DESKTOP-FBEQLD5.txt
2020-06-01 23:12 - 2020-06-01 23:12 - 006889184 _____ (Piriform Ltd) C:\Users\Remte\Downloads\spsetup132.exe
2020-06-01 23:12 - 2020-06-01 23:12 - 006889184 _____ (Piriform Ltd) C:\Users\Remte\Desktop\spsetup132.exe
2020-06-01 23:12 - 2020-06-01 23:12 - 000000837 _____ C:\Users\Public\Desktop\Speccy.lnk
2020-06-01 23:12 - 2020-06-01 23:12 - 000000837 _____ C:\ProgramData\Desktop\Speccy.lnk
2020-06-01 23:12 - 2020-06-01 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2020-06-01 23:12 - 2020-06-01 23:12 - 000000000 ____D C:\Program Files\Speccy
2020-06-01 23:10 - 2020-06-01 23:32 - 000019037 _____ C:\junk.txt
2020-06-01 23:08 - 2020-06-01 23:08 - 000018963 _____ C:\Users\Remte\Desktop\precess explorer notes.txt
2020-06-01 23:02 - 2020-06-01 23:02 - 000036408 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP152.SYS
2020-06-01 23:01 - 2020-06-01 23:01 - 002798456 _____ (Sysinternals - www.sysinternals.com) C:\Users\Remte\Desktop\procexp.exe
2020-06-01 16:39 - 2020-06-01 16:44 - 000059120 _____ C:\Users\Remte\Desktop\Addition.txt
2020-06-01 16:37 - 2020-06-02 17:52 - 000020773 _____ C:\Users\Remte\Desktop\FRST.txt
2020-06-01 16:35 - 2020-06-02 17:52 - 000000000 ____D C:\FRST
2020-06-01 16:34 - 2020-06-02 17:18 - 002289152 _____ (Farbar) C:\Users\Remte\Desktop\FRST64.exe
2020-06-01 15:16 - 2020-06-01 15:16 - 000000000 ____D C:\Users\Remte\Downloads\Treasure of Nadia - PC-v.36061
2020-06-01 15:08 - 2020-06-01 15:09 - 2227449764 _____ C:\Users\Remte\Downloads\Treasure of Nadia - PC-v.36061.zip
2020-06-01 03:21 - 2020-06-01 03:21 - 000001188 _____ C:\Users\Remte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitdefender Antivirus Free.lnk
2020-06-01 03:21 - 2020-06-01 03:21 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4
2020-06-01 03:20 - 2020-06-01 03:20 - 000001203 _____ C:\Users\Public\Desktop\Bitdefender Antivirus Free.lnk
2020-06-01 03:20 - 2020-06-01 03:20 - 000001203 _____ C:\ProgramData\Desktop\Bitdefender Antivirus Free.lnk
2020-06-01 03:20 - 2020-01-31 17:11 - 000638368 _____ (Bitdefender) C:\Windows\system32\Drivers\trufos.sys
2020-06-01 03:20 - 2019-03-21 00:12 - 000022960 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys
2020-06-01 03:19 - 2020-06-01 03:19 - 000000000 ____D C:\ProgramData\Bitdefender
2020-06-01 03:19 - 2020-05-08 17:26 - 002106424 _____ (Bitdefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\atc.sys
2020-06-01 03:19 - 2020-04-30 18:04 - 000757240 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys
2020-06-01 03:19 - 2020-04-21 18:19 - 000453344 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\gemma.sys
2020-06-01 03:19 - 2020-04-13 14:56 - 000379048 _____ (Bitdefender) C:\Windows\system32\Drivers\vlflt.sys
2020-06-01 03:19 - 2020-02-03 16:53 - 000309120 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\edrsensor.sys
2020-06-01 03:18 - 2020-06-02 17:53 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2020-06-01 03:16 - 2020-06-01 03:16 - 000003802 _____ C:\Windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2020-06-01 03:14 - 2020-06-01 03:14 - 000115924 _____ C:\ProgramData\agent.1590995639.bdinstall.v2.bin
2020-06-01 03:13 - 2020-06-01 03:21 - 000000000 ____D C:\Program Files\Bitdefender Agent
2020-06-01 03:13 - 2020-06-01 03:14 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2020-06-01 03:13 - 2020-06-01 03:13 - 012444472 _____ C:\Users\Remte\Downloads\bitdefender_online.exe
2020-05-29 20:30 - 2020-05-29 20:33 - 000000000 ____D C:\Users\Remte\Downloads\BeingADIK-0.5.0-pc-lin
2020-05-29 20:28 - 2020-05-29 20:30 - 4153770982 _____ C:\Users\Remte\Downloads\BeingADIK-0.5.0-pc-lin.zip
2020-05-27 14:45 - 2020-05-27 14:45 - 002510856 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2020-05-17 02:24 - 2020-05-17 02:24 - 000000000 ____D C:\Users\Remte\AppData\LocalLow\Faerin Games
2020-05-15 14:22 - 2020-05-15 14:23 - 000000000 ____D C:\Users\Remte\Downloads\Treasure of Nadia - PC-v.34052
2020-05-15 14:16 - 2020-05-15 14:16 - 2101235246 _____ C:\Users\Remte\Downloads\Treasure of Nadia - PC-v.34052.zip
2020-05-14 16:41 - 2020-05-14 16:42 - 000000000 ____D C:\Users\Remte\Documents\STAR WARS Battlefront II
2020-05-14 16:41 - 2020-05-14 16:41 - 000000000 ____D C:\Users\Remte\AppData\Local\STAR WARS Battlefront II
2020-05-14 03:49 - 2020-05-28 14:43 - 000001412 _____ C:\Users\Public\Desktop\STAR WARS Battlefront II.lnk
2020-05-14 03:49 - 2020-05-28 14:43 - 000001412 _____ C:\ProgramData\Desktop\STAR WARS Battlefront II.lnk
2020-05-14 03:49 - 2020-05-14 03:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II
2020-05-12 19:09 - 2020-05-12 19:09 - 025902080 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 025444864 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 022638592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 019851264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 019812352 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 018029056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 014819328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 008013824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 007822888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 007756800 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 007267840 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 007011840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 006710272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 006525936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 006291456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 006082808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005945856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005911040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005757872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005340568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005111296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 005098352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 004858368 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 004612608 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 003974376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 003822080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 003747328 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 003513856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 002798592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-05-12 19:09 - 2020-05-12 19:09 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-05-12 19:09 - 2020-05-12 19:09 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-05-12 19:09 - 2020-05-12 19:09 - 002584008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 002576896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 002259664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 002073176 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001990576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001975808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001952872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001934824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001835128 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001737216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001686016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001665720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001654952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001637376 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001581056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001559040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001556200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001539072 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 001525760 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001510912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001507328 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001492480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001477112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001461760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001417760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001406464 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001397560 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 001393664 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001382400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001375232 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001370112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001357312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001344000 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001343488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001336320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001306424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001306112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001284096 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001264640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001260032 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001245696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001222656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001214264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001213440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001195008 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001184256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001178608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001154656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001151824 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001125376 _____ (Microsoft Corporation) C:\Windows\system32\CBDHSvc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001107456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001099600 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001081856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001077048 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 001071616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001068032 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001048480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001034752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 001011712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000994304 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000975360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000943640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000911872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000901120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000896000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000895080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000894016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000891392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000881664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000866304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000863232 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000861696 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000858112 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000852992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000847872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000843776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000843576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000814080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000813568 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000801832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000792808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputHost.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000783480 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000782336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000778552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Services.TargetedContent.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000777840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000776792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000748544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000747832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000736768 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000729600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000716800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000705536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000693672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000691712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000683848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000683288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000673456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000673296 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000672944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000668672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000655360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000652800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000649728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000628024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000614400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000613888 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000602224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000600064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000594472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000592944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000584704 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000581544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000573952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000572200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000568136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000564480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StateRepository.Core.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000557056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000553664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000540200 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000540160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000539184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000535552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000530944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000526848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000519680 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000513024 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000512512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000509952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000506368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.PredictionUnit.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000501200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp_win.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000484352 _____ (Microsoft Corporation) C:\Windows\system32\MixedReality.Broker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000466944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000466344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000453944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000453632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000451584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000441856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000441584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000435712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\AccountsRt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000418816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000408576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000406480 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000405424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Payments.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000375520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000353792 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AccountsRt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000345016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneOm.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000338432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000325432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-05-12 19:09 - 2020-05-12 19:09 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000310928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000301064 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000299064 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TaskApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000292864 _____ (Microsoft Corporation) C:\Windows\system32\CXHProvisioningServer.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Preview.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000278080 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000273744 _____ (Microsoft Corporation) C:\Windows\system32\wkspbroker.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PickerPlatform.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000268008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000266552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemSettings.DataModel.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000262848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000260328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConsoleLogon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000246584 _____ (Microsoft Corporation) C:\Windows\system32\DataExchangeHost.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000245336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000240128 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\HoloShellRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-05-12 19:09 - 2020-05-12 19:09 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000222720 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000211256 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000199992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000197432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000193592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000188928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000188416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000188416 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-05-12 19:09 - 2020-05-12 19:09 - 000185952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DataExchange.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000181760 _____ (Microsoft Corporation) C:\Windows\system32\rdpinput.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Clipboard.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\ConsentUxClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000176440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Management.Workplace.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HoloShellRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dialclient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000170496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000166912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000165176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Core.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\useractivitybroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000147968 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000139952 _____ (Microsoft Corporation) C:\Windows\system32\MixedRealityRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Haptics.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppExtension.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000126976 _____ (Microsoft Corporation) C:\Windows\system32\wkspbrokerAx.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000124504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gamingtcui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000117048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadWamExtension.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VoipRT.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\socialapis.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000105840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MixedRealityRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\Family.Authentication.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000099104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkspbrokerAx.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraCaptureUI.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000090936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000089328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeopleAPIs.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRBroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\TSSessionUX.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DiagnosticInvoker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000073024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbussdapi.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000068408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceReactivation.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Printers.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000066832 _____ (Microsoft Corporation) C:\Windows\system32\iumcrypt.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\coloradapterclient.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\ConfigureExpandedStorage.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ffbroker.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConfigureExpandedStorage.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AssignedAccessRuntime.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\RdpSa.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSa.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryCore.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaProxy.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaProxy.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slcext.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsregtask.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\localui.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2020-05-12 19:09 - 2020-05-12 19:09 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-05-12 19:09 - 2020-05-12 19:09 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-05-12 19:08 - 2020-05-12 19:08 - 017791488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 009929528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 009339392 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 007902912 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 007604584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 007297536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 007257816 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 006435328 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 006232568 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 006168576 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 005280192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 004624880 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 004565456 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 004012032 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 004005376 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003807232 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003727360 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 003711488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003655680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003581752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 003371416 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003109376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 003084800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002986808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 002854400 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002774088 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002769000 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002760704 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 002736640 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002717184 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 002504440 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002465792 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002448712 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002354688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002289152 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002284032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002256384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002235008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002157056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002150232 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002147328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002087168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 002060800 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001999968 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001945600 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001943040 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001885184 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001856000 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001825280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001819648 _____ (Microsoft Corporation) C:\Windows\system32\CoreShell.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001786880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001766400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001751040 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001745208 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001722880 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001656904 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001646552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\TaskFlowDataEngine.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001540096 _____ (Microsoft Corporation) C:\Windows\system32\WindowManagement.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001536512 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001505592 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001500672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001498624 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001486336 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 001466368 _____ (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001428480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001413712 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001393960 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001391104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001385176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001373184 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001346048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001336832 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001333248 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001288648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001282560 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001274128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryPS.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001270784 _____ (Microsoft Corporation) C:\Windows\system32\SEMgrSvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001263616 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSave.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001218560 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001182208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001180672 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001158144 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001150784 _____ (Microsoft Corporation) C:\Windows\system32\InputHost.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 001132544 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001098752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001098240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Signals.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001092096 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001085752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Services.TargetedContent.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001072128 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001059328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001053696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001027816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Perception.Stub.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001023128 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001007928 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001007104 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 001005056 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000999616 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000979264 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000957056 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000949760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000945192 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000943616 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000938496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000925184 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000921600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000916768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000915456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000915192 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000902656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000891544 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000888352 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000879064 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000874296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000859944 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000858112 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000854528 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000847168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000841216 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000826880 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000824832 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000822272 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000822208 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000819696 _____ (Microsoft Corporation) C:\Windows\system32\windows.applicationmodel.datatransfer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000819200 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000796904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000793088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000781312 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000777216 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000768000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000759808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000752584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000742200 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000738304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000716312 _____ (Microsoft Corporation) C:\Windows\system32\StateRepository.Core.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000710656 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000706544 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000685368 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000679424 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000676072 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000661816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000650240 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000647168 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000639400 _____ (Microsoft Corporation) C:\Windows\system32\msvcp_win.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000638464 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000637480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000636416 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000634680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2020-05-12 19:08 - 2020-05-12 19:08 - 000629760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000622592 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000621568 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000618496 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000614400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000604160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Payments.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000589384 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000580608 _____ (Microsoft Corporation) C:\Windows\system32\ddraw.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000569856 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000547992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000544256 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000543824 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000534528 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.UserService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000526336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000524208 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000518456 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000513024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Activities.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000502272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000500736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000479744 _____ (Microsoft Corporation) C:\Windows\system32\BcastDVRClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000477496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-05-12 19:08 - 2020-05-12 19:08 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountWAMExtension.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000474112 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000467952 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000460200 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000452608 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000448512 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\PhoneOm.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000434176 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000430592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000415808 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000410608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\TaskApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000408064 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000400696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000399672 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DataModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000394240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Preview.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000390968 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000386320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000380632 _____ (Microsoft Corporation) C:\Windows\system32\CredentialEnrollmentManager.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000374272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\PickerPlatform.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000353280 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000339824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000334336 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Cortana.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000333312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000333128 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000330240 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000318680 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000311096 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000306688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000290304 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000283648 _____ (Microsoft Corporation) C:\Windows\system32\ComposerFramework.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000273208 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostUser.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000270336 _____ (Microsoft Corporation) C:\Windows\system32\DesktopSwitcherDataModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000251392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000250696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000248832 _____ (Microsoft Corporation) C:\Windows\system32\PasswordEnrollmentManager.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000247856 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000244736 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000238904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Workplace.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Devices.Sensors.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000231912 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000222208 _____ (Microsoft Corporation) C:\Windows\system32\DataExchange.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000221496 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\MtcModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000220160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000209208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryUpgrade.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\useractivitybroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\SwitcherDataModel.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Haptics.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Compression.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\AppExtension.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.CapturePicker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcui.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000152416 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\VoipRT.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000147776 _____ (Microsoft Corporation) C:\Windows\system32\aadWamExtension.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000142760 _____ (Microsoft Corporation) C:\Windows\system32\LicensingUI.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\socialapis.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUser.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.RetailInfo.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000132712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000132096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Storage.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingExperienceMEM.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\CredDialogBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\UtcDecoderHost.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\CameraCaptureUI.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000128000 _____ (Microsoft Corporation) C:\Windows\system32\CaptureService.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000121344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\PeopleAPIs.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\WaaSAssessment.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000107616 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AI.MachineLearning.Preview.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\BcastDVRBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000102216 _____ (Microsoft Corporation) C:\Windows\system32\changepk.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticInvoker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\winsrvext.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Printers.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000089912 _____ (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000088352 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000088280 _____ (Microsoft Corporation) C:\Windows\system32\coloradapterclient.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\mbussdapi.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\ffbroker.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000069704 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000060432 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\AssignedAccessRuntime.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000059192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000058880 _____ C:\Windows\system32\runexehelper.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000058696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\ddrawex.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000047000 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryCore.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\UpgradeResultsUI.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSaveTask.exe
2020-05-12 19:08 - 2020-05-12 19:08 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\KNetPwrDepBroker.sys
2020-05-12 19:08 - 2020-05-12 19:08 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\dsregtask.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2020-05-12 19:08 - 2020-05-12 19:08 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2020-05-12 13:38 - 2020-05-12 13:38 - 000000000 ____D C:\Users\Remte\AppData\Roaming\EasyAntiCheat
2020-05-04 20:31 - 2020-05-04 20:31 - 000000000 ____D C:\Users\Remte\AppData\LocalLow\Redbeet Interactive
2020-05-04 20:06 - 2020-05-04 20:06 - 000000222 _____ C:\Users\Remte\Desktop\Raft.url
2020-05-04 19:58 - 2020-05-04 19:58 - 000000000 ____D C:\Users\Remte\Documents\Stranded Deep
2020-05-04 19:58 - 2020-05-04 19:58 - 000000000 ____D C:\Users\Remte\AppData\LocalLow\Beam Team Games
2020-05-04 19:43 - 2020-06-02 17:39 - 000000000 ____D C:\Users\Remte\AppData\Local\LogMeIn Hamachi
2020-05-04 19:43 - 2020-05-04 19:43 - 000000000 ____D C:\Users\Remte\AppData\Local\LogMeIn
2020-05-04 19:43 - 2020-05-04 19:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2020-05-04 19:43 - 2020-05-04 19:43 - 000000000 ____D C:\ProgramData\LogMeIn
2020-05-04 19:43 - 2020-05-04 19:43 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2020-05-04 19:37 - 2020-05-04 19:37 - 000000000 ____D C:\ProgramData\Unknown Worlds
2020-05-04 19:36 - 2020-05-04 19:36 - 000000000 ____D C:\Users\Remte\AppData\LocalLow\Unknown Worlds
2020-05-03 18:32 - 2020-05-03 18:33 - 000000000 ____D C:\Users\Remte\Downloads\BeingADIK-0.4.2-pc-lin
 
==================== One month (modified) ==================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2020-06-02 17:52 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-02 17:51 - 2019-09-22 02:37 - 000000000 ____D C:\Users\Remte\AppData\Local\Battle.net
2020-06-02 17:43 - 2019-08-25 00:58 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Discord
2020-06-02 17:43 - 2019-07-16 21:58 - 000840852 _____ C:\Windows\system32\PerfStringBackup.INI
2020-06-02 17:43 - 2019-03-19 00:50 - 000000000 ____D C:\Windows\INF
2020-06-02 17:42 - 2019-03-19 00:37 - 000032768 _____ C:\Windows\system32\config\ELAM
2020-06-02 17:41 - 2019-07-16 21:58 - 000000000 ____D C:\ProgramData\NVIDIA
2020-06-02 17:39 - 2020-02-03 04:22 - 000000000 ____D C:\Users\Remte\Documents\DS4
2020-06-02 17:39 - 2019-11-16 00:58 - 000000000 ____D C:\Users\Remte\AppData\Local\Spotify
2020-06-02 17:39 - 2019-11-16 00:57 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Spotify
2020-06-02 17:39 - 2019-07-16 21:03 - 000000000 ____D C:\Program Files (x86)\Steam
2020-06-02 17:37 - 2019-07-25 17:55 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Origin
2020-06-02 17:37 - 2019-07-16 21:51 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-02 17:37 - 2019-03-19 00:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-06-02 17:32 - 2019-03-19 00:37 - 000000000 ____D C:\Windows\CbsTemp
2020-06-02 17:17 - 2019-07-25 17:56 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-06-02 17:17 - 2019-07-25 17:55 - 000000000 ____D C:\Users\Remte\AppData\Local\Origin
2020-06-02 17:17 - 2019-07-25 17:55 - 000000000 ____D C:\ProgramData\Origin
2020-06-02 16:10 - 2019-07-25 17:55 - 000000000 ____D C:\Program Files (x86)\Origin
2020-06-02 15:52 - 2019-07-16 19:52 - 000000719 _____ C:\Users\Remte\Desktop\Windows 10 Update Assistant.lnk
2020-06-02 15:47 - 2019-07-16 20:14 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-06-02 15:47 - 2019-07-16 20:14 - 000000000 ____D C:\Users\Remte\AppData\Local\SquirrelTemp
2020-06-02 15:39 - 2019-10-02 02:15 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-06-02 15:39 - 2019-10-02 02:15 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-06-02 15:36 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\AppReadiness
2020-06-02 15:34 - 2019-09-22 02:37 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-06-02 15:33 - 2019-11-10 01:01 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-02 15:30 - 2019-12-11 16:38 - 000000000 ____D C:\Program Files (x86)\Overwatch
2020-06-02 15:29 - 2019-07-16 21:51 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-06-01 16:32 - 2019-09-12 22:41 - 000000000 ____D C:\Users\Remte\AppData\Local\User Data
2020-06-01 03:21 - 2019-03-19 00:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-05-31 18:29 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\system32\NDF
2020-05-29 15:08 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-28 15:21 - 2019-07-16 21:07 - 000000000 ____D C:\Users\Remte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-05-26 07:42 - 2019-10-02 02:15 - 000003522 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2020-05-26 00:15 - 2019-07-25 14:24 - 000000000 ____D C:\Users\Remte\AppData\Local\CrashDumps
2020-05-17 21:40 - 2019-07-17 15:54 - 000000000 ____D C:\Users\Remte\AppData\Local\Warframe
2020-05-16 07:17 - 2019-07-16 21:57 - 000000000 ____D C:\Users\Remte
2020-05-15 15:48 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\LiveKernelReports
2020-05-15 06:07 - 2019-07-16 21:59 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-05-15 06:07 - 2019-07-16 21:59 - 000000000 ___RD C:\Users\Remte\3D Objects
2020-05-15 06:07 - 2019-07-16 21:51 - 000257824 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\TextInput
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\SystemResources
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\system32\oobe
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\system32\Dism
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\Provisioning
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\bcastdvr
2020-05-15 06:06 - 2019-03-19 00:52 - 000000000 ____D C:\PerfLogs
2020-05-15 04:10 - 2019-07-16 23:04 - 000000000 ____D C:\Users\Remte\AppData\Local\Ubisoft Game Launcher
2020-05-14 16:41 - 2019-07-16 23:07 - 000000000 ____D C:\Users\Remte\AppData\Local\D3DSCache
2020-05-14 03:49 - 2019-07-25 18:09 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-05-13 05:11 - 2019-07-16 19:51 - 000000000 ____D C:\Users\Remte\AppData\Local\ElevatedDiagnostics
2020-05-13 00:51 - 2019-11-15 16:00 - 000004600 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-05-13 00:51 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-05-13 00:51 - 2019-03-19 00:52 - 000000000 ____D C:\Windows\system32\Macromed
2020-05-12 19:19 - 2019-07-16 20:01 - 000000000 ____D C:\Windows\system32\MRT
2020-05-12 19:15 - 2019-07-16 20:01 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-12 19:08 - 2019-07-16 21:54 - 002874880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-05-12 13:31 - 2019-08-25 13:00 - 000000000 ____D C:\Users\Remte\AppData\Local\Bethesda.net Launcher
2020-05-12 13:31 - 2019-08-25 13:00 - 000000000 ____D C:\Program Files (x86)\Bethesda.net Launcher
2020-05-05 09:51 - 2019-07-16 21:59 - 000000000 ____D C:\Users\Remte\AppData\Local\Packages
2020-05-05 09:51 - 2019-07-16 19:03 - 000000000 ____D C:\Users\Remte\AppData\Local\PlaceholderTileLogoFolder
2020-05-03 18:34 - 2019-09-18 02:49 - 000000000 ____D C:\Users\Remte\AppData\Roaming\RenPy
 
==================== Files in the root of some directories ========
 
2019-09-29 02:13 - 2019-09-29 02:13 - 000000410 _____ () C:\Users\Remte\AppData\Local\oobelibMkey.log
 
==================== SigCheck ============================
 
(There is no automatic fix for files that do not pass verification.)
 
==================== End of FRST.txt ========================
 
 
 
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2020
Ran by Remte (02-06-2020 17:53:45)
Running from C:\Users\Remte\Desktop
Windows 10 Home Version 1909 18363.836 (X64) (2019-07-17 01:52:59)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-3687154501-3704018589-8772194-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3687154501-3704018589-8772194-503 - Limited - Disabled)
Guest (S-1-5-21-3687154501-3704018589-8772194-501 - Limited - Disabled)
Remte (S-1-5-21-3687154501-3704018589-8772194-1001 - Administrator - Enabled) => C:\Users\Remte
WDAGUtilityAccount (S-1-5-21-3687154501-3704018589-8772194-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\uTorrent) (Version: 3.5.5.45628 - BitTorrent Inc.)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.371 - Adobe)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.3.8 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.51.0 - Bethesda Softworks)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 100.0.1 - Bitdefender)
Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.17.178 - Bitdefender)
Call of Duty Modern Warfare Beta (HKLM-x32\...\Call of Duty Modern Warfare Beta) (Version:  - Blizzard Entertainment)
Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version:  - Cheat Engine)
Discord (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{53041896-BE90-4A26-9954-9E9FDC7D4495}) (Version: 1.1.229.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.61 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
LOOT version 0.15.1 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.15.1 - LOOT Team)
Microsoft OneDrive (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
MidiEditor (HKLM-x32\...\D4338446-FFE6-1A12-ACFF-CB6F6A6A70A1) (Version: 3.3.0 - Markus Schwenk)
Minecraft Launcher (HKLM-x32\...\{D0972543-9D51-4A1A-A765-E5A7B1CB09E5}) (Version: 1.0.0.0 - Mojang)
Mozilla Firefox 68.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 68.0.1 (x64 en-US)) (Version: 68.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.71.2 - Black Tree Gaming)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Graphics Driver 441.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.87 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OneClickFirewall (HKLM\...\OneClickFirewall) (Version: 1.0.0.2 - hxxp://winaero.com)
Origin (HKLM-x32\...\Origin) (Version: 10.5.71.40931 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Rick and Morty version 2.1 (HKLM-x32\...\{1D87291F-AF0E-4A90-8660-BF57D705ED48}_is1) (Version: 2.1 - Ferdafs)
Rick and Morty version 2.2 (HKLM-x32\...\{7E0F309A-61C9-41D3-818A-6D407AFB5625}_is1) (Version: 2.2 - Ferdafs)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spotify (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\Spotify) (Version: 1.1.34.694.gac68a2b3 - Spotify AB)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16110 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
Uplay (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft)
Warframe (HKLM-x32\...\{F27AE699-3F63-42A9-97A7-D9B448037342}) (Version: 1.0.0 - Digital Extremes)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22807 - Microsoft Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3687154501-3704018589-8772194-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
 
Packages:
=========
Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_2.2.5.2_x86__h6adky7gbf63m [2020-05-06] (Gameloft SE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Studios) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.93.853.2_x64__8wekyb3d8bbwe [2020-05-29] (ms-resource:PublisherDisplayName)
 
==================== Custom CLSID (Whitelisted): ==============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-3687154501-3704018589-8772194-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\Remte\AppData\Local\Microsoft\OneDrive\19.152.0801.0007\amd64\FileCoAuthLib64.dll => No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-12-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
 
==================== Codecs (Whitelisted) ====================
 
==================== Shortcuts & WMI ========================
 
==================== Loaded Modules (Whitelisted) =============
 
2020-05-28 16:34 - 2020-05-28 16:34 - 096130048 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\libcef.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000117760 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\libEGL.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 004342784 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\libGLESv2.dll
2019-09-13 13:25 - 2019-09-13 13:25 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2019-09-13 13:25 - 2019-09-13 13:25 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-09-13 13:25 - 2019-09-13 13:25 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000760832 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\chrome_elf.dll
2019-09-13 13:25 - 2019-09-13 13:25 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\audio\qtaudio_windows.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\imageformats\qgif.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\imageformats\qico.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\imageformats\qjpeg.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\imageformats\qmng.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\imageformats\qsvg.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\imageformats\qtiff.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\platforms\qwindows.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000041984 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\qml\QtQml\Models.2\modelsplugin.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\qml\QtQuick.2\qtquick2plugin.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000084480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000071680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000211456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\qml\QtQuick\Window.2\windowplugin.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5Core.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5Gui.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5Multimedia.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5Network.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5Qml.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5Quick.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000096256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5QuickControls2.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000681472 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5QuickTemplates2.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5Svg.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5Widgets.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5WinExtras.dll
2020-05-28 16:34 - 2020-05-28 16:34 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12040\Qt5Xml.dll
 
==================== Alternate Data Streams (Whitelisted) ========
 
==================== Safe Mode (Whitelisted) ==================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
 
==================== Association (Whitelisted) =================
 
==================== Internet Explorer trusted/restricted ==========
 
==================== Hosts content: =========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2019-03-19 00:49 - 2019-03-19 00:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
 
==================== Other Areas ===========================
 
(Currently there is no automatic fix for this section.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-3687154501-3704018589-8772194-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Remte\Pictures\wp1831898.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
==================== FirewallRules (Whitelisted) ================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{F01B6AA9-A0D9-45A1-87F6-E59F8D8DEC03}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B67EF164-234D-4FE9-9836-4C4A9397CF2D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1EB47D44-618E-4D1B-ACED-691573814B4D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CC967097-89AE-4E5E-9214-B38E90097427}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{8FFA2250-87DF-4F64-A0E7-D6915C5A1807}C:\users\remte\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\remte\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{A8526F7B-D81F-4DCA-A45E-DCDBE9341D4B}C:\users\remte\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\remte\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6588D09D-016F-40CD-89DB-F6078E81F8BC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8BEBA000-49CB-4536-BE1B-688A9399827C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{48B1363A-EA39-48A8-8FCD-5DDD0BDD0434}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{A0AA26D1-D70B-4A4C-A82F-7F6A935D5CD5}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{90029E1F-9AAD-4E17-999A-3C9D11C6C79E}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{D569C6B5-D4E3-4E99-ADDD-CD0D3FDF5EAE}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )
FirewallRules: [{9B8867D2-A821-4284-B96E-AEB5DA4BDD08}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{175F9C80-74A1-4108-A69B-C2EE31BDC825}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{F2746CAD-4BE9-46AB-A3AB-EB2F357F1BB0}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{4F0E4165-94BE-40D3-9872-328A99F0519F}] => (Allow) C:\Users\Remte\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )
FirewallRules: [TCP Query User{BB478DCA-8E67-464B-B150-28C39053340E}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{92549CF8-04F0-4944-9924-ADE8B54C20B2}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{3C089938-B67C-4446-84C0-35207A0A2CEA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BD7AD5B0-0062-480D-9E9A-82B93147B26C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EB21AB2F-26AB-4E88-8597-9DE07FBDD821}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [File not signed]
FirewallRules: [{75C28785-99ED-4D35-ABE2-F29F42856A70}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [File not signed]
FirewallRules: [TCP Query User{E74AD905-5C96-4DAF-8855-A0AD6A46C537}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{9F368A4F-9BDD-4875-A6D3-83D21EA78AC7}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{FEF98BF6-968B-4D09-B8DE-1E3A9935AA22}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Uno\UNO.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{E1738A9B-DA89-47AC-8E24-477B778D5333}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Uno\UNO.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{902A7943-E965-4ECC-8B93-97CD386D4DD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe (Ubisoft -> ) [File not signed]
FirewallRules: [{8FF54FA4-1288-4CDC-ACF5-E0160BBD86C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe (Ubisoft -> ) [File not signed]
FirewallRules: [TCP Query User{C9822BED-0FE6-4D4F-A950-3EE6087D3A6D}C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe] => (Allow) C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe => No File
FirewallRules: [UDP Query User{121A75BD-0193-4413-8C5A-8EBEAE61189F}C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe] => (Allow) C:\program files (x86)\bethesda.net launcher\games\fallout76\fallout76.exe => No File
FirewallRules: [TCP Query User{37284FA4-D144-4103-B0FF-DCDDEADE578C}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe => No File
FirewallRules: [UDP Query User{8E3C3390-FA82-43CB-8530-E8131AFA99C6}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe => No File
FirewallRules: [TCP Query User{B68C6EC7-68AB-4EAB-8302-D615A70B9E1B}C:\program files (x86)\steam\steamapps\common\the dark pictures anthology - man of medan\smg019\binaries\win64\manofmedan-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the dark pictures anthology - man of medan\smg019\binaries\win64\manofmedan-win64-shipping.exe => No File
FirewallRules: [UDP Query User{F275A024-2365-4744-B13E-514CA273D405}C:\program files (x86)\steam\steamapps\common\the dark pictures anthology - man of medan\smg019\binaries\win64\manofmedan-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the dark pictures anthology - man of medan\smg019\binaries\win64\manofmedan-win64-shipping.exe => No File
FirewallRules: [TCP Query User{1BF81B42-8201-487F-8794-35998B0D8C59}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{E830DE53-AF68-49F9-9258-D5E507D92C80}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [{877D793A-DE37-4830-86A7-D4DC1A099716}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{3E537827-96D9-4565-8F10-8C5AC75CEACE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B6C94F5E-8CE9-4443-B997-362DD83467A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{5F24DED0-A65C-4AB5-A064-060DF299F089}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{72FBEC0D-38CE-4400-8FCB-AD0E6BB4C950}C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe (Gearbox Software LLC -> Gearbox Software)
FirewallRules: [UDP Query User{3B8AD22F-1739-4041-B204-9A1439AC3CA7}C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe (Gearbox Software LLC -> Gearbox Software)
FirewallRules: [TCP Query User{5D998262-DDB9-403E-8242-8533A89E0157}C:\program files (x86)\call of duty modern warfare beta\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare beta\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{D3725D21-EC51-4990-B2F2-22BD822B1E9C}C:\program files (x86)\call of duty modern warfare beta\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare beta\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{5E7F4C2A-1384-4E08-8B5E-7934D8E5A8D5}] => (Allow) C:\Users\Remte\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{ABDA9F91-F5A3-49CC-BB41-6817CE7DF155}] => (Allow) C:\Users\Remte\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{19E99896-87BA-4D61-9D89-8B2D1842C96D}] => (Block) c:\program files\voicemod desktop\voicemoddesktop.exe => No File
FirewallRules: [{3D6A3CAE-4A78-4023-8DF4-10B38D5C6422}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe => No File
FirewallRules: [{BD8FF6FF-19AF-4936-87D8-6260A9FBCB79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe => No File
FirewallRules: [{DFF5AD13-2553-497B-B892-47BC4E008650}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{52A3FA0A-C8DC-474B-844D-CA2664053519}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [TCP Query User{9DD8563A-5A29-4B78-86E0-D5E7E258826A}C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe (Phoenix Labs Canada ULC -> Phoenix Labs)
FirewallRules: [UDP Query User{3A9A22F2-9898-4116-ACD9-6BCDED95A0F9}C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe (Phoenix Labs Canada ULC -> Phoenix Labs)
FirewallRules: [TCP Query User{A4C0782B-0DA8-4AD2-83ED-B74EFAE37D2B}C:\program files (x86)\steam\steamapps\common\mist survival\mistsurvival\binaries\win64\mistsurvival-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\mist survival\mistsurvival\binaries\win64\mistsurvival-win64-shipping.exe => No File
FirewallRules: [UDP Query User{4D591DF6-4625-4521-B4A1-F8699C2C658D}C:\program files (x86)\steam\steamapps\common\mist survival\mistsurvival\binaries\win64\mistsurvival-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\mist survival\mistsurvival\binaries\win64\mistsurvival-win64-shipping.exe => No File
FirewallRules: [TCP Query User{B9C0AF95-EB87-42B9-8E3A-C0C3CC57C709}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [UDP Query User{1A2EB102-B891-4CD0-BA2C-69EC6DD20DE9}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [{28C2EEAB-8EF8-45F3-AF27-D027E7E07BEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hand Simulator\Hand Simulator.exe () [File not signed]
FirewallRules: [{69BC8FFE-BBE9-47B9-AF04-98AD32A68D5B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hand Simulator\Hand Simulator.exe () [File not signed]
FirewallRules: [{ECDBBF05-55A0-494F-93CB-DF728393BEF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [File not signed]
FirewallRules: [{A9557460-675F-40C2-BB7F-0784988E666E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [File not signed]
FirewallRules: [TCP Query User{13DA2362-164D-41D7-93A1-389E4E3F11C8}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{3AB3FABD-9656-4C45-9D16-CA47FACAA722}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{C893BE01-F417-4A6B-8EB7-12350E6CFA01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory\SCPSL.exe () [File not signed]
FirewallRules: [{B4A00262-7727-4F92-B826-C04B6E733692}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory\SCPSL.exe () [File not signed]
FirewallRules: [{E41654FC-3C3A-4C34-A540-E9E73CF3B20D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe => No File
FirewallRules: [{140A566B-37E3-4361-BE49-A96992E3CD65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe => No File
FirewallRules: [{A396B303-223B-459F-AEF8-E1B7A3DB19F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Insanity Clicker\Insanity Clicker.exe () [File not signed]
FirewallRules: [{86A882FA-23E9-4E75-97DF-7CD6B6EE3B37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Insanity Clicker\Insanity Clicker.exe () [File not signed]
FirewallRules: [{FDDEB5B4-4F0A-4141-BC13-B8B7D1DFAB95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5DF0A24C-08A4-458A-8D89-66730A1B8F09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9015283C-BDA0-4AEA-A933-84864CB9D3BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EEDCF5CB-9706-4DE7-BC98-EB7B87710C2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D3920B9E-66F5-4AEC-8BA3-581311D83B0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{EBC712FB-2C02-453B-B6C5-A790438C6E02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{BE3E8291-B26B-478B-8DE0-4113F09E2F10}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{7FF58513-0638-423E-A057-800B69F30EEC}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{D71AC4BA-1626-4A0C-B725-7D08B74BAD13}] => (Allow) C:\Users\Remte\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1718A1C8-CBEF-4DB4-AB21-1F95FDAC061E}] => (Allow) C:\Users\Remte\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{0E621B0F-0C72-4F5E-AE3E-BA391165AF52}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{C8320A1E-0819-4111-8063-BAB630F82E22}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{672279C4-05B6-4DAF-9E67-91F66404F8E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lust Epidemic\Game.exe () [File not signed]
FirewallRules: [{87670897-3D7F-4F7A-9F06-485A79DA8AF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lust Epidemic\Game.exe () [File not signed]
FirewallRules: [{E38A98A2-6DA6-4710-9E66-0843FC43022A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DRAGON BALL Z KAKAROT\AT.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{3FD8FE9A-FE7D-4BE9-8607-EDD1064AD9C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DRAGON BALL Z KAKAROT\AT.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{329C466E-3EEF-4D88-8EBC-46156C02EC5D}C:\program files (x86)\steam\steamapps\common\dragon ball z kakarot\at\binaries\win64\at-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon ball z kakarot\at\binaries\win64\at-win64-shipping.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [UDP Query User{E2E5A8D5-91E6-41F8-99EF-E52A3CE5B84A}C:\program files (x86)\steam\steamapps\common\dragon ball z kakarot\at\binaries\win64\at-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon ball z kakarot\at\binaries\win64\at-win64-shipping.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [{E241A3BB-ACB9-4C53-A54E-42923060F31D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Man of the House\Man of the house.exe () [File not signed]
FirewallRules: [{EE0816D7-6D87-41FB-AB40-8202E071F0F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Man of the House\Man of the house.exe () [File not signed]
FirewallRules: [{668CBC4E-A0E6-4111-8F49-5282D64F4929}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Acting Lessons\ActingLessons.exe () [File not signed]
FirewallRules: [{F6F63AE2-B194-4DE2-AA72-1383B5115637}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Acting Lessons\ActingLessons.exe () [File not signed]
FirewallRules: [{74BC5820-FC07-443E-840F-95059C676327}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Being a DIK\BeingADIK.exe () [File not signed]
FirewallRules: [{AF525E52-90D4-4D24-807E-ADDE5D42F07A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Being a DIK\BeingADIK.exe () [File not signed]
FirewallRules: [{09E91DF8-E887-4B91-9D5C-A24CFD913A49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Raft\Raft.exe () [File not signed]
FirewallRules: [{629417EC-6DC2-4CBD-A57C-C5BC8E7C74AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Raft\Raft.exe () [File not signed]
FirewallRules: [{43073B4C-8935-46DF-8A99-868E9A995723}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{EF2F423C-4678-41CE-B495-783DF9DA8C39}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{DDAD6822-D396-4B00-84D6-968D952E5AA7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{92287B8C-7F2F-401A-B52C-FBE203B3D3E3}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{53339170-C3AE-4349-9153-65970CD30438}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{09F7AD9C-4F2A-4EA0-9F2D-7C2CA5A96EAE}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{1284520B-F939-4480-8AFB-32F5B52195A9}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{7DC18FAE-9A71-4C29-B902-AA4929C93C4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Naughty Maid 2\SuperNaughtyMaid!2.eXe () [File not signed]
FirewallRules: [{F2023832-80EA-42B8-81F0-E78737126101}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Naughty Maid 2\SuperNaughtyMaid!2.eXe () [File not signed]
 
==================== Restore Points =========================
 
21-05-2020 01:24:36 Installed DirectX
27-05-2020 14:45:38 Windows Update
02-06-2020 15:32:16 Windows Modules Installer
 
==================== Faulty Device Manager Devices ============
 
Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
Name: High Definition Audio Device
Description: High Definition Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HdAudAddService
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
Name: Standard SATA AHCI Controller
Description: Standard SATA AHCI Controller
Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318}
Manufacturer: Standard SATA AHCI Controller
Service: storahci
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
 
==================== Event log errors: ========================
 
Application errors:
==================
 
System errors:
=============
Error: (06/02/2020 05:37:46 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
 
Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126
 
 
CodeIntegrity:
===================================
 
Date: 2020-06-02 17:40:52.157
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-02 17:40:52.137
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-02 17:40:52.118
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-02 17:40:52.103
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-02 17:40:52.088
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-02 17:40:52.077
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-02 17:40:52.065
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-02 17:40:52.051
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\264642870458580000\antimalware_provider64.dll that did not meet the Microsoft signing level requirements.
 
==================== Memory info =========================== 
 
BIOS: American Megatrends Inc. 4.6.5 03/27/2019
Motherboard: To be filled by O.E.M. Intel X79
Processor: Intel® Core™ i7-3820 CPU @ 3.60GHz
Percentage of memory in use: 34%
Total physical RAM: 16303.97 MB
Available physical RAM: 10634.29 MB
Total Virtual: 18735.97 MB
Available Virtual: 10176.81 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:930.88 GB) (Free:102.83 GB) NTFS
 
\\?\Volume{0a8967cf-caaf-4314-82cf-74e18406405b}\ (Recovery) (Fixed) (Total:0.52 GB) (Free:0.11 GB) NTFS
\\?\Volume{9b92e947-95b7-43a0-a058-5a81d19a7895}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 
==================== MBR & Partition Table ====================
 
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 01744034)
 
Partition: GPT.
 
==================== End of Addition.txt =======================

  • 0

#8
RKinner
Posted 02 June 2020 - 04:20 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

How big is the fixlog?

 

Search for

device manager

hit Enter

 

Click on the arrow in front of IDE ATA/ATAPI Controllers.

 

Do you just have the generic SATA driver or is there another like AMD SATA?  Is there a yellow mark next to it?

 

If you just have SATA then right click on it and uninstall then reboot.  (Do not let it remove any drivers if it asks).  Often this will fix problems with a driver.  Windows will reinstall the driver and hopefully correct any problems when it does.

 

Also I think you need a new wifi driver

 

https://www.realtek....8811au-software

 

should work for you.


  • 0

#9
artem000000
Posted 02 June 2020 - 05:33 PM

artem000000

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts

Ok I did as you asked and had to restart my computer a few times.

 

Also the fixlog is 24,816 KB


  • 0

#10
RKinner
Posted 02 June 2020 - 08:46 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Must be a large dism.log that made it so big.

 

Did you see a yellow flag on the SATA driver?  Did it go away?

 

Also were you able to update the Realtek wireless driver?

 

1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.  (Each time you run VEW it overwrites the log so copy the first one to a Reply or rename it before running it a second time.)


 


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP