Hello, two days ago I started seeing this error message on pc startup. At first i was thinking that it was related to the fact that I swapped out my graphic card with a new one, since I was also getting another error message from the LED controller who couldn't find the card. But even after I unistalled all the old drivers and softwares and installed the new ones I still get the DLL error. So I've searched online and everyone who was thalking about this error had problem with their antivirus so i checked Windows Defender (that seems to be running fine) and in the History Log i found that he actualy blocked a threat at the same time i powered on my pc that day. So I started searching again on the internet and found this forum with people with a similar problem.
So, hoping you can help me here my FRST log and Addition.
Thank you in advance.
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2019 Ran by leona (administrator) on GAMBEROMANTIDE (06-10-2019 19:54:29) Running from D:\Leonardo\Desktop Loaded Profiles: leona (Available Profiles: leona & DevToolsUser) Platform: Windows 10 Home Version 1903 18362.10022 (X64) Language: Italiano (Italia) Default browser: Chrome Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) () [File not signed] C:\Program Files\TranslucentTB.2017.3\TranslucentTB.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0347105.inf_amd64_7d7ff16bdcaa41c2\B347177\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0347105.inf_amd64_7d7ff16bdcaa41c2\B347177\atiesrxx.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe (ASUSTeK COMPUTER INC.) [File not signed] C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3Svc32.exe (ASUSTeK COMPUTER INC.) [File not signed] C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3Svc64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.6847\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) D:\Programmi (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) D:\Programmi (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) D:\Programmi (x86)\Battle.net\Battle.net.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Electronic Arts, Inc. -> Electronic Arts) D:\Programmi (x86)\Origin\OriginWebHelperService.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler64.exe (Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe (Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Kristjan Skutta -> ) D:\Programmi\wallpaper_engine\bin\wallpaperservice32_c.exe (Kristjan Skutta -> ) D:\Programmi\wallpaper_engine\wallpaper64.exe (LG Electronics Inc. -> ) C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreen Control.exe (LG Electronics Inc. -> LG Electronisc Inc) C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OSCApplicationManager.exe (LG Electronics Inc. -> TODO: <Company name>) C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\ScreenSplitterHook64App.exe (LogMeIn, Inc. -> LogMeIn Inc.) D:\Programmi (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) D:\Programmi (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn, Inc.) D:\Programmi (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (LogMeIn, Inc. -> LogMeIn, Inc.) D:\Programmi (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.33.30001.0_x64__8wekyb3d8bbwe\GamingServices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.33.30001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_11904.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19091.313.0_x64__8wekyb3d8bbwe\YourPhone.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\NisSrv.exe (Nextcloud GmbH) [File not signed] D:\Programmi (x86)\Nextcloud\nextcloud.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (SHAPE GmbH -> SHAPE) D:\Programmi (x86)\iDisplay\iDisplay.exe (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) D:\Programmi (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) D:\Programmi (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) D:\Programmi (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) D:\Programmi (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) D:\Programmi (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) D:\Programmi (x86)\Steam\Steam.exe (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2015-09-04] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9268680 2018-02-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Sonic Studio 3] => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3svc32.exe [1234432 2018-02-22] (ASUSTeK COMPUTER INC.) [File not signed] HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Programmi (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) HKLM-x32\...\Run: [DualControl] => C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualControlStartupApp.exe [1788344 2018-12-27] (LG Electronics Inc. -> LG Electronics Inc) HKLM-x32\...\Run: [OnScreen Control] => C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe [1788400 2018-09-28] (LG Electronics Inc. -> TODO: <Company name>) HKLM\...\Policies\Explorer: [HideSCAHealth] 1 HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\Run: [TranslucentTB] => C:\Program Files\TranslucentTB.2017.3\TranslucentTB.exe [648704 2017-06-05] () [File not signed] HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> ) HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\Run: [Nextcloud] => D:\Programmi (x86)\Nextcloud\nextcloud.exe [2421248 2019-03-19] (Nextcloud GmbH) [File not signed] HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\Run: [Battle.net] => D:\Programmi (x86)\Battle.net\Battle.net.exe [1099424 2019-10-04] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\Run: [Steam] => D:\Programmi (x86)\Steam\steam.exe [3211040 2019-10-02] (Valve -> Valve Corporation) HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\Run: [FC6D3D2C009CD06E7DDEC8BD41980BF58EA787F9._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1694704 2019-09-18] (Google LLC -> Google LLC) HKU\S-1-5-21-3676251289-4294955644-822779951-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> D:\Leonardo\Downloads\Aerial.scr [537088 2018-05-30] () [File not signed] HKLM\Software\Microsoft\Active Setup\Installed Components: [{401C381F-E0DE-4B85-8BD8-4F3F14FBDA57}] -> C:\Program Files (x86)\Microsoft\Edge Dev\Application\79.0.287.3\Installer\setup.exe [2019-10-04] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-24] (Google LLC -> Google LLC) Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2019-09-13] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0EE4CCFD-4892-4E9A-86A4-0C62FA6FF289} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-09-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {32944CE8-E006-47D2-9DEE-7AF9ECFF4AFC} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {364F418E-D17E-40A8-80AA-5C9C43A53E1B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-12] (Google Inc -> Google LLC) Task: {417B371B-E2FB-4117-8895-5A6BBC502196} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1466816 2018-10-18] (ASUSTeK Computer Inc. -> ) Task: {4B7E72C5-F8E2-41DB-B9E6-214C441985F1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-12] (Google Inc -> Google LLC) Task: {4FDBE4C7-F8C1-4063-873E-A89FFA5FD712} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-09-26] (Advanced Micro Devices, Inc.) [File not signed] Task: {53CB87E8-549D-4705-927A-C9D32BA297EB} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1448408 2018-01-12] (ASUSTeK Computer Inc. -> ) Task: {5ADB2D6A-57AE-406B-8A72-172CDF783D6B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {69A6B1EC-CCA6-4A70-BCF1-4729C7DD07E5} - System32\Tasks\SS3svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3svc64.exe [811520 2018-02-22] (ASUSTeK COMPUTER INC.) [File not signed] Task: {70DE6F31-806F-4843-A3CC-AB15D818AD6D} - System32\Tasks\SS3svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3svc32.exe [1234432 2018-02-22] (ASUSTeK COMPUTER INC.) [File not signed] Task: {7A59DA4F-CF37-47B6-8384-B416D8E9DE71} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {80E25053-FF43-43BE-9813-B082C2090677} - System32\Tasks\iDisplayStartup => D:\Programmi (x86)\iDisplay\iDisplay.exe [2781680 2017-09-19] (SHAPE GmbH -> SHAPE) Task: {8721D83B-E091-4D39-9DDB-D3386E66F1A8} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-09-26] (Advanced Micro Devices, Inc.) [File not signed] Task: {A225DA60-82FE-4937-885A-C083C3FA0984} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [891576 2019-09-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {A35551E5-5EF6-49B7-8B13-4A82CBACA912} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A9BB28DC-CD3E-4824-984B-927D669EB320} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-09-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {B6504843-2132-456B-BF7C-09B2526BCEBF} - System32\Tasks\install S5 WoWLAN service => C:\ProgramData\S5\RtlS5Wake.exe Task: {CAD8F04D-0623-46DD-BCDE-586F41C94839} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2106816 2018-10-31] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {D898B59A-5311-495E-A727-69CE375FB0DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DE755E3A-BEC8-4903-82A1-EE493B2EE69A} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [147152 2019-05-25] (Microsoft Corporation -> Microsoft Corporation) Task: {DF4DE1F4-9E15-444F-AAF0-7546D8990D76} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION Task: {DF677B3A-6BA1-4850-969E-5672FF456427} - System32\Tasks\Microsoft\Windows\WDI\SrvHost => rundll32.exe winscomrssrv.dll,SrvMainHost <==== ATTENTION Task: {F17A2520-BFB4-4406-B699-79419B5544C4} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4417496 2017-11-24] (ASUSTeK Computer Inc. -> TODO: <Company name>) Task: {FDC512D3-FE21-40ED-9AD6-4DE482CB5EA2} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [147152 2019-05-25] (Microsoft Corporation -> Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: 127.0.0.1 resolume.com Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{66faac9e-e737-4808-be0a-8b1fbc76be62}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{f8f14f78-ce91-41f4-b59b-4bf3a8b78eb0}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== Edge: ====== DownloadDir: D:\Leonardo\Downloads FireFox: ======== FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-03] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-03] (Google Inc -> Google LLC) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed] FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed] Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxp://www.sweet-page.com/?type=hppp&ts=1402760708&from=smt&uid=HGSTXHTS545050A7E680_TEA55CL92MEXKP2MEXKPX CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default [2019-10-06] CHR Extension: (Presentazioni) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-12] CHR Extension: (Documenti) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-12] CHR Extension: (Google Drive) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-12] CHR Extension: (YouTube) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-12] CHR Extension: (Honey) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2019-08-27] CHR Extension: (Amazon Wish List Total) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\boekbkconiendicldakeboooeilaldmh [2019-05-12] CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-08-27] CHR Extension: (Tampermonkey) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-05-12] CHR Extension: (Kami Extension - PDF and Document Annotation) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecnphlgnajanjnkcmbpancdjoidceilk [2019-10-01] CHR Extension: (Google Play Musica) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2019-05-12] CHR Extension: (Fogli) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-12] CHR Extension: (Stylish - Personalizza i temi per siti web) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2019-05-12] CHR Extension: (Sicurezza browser Avira) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-09-30] CHR Extension: (Chrome Remote Desktop) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-18] CHR Extension: (IBA Opt-out (by Google)) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2019-05-12] CHR Extension: (Chrome Web Store Launcher (by Google)) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej [2019-05-12] CHR Extension: (Documenti Google offline) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-05-12] CHR Extension: (Vysor) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidgenkbbabolejbgbpnhbimgjbffefm [2019-05-14] CHR Extension: (Integrazione con GNOME Shell) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\gphhapmejobijbbhgpjhcjognlahblep [2019-05-12] CHR Extension: (Google Play Music) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2019-05-12] CHR Extension: (Chrome Remote Desktop) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2019-09-20] CHR Extension: (Cisco Webex Extension) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2019-07-12] CHR Extension: (Chrometana - Redirect Bing Somewhere Better) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\kaicbfmipfpfpjmlbpejaoaflfdnabnc [2019-05-12] CHR Extension: (Hatsune Miku) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\kigfdicgjnpjkhbnngdfgjfffmdaonfg [2019-05-12] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-05-12] CHR Extension: (Google Maps) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-05-12] CHR Extension: (Google Hangouts) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-05-22] CHR Extension: (Pagamenti Chrome Web Store) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-30] CHR Extension: (Google Tone) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnckehldicaciogcbchegobnafnjkcne [2019-05-12] CHR Extension: (Amazon Assistant for Chrome) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2019-08-16] CHR Extension: (Gmail) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-12] CHR Extension: (Chrome Media Router) - C:\Users\leona\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25] CHR Profile: C:\Users\leona\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-09-05] CHR Profile: C:\Users\leona\AppData\Local\Google\Chrome\User Data\System Profile [2019-09-05] CHR HKU\S-1-5-21-3676251289-4294955644-822779951-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\u0347105.inf_amd64_7d7ff16bdcaa41c2\B347177\atiesrxx.exe [509144 2019-09-30] (Advanced Micro Devices, Inc. -> AMD) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2019-05-12] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2019-05-13] (ASUSTeK Computer Inc. -> ) [File not signed] R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe [1340376 2019-05-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe [72176 2019-09-08] (Google LLC -> Google Inc.) S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [147152 2019-05-25] (Microsoft Corporation -> Microsoft Corporation) S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [147152 2019-05-25] (Microsoft Corporation -> Microsoft Corporation) R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.33.30001.0_x64__8wekyb3d8bbwe\GamingServices.exe [21640 2019-10-02] (Microsoft Corporation -> Microsoft Corporation) R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.33.30001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [21640 2019-10-02] (Microsoft Corporation -> Microsoft Corporation) R2 Hamachi2Svc; D:\Programmi (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [1977392 2019-04-15] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) S2 LxssManagerUser; C:\WINDOWS\system32\lxss\LxssManager.dll [631808 2019-08-18] (Microsoft Windows -> Microsoft Corporation) R2 LxssManagerUser_6f5b7; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) R2 LxssManagerUser_6f5b7; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) S3 MicrosoftEdgeDevElevationService; C:\Program Files (x86)\Microsoft\Edge Dev\Application\79.0.287.3\elevation_service.exe [1087880 2019-10-04] (Microsoft Corporation -> Microsoft Corporation) S3 Origin Client Service; D:\Programmi (x86)\Origin\OriginClientService.exe [2347824 2019-09-04] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; D:\Programmi (x86)\Origin\OriginWebHelperService.exe [3222320 2019-09-04] (Electronic Arts, Inc. -> Electronic Arts) S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-08-18] (Microsoft Windows -> ) S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [290816 2019-08-18] (Microsoft Windows -> Microsoft Corporation) R2 Wallpaper Engine Service; D:\Programmi\wallpaper_engine\bin\wallpaperservice32_c.exe [354808 2018-12-12] (Kristjan Skutta -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [656664 2014-08-19] (Wacom Technology Corp. -> Wacom Technology, Corp.) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34568 2019-04-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc) R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24424 2016-08-12] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc) S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. ) R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\u0347105.inf_amd64_7d7ff16bdcaa41c2\B347177\atikmdag.sys [60654504 2019-09-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\u0347105.inf_amd64_7d7ff16bdcaa41c2\B347177\atikmpag.sys [598440 2019-09-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [103672 2019-04-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592 2018-04-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [243048 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. ) S3 Andbus; C:\WINDOWS\System32\drivers\lgandbus64.sys [19456 2012-03-02] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 AndDiag; C:\WINDOWS\System32\drivers\lganddiag64.sys [27648 2012-03-02] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 AndGps; C:\WINDOWS\System32\drivers\lgandgps64.sys [27136 2012-03-02] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 AndnetBus; C:\WINDOWS\System32\drivers\lgandnetbus64.sys [30208 2016-08-31] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 AndNetDiag; C:\WINDOWS\System32\drivers\lgandnetdiag64.sys [30720 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 AndNetDiag2; C:\WINDOWS\System32\drivers\lgandnetdiag264.sys [30208 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 AndNetGps; C:\WINDOWS\System32\drivers\lgandnetgps64.sys [29184 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2019-05-12] (ASUSTeK Computer Inc. -> ) R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2019-05-12] (ASUSTeK Computer Inc. -> ) R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-04-11] (ASUSTeK Computer Inc. -> ) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-07-24] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-11-11] (Disc Soft Ltd -> Disc Soft Ltd) R3 e1rexpress; C:\WINDOWS\System32\drivers\e1r68x64.sys [421016 2019-05-12] (Intel(R) INTELND1820 -> Intel Corporation) R1 EneIo; C:\WINDOWS\system32\drivers\ene.sys [16320 2018-03-20] (Ptolemy Tech Co., Ltd -> ) R3 gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_e3f21201adb86c74\gameflt.sys [70704 2019-09-04] (Microsoft Windows -> Microsoft Corporation) R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> ) S3 GPUZ; C:\Users\leona\AppData\Local\Temp\GPUZ.sys [27008 2019-10-01] (TechPowerUp -> ) <==== ATTENTION R3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) S3 hidkmdf; C:\WINDOWS\System32\drivers\hidkmdf.sys [14136 2014-08-06] (Wacom Technology Corp. -> Windows (R) Win 7 DDK provider) R0 idisplayfilter; C:\WINDOWS\System32\DRIVERS\idisplayfilter.sys [35352 2017-06-23] (SHAPE GmbH -> ) R3 iDisplayWDDM; C:\WINDOWS\System32\drivers\idisplay.sys [40040 2017-06-30] (Microsoft Windows Hardware Compatibility Publisher -> ) R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-05-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R3 MSIO; C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\msio64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> ) S3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) R3 P9Rdr; C:\WINDOWS\System32\drivers\p9rdr.sys [88888 2019-09-26] (Microsoft Windows -> Microsoft Corporation) R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [769400 2019-05-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [11356456 2019-06-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) S3 ssbthid; C:\WINDOWS\System32\drivers\ssbthid.sys [43824 2017-12-15] (SteelSeries ApS -> ) R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-05-24] (SteelSeries ApS -> ) R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [47824 2019-05-24] (SteelSeries ApS -> SteelSeries ApS) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-09-05] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated) R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> ) R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> ) S3 t_mouse.sys; C:\WINDOWS\System32\drivers\t_mouse.sys [6144 2015-09-04] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 usbbus; C:\WINDOWS\System32\drivers\lgx64bus.sys [17920 2016-02-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 UsbDiag; C:\WINDOWS\System32\drivers\lgx64diag.sys [28160 2016-02-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 UsbGps; C:\WINDOWS\System32\drivers\lgx64gps.sys [27136 2016-02-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) R0 VMSNPXY; C:\WINDOWS\System32\drivers\VmsProxyHNic.sys [39736 2019-09-26] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-10-02] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-02] (Microsoft Windows -> Microsoft Corporation) R3 Xvdd; C:\WINDOWS\System32\DriverStore\FileRepository\xvdd.inf_amd64_4beca0218f643d77\xvdd.sys [478256 2019-10-02] (Microsoft Windows -> Microsoft Corporation) R3 ysusb_w10_64; C:\WINDOWS\system32\drivers\ysusb_w10_64.sys [177784 2018-12-04] (Yamaha Corporation -> Yamaha Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-10-05 13:23 - 2019-10-05 13:23 - 000003416 _____ C:\WINDOWS\system32\Tasks\AMD ThankingURL 2019-10-05 13:23 - 2019-10-05 13:23 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN 2019-10-05 13:23 - 2019-10-05 13:23 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR 2019-10-05 13:23 - 2019-10-05 13:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings 2019-10-05 13:23 - 2019-10-05 13:23 - 000000000 ____D C:\Program Files (x86)\AMD 2019-10-05 13:15 - 2019-10-05 13:15 - 000000060 _____ C:\ProgramData\SoftwareUpdateTemp.xml 2019-10-04 17:54 - 2019-10-04 17:54 - 000000000 ____D C:\WINDOWS\SysWOW64\directx 2019-10-04 17:47 - 2019-10-06 19:47 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2019-10-04 17:47 - 2019-10-04 17:47 - 000003198 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate 2019-10-04 17:47 - 2019-10-04 17:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard 2019-10-04 17:31 - 2019-10-06 19:52 - 000004184 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{DCBD7C2A-8846-42C3-BD2F-B26052090F33} 2019-10-04 17:11 - 2019-10-06 19:54 - 000000000 ____D C:\FRST 2019-10-03 18:58 - 2019-10-03 18:58 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2019-10-03 18:58 - 2019-10-03 18:58 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2019-10-03 18:58 - 2019-10-03 18:58 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData 2019-10-02 13:06 - 2019-10-04 04:32 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2019-10-01 16:29 - 2019-10-01 16:29 - 000000000 ____D C:\ProgramData\dbg 2019-09-30 22:38 - 2019-09-30 22:38 - 000000000 ____D C:\Users\leona\AppData\LocalLow\Landfall 2019-09-30 15:07 - 2019-09-30 15:07 - 000852392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2019-09-30 15:07 - 2019-09-30 15:07 - 000852392 _____ C:\WINDOWS\system32\vulkaninfo.exe 2019-09-30 15:07 - 2019-09-30 15:07 - 000710080 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2019-09-30 15:07 - 2019-09-30 15:07 - 000710080 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2019-09-30 15:06 - 2019-09-30 15:06 - 068015832 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 059440856 _____ C:\WINDOWS\system32\amdcomgr64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 049336536 _____ C:\WINDOWS\SysWOW64\amdcomgr.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 003915992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 003517144 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 001243352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 001073312 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 001073312 _____ C:\WINDOWS\system32\vulkan-1.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000941784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000930112 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000930112 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000769240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000761560 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2019-09-30 15:06 - 2019-09-30 15:06 - 000574888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000554200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000493992 _____ C:\WINDOWS\system32\dgtrayicon.exe 2019-09-30 15:06 - 2019-09-30 15:06 - 000485800 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000481192 _____ C:\WINDOWS\system32\GameManager64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000473304 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000469200 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000467160 _____ C:\WINDOWS\system32\amdlogum.exe 2019-09-30 15:06 - 2019-09-30 15:06 - 000440528 _____ C:\WINDOWS\system32\atieah64.exe 2019-09-30 15:06 - 2019-09-30 15:06 - 000417704 _____ C:\WINDOWS\system32\EEURestart.exe 2019-09-30 15:06 - 2019-09-30 15:06 - 000384216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000382168 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000352984 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2019-09-30 15:06 - 2019-09-30 15:06 - 000349632 _____ C:\WINDOWS\system32\clinfo.exe 2019-09-30 15:06 - 2019-09-30 15:06 - 000243112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000214952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000184744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000179376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000163752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000159656 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000158216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000153536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000139176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000136616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000135384 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000126376 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000124624 _____ C:\WINDOWS\system32\atidxx64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000122072 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000121560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000107736 _____ C:\WINDOWS\SysWOW64\atidxx32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000106200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000091560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000076200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000070872 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000047528 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000044456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll 2019-09-30 15:06 - 2019-09-30 15:06 - 000020608 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll 2019-09-30 15:05 - 2019-09-30 15:05 - 001686624 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll 2019-09-30 15:05 - 2019-09-30 15:05 - 001365984 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll 2019-09-30 15:05 - 2019-09-30 15:05 - 000554696 _____ C:\WINDOWS\system32\amdmiracast.dll 2019-09-30 15:05 - 2019-09-30 15:05 - 000135456 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2019-09-30 15:05 - 2019-09-30 15:05 - 000128952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2019-09-30 15:05 - 2019-09-30 15:05 - 000128736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2019-09-30 15:05 - 2019-09-30 15:05 - 000119856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2019-09-30 15:05 - 2019-09-30 15:05 - 000108352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2019-09-30 15:05 - 2019-09-30 15:05 - 000108352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2019-09-30 02:19 - 2019-09-30 02:19 - 000000000 ____D C:\Users\leona\AppData\Roaming\ATI 2019-09-30 02:19 - 2019-09-30 02:19 - 000000000 ____D C:\ProgramData\ATI 2019-09-27 14:55 - 2019-09-27 14:55 - 1606851153 _____ C:\WINDOWS\MEMORY.DMP 2019-09-27 14:55 - 2019-09-27 14:55 - 002725260 _____ C:\WINDOWS\Minidump\092719-8625-01.dmp 2019-09-27 14:55 - 2019-09-27 14:55 - 000000000 ____D C:\WINDOWS\Minidump 2019-09-26 22:58 - 2019-09-26 22:58 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap 2019-09-26 22:58 - 2019-09-26 22:58 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap 2019-09-26 22:34 - 2019-09-26 22:34 - 000553352 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb 2019-09-26 22:34 - 2019-09-26 22:34 - 000553352 _____ C:\WINDOWS\system32\atiapfxx.blb 2019-09-26 19:00 - 2019-09-26 19:00 - 025901056 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 022626304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 019810816 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 018019328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 008010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 007196160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 007014912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 006519248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 006236160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 006081744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 005916672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 005762032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 005729280 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 005500928 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 005100544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 004857856 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 004476928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 004306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 003916048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 003817472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 003738376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 002799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-09-26 19:00 - 2019-09-26 19:00 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2019-09-26 19:00 - 2019-09-26 19:00 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2019-09-26 19:00 - 2019-09-26 19:00 - 002743808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 002586608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 002576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 002494232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 002398520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys 2019-09-26 19:00 - 2019-09-26 19:00 - 002314440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001957008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001954960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001913088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001691136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001664168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001616576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001531448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001510752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001488008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001458176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001394488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001305400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001283384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2019-09-26 19:00 - 2019-09-26 19:00 - 001263104 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001244728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001213240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001122816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001105264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 001054656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdp.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000923648 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000792296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcIsoCtnr.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000667272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000637952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdp.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000633344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000628408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000488064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000484976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000454528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000431240 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000428544 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000401840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000362056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2019-09-26 19:00 - 2019-09-26 19:00 - 000316216 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000283032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000267496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nvspinfo.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000170920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000166920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000145720 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000135272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000088888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\p9rdr.sys 2019-09-26 19:00 - 2019-09-26 19:00 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys 2019-09-26 19:00 - 2019-09-26 19:00 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Groupinghc.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000066616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000048440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VmsProxy.sys 2019-09-26 19:00 - 2019-09-26 19:00 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInput1_4.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VmsProxyHNic.sys 2019-09-26 19:00 - 2019-09-26 19:00 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInput1_4.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2019-09-26 19:00 - 2019-09-26 19:00 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecerts.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000024272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumbase.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fvecerts.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000015536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumdll.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL 2019-09-26 19:00 - 2019-09-26 19:00 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL 2019-09-26 19:00 - 2019-09-26 19:00 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2019-09-26 19:00 - 2019-09-26 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2019-09-26 18:59 - 2019-09-26 18:59 - 017787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 009927992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 007839416 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 007261432 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 006419968 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 006226344 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 006162432 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 004551864 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 004046336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 004009984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 003701248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 003590456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 003551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 003372232 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 003353088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 003327256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002989880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002762296 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002723840 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 002703360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002551096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002449224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002120272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002119168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 002069504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001845408 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001822720 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001815040 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001756584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-09-26 18:59 - 2019-09-26 18:59 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001744184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001633648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001602048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001512320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 001505592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001439232 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001371648 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-09-26 18:59 - 2019-09-26 18:59 - 001300792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 001261256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001259208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 001259008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 001158656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001155416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 001150240 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001094144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001068344 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001065984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000944664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000913168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000909528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000889960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000810808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000808960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000776704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000752584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000731960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000680760 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000676632 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000596008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000551736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000524216 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000478256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2019-09-26 18:59 - 2019-09-26 18:59 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000411128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000401208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000398728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000386320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000354784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000338792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000334728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wosc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApproveChildRequest.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000223032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000210192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000182072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000147184 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000146200 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000141624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000106296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2019-09-26 18:59 - 2019-09-26 18:59 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000055096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS 2019-09-26 18:59 - 2019-09-26 18:59 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32_DeviceGuard.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys 2019-09-26 18:59 - 2019-09-26 18:59 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000020728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmsgapi.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe 2019-09-26 18:59 - 2019-09-26 18:59 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll 2019-09-26 18:59 - 2019-09-26 18:59 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll 2019-09-26 16:35 - 2019-09-26 16:35 - 000000000 ____D C:\Users\leona\AppData\Local\SoulcaliburVI - Copia 2019-09-25 01:35 - 2019-09-25 17:05 - 000000000 ____D C:\Users\leona\Documents\OnScreen Control 2019-09-25 01:35 - 2019-09-25 01:35 - 000000000 ____D C:\Users\Public\Documents\DualController 2019-09-25 01:35 - 2019-09-25 01:35 - 000000000 ____D C:\ProgramData\Documents\DualController 2019-09-25 01:34 - 2019-10-06 19:48 - 000000158 _____ C:\Users\Public\Documents\OSCFile.txt 2019-09-25 01:34 - 2019-10-06 19:48 - 000000158 _____ C:\ProgramData\Documents\OSCFile.txt 2019-09-25 01:32 - 2019-09-25 01:32 - 000002096 _____ C:\Users\Public\Desktop\OnScreen Control.lnk 2019-09-25 01:32 - 2019-09-25 01:32 - 000002096 _____ C:\ProgramData\Desktop\OnScreen Control.lnk 2019-09-25 01:32 - 2019-09-25 01:32 - 000001972 _____ C:\Users\Public\Desktop\Dual Controller.lnk 2019-09-25 01:32 - 2019-09-25 01:32 - 000001972 _____ C:\ProgramData\Desktop\Dual Controller.lnk 2019-09-25 01:32 - 2019-09-25 01:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OnScreen Control 2019-09-25 01:32 - 2019-09-25 01:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dual Controller 2019-09-25 01:32 - 2019-09-25 01:32 - 000000000 ____D C:\Program Files (x86)\LG Electronics 2019-09-25 01:32 - 2018-10-10 11:24 - 000196608 _____ (LG Soft India) C:\WINDOWS\SysWOW64\LGDeviceManager.dll 2019-09-25 01:32 - 2018-10-10 11:24 - 000135168 _____ (LG Soft India) C:\WINDOWS\SysWOW64\LGMonitorDDCCISDK.dll 2019-09-25 01:32 - 2018-10-10 11:24 - 000102400 _____ (LG Soft India) C:\WINDOWS\SysWOW64\LGProtocolEngine.dll 2019-09-25 01:32 - 2018-05-21 10:58 - 000049152 _____ () C:\WINDOWS\SysWOW64\LGErrorHandler.dll 2019-09-25 01:16 - 2019-09-25 01:16 - 000000000 ____D C:\Users\leona\AppData\LocalLow\ryoposo 2019-09-20 23:38 - 2019-09-20 23:38 - 000000000 ____D C:\Users\leona\AppData\Local\ATI 2019-09-20 23:35 - 2019-09-20 23:35 - 000000000 ____D C:\Users\leona\AppData\Local\Haze1 2019-09-20 23:35 - 2019-09-20 23:35 - 000000000 ____D C:\ProgramData\Electronic Arts 2019-09-20 23:34 - 2019-09-20 23:34 - 000000000 ____D C:\Program Files (x86)\Origin Games 2019-09-20 23:02 - 2019-09-20 23:02 - 000000000 ____D C:\Users\leona\AppData\Local\RadeonSettings 2019-09-20 23:01 - 2019-09-20 23:01 - 000000000 ____D C:\ProgramData\AMD 2019-09-18 16:04 - 2019-09-18 16:03 - 016772487 ____T C:\Users\leona\Documents\Digitalizzato_20190918.pdf 2019-09-12 16:56 - 2019-09-30 15:06 - 001714392 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2019-09-12 16:56 - 2019-09-30 15:06 - 001243352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2019-09-12 16:56 - 2019-09-30 15:06 - 000382376 _____ C:\WINDOWS\SysWOW64\GameManager32.dll 2019-09-12 16:56 - 2019-09-30 15:06 - 000020608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll 2019-09-12 16:56 - 2019-09-12 16:56 - 001714392 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\SET56D7.tmp 2019-09-12 16:56 - 2019-09-12 16:56 - 001243352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\SET5B91.tmp 2019-09-12 16:56 - 2019-09-12 16:56 - 000382168 _____ C:\WINDOWS\SysWOW64\SET5AE6.tmp 2019-09-12 16:56 - 2019-09-12 16:56 - 000020392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SET5A41.tmp 2019-09-12 13:53 - 2019-09-12 13:54 - 000000000 ___HD C:\ProgramData\CanonIJScan 2019-09-10 23:35 - 2019-09-10 23:35 - 000204952 _____ C:\WINDOWS\SysWOW64\ativvsvl.dat 2019-09-10 23:35 - 2019-09-10 23:35 - 000204952 _____ C:\WINDOWS\system32\ativvsvl.dat 2019-09-10 23:35 - 2019-09-10 23:35 - 000157144 _____ C:\WINDOWS\SysWOW64\ativvsva.dat 2019-09-10 23:35 - 2019-09-10 23:35 - 000157144 _____ C:\WINDOWS\system32\ativvsva.dat 2019-09-10 18:06 - 2019-09-10 18:06 - 000174768 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll 2019-09-10 18:06 - 2019-09-10 18:06 - 000146440 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll 2019-09-09 23:42 - 2019-09-09 23:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokeMMO 2019-09-07 09:24 - 2019-09-07 09:24 - 007582752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2019-09-07 09:24 - 2019-09-07 09:24 - 005848840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2019-09-07 09:24 - 2019-09-07 09:24 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2019-09-07 09:24 - 2019-09-07 09:24 - 001884200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll 2019-09-07 09:24 - 2019-09-07 09:24 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll 2019-09-07 09:24 - 2019-09-07 09:24 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll 2019-09-07 09:24 - 2019-09-07 09:24 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll 2019-09-07 09:24 - 2019-09-07 09:24 - 000522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2019-09-07 09:24 - 2019-09-07 09:24 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll 2019-09-07 09:24 - 2019-09-07 09:24 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll ==================== One month (modified) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-10-06 19:50 - 2019-08-18 16:08 - 001756400 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-10-06 19:50 - 2019-03-19 14:33 - 000779938 _____ C:\WINDOWS\system32\perfh010.dat 2019-10-06 19:50 - 2019-03-19 14:33 - 000146148 _____ C:\WINDOWS\system32\perfc010.dat 2019-10-06 19:50 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF 2019-10-06 19:49 - 2019-08-22 00:59 - 000000000 ____D C:\Users\leona\AppData\Local\LogMeIn Hamachi 2019-10-06 19:49 - 2019-05-12 01:04 - 000000000 ____D C:\Users\leona\AppData\Local\Battle.net 2019-10-06 19:48 - 2019-05-12 00:52 - 000000000 ____D C:\Users\leona\AppData\Roaming\Nextcloud 2019-10-06 19:47 - 2019-08-18 16:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-10-06 19:47 - 2019-05-12 01:57 - 000008482 _____ C:\CosairDram.txt 2019-10-06 19:47 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-10-06 01:08 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-10-06 00:55 - 2019-05-12 00:57 - 000000000 ____D C:\Users\leona\AppData\Roaming\Discord 2019-10-06 00:44 - 2019-08-18 15:57 - 000272024 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-10-06 00:42 - 2019-08-18 14:56 - 000000000 ____D C:\Users\leona 2019-10-06 00:37 - 2019-08-18 16:05 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3676251289-4294955644-822779951-1001 2019-10-06 00:37 - 2019-08-18 14:56 - 000002477 _____ C:\Users\leona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-10-06 00:37 - 2019-05-11 23:37 - 000000000 ___RD C:\Users\leona\OneDrive 2019-10-06 00:36 - 2019-05-11 23:36 - 000000000 ____D C:\Users\leona\AppData\Local\D3DSCache 2019-10-06 00:34 - 2019-08-18 15:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-10-05 20:42 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-10-05 20:37 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2019-10-05 13:25 - 2019-05-12 00:05 - 000000000 ____D C:\Users\leona\AppData\LocalLow\AMD 2019-10-05 13:23 - 2019-05-11 23:28 - 000000000 ____D C:\Program Files\AMD 2019-10-05 13:22 - 2019-05-11 23:36 - 000000000 ____D C:\Users\leona\AppData\Local\AMD 2019-10-05 13:20 - 2019-05-12 01:41 - 000000000 ____D C:\AMD 2019-10-05 13:13 - 2019-08-18 16:05 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2019-10-05 13:13 - 2019-08-18 16:05 - 000003508 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2019-10-04 17:08 - 2019-05-12 00:52 - 000000000 ____D C:\ProgramData\Package Cache 2019-10-04 16:59 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-10-04 16:40 - 2019-05-12 01:55 - 000000000 ____D C:\Program Files (x86)\ASUS 2019-10-04 16:40 - 2019-05-12 01:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-10-04 16:35 - 2019-05-12 01:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS 2019-10-04 16:35 - 2019-05-12 01:55 - 000000000 ____D C:\ProgramData\ASUS 2019-10-04 00:13 - 2019-05-25 12:30 - 000002354 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge Dev.lnk 2019-10-04 00:13 - 2019-05-25 12:30 - 000002313 _____ C:\Users\Public\Desktop\Microsoft Edge Dev.lnk 2019-10-04 00:13 - 2019-05-25 12:30 - 000002313 _____ C:\ProgramData\Desktop\Microsoft Edge Dev.lnk 2019-10-03 15:58 - 2019-05-16 13:41 - 000000000 ____D C:\Users\leona\AppData\Roaming\vlc 2019-10-03 01:00 - 2019-08-18 16:05 - 000003672 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2019-10-03 01:00 - 2019-08-18 16:05 - 000003548 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2019-10-03 01:00 - 2019-05-12 00:04 - 000000000 ____D C:\Program Files (x86)\Google 2019-10-02 13:07 - 2019-09-04 20:27 - 000031880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe 2019-10-02 13:07 - 2019-06-10 16:46 - 001245320 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2019-10-02 13:07 - 2019-06-10 16:46 - 000208520 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2019-10-02 13:07 - 2019-06-10 16:46 - 000086664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2019-10-02 01:10 - 2019-05-11 23:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-10-01 12:44 - 2019-06-09 13:28 - 000000000 ____D C:\Users\leona\AppData\Roaming\Resolume Arena 2019-09-30 23:02 - 2019-05-11 23:36 - 000000000 ____D C:\ProgramData\Packages 2019-09-30 23:02 - 2019-05-11 23:35 - 000000000 ____D C:\Users\leona\AppData\Local\Packages 2019-09-30 22:32 - 2019-05-12 02:40 - 000000000 ____D C:\Users\leona\AppData\Roaming\Code 2019-09-30 22:31 - 2019-05-11 23:37 - 000000000 ____D C:\Users\leona\AppData\Local\PlaceholderTileLogoFolder 2019-09-28 02:41 - 2019-05-12 02:09 - 000000000 ____D C:\Users\leona\AppData\Roaming\steelseries-engine-3-client 2019-09-27 14:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-09-26 19:53 - 2019-05-11 23:35 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning 2019-09-26 19:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-09-26 19:02 - 2019-03-19 14:36 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2019-09-26 19:02 - 2019-03-19 14:36 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2019-09-25 16:40 - 2019-05-12 01:34 - 000000000 ____D C:\WINDOWS\system32\RTCOM 2019-09-25 16:40 - 2019-05-11 23:28 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2019-09-25 14:25 - 2019-05-12 01:58 - 000011056 _____ C:\WINDOWS\PE_Rom.dll 2019-09-24 23:00 - 2019-05-12 00:05 - 000002309 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-09-24 23:00 - 2019-05-12 00:05 - 000002268 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-09-24 23:00 - 2019-05-12 00:05 - 000002268 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2019-09-23 16:35 - 2019-08-18 02:36 - 000000000 ____D C:\Users\leona\AppData\Local\ElevatedDiagnostics 2019-09-23 13:23 - 2019-07-08 23:00 - 000000000 ____D C:\Users\leona\AppData\Local\Pokemon Showdown 2019-09-21 06:08 - 2019-05-12 01:15 - 000000000 ____D C:\Users\leona\AppData\Roaming\Origin 2019-09-21 06:08 - 2019-05-12 01:15 - 000000000 ____D C:\ProgramData\Origin 2019-09-20 23:35 - 2019-05-12 00:10 - 000000000 ____D C:\Users\leona\Documents\My Games 2019-09-20 20:19 - 2019-05-12 01:15 - 000000000 ____D C:\Users\leona\AppData\Local\Origin 2019-09-12 23:41 - 2019-03-19 06:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2019-09-12 23:41 - 2019-03-19 06:56 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2019-09-12 13:53 - 2019-08-06 14:55 - 000000000 ____D C:\Users\leona\AppData\Roaming\Canon 2019-09-11 02:51 - 2019-09-04 20:27 - 000051640 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.dll 2019-09-10 14:17 - 2019-05-11 23:35 - 000000000 ____D C:\Users\leona\AppData\Roaming\Adobe 2019-09-09 19:12 - 2019-05-12 00:45 - 000000926 _____ C:\Users\Public\Desktop\VLC media player.lnk 2019-09-09 19:12 - 2019-05-12 00:45 - 000000926 _____ C:\ProgramData\Desktop\VLC media player.lnk ==================== Files in the root of some directories ================ 2019-07-07 20:00 - 2019-07-07 20:00 - 000001456 _____ () C:\Users\leona\AppData\Local\Adobe Salva per Web e dispositivi 13.0 Prefs 2019-05-16 13:26 - 2019-05-16 13:26 - 000000000 _____ () C:\Users\leona\AppData\Local\oobelibMkey.log ==================== SigCheck =============================== (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ============================
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2019 Ran by leona (06-10-2019 19:55:47) Running from D:\Leonardo\Desktop Windows 10 Home Version 1903 18362.10022 (X64) (2019-08-18 14:06:01) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3676251289-4294955644-822779951-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3676251289-4294955644-822779951-503 - Limited - Disabled) DevToolsUser (S-1-5-21-3676251289-4294955644-822779951-1004 - Limited - Enabled) => C:\Users\DevToolsUser Guest (S-1-5-21-3676251289-4294955644-822779951-501 - Limited - Disabled) leona (S-1-5-21-3676251289-4294955644-822779951-1001 - Administrator - Enabled) => C:\Users\leona sshd (S-1-5-21-3676251289-4294955644-822779951-1002 - Limited - Enabled) WDAGUtilityAccount (S-1-5-21-3676251289-4294955644-822779951-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.7.0.400 - Adobe Systems Incorporated) Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0) (Version: 20.0.0 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2019 (HKLM-x32\...\PPRO_13_0_1) (Version: 13.0.1 - Adobe Systems Incorporated) AG DSP Controller (HKLM-x32\...\{C0D0B3D0-87AA-47A2-91B5-FA11C7F2BAC2}) (Version: 1.1.0.0 - Yamaha Corporation) AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.13 - ASUSTeK Computer Inc.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.9.3 - Advanced Micro Devices, Inc.) ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.2.17.0 - ASUSTek COMPUTER INC.) Hidden ASUS Aac_NBDT HAL (HKLM-x32\...\{2435bb94-1021-436a-966c-cccbc0b0b475}) (Version: 2.2.17.0 - ASUSTek COMPUTER INC.) Hidden Asus ApoDispatchConfigurator (HKLM\...\{4FEB3307-A0EF-4385-9C8F-4B4C1503311C}) (Version: 3.6.3401 - ASUSTeK COMPUTER INC) Hidden Asus AudioCaptureNotificationConfigurator (HKLM\...\{04C5CE55-7F32-4D2D-AEA2-FDC03E8F65CC}) (Version: 3.6.3401 - ASUSTeK COMPUTER INC) Hidden ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.22 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA Display Component (HKLM-x32\...\{e5378a11-081f-4ff7-bb52-35c22eda20fc}) (Version: 1.1.22 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.14 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Extension Card HAL (HKLM-x32\...\{770641f6-ba3c-4e07-a049-cf149cba091b}) (Version: 1.0.14 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.2.2 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Headset Component (HKLM-x32\...\{a2e3261e-9f8b-4ae2-bd1f-308befba0601}) (Version: 1.2.2 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.39 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Motherboard HAL (HKLM-x32\...\{bc0d34c3-1bed-4569-82fb-b2ebb21178d9}) (Version: 1.0.39 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Odd Component (HKLM-x32\...\{277875e0-972c-4705-b09c-ca5acf5b2f7c}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.38 - ASUSTek COMPUTER INC.) Hidden ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.2.0 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA VGA Component (HKLM-x32\...\{55c3ae30-56f9-48ea-a96d-1fad2739e1a2}) (Version: 0.0.2.0 - ASUSTek COMPUTER INC. ) Hidden Asus DeviceRoutingConfigurator (HKLM\...\{AC306567-A1B7-4208-8FED-97CF535050BC}) (Version: 3.6.3401 - ASUSTeK COMPUTER INC) Hidden ASUS GLCKIO2 Driver (HKLM-x32\...\{548dd834-70c5-4426-8065-fbeabdd2bb5d}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.34 - ASUSTek COMPUTER INC.) Hidden ASUS Keyboard HAL (HKLM-x32\...\{049c2f12-c730-4efc-81db-0adcf3ff5782}) (Version: 1.0.34 - ASUSTek COMPUTER INC.) Hidden ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.29 - ASUSTeK Computer Inc.) Hidden ASUS MB Peripheral Products (HKLM-x32\...\{f651776f-58aa-42a2-ab37-593fb3d78ef2}) (Version: 1.0.29 - ASUSTeK Computer Inc.) Hidden ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.30 - ASUSTek COMPUTER INC.) Hidden ASUS Mouse HAL (HKLM-x32\...\{48831373-5539-4ba1-b290-8718284e801b}) (Version: 1.0.30 - ASUSTek COMPUTER INC.) Hidden ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.1.1 - ASUSTek COMPUTER INC.) Hidden ASUS MousePad HAL (HKLM-x32\...\{3fb92594-5d14-44b6-aa83-5e9823daa7e8}) (Version: 1.0.1.1 - ASUSTek COMPUTER INC.) Hidden Asus NahimicSettingsConfigurator (HKLM\...\{4354E970-FFD1-4354-BB44-A23C4C4DDB28}) (Version: 3.6.3401 - ASUSTeK COMPUTER INC) Hidden Asus ProductDaemonSetup (HKLM\...\{36606417-B1C4-42C2-B5C1-67972DA63DAB}) (Version: 3.6.3401 - ASUSTeK COMPUTER INC) Hidden Asus ProfileSwitcherCleanup (HKLM\...\{1C7D230F-66FA-4302-80F7-33EFE7EFED4F}) (Version: 3.6.34.49403 - ASUSTeK COMPUTER INC) Hidden Asus Sonic Radar 3 (HKLM-x32\...\{379946d7-d0d7-4395-87e8-8097ca734c8a}) (Version: 3.6.34.49403 - ASUSTeK COMPUTER INC) Asus Sonic Studio 3 (HKLM-x32\...\{13df6180-9a6f-4b9b-bfb8-3741c3af4e01}) (Version: 3.6.34.49403 - ASUSTeK COMPUTER INC) Asus SonicMapperConfigurator (HKLM\...\{6FD5072F-7FCE-4F73-BAB0-98251FF891CE}) (Version: 3.6.34.49403 - ASUSTeK COMPUTER INC) Hidden Asus SonicRadar3Setup (HKLM\...\{B938DE12-4F3D-4068-9649-E5A9E3CB464C}) (Version: 3.6.34.49403 - ASUSTeK COMPUTER INC) Hidden Asus SonicStudio3Setup (HKLM\...\{4F5EDE91-E41F-428B-BE5D-EB185BE9007A}) (Version: 3.6.34.49403 - ASUSTeK COMPUTER INC) Hidden AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.57 - ASUSTeK Computer Inc.) AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.29 - ASUS) Hidden AURA DRAM Component (HKLM-x32\...\{90aec21d-069f-4016-b2ba-c4ab1d233a1c}) (Version: 1.0.29 - ASUS) Hidden AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.03.39 - ASUSTeK Computer Inc.) Hidden AURA Service (HKLM-x32\...\{1a6593ef-f1a5-4d37-9113-9cd1c670aa17}) (Version: 3.03.39 - ASUSTeK Computer Inc.) Backup and Sync from Google (HKLM\...\{768C0072-2FD2-4934-9824-B2A1E81AEA5D}) (Version: 3.45.5545.5747 - Google, Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bonjour (HKLM\...\{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}) (Version: 2.0.4.0 - Apple Inc.) Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.) Canon MX390 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX390_series) (Version: 1.00 - Canon Inc.) Chrome Remote Desktop Host (HKLM-x32\...\{507238FB-1F1F-4E97-8478-29951A0F7DDD}) (Version: 78.0.3904.7 - Google Inc.) Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.11 - CORSAIR COMPONENTS INC.) Hidden Corsair AURA DRAM Component (HKLM-x32\...\{7381e5cd-5a9b-42eb-85f5-be176d0ea94a}) (Version: 1.0.11 - CORSAIR COMPONENTS INC.) Hidden Destiny 2 (HKLM-x32\...\Destiny 2) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\Discord) (Version: 0.0.305 - Discord Inc.) Downwell (HKLM-x32\...\{FC061199-B7E3-43F7-A99C-3E00F18A1796}) (Version: - Devolver Digital) Dual Controller (HKLM-x32\...\{BFF9E0A4-2669-4139-8320-9C5F76727DAA}) (Version: 2.62 - LG Electronics Inc) ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.) ENE IO Driver (HKLM-x32\...\{D0512FF6-6194-4D2E-967E-25B82A3322FF}) (Version: 1.0.0 - ENE TECHNOLOGY INC.) Hidden ENE RGB HAL (HKLM\...\{095C8467-BF29-4384-B727-1C36ED8BC704}) (Version: 1.00.08 - Ene Tech.) Hidden ENE RGB HAL (HKLM-x32\...\{164b6011-4720-403c-8ee0-dae7640cce9f}) (Version: 1.00.08 - Ene Tech.) Hidden Epic Games Launcher (HKLM-x32\...\{3321F45C-EE73-48F1-8418-E65FF0C11F64}) (Version: 1.1.206.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) iDisplay 3.1.2 (HKLM-x32\...\iDisplay_is1) (Version: 3.1.2 - SHAPE) Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.14 - KINGSTON COMPONENTS INC.) Hidden Kingston AURA DRAM Component (HKLM-x32\...\{5581facc-367c-46d5-8dd3-40f4ec464220}) (Version: 1.0.14 - KINGSTON COMPONENTS INC.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.) Microsoft .NET Core SDK 2.1.602 (x64) (HKLM-x32\...\{ce5d125b-e426-441b-a83f-d6ef6825aa77}) (Version: 2.1.602 - Microsoft Corporation) Microsoft .NET Core SDK 2.1.604 (x64) (HKLM-x32\...\{d198c231-829e-4f4b-832d-0571aa77244a}) (Version: 2.1.604 - Microsoft Corporation) Microsoft Edge Dev (HKLM-x32\...\Microsoft Edge Dev) (Version: 79.0.287.3 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.111.45 - ) Microsoft OneDrive (HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\OneDriveSetup.exe) (Version: 19.174.0902.0009 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.20.27508 (HKLM-x32\...\{8c3f057e-d6a6-4338-ac6a-f1c795a6577b}) (Version: 14.20.27508.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.37.1 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.2.3073.701 - Microsoft Corporation) MTG Arena (HKLM-x32\...\{766A9BC7-837B-4826-831B-74B696BC211A}) (Version: 0.1.1336.0 - Wizards of the Coast) Hidden MTG Arena (HKLM-x32\...\MTG Arena 0.1.1336.0) (Version: 0.1.1336.0 - Wizards of the Coast) Nextcloud (HKLM-x32\...\Nextcloud) (Version: 2.5.2.5231 - Nextcloud GmbH) OnScreen Control (HKLM-x32\...\{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 4.43 - LG Electronics Inc) Origin (HKLM-x32\...\Origin) (Version: 10.5.47.29954 - Electronic Arts, Inc.) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Overwatch Test (HKLM-x32\...\Overwatch Test) (Version: - Blizzard Entertainment) PokeMMO (HKLM\...\PokeMMO_is1) (Version: - PokeMMO) Pokemon Showdown (HKLM-x32\...\Pokemon Showdown) (Version: - "Pokemon Showdown") qBittorrent 4.1.7 (HKLM-x32\...\qBittorrent) (Version: 4.1.7 - The qBittorrent project) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AD}) (Version: 1.5.1014.181017 - REALTEK Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8382 - Realtek Semiconductor Corp.) Realtek PCI-E Wireless LAN Driver (HKLM-x32\...\InstallShield_{70714FB7-4084-4202-A599-2D5935DECB67}) (Version: Drv_3.00.0031 - REALTEK Semiconductor Corp.) Resolume Arena 6.0.7 rev 60787 (HKLM\...\Resolume Arena_is1) (Version: 6.0.7.60787 - Resolume) Resolume DXV Codec 3.0.1 (HKLM-x32\...\Resolume DXV Codec 3.0.1_is1) (Version: 3.0.1 - Resolume) Sacred Gold (HKLM-x32\...\GOGPACKSACREDGOLD_is1) (Version: 2.0.0.4 - GOG.com) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries Engine 3.16.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.16.1 - SteelSeries ApS) Supporto applicazioni Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Telegram Desktop version 1.8.13 (HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.8.13 - Telegram FZ-LLC) Twitch (HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN) Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.) WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WinDirStat 1.1.2 (HKU\S-1-5-21-3676251289-4294955644-822779951-1001\...\WinDirStat) (Version: - ) Windows SDK AddOn (HKLM-x32\...\{1E76DFA7-96F3-4281-8E41-8A226C3E42EE}) (Version: 10.1.0.0 - Microsoft Corporation) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment) Yamaha Steinberg USB Driver (HKLM\...\{B9ADCE53-BBF4-4F12-BC0C-1B2E150850C7}) (Version: 1.10.4 - Yamaha Corporation) Hidden Yamaha Steinberg USB Driver (HKLM-x32\...\yUninstall_{2938B185-2D57-47B0-9FC8-C90A67BA9277}) (Version: 1.10.4 - Yamaha Corporation) Packages: ========= Age of Empires Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.Darwin_100.1.28529.0_x64__8wekyb3d8bbwe [2019-08-30] (Microsoft Studios) Blair Witch -> C:\Program Files\WindowsApps\3951BlooberTeamS.A.BlairWitch_1.0.232.0_x64__myqva651hxz16 [2019-09-30] (Bloober Team S.A.) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-05-25] (Canon Inc.) Clustertruck -> C:\Program Files\WindowsApps\tinyBuildGames.3289435C1E20_1.0.3.0_x86__3sz1pp2ynv2xe [2019-09-30] (tinyBuild Games) DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2019-06-27] (Microsoft Corporation) DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2019-06-27] (Microsoft Corporation) EdgeDevtoolsPlugin -> C:\WINDOWS\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-09-26] (Microsoft Corporation) Editor avatar Xbox -> C:\Program Files\WindowsApps\Microsoft.XboxIdentity_100.1906.4002.0_x64__8wekyb3d8bbwe [2019-06-27] (Microsoft Corporation) Estensione video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation) Forza Horizon 4 -> C:\Program Files\WindowsApps\Microsoft.SunriseBaseGame_1.351.461.2_x64__8wekyb3d8bbwe [2019-10-03] (Microsoft Studios) Forza Horizon 4 Formula Drift Car Pack -> C:\Program Files\WindowsApps\Microsoft.FormulaDriftCarPack_1.0.3.2_neutral__8wekyb3d8bbwe [2019-06-28] (Microsoft Studios) Game Controller Tester -> C:\Program Files\WindowsApps\11032Reconco.XboxControllerTester_1.5.5.0_x64__thvmwcgtjwwvy [2019-08-21] (Reconco) [MS Ad] Hub di Xbox Insider -> C:\Program Files\WindowsApps\Microsoft.FlightDashboard_457.1907.26003.0_x64__8wekyb3d8bbwe [2019-08-18] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-12] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-12] (Microsoft Corporation) [MS Ad] Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.9.9231.0_x64__8wekyb3d8bbwe [2019-10-03] (Microsoft Studios) [MS Ad] Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_2.7.4300.0_x86__8wekyb3d8bbwe [2019-05-12] (Microsoft Studios) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-05] (Microsoft Studios) [MS Ad] MSN Meteo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-10] (Microsoft Corporation) [MS Ad] Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.0.0.0_x64__a2t3txkz9j1jw [2019-08-18] (MAGIX) Posta e Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20248.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation) [MS Ad] ReCore -> C:\Program Files\WindowsApps\Microsoft.ReCore_1.1.7468.2_x64__8wekyb3d8bbwe [2019-05-12] (Microsoft Studios) Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.85.9036.2_x64__8wekyb3d8bbwe [2019-09-13] (ms-resource:PublisherDisplayName) Sea of Thieves Insider -> C:\Program Files\WindowsApps\Microsoft.Wasserburg_1.86.5273.10_x64__8wekyb3d8bbwe [2019-10-05] (ms-resource:PublisherDisplayName) Servizi di gioco -> C:\Program Files\WindowsApps\Microsoft.GamingServices_1.33.30001.0_x64__8wekyb3d8bbwe [2019-10-02] (Microsoft Corporation) Slay The Spire -> C:\Program Files\WindowsApps\HumbleBundle.SlayTheSpire_1.2.3.0_x86__q2mcdwmzx4qja [2019-09-21] (Humble Bundle) Ubuntu 18.04 LTS -> C:\Program Files\WindowsApps\CanonicalGroupLimited.Ubuntu18.04onWindows_1804.2019.522.0_x64__79rhkp1fndgsc [2019-05-25] (Canonical Group Limited) WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_0.3.4679.0_x64__cv1g1gvanyjgm [2019-09-24] (WhatsApp Inc.) Windows Terminal (Preview) -> C:\Program Files\WindowsApps\Microsoft.WindowsTerminal_0.5.2762.0_x64__8wekyb3d8bbwe [2019-10-05] (Microsoft Corporation) Worms W.M.D -> C:\Program Files\WindowsApps\Team17DigitalLimited.WormsW.M.DWin10_1.0.316.0_x86__j5x4vj4y67jhc [2019-08-08] (Team17 Digital Limited) Xbox (Beta) -> C:\Program Files\WindowsApps\Microsoft.GamingApp_1910.1001.6.0_x64__8wekyb3d8bbwe [2019-10-05] (Microsoft Corporation) Xbox Original Avatars -> C:\Program Files\WindowsApps\Microsoft.Avatars_100.1804.3001.0_x64__8wekyb3d8bbwe [2019-05-12] (Microsoft Corporation) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-3676251289-4294955644-822779951-1001_Classes\CLSID\{25e9bd5b-9c6d-4f4e-9b78-ed2ca89a2098} -> [Nextcloud] => D:\Cubo [2018-09-03 03:34] CustomCLSID: HKU\S-1-5-21-3676251289-4294955644-822779951-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed] ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed] ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-09-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed] ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\leona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applicazioni Chrome\Chrome Remote Desktop.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp ShortcutWithArgument: C:\Users\leona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applicazioni Chrome\Google Play Musica.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi ShortcutWithArgument: C:\Users\leona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applicazioni Chrome\Vysor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gidgenkbbabolejbgbpnhbimgjbffefm ==================== Loaded Modules (Whitelisted) ============== 2019-05-12 01:55 - 2018-03-26 16:29 - 000147456 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll 2019-05-12 01:56 - 2018-08-09 11:32 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll 2019-05-12 01:56 - 2018-08-09 11:32 - 000681984 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\UIImprovmentHelper.dll 2019-05-12 01:57 - 2019-05-12 01:56 - 000242176 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.38\cpuutil.dll 2019-05-13 12:33 - 2019-05-13 12:33 - 000062464 _____ () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Exeio.dll 2019-05-13 12:33 - 2019-05-13 12:33 - 001772544 _____ () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Vender.dll 2019-09-25 01:32 - 2019-01-29 10:14 - 000059392 _____ () [File not signed] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\ScreenSplitterHook1.dll 2019-09-25 01:32 - 2019-01-29 10:14 - 000066048 _____ () [File not signed] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\ScreenSplitterHook641.dll 2019-09-25 01:32 - 2018-10-10 09:19 - 006175232 _____ () [File not signed] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\TracerLib.dll 2019-03-26 10:51 - 2019-03-26 10:51 - 000053248 _____ () [File not signed] C:\Program Files (x86)\LightingService\cpuutil.dll 2019-03-26 10:51 - 2019-03-26 10:51 - 000018432 _____ () [File not signed] C:\Program Files (x86)\LightingService\Log4cxxWrapper.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 003598336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2018-02-22 10:15 - 2018-02-22 10:15 - 000367616 _____ () [File not signed] C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\NSConfiguratorDaemonModule.dll 2018-02-22 10:33 - 2018-02-22 10:33 - 000230400 _____ () [File not signed] C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Sonic Studio 3\ProfileSwitcherDaemonModule.dll 2019-01-31 16:40 - 2019-01-31 16:40 - 000208896 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll 2018-03-20 14:34 - 2018-03-20 14:34 - 000265728 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll 2018-09-20 09:39 - 2018-09-20 09:39 - 000156672 _____ () [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\AacHal_x86.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 000113664 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\_ctypes.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000173568 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\_elementtree.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 001800192 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\_hashlib.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000032256 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\_multiprocessing.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000046080 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\_psutil_windows.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000047616 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\_socket.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 002230784 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\_ssl.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000026112 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\_yappi.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000080896 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\bz2.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 006277632 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\cello.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000014848 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\common.time34.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000007680 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\hashobjs_ext.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000301568 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\PIL._imaging.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000169472 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\pyexpat.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 001084416 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\pysqlite2._sqlite.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000548864 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\pythoncom27.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 000137728 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\pywintypes27.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 000010752 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\select.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000020992 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\thumbnails_ext.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000689664 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\unicodedata.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000118784 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\usb_ext.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000128512 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32api.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000438784 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32com.shell.shell.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000011776 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32crypt.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000023040 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32event.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000149504 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32file.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000223232 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32gui.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000048128 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32inet.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000029696 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32pdh.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000027648 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32pipe.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000044032 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32process.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000020480 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32profile.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000136192 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32security.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000026624 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\win32ts.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000034304 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\windows.conditional.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000038400 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\windows.connectivity.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000073216 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\windows.device_monitor.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000110592 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\windows.volumes.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000020480 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\windows.winwrap.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 001325056 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wx._controls_.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 001489408 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wx._core_.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 001007104 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wx._gdi_.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000103424 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wx._html2.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 000916992 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wx._misc_.pyd 2019-10-06 19:48 - 2019-10-06 19:48 - 001039872 _____ () [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wx._windows_.pyd 2019-10-04 00:41 - 2019-10-04 00:41 - 085602816 _____ () [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\libcef.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000089600 _____ () [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\libEGL.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 003841536 _____ () [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\libGLESv2.dll 2019-05-16 16:48 - 2017-06-23 13:54 - 012547072 _____ () [File not signed] D:\Programmi (x86)\iDisplay\avcodec-57.dll 2019-05-16 16:48 - 2017-06-23 13:54 - 001140224 _____ () [File not signed] D:\Programmi (x86)\iDisplay\avutil-55.dll 2019-05-16 16:48 - 2017-06-23 13:54 - 000528896 _____ () [File not signed] D:\Programmi (x86)\iDisplay\swresample-2.dll 2019-05-16 16:48 - 2017-06-23 13:54 - 000977408 _____ () [File not signed] D:\Programmi (x86)\iDisplay\swscale-4.dll 2019-05-16 16:48 - 2017-06-23 13:52 - 000142336 _____ () [File not signed] D:\Programmi (x86)\iDisplay\zlibwapi.dll 2019-03-19 14:35 - 2019-03-19 14:35 - 001213952 _____ () [File not signed] D:\Programmi (x86)\Nextcloud\nextcloudsync.dll 2019-03-19 14:32 - 2019-03-19 14:32 - 001068032 _____ () [File not signed] D:\Programmi (x86)\Nextcloud\ocsync.dll 2018-08-21 13:30 - 2018-08-21 13:30 - 000038400 _____ () [File not signed] D:\Programmi (x86)\Nextcloud\qt5keychain.dll 2019-03-26 10:51 - 2019-03-26 10:51 - 002831360 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\LightingService\log4cxx.dll 2019-05-12 01:55 - 2018-03-26 16:29 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsAcpi.dll 2019-05-13 12:33 - 2017-11-24 08:47 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpi.dll 2019-05-12 01:55 - 2018-03-26 16:29 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll 2019-05-12 01:55 - 2018-03-26 16:29 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll 2019-05-13 12:33 - 2017-11-24 08:47 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\AsMultiLang.dll 2019-05-13 12:33 - 2017-11-24 08:47 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpiEx.dll 2019-05-13 12:33 - 2019-05-13 12:33 - 000106496 _____ (ASUSTek Computer Inc.,) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\EIO.DLL 2019-10-04 00:41 - 2019-10-04 00:41 - 001463808 _____ (Firelight Technologies) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\fmod.dll 2019-03-06 20:18 - 2019-03-06 20:18 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll 2019-03-06 20:18 - 2019-03-06 20:18 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll 2019-05-12 00:45 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll 2019-05-16 16:48 - 2017-06-23 13:52 - 000854528 _____ (Microsoft Corporation) [File not signed] D:\Programmi (x86)\iDisplay\dbghelp.dll 2018-09-20 09:08 - 2018-09-20 09:08 - 000053760 _____ (MS) [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\MsIo32_Galax.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 003042304 _____ (Python Software Foundation) [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\python27.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000596992 _____ (The Chromium Authors) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\chrome_elf.dll 2018-03-27 10:46 - 2018-03-27 10:46 - 002892800 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Programmi (x86)\Nextcloud\libcrypto-1_1-x64.dll 2018-06-22 16:54 - 2018-06-22 16:54 - 001817088 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Programmi (x86)\Nextcloud\LIBEAY32.dll 2018-06-22 16:54 - 2018-06-22 16:54 - 000371712 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Programmi (x86)\Nextcloud\ssleay32.dll 2019-09-16 23:59 - 2019-06-11 08:21 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Programmi (x86)\Origin\LIBEAY32.dll 2019-09-16 23:59 - 2019-06-11 08:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Programmi (x86)\Origin\ssleay32.dll 2019-09-16 23:59 - 2019-07-12 09:23 - 001611264 _____ (The Qt Company Ltd) [File not signed] D:\Programmi (x86)\Origin\platforms\qwindows.dll 2019-09-16 23:59 - 2019-07-12 09:23 - 005487104 _____ (The Qt Company Ltd) [File not signed] D:\Programmi (x86)\Origin\Qt5Core.dll 2019-09-16 23:59 - 2019-07-12 09:23 - 005841920 _____ (The Qt Company Ltd) [File not signed] D:\Programmi (x86)\Origin\Qt5Gui.dll 2019-09-16 23:59 - 2019-07-12 09:23 - 001179136 _____ (The Qt Company Ltd) [File not signed] D:\Programmi (x86)\Origin\Qt5Network.dll 2019-09-16 23:59 - 2019-07-12 09:23 - 005089792 _____ (The Qt Company Ltd) [File not signed] D:\Programmi (x86)\Origin\Qt5Widgets.dll 2019-09-16 23:59 - 2019-07-12 09:23 - 000184832 _____ (The Qt Company Ltd) [File not signed] D:\Programmi (x86)\Origin\Qt5Xml.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 001441280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll 2019-09-26 16:46 - 2019-09-26 16:46 - 005999104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2019-07-18 17:53 - 2019-07-18 17:53 - 006413824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2019-07-18 17:53 - 2019-07-18 17:53 - 001141760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2019-07-18 17:53 - 2019-07-18 17:53 - 000339968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2019-07-18 17:53 - 2019-07-18 17:53 - 004143104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2019-07-18 17:53 - 2019-07-18 17:53 - 003840000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2019-07-18 17:53 - 2019-07-18 17:53 - 000332800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2019-07-18 17:53 - 2019-07-18 17:53 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2019-07-18 17:53 - 2019-07-18 17:53 - 000349184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2019-07-18 17:53 - 2019-07-18 17:53 - 080959488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 005622272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000190464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 002825216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000137216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2019-07-18 17:54 - 2019-07-18 17:54 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000047104 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\audio\qtaudio_windows.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000026112 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\imageformats\qgif.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000027136 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\imageformats\qico.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000243712 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\imageformats\qjpeg.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000223744 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\imageformats\qmng.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000020992 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\imageformats\qsvg.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000332288 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\imageformats\qtiff.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 001140224 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\platforms\qwindows.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000041984 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000014848 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000014848 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\qml\QtQml\Models.2\modelsplugin.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000014848 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\qml\QtQuick.2\qtquick2plugin.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000084480 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000267776 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\qml\QtQuick\Controls\qtquickcontrolsplugin.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000071680 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\qml\QtQuick\Layouts\qquicklayoutsplugin.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000211456 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000014848 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\qml\QtQuick\Window.2\windowplugin.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 004943360 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5Core.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 005022208 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5Gui.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000626176 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5Multimedia.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 000877056 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5Network.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 002908672 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5Qml.dll 2019-10-04 00:41 - 2019-10-04 00:41 - 003078656 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5Quick.dll 2019-10-04 00:42 - 2019-10-04 00:42 - 000096256 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5QuickControls2.dll 2019-10-04 00:42 - 2019-10-04 00:42 - 000681472 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5QuickTemplates2.dll 2019-10-04 00:42 - 2019-10-04 00:42 - 000259072 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5Svg.dll 2019-10-04 00:42 - 2019-10-04 00:42 - 004718080 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5Widgets.dll 2019-10-04 00:42 - 2019-10-04 00:42 - 000439296 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5WinExtras.dll 2019-10-04 00:42 - 2019-10-04 00:42 - 000159232 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Battle.net\Battle.net.11512\Qt5Xml.dll 2018-06-15 16:43 - 2018-06-15 16:43 - 000035328 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\iconengines\qsvgicon.dll 2018-06-15 07:16 - 2018-06-15 07:16 - 000031744 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\imageformats\qgif.dll 2018-06-15 16:43 - 2018-06-15 16:43 - 000040960 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\imageformats\qicns.dll 2018-06-15 07:16 - 2018-06-15 07:16 - 000032256 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\imageformats\qico.dll 2018-06-15 07:17 - 2018-06-15 07:17 - 000329728 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\imageformats\qjpeg.dll 2018-06-15 16:43 - 2018-06-15 16:43 - 000025088 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\imageformats\qsvg.dll 2018-06-15 16:42 - 2018-06-15 16:42 - 000025088 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\imageformats\qtga.dll 2018-06-15 16:43 - 2018-06-15 16:43 - 000371712 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\imageformats\qtiff.dll 2018-06-15 16:42 - 2018-06-15 16:42 - 000023552 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\imageformats\qwbmp.dll 2018-06-15 16:43 - 2018-06-15 16:43 - 000486912 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\imageformats\qwebp.dll 2018-06-15 07:18 - 2018-06-15 07:18 - 001426944 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\platforms\qwindows.dll 2018-08-21 13:21 - 2018-08-21 13:21 - 005916160 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5Core.dll 2018-06-15 07:13 - 2018-06-15 07:13 - 006338560 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5Gui.dll 2018-06-15 07:12 - 2018-06-15 07:12 - 001257984 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5Network.dll 2018-06-15 18:10 - 2018-06-15 18:10 - 000305152 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5Positioning.dll 2018-06-15 07:16 - 2018-06-15 07:16 - 000318464 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5PrintSupport.dll 2018-06-15 17:01 - 2018-06-15 17:01 - 003426816 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5Qml.dll 2018-06-15 17:05 - 2018-06-15 17:05 - 003630592 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5Quick.dll 2018-06-15 17:06 - 2018-06-15 17:06 - 000073216 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5QuickWidgets.dll 2018-06-15 16:43 - 2018-06-15 16:43 - 000328704 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5Svg.dll 2018-06-15 17:20 - 2018-06-15 17:20 - 000112128 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5WebChannel.dll 2018-06-15 21:41 - 2018-06-15 21:41 - 073577984 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5WebEngineCore.dll 2018-06-15 21:53 - 2018-06-15 21:53 - 000226304 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5WebEngineWidgets.dll 2018-06-15 07:15 - 2018-06-15 07:15 - 005541376 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5Widgets.dll 2018-06-15 07:10 - 2018-06-15 07:10 - 000190976 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\Qt5Xml.dll 2018-06-15 07:17 - 2018-06-15 07:17 - 000136192 _____ (The Qt Company Ltd.) [File not signed] D:\Programmi (x86)\Nextcloud\styles\qwindowsvistastyle.dll 2019-05-13 12:33 - 2019-05-13 12:33 - 000193536 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\AsusGpuTweak.dll 2019-04-12 10:59 - 2019-04-12 10:59 - 000427520 _____ (TODO: <Company name>) [File not signed] C:\Program Files\ASUS\Aac_Keyboard\AacKbHal_x86.dll 2019-05-16 16:48 - 2017-06-23 13:54 - 001375744 _____ (winsparkle.org) [File not signed] D:\Programmi (x86)\iDisplay\WinSparkle.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wxbase30u_net_vc90_x64.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wxbase30u_vc90_x64.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wxmsw30u_adv_vc90_x64.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wxmsw30u_core_vc90_x64.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wxmsw30u_html_vc90_x64.dll 2019-10-06 19:48 - 2019-10-06 19:48 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\leona\AppData\Local\Temp\_MEI96602\wxmsw30u_webview_vc90_x64.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2019-05-12 00:09 - 2019-06-09 13:28 - 000000848 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 resolume.com ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3676251289-4294955644-822779951-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\leona\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\wallpaper.bmp DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == If an entry is included in the fixlist, it will be removed. HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe (Microsoft Windows -> ) FirewallRules: [UDP Query User{108DF69D-53BA-4254-8FBD-382EC5B67541}D:\battlenet game\overwatch\_retail_\overwatch.exe] => (Allow) D:\battlenet game\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{C927F122-7840-448A-B3B6-9ECD0C7F02C0}D:\battlenet game\overwatch\_retail_\overwatch.exe] => (Allow) D:\battlenet game\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{E70744C8-427C-4509-944D-581302495104}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{C9AC2A11-46EE-4CC7-938F-CCE31053F40C}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{BFEE940A-B42E-40F0-A179-73AC15294A3F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{3470BF21-4889-4D7F-A76D-0A66F33AC168}] => (Allow) D:\Programmi (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{135730FF-7BBC-40E2-8727-F8962D1A711B}] => (Allow) D:\Programmi (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{78FA4FB7-A19A-4F4C-9CAC-D3BFC905858B}] => (Allow) C:\Program Files\Resolume Arena 6\Arena.exe (Resolume B.V.) [File not signed] FirewallRules: [{079F6750-5C5A-45B5-ACBB-322FCF559A27}] => (Allow) C:\Program Files\Resolume Arena 6\Arena.exe (Resolume B.V.) [File not signed] FirewallRules: [{4770CDD8-20D9-4EED-AC49-8DA5AACB6406}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe (Gearbox Software LLC -> Take-Two Interactive Software, Inc.) FirewallRules: [{DF2A1F52-1A4E-41E5-93CF-5271CFE695FA}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe (Gearbox Software LLC -> Take-Two Interactive Software, Inc.) FirewallRules: [UDP Query User{28E2C048-2F97-4EA7-8E1D-83E9D7AD4312}D:\programmi (x86)\steam\steamapps\common\splitgate arena warfare\portalwars\binaries\win64\portalwars-win64-shipping.exe] => (Allow) D:\programmi (x86)\steam\steamapps\common\splitgate arena warfare\portalwars\binaries\win64\portalwars-win64-shipping.exe No File FirewallRules: [TCP Query User{C50E9E9C-02FD-4453-BF08-F3B25B0730FA}D:\programmi (x86)\steam\steamapps\common\splitgate arena warfare\portalwars\binaries\win64\portalwars-win64-shipping.exe] => (Allow) D:\programmi (x86)\steam\steamapps\common\splitgate arena warfare\portalwars\binaries\win64\portalwars-win64-shipping.exe No File FirewallRules: [UDP Query User{A50801E3-EB7D-46D3-B7CA-9D9BFC71CABD}D:\battlenet game\overwatch\overwatch.exe] => (Allow) D:\battlenet game\overwatch\overwatch.exe No File FirewallRules: [TCP Query User{30ACCD22-A960-484F-A8CE-5BB7AA456DE6}D:\battlenet game\overwatch\overwatch.exe] => (Allow) D:\battlenet game\overwatch\overwatch.exe No File FirewallRules: [UDP Query User{B6CE8455-557E-4607-A5A1-0A4B9BFD36D8}D:\programmi (x86)\idisplay\idisplay.exe] => (Allow) D:\programmi (x86)\idisplay\idisplay.exe (SHAPE GmbH -> SHAPE) FirewallRules: [TCP Query User{89838F60-A1F2-441D-8CC1-AD24DC25563A}D:\programmi (x86)\idisplay\idisplay.exe] => (Allow) D:\programmi (x86)\idisplay\idisplay.exe (SHAPE GmbH -> SHAPE) FirewallRules: [{D278BDCD-D866-4E48-9073-4DA8B3286F09}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{780CC9DD-16C9-4C1F-9BBB-BD874DB548D1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{DEC13055-A96A-44FD-BD61-50AD9EA7BF1F}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe (Gearbox Software LLC -> Gearbox Software) FirewallRules: [{BFE6EBAA-EAFF-43F6-B32B-61086DB1D195}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe (Gearbox Software LLC -> Gearbox Software) FirewallRules: [{0A79E058-5EED-49D3-9564-15669A8E79E5}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Borderlands_2_RU\Binaries\Win32\Launcher.exe (Gearbox Software) [File not signed] FirewallRules: [{F2F05DE7-4336-4A1B-9F26-1BD71E9C2A6A}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Borderlands_2_RU\Binaries\Win32\Launcher.exe (Gearbox Software) [File not signed] FirewallRules: [UDP Query User{F11C5B0D-9688-4BD5-AE54-03D366FC93DB}C:\program files (x86)\wizards of the coast\mtga\mtga.exe] => (Allow) C:\program files (x86)\wizards of the coast\mtga\mtga.exe (Wizards of the Coast, LLC -> ) FirewallRules: [TCP Query User{061E2BB6-CED5-4C7A-9DAA-579705A968EF}C:\program files (x86)\wizards of the coast\mtga\mtga.exe] => (Allow) C:\program files (x86)\wizards of the coast\mtga\mtga.exe (Wizards of the Coast, LLC -> ) FirewallRules: [{577E9B52-B18A-4917-876F-D9D4D437C9EA}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\CatherineClassic\Catherine.exe (The Eccentric Ape) [File not signed] FirewallRules: [{E9946DF5-1CE2-4DD0-BF3B-BBA1B95F7E58}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\CatherineClassic\Catherine.exe (The Eccentric Ape) [File not signed] FirewallRules: [{748BF5D8-14E2-492E-B249-7609EFF5D921}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\StickFightTheGame\StickFight.exe () [File not signed] FirewallRules: [{4EACD715-E244-464E-AA44-E27BE59ECFB7}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\StickFightTheGame\StickFight.exe () [File not signed] FirewallRules: [{F23A48EA-4DD5-4107-A44C-D9C45F43A7C4}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe () [File not signed] FirewallRules: [{46E61628-99CB-4F7B-BD33-612DFB9732D9}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe () [File not signed] FirewallRules: [{0621AD38-53FF-4B06-AFD5-30BDA30274F6}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> ) FirewallRules: [{E9F92D81-7A68-4D07-B742-FEE0153BB49E}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> ) FirewallRules: [{4A116A0B-CAAA-4E44-A599-450AF5CD11FE}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed] FirewallRules: [{C9A62FE3-FEC0-4E01-B2D0-8E033B3DD6CE}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed] FirewallRules: [{A876C64E-9D5A-4A51-A7F7-6A9E66C26656}] => (Allow) D:\Programmi (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{3B3120F3-3004-4A21-9D62-87C18A7A6F62}] => (Allow) D:\Programmi (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{BAF5BFC2-63FD-4EEE-B8F3-82776D0D767D}] => (Allow) D:\Programmi (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File FirewallRules: [{07C21AF4-8FF7-4272-9EC4-B3741F8E1615}] => (Allow) D:\Programmi (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File FirewallRules: [TCP Query User{D45264EE-C9B0-4E24-8508-CCF0DC0D9E6C}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File FirewallRules: [UDP Query User{724BD92A-FCDE-4772-9E3F-048FC39B46DA}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File FirewallRules: [TCP Query User{8E583FC9-823C-4609-9C4C-787FA8E4A5A3}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File FirewallRules: [UDP Query User{5760BE74-A8A4-470F-B8E6-A41ADC65277C}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File FirewallRules: [{DEEFDAE3-EDCA-439E-A9F4-0C5F8FBBAACB}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Portal\hl2.exe (Valve -> ) FirewallRules: [{7CC488F7-686B-4500-92E8-F21A2CFAEC42}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Portal\hl2.exe (Valve -> ) FirewallRules: [{B07EBE1B-9F7C-4124-82F5-88F428B02EE5}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Overcooked\Overcooked.exe () [File not signed] FirewallRules: [{A090B949-32B3-43E8-BF55-3B37A14C8D1B}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Overcooked\Overcooked.exe () [File not signed] FirewallRules: [{BF738691-D15B-4F7E-B75C-A8D26D359878}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.) FirewallRules: [{8F1CFC0F-D775-4BFF-A02B-70C8538020FD}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.) FirewallRules: [{0782342B-F395-4E43-B81F-362A20ECCEB3}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed] FirewallRules: [{A5E4628C-92EA-4251-ABA7-BAF31D1FAF8B}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed] FirewallRules: [TCP Query User{7CA4CB64-82F6-4379-B103-16C55305EB53}C:\gog games\sacred gold\sacred.exe] => (Allow) C:\gog games\sacred gold\sacred.exe (studio II Software) [File not signed] FirewallRules: [UDP Query User{A5380427-4CAB-47C9-A4EB-4702ACA90392}C:\gog games\sacred gold\sacred.exe] => (Allow) C:\gog games\sacred gold\sacred.exe (studio II Software) [File not signed] FirewallRules: [TCP Query User{DB6B81A6-C2C6-4216-9D26-057A644841FC}C:\gog games\sacred gold\gameserver.exe] => (Allow) C:\gog games\sacred gold\gameserver.exe (Ascaron Entertainment GmbH) [File not signed] FirewallRules: [UDP Query User{6D4D5B26-C061-4CAE-8C28-E1B49A94692F}C:\gog games\sacred gold\gameserver.exe] => (Allow) C:\gog games\sacred gold\gameserver.exe (Ascaron Entertainment GmbH) [File not signed] FirewallRules: [{84EF0071-A210-49E3-8AB9-31695A92AC2E}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe (Google LLC -> Google Inc.) FirewallRules: [{FAD055EC-8E2E-49B1-AB6F-29EBBF5CAC84}] => (Allow) D:\Program Files (x86)\Origin Games\AWayOut\Haze1\Binaries\Win64\AWayOut.exe No File FirewallRules: [{C6B57ACD-7F86-4EBD-8289-B84C5D48A316}] => (Allow) D:\Program Files (x86)\Origin Games\AWayOut\Haze1\Binaries\Win64\AWayOut.exe No File FirewallRules: [{55803102-FA04-49F2-9669-12F10752A895}] => (Allow) D:\Program Files (x86)\Origin Games\AWayOut\Haze1\Binaries\Win64\AWayOut_friend.exe No File FirewallRules: [{F2228C36-09C3-46FF-B447-FAC48386FB59}] => (Allow) D:\Program Files (x86)\Origin Games\AWayOut\Haze1\Binaries\Win64\AWayOut_friend.exe No File FirewallRules: [{7355C759-97E5-4EA7-830E-08CA960A1107}] => (Allow) C:\Program Files\AMD\CNext\CNext\amddvr.exe No File FirewallRules: [{BBEBB305-EA1A-472E-BAEB-2B895BFFDBD3}] => (Allow) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) FirewallRules: [{5BD60831-B111-49C0-9318-3E5C54C7D3F3}] => (Allow) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) FirewallRules: [{5195A018-FBC2-434F-8836-1139274EA1B5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{1A0CC4E4-0D91-41F7-80CD-26778C363E97}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{6E8C1BE0-3C92-4356-8C26-D84880D36BB9}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{AC47997F-7996-46CB-B738-1AA03A818C43}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{5C670FDC-011B-4EC1-9AD0-0A085CB0E59D}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{2E31B2F0-D1CD-4C7C-98F8-762091A753B7}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{572F2C55-682C-4DFB-B9E2-CD5869155143}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{1290C36A-98D3-4728-8166-562400A9E26C}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{040DECE6-370A-4FA8-87DB-34F25FC33EE7}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{44C506A2-2C9E-4D35-AAC1-366CD702A12E}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{4FA44A82-15C6-4AFE-920E-622008D96B91}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{4E2E4B84-1AF0-4C0E-AF5B-AE3346FE087F}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualControlFileTransferSession.exe (LG Electronics Inc. -> LG Electronics Inc) FirewallRules: [{263410DA-8E4C-4D53-A4EE-1C7762A60536}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualControlEventGrabberHelper.exe No File FirewallRules: [{3C9E9A82-B6D4-4B13-82A5-7B2FD3A423D4}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualControlEventGeneratorHelper.exe No File FirewallRules: [{A32C619B-FF7C-4DD4-950B-3BC7FAF59904}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Overcooked! 2\Overcooked2.exe () [File not signed] FirewallRules: [{06B0013C-BD85-4634-A9BF-87CF5B7DE898}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\Overcooked! 2\Overcooked2.exe () [File not signed] FirewallRules: [{984FA5EB-20DA-48E3-B551-B79EE74348AE}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\SoulcaliburVI\SoulcaliburVI\Binaries\Win64\SoulcaliburVI.exe () [File not signed] FirewallRules: [{4EB56A26-5D00-4113-8F83-920A864482DD}] => (Allow) D:\Programmi (x86)\Steam\steamapps\common\SoulcaliburVI\SoulcaliburVI\Binaries\Win64\SoulcaliburVI.exe () [File not signed] FirewallRules: [{A1421A80-C0BA-47A8-AFF5-76E95D4C4AF4}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Dev\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{37370B3A-9248-4917-A8F0-7892C90915A7}D:\battlenet game\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\battlenet game\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{20429171-9F3F-4FF2-9B7A-D4F90A9FE3D2}D:\battlenet game\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\battlenet game\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) ==================== Codecs (Whitelisted) ================== ==================== Restore Points ========================= ATTENTION: System Restore is disabled (Total:117.42 GB) (Free:52.56 GB) (45%) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (10/06/2019 07:48:02 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Bad service type in GamberoMantide._MSM_Audio_Service._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html> Error: (10/06/2019 07:48:02 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Bad service type in ._MSM_Audio_Service._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html> Error: (10/06/2019 07:48:02 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Bad service type in GamberoMantide._MSM_Audio_Service._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html> Error: (10/06/2019 07:48:02 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Bad service type in GamberoMantide._MSM_Video_Service._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html> Error: (10/06/2019 07:48:02 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Bad service type in ._MSM_Video_Service._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html> Error: (10/06/2019 07:48:02 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Bad service type in GamberoMantide._MSM_Video_Service._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html> Error: (10/06/2019 07:48:02 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Bad service type in GamberoMantide._MSM_Video_Control_Service._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html> Error: (10/06/2019 07:48:02 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Bad service type in ._MSM_Video_Control_Service._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html> System errors: ============= Error: (10/06/2019 12:44:43 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Arresto imprevista del servizio Servizio Bonjour. Questo evento si è già verificato 1 volta(e). Error: (10/05/2019 01:24:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Arresto imprevista del servizio Servizio Bonjour. Questo evento si è già verificato 1 volta(e). Error: (10/04/2019 04:39:40 PM) (Source: DCOM) (EventID: 10001) (User: GAMBEROMANTIDE) Description: Impossibile avviare un server DCOM {B3EDE298-AE75-4A1C-AB7E-1B9229B77BBE} come Non disponibile/Non disponibile. L'errore "%%2147943140 = Per eseguire l'operazione richiesta è necessaria l'esecuzione con privilegi elevati." si è verificato durante l'esecuzione del comando C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe -Embedding Error: (10/04/2019 04:35:08 PM) (Source: DCOM) (EventID: 10001) (User: GAMBEROMANTIDE) Description: Impossibile avviare un server DCOM {B3EDE298-AE75-4A1C-AB7E-1B9229B77BBE} come Non disponibile/Non disponibile. L'errore "%%2147943140 = Per eseguire l'operazione richiesta è necessaria l'esecuzione con privilegi elevati." si è verificato durante l'esecuzione del comando C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe -Embedding Error: (10/03/2019 07:05:25 PM) (Source: DCOM) (EventID: 10010) (User: GAMBEROMANTIDE) Description: Il server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} non ha effettuato la registrazione con DCOM nel tempo richiesto. Error: (10/03/2019 07:05:25 PM) (Source: DCOM) (EventID: 10010) (User: GAMBEROMANTIDE) Description: Il server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} non ha effettuato la registrazione con DCOM nel tempo richiesto. Error: (10/03/2019 07:05:24 PM) (Source: DCOM) (EventID: 10010) (User: GAMBEROMANTIDE) Description: Il server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} non ha effettuato la registrazione con DCOM nel tempo richiesto. Error: (10/03/2019 07:05:24 PM) (Source: DCOM) (EventID: 10010) (User: GAMBEROMANTIDE) Description: Il server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} non ha effettuato la registrazione con DCOM nel tempo richiesto. Windows Defender: =================================== Date: 2019-10-05 18:14:17.159 Description: Windows Defender Antivirus: rilevato malware o altro software potenzialmente indesiderato. Ulteriori informazioni sono riportate di seguito: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Patch&threatid=2147649714&enterprise=0 Nome: HackTool:Win32/Patch ID: 2147649714 Gravità: Alto Categoria: Strumento Percorso: containerfile:_D:\Leonardo\Downloads\Telegram Desktop\AppNee.com.Adobe.CS.CC.All.Products.Universal._.Patcher.v1.5.7z; file:_D:\Leonardo\Downloads\Telegram Desktop\AppNee.com.Adobe.CS.CC.All.Products.Universal._.Patcher.v1.5.7z->adobe.snr.patch-painter.exe Origine rilevamento: Computer locale Tipo rilevamento: Concreta Origine rilevamento: Utente Utente: GAMBEROMANTIDE\leona Nome processo: Unknown Versione intelligence sulla sicurezza: AV: 1.303.938.0, AS: 1.303.938.0, NIS: 1.303.938.0 Versione motore: AM: 1.1.16400.2, NIS: 1.1.16400.2 Date: 2019-10-05 16:58:08.056 Description: Windows Defender Antivirus: analisi interrotta prima del completamento. ID analisi: {820B27B9-7EF9-4AC1-8610-6BCA08C77D02} Tipo analisi: Antimalware Parametri analisi: Analisi completa Utente: GAMBEROMANTIDE\leona Date: 2019-10-05 16:58:08.056 Description: Windows Defender Antivirus: rilevato malware o altro software potenzialmente indesiderato. Ulteriori informazioni sono riportate di seguito: https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanSpy:Win32/Ursnif.BM!MTB&threatid=2147741574&enterprise=0 Nome: TrojanSpy:Win32/Ursnif.BM!MTB ID: 2147741574 Gravità: Grave Categoria: Trojan horse di monitoraggio Percorso: containerfile:_C:\Users\leona\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Files\S0\153\Attachments\INPS - Richiesta PIN[263].docx; file:_C:\Users\leona\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Files\S0\153\Attachments\INPS - Richiesta PIN[263].docx->word/embeddings/oleObject1.bin->(Ole Stream 0)->microsoft office.exe Origine rilevamento: Computer locale Tipo rilevamento: Concreta Origine rilevamento: Utente Utente: GAMBEROMANTIDE\leona Nome processo: Unknown Versione intelligence sulla sicurezza: AV: 1.303.938.0, AS: 1.303.938.0, NIS: 1.303.938.0 Versione motore: AM: 1.1.16400.2, NIS: 1.1.16400.2 Date: 2019-10-05 16:58:08.054 Description: Windows Defender Antivirus: rilevato malware o altro software potenzialmente indesiderato. Ulteriori informazioni sono riportate di seguito: https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:O97M/Donoff&threatid=2147689064&enterprise=0 Nome: TrojanDownloader:O97M/Donoff ID: 2147689064 Gravità: Grave Categoria: Trojan downloader Percorso: containerfile:_C:\Users\leona\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Files\S0\153\Attachments\V__PrintSystem_Ordini_fornitori[251].docm; file:_C:\Users\leona\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Files\S0\153\Attachments\V__PrintSystem_Ordini_fornitori[251].docm->word/vbaProject.bin Origine rilevamento: Computer locale Tipo rilevamento: Concreta Origine rilevamento: Utente Utente: GAMBEROMANTIDE\leona Nome processo: Unknown Versione intelligence sulla sicurezza: AV: 1.303.938.0, AS: 1.303.938.0, NIS: 1.303.938.0 Versione motore: AM: 1.1.16400.2, NIS: 1.1.16400.2 Date: 2019-10-04 16:59:39.636 Description: Windows Defender Antivirus: analisi interrotta prima del completamento. ID analisi: {9098CDD4-E6D9-4961-9C13-AF7FE08F0DA0} Tipo analisi: Antimalware Parametri analisi: Analisi veloce Utente: GAMBEROMANTIDE\leona Date: 2019-09-28 21:15:44.566 Description: Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza. Nuova versione intelligence sulla sicurezza: Versione intelligence sulla sicurezza precedente: 1.303.295.0 Origine aggiornamento: Server Microsoft Update Tipo intelligence sulla sicurezza: Antivirus Tipo aggiornamento: Completo Utente: NT AUTHORITY\SYSTEM Versione motore corrente: Versione motore precedente: 1.1.16400.2 Codice errore: 0x8024402c Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico. CodeIntegrity: =================================== Date: 2019-10-06 19:49:58.144 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume6\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3DevProps.dll that did not meet the Store signing level requirements. Date: 2019-10-06 00:47:15.246 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume6\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3DevProps.dll that did not meet the Store signing level requirements. Date: 2019-10-05 17:02:00.559 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume6\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3DevProps.dll that did not meet the Store signing level requirements. Date: 2019-10-05 13:26:19.790 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume6\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3DevProps.dll that did not meet the Store signing level requirements. Date: 2019-10-05 13:16:08.610 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume6\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3DevProps.dll that did not meet the Store signing level requirements. Date: 2019-10-05 00:50:20.241 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume6\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3DevProps.dll that did not meet the Store signing level requirements. Date: 2019-10-04 17:58:19.691 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume6\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3DevProps.dll that did not meet the Store signing level requirements. Date: 2019-10-04 17:50:20.334 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume6\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3DevProps.dll that did not meet the Store signing level requirements. ==================== Memory info =========================== BIOS: American Megatrends Inc. 5220 09/12/2019 Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B350-I GAMING Processor: AMD Ryzen 7 2700X Eight-Core Processor Percentage of memory in use: 36% Total physical RAM: 16320.54 MB Available physical RAM: 10330.63 MB Total Virtual: 20672.54 MB Available Virtual: 10474.66 MB ==================== Drives ================================ Drive c: (OS_Install) (Fixed) (Total:117.42 GB) (Free:52.56 GB) NTFS Drive d: (Data2) (Fixed) (Total:931.5 GB) (Free:145.17 GB) NTFS \\?\Volume{671da5fa-82e3-4fae-bfeb-2710333b3e82}\ (WinRE tools) (Fixed) (Total:0.59 GB) (Free:0.34 GB) NTFS \\?\Volume{5598f86f-0a29-4956-a4b9-9a2689cd5acf}\ () (Fixed) (Total:0.82 GB) (Free:0.35 GB) NTFS \\?\Volume{c1479a32-271b-79ac-7bdf-3c9756c33780}\ () (Fixed) (Total:5 GB) (Free:0 GB) NTFS \\?\Volume{fa3eafee-ec65-f2e2-1c79-e73702d345cf}\ () (Fixed) (Total:17.68 GB) (Free:0 GB) NTFS \\?\Volume{1e54f7d2-e6fb-dbd6-8e74-2ca2b5626e78}\ () (Fixed) (Total:0.49 GB) (Free:0 GB) NTFS \\?\Volume{9f74ce82-a935-b360-fb56-83eaa473c45a}\ () (Fixed) (Total:12.72 GB) (Free:0 GB) NTFS \\?\Volume{68f7e57c-6419-88e0-5f5a-c90c1a5bf2f9}\ () (Fixed) (Total:0.39 GB) (Free:0 GB) NTFS \\?\Volume{bc9c3990-420c-439d-98a5-947323714c8d}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 1 (Size: 119.2 GB) (Disk ID: 2CFB6FDB) Partition: GPT. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 2. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 3. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 4. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 5. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 6. ==================== End of Addition.txt ============================