[Active] Clean up needed

Franksee · Nov 2, 2017

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-11-2017
Ran by paulf (administrator) on DESKTOP-EF1V79E (02-11-2017 20:39:07)
Running from C:\Users\paulf\Downloads
Loaded Profiles: paulf (Available Profiles: paulf)
Platform: Windows 10 Home Version 1703 15063.674 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Gold Click Ltd) C:\Program Files (x86)\ProxyGate\PGChk.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Gold Click Ltd) C:\Program Files (x86)\ProxyGate\Cloud.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Wargaming.net) C:\Games\World_of_Tanks\WargamingGameUpdater.exe
(MY.COM B.V.) C:\Users\paulf\AppData\Local\MyComGames\MyComGames.exe
(Gaijin Entertainment) C:\Users\paulf\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Energenie) C:\Program Files (x86)\Energenie\Power Manager\pm.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files (x86)\AFX\AFXM0116 Gaming Mouse\Monitor.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM-x32\...\Run: [Power Manager] => C:\Program Files (x86)\Energenie\Power Manager\pm.exe [10043392 2010-10-08] (Energenie)
HKLM-x32\...\Run: [IJNetworkScanUtility] => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [206240 2010-08-24] (CANON INC.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => c:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [AFX Gaming Mouse Driver] => C:\Program Files (x86)\AFX\AFXM0116 Gaming Mouse\Monitor.exe [495616 2016-07-06] ()
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM-x32\...\Run: [AnonymizerGadget] => C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\AnonymizerLauncher.exe [347784 2017-10-29] (Jetico ltd) <==== ATTENTION
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [World of Tanks] => C:\Games\World_of_Tanks\WargamingGameUpdater.exe [3135752 2017-02-28] (Wargaming.net)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [MyComGames] => C:\Users\paulf\AppData\Local\MyComGames\MyComGames.exe [5797776 2017-10-27] (MY.COM B.V.)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [Gaijin.Net Agent] => C:\Users\paulf\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2268232 2017-11-01] (Gaijin Entertainment)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [World of Warships (1)] => "H:\Games\WargamingGameUpdater.exe"
HKU\S-1-5-18\...\RunOnce: [KyhuRAcNvF] => "C:\WINDOWS\system32\config\SYSTEM~1\AppData\Local\YXVHVH~1\win32k.exe"
GroupPolicy: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{61bafd5b-67c1-4c68-b60d-e13755ebd4f9}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{61bafd5b-67c1-4c68-b60d-e13755ebd4f9}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7f5b7ff2-6c78-42ff-b4c4-6094f0e2f24d}: [NameServer] 8.8.8.8,8.8.4.4

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-18da69a9&q={searchTerms}
SearchScopes: HKLM -> {a62abdee-78a2-4ddb-9355-1c334abd6e43} URL =
SearchScopes: HKLM-x32 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-18da69a9&q={searchTerms}
SearchScopes: HKLM-x32 -> {a62abdee-78a2-4ddb-9355-1c334abd6e43} URL =
SearchScopes: HKU\S-1-5-21-2516327635-2037600327-2752607068-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2516327635-2037600327-2752607068-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-18da69a9&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-09-05] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-09-05] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2017-08-15] (Microsoft Corporation)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\PROGRA~3\WONDER~1\VIDEOC~1\WSBROW~1.DLL => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-23] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-09-05] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-23] (Oracle Corporation)
DPF: HKLM-x32 {2A293777-79CA-4DD9-A545-0E1718C0D3CF} hxxps://bg.itronenergypoint.net/IHVConnect2/KeyboxControl.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - No File

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com_xpi => not found
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-04-29] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-06] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-06] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-01] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2516327635-2037600327-2752607068-1001: @my.com/Games -> C:\Users\paulf\AppData\Local\MyComGames\NPMyComDetector.dll [2017-07-14] (MY.COM B.V.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.co.uk/"
CHR NewTab: Default -> Not-active:"chrome-extension://moiiphobnfkcebehgeongkfomgmcoaed/stubby.html"
CHR Profile: C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default [2017-11-02]
CHR Extension: (Slides) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Docs) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-29]
CHR Extension: (YouTube) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-29]
CHR Extension: (Google Cast) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2016-07-20]
CHR Extension: (Sheets) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Google Docs Offline) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-29]
CHR Extension: (Grammarly for Chrome) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2017-10-27]
CHR Extension: (MarineAquariumLite) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed [2017-10-18]
CHR Extension: (Chrome Web Store Payments) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (TripAdvisor Browser Button) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiekdmlabennjdpgimlcpmphdjphlcha [2017-11-01]
CHR Extension: (Gmail) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-24]
CHR HKLM\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-09-09] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-09-09] (ASUSTeK Computer Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058416 2017-09-05] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518264 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518264 2017-10-11] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460920 2017-10-11] (NVIDIA Corporation)
S2 pgt_svc; C:\Program Files (x86)\ProxyGate\MainService.exe [2285664 2017-02-22] (Gold Click Ltd) <==== ATTENTION
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-06-04] ()
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [91584 2017-10-23] (Malwarebytes)
R1 MpKsl0c563fb8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D3A59D63-5702-40EF-9248-A185FF375F96}\MpKsl0c563fb8.sys [49392 2017-10-30] (Microsoft Corporation)
R1 MpKsl4732e479; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CB3C2594-5494-4A46-9C1C-EC006EF6CADC}\MpKsl4732e479.sys [49392 2017-10-31] (Microsoft Corporation)
R1 MpKsl4de3c820; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6AC23E54-2177-41D9-9392-60F5A0F274AA}\MpKsl4de3c820.sys [58120 2017-11-02] (Microsoft Corporation)
R1 MpKsl518a9511; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{43DFB91B-603C-4B5E-9AEF-B33D43FD7925}\MpKsl518a9511.sys [49392 2017-11-01] (Microsoft Corporation)
R1 MpKslab679085; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C51AEC94-6A45-448B-9399-113C1C1D8002}\MpKslab679085.sys [49392 2017-10-29] (Microsoft Corporation)
R1 MpKsle972a1bd; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F24E6CE8-63CD-4444-9921-03A618259753}\MpKsle972a1bd.sys [49392 2017-10-29] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R3 netr28x; C:\WINDOWS\System32\drivers\netr28x.sys [2537984 2017-03-18] (MediaTek Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_f9309145156afb40\nvlddmkm.sys [14456912 2017-05-19] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [115208 2014-11-21] (Oracle Corporation)
S3 veebeampol; C:\WINDOWS\System32\drivers\veebeampol.sys [14952 2013-10-24] (Veebeam Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-02 20:39 - 2017-11-02 20:39 - 000020311 _____ C:\Users\paulf\Downloads\FRST.txt
2017-11-02 20:38 - 2017-11-02 20:39 - 000000000 ____D C:\FRST
2017-11-02 20:38 - 2017-11-02 20:38 - 002403328 _____ (Farbar) C:\Users\paulf\Downloads\FRST64.exe
2017-11-02 20:28 - 2017-11-02 20:28 - 000656608 _____ (PC Drivers HeadQuarters LP) C:\Users\paulf\Downloads\DriverSupport.exe
2017-11-02 20:26 - 2017-11-02 20:26 - 000000000 ___HD C:\OneDriveTemp
2017-11-02 16:30 - 2017-11-02 16:30 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\Paradox Interactive
2017-11-02 16:29 - 2017-11-02 16:29 - 000000726 _____ C:\Users\paulf\Desktop\Hearts of Iron IV Death or Dishonor.lnk
2017-11-02 16:29 - 2017-11-02 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearts of Iron IV Death or Dishonor
2017-11-02 15:29 - 2017-11-02 15:29 - 000000000 ___SH C:\Users\paulf\AppData\Local\LumaEmu
2017-11-02 15:29 - 2017-11-02 15:29 - 000000000 ____D C:\Users\paulf\AppData\Local\DayZ
2017-11-02 07:11 - 2017-11-02 07:11 - 000016523 _____ C:\Users\paulf\Downloads\charterhouse-invoice-194783.pdf
2017-11-02 07:11 - 2017-11-02 07:11 - 000016523 _____ C:\Users\paulf\Desktop\charterhouse-invoice-194783.pdf
2017-11-01 21:10 - 2017-11-01 21:10 - 000000222 _____ C:\Users\paulf\Desktop\Last Man Standing.url
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Logitech
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Logishrd
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\Program Files\Logitech
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\Program Files\Common Files\Logitech
2017-10-31 16:53 - 2017-10-31 16:54 - 016082320 _____ (Logitech Inc.) C:\Users\paulf\Downloads\lgs510_x64.exe
2017-10-31 15:47 - 2017-10-31 15:47 - 000000813 _____ C:\Users\paulf\Desktop\Play DayZ Standalone.lnk
2017-10-31 15:47 - 2017-10-31 15:47 - 000000796 _____ C:\Users\paulf\Desktop\visit www.nosteam.ro.lnk
2017-10-30 17:12 - 2017-10-30 17:12 - 000000728 _____ C:\Users\paulf\Desktop\Broken Sword 5 - the Serpent's Curse.lnk
2017-10-30 17:12 - 2017-10-30 17:12 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Broken Sword 5 - the Serpent's Curse
2017-10-30 07:20 - 2017-10-30 07:20 - 000000000 ____D C:\ProgramData\Tom Clancy's Ghost Recon Wildlands
2017-10-30 07:19 - 2017-10-30 07:19 - 000000000 ____D C:\Users\paulf\ansel
2017-10-29 13:16 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2017-10-29 13:16 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2017-10-29 13:16 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2017-10-29 13:16 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2017-10-29 13:16 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2017-10-29 13:16 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2017-10-29 13:16 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2017-10-29 13:16 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2017-10-29 13:16 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2017-10-29 13:16 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2017-10-29 13:16 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2017-10-29 13:16 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2017-10-29 13:16 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2017-10-29 13:16 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2017-10-29 13:16 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2017-10-29 13:16 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2017-10-29 13:16 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2017-10-29 13:16 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2017-10-29 13:16 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2017-10-29 13:16 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2017-10-29 13:16 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2017-10-29 13:16 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2017-10-29 13:16 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2017-10-29 13:16 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2017-10-29 13:16 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2017-10-29 13:16 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2017-10-29 13:16 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2017-10-29 13:16 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2017-10-29 13:16 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2017-10-29 13:16 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2017-10-29 13:16 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2017-10-29 13:16 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2017-10-29 13:16 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2017-10-29 13:16 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2017-10-29 13:16 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2017-10-29 13:16 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2017-10-29 13:16 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2017-10-29 13:16 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2017-10-29 13:16 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2017-10-29 13:16 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2017-10-29 13:16 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2017-10-29 13:16 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2017-10-29 13:16 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2017-10-29 13:16 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2017-10-29 13:16 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2017-10-29 13:16 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2017-10-29 13:16 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2017-10-29 13:16 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2017-10-29 13:16 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2017-10-29 13:16 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2017-10-29 13:16 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2017-10-29 13:16 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2017-10-29 13:16 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2017-10-29 13:16 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2017-10-29 13:16 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2017-10-29 13:16 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2017-10-29 13:16 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2017-10-29 13:16 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2017-10-29 13:16 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2017-10-29 13:16 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2017-10-29 13:16 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2017-10-29 13:16 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2017-10-29 13:16 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2017-10-29 13:16 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2017-10-29 13:16 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2017-10-29 13:16 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2017-10-29 13:16 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2017-10-29 13:16 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2017-10-29 13:16 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2017-10-29 13:16 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2017-10-29 13:16 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2017-10-29 13:16 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2017-10-29 13:16 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2017-10-29 13:16 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2017-10-29 13:16 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2017-10-29 13:16 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2017-10-29 13:16 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2017-10-29 13:16 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2017-10-29 13:16 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2017-10-29 13:16 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2017-10-29 13:16 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2017-10-29 13:16 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2017-10-29 13:16 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2017-10-29 13:16 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2017-10-29 13:16 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2017-10-29 13:16 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2017-10-29 13:16 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2017-10-29 13:16 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2017-10-29 13:16 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2017-10-29 13:16 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2017-10-29 13:16 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2017-10-29 13:16 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2017-10-29 13:16 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2017-10-29 13:16 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2017-10-29 12:44 - 2017-10-29 12:44 - 000000103 _____ C:\WINDOWS\SysWOW64\del.bat
2017-10-29 12:31 - 2017-10-29 12:42 - 000000000 ____D C:\Program Files (x86)\ProxyGate
2017-10-29 11:55 - 2017-10-29 11:56 - 000000000 ____D C:\Program Files (x86)\AnonymizerGadget
2017-10-29 11:00 - 2017-10-29 11:00 - 000000732 _____ C:\Users\Public\Desktop\Tom Clancy's Ghost Recon Wildlands.lnk
2017-10-29 11:00 - 2017-10-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tom Clancy's Ghost Recon Wildlands
2017-10-29 09:21 - 2017-10-29 09:21 - 000000000 ____D C:\Users\paulf\AppData\LocalLow\Kite Games
2017-10-29 09:17 - 2017-10-29 09:17 - 000000393 _____ C:\Users\Public\Desktop\Sudden Strike 4.lnk
2017-10-29 09:17 - 2017-10-29 09:17 - 000000393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sudden Strike 4.lnk
2017-10-28 14:45 - 2017-10-28 14:46 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Novabench
2017-10-28 14:45 - 2017-10-28 14:46 - 000000000 ____D C:\ProgramData\Novabench
2017-10-28 14:45 - 2017-10-28 14:45 - 000000000 ____D C:\Users\paulf\AppData\Local\Novabench
2017-10-28 14:43 - 2017-10-28 14:44 - 096575488 _____ C:\Users\paulf\Downloads\novabench.msi
2017-10-28 13:37 - 2017-10-28 13:37 - 001949047 _____ C:\Users\paulf\Downloads\The Last of US PC Installer.rar
2017-10-28 12:36 - 2017-10-28 14:47 - 000000000 ____D C:\Users\paulf\AppData\Local\Ubisoft Game Launcher
2017-10-28 12:36 - 2017-10-28 14:47 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2017-10-28 12:30 - 2017-10-28 12:34 - 072177800 _____ (Ubisoft) C:\Users\paulf\Downloads\UplayInstaller.exe
2017-10-28 12:00 - 2017-10-28 12:00 - 000000000 ____D C:\Users\paulf\AppData\Local\MR4
2017-10-28 12:00 - 2017-10-28 12:00 - 000000000 ____D C:\ProgramData\Moto Racer 4
2017-10-28 11:58 - 2017-10-28 11:58 - 000000600 _____ C:\Users\Public\Desktop\Moto Racer 4.lnk
2017-10-28 11:58 - 2017-10-28 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moto Racer 4
2017-10-28 11:50 - 2017-10-28 11:50 - 000000556 _____ C:\Users\paulf\Desktop\Dirt 4.lnk
2017-10-28 11:40 - 2017-10-28 11:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dirt 4
2017-10-28 11:34 - 2017-10-28 11:34 - 076775409 _____ C:\Users\paulf\Downloads\AISuite3_Win10_V10147.zip
2017-10-28 11:22 - 2017-10-29 12:28 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Dirt.4.v1.04-ENG.repack
2017-10-28 10:56 - 2017-10-28 10:56 - 125914871 _____ C:\Users\paulf\Downloads\AISuite3_Win7-8-81-10_M7IGFHR_V10102.zip
2017-10-28 10:54 - 2017-10-28 10:54 - 019191253 _____ C:\Users\paulf\Downloads\AISuiteV10425.zip
2017-10-28 10:53 - 2017-10-28 10:53 - 021616952 _____ C:\Users\paulf\Downloads\AISuite_V10524.zip
2017-10-28 10:52 - 2017-10-28 10:52 - 023737323 _____ C:\Users\paulf\Downloads\ASUS_AISuite_V10614_XPVISTAWIN7 (2).zip
2017-10-28 10:52 - 2017-10-28 10:52 - 022614773 _____ C:\Users\paulf\Downloads\AISuite_V10538_XpVistaWin7 (2).zip
2017-10-27 20:44 - 2017-10-27 20:44 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\DyingLight
2017-10-27 16:40 - 2017-10-30 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2017-10-27 16:40 - 2017-10-27 16:40 - 000000622 _____ C:\Users\paulf\Desktop\Dying Light.lnk
2017-10-27 16:40 - 2017-10-27 16:40 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Dying Light
2017-10-27 15:10 - 2017-10-27 15:10 - 004355608 _____ C:\Users\paulf\Downloads\TurboV_V10204_XpVistaWin7.zip
2017-10-27 15:02 - 2017-10-27 15:02 - 022614773 _____ C:\Users\paulf\Downloads\AISuite_V10538_XpVistaWin7 (1).zip
2017-10-27 15:01 - 2017-10-27 15:01 - 023737323 _____ C:\Users\paulf\Downloads\ASUS_AISuite_V10614_XPVISTAWIN7 (1).zip
2017-10-27 14:59 - 2017-10-27 14:59 - 021850479 _____ C:\Users\paulf\Downloads\AiSuite_V10532.zip
2017-10-27 14:58 - 2017-10-27 14:58 - 022614773 _____ C:\Users\paulf\Downloads\AISuite_V10538_XpVistaWin7.zip
2017-10-27 14:57 - 2017-10-27 14:57 - 023737323 _____ C:\Users\paulf\Downloads\ASUS_AISuite_V10614_XPVISTAWIN7.zip
2017-10-27 14:43 - 2017-10-28 11:34 - 000000000 ____D C:\Users\paulf\Desktop\AI Suite
2017-10-27 14:40 - 2017-10-27 14:40 - 030857076 _____ C:\Users\paulf\Downloads\AI_Suite_II_Win7_Z10215.zip
2017-10-27 14:28 - 2017-10-27 14:28 - 000016896 _____ (ASUS) C:\WINDOWS\AsTaskSched.dll
2017-10-27 14:27 - 2017-10-27 14:27 - 000001769 _____ C:\WINDOWS\Language_trs.ini
2017-10-27 14:26 - 2017-10-28 11:03 - 000000000 ____D C:\Program Files (x86)\ASUS
2017-10-27 14:26 - 2017-10-27 14:26 - 000000000 ____D C:\ProgramData\ASUS
2017-10-27 14:26 - 2013-06-04 16:41 - 000028672 _____ (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2017-10-27 14:26 - 2013-06-04 16:41 - 000015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2017-10-27 14:22 - 2017-10-27 14:26 - 167887028 _____ C:\Users\paulf\Downloads\AISuite3_Win7-8-8-1_Z87-DELUXE-1.zip
2017-10-27 06:56 - 2017-10-27 06:56 - 000231760 _____ C:\Users\paulf\Downloads\CrucialUKScan.exe
2017-10-25 14:15 - 2017-09-30 05:52 - 001595152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-10-25 14:15 - 2017-09-30 05:51 - 001458320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-25 14:15 - 2017-09-30 05:51 - 001147288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-10-25 14:15 - 2017-09-30 05:51 - 000661224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-25 14:15 - 2017-09-30 05:50 - 001346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-10-25 14:15 - 2017-09-30 05:50 - 001068208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-10-25 14:15 - 2017-09-30 05:50 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-10-25 14:15 - 2017-09-30 05:49 - 001004136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-10-25 14:15 - 2017-09-30 05:49 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-10-25 14:15 - 2017-09-30 05:49 - 000135576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-10-25 14:15 - 2017-09-30 05:48 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-10-25 14:15 - 2017-09-30 05:48 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-10-25 14:15 - 2017-09-30 05:48 - 002327448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-10-25 14:15 - 2017-09-30 05:48 - 000644696 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2017-10-25 14:15 - 2017-09-30 05:47 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-10-25 14:15 - 2017-09-30 05:47 - 001194792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2017-10-25 14:15 - 2017-09-30 05:45 - 000511896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2017-10-25 14:15 - 2017-09-30 05:44 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-10-25 14:15 - 2017-09-30 05:44 - 000181912 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-10-25 14:15 - 2017-09-30 05:43 - 007318888 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-10-25 14:15 - 2017-09-30 05:43 - 002442136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-10-25 14:15 - 2017-09-30 05:42 - 004848952 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-10-25 14:15 - 2017-09-30 05:42 - 001506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-10-25 14:15 - 2017-09-30 05:42 - 000820120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-10-25 14:15 - 2017-09-30 05:41 - 005477600 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 005304496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 002086808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 000961944 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

Franksee · Nov 2, 2017

2017-10-25 14:15 - 2017-09-30 05:41 - 000651672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-10-25 14:15 - 2017-09-30 05:41 - 000259400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2017-10-25 14:15 - 2017-09-30 05:41 - 000257432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 000228248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-10-25 14:15 - 2017-09-30 05:40 - 000724704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-10-25 14:15 - 2017-09-30 05:40 - 000558912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-10-25 14:15 - 2017-09-30 05:40 - 000408984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-10-25 14:15 - 2017-09-30 05:40 - 000336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-10-25 14:15 - 2017-09-30 05:40 - 000173976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2017-10-25 14:15 - 2017-09-30 05:39 - 021351760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-10-25 14:15 - 2017-09-30 05:39 - 000203672 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-25 14:15 - 2017-09-30 05:38 - 007910072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-10-25 14:15 - 2017-09-30 05:38 - 002239136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-10-25 14:15 - 2017-09-30 05:36 - 002672024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-10-25 14:15 - 2017-09-30 05:36 - 000057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-10-25 14:15 - 2017-09-30 02:29 - 001408536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-10-25 14:15 - 2017-09-30 02:29 - 000804784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-10-25 14:15 - 2017-09-30 02:26 - 001333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-10-25 14:15 - 2017-09-30 02:26 - 001292872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 001150776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 000606072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 000508344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 000480920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2017-10-25 14:15 - 2017-09-30 02:09 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-10-25 14:15 - 2017-09-30 02:09 - 000787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2017-10-25 14:15 - 2017-09-30 02:06 - 004471368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-10-25 14:15 - 2017-09-30 02:05 - 005827744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-10-25 14:15 - 2017-09-30 02:05 - 002603744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2017-10-25 14:15 - 2017-09-30 02:05 - 001266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-10-25 14:15 - 2017-09-30 02:05 - 000750488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-10-25 14:15 - 2017-09-30 02:05 - 000559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-10-25 14:15 - 2017-09-30 02:04 - 004215184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000612120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000347544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000182680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-10-25 14:15 - 2017-09-30 02:03 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-10-25 14:15 - 2017-09-30 02:03 - 006768288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-10-25 14:15 - 2017-09-30 02:03 - 001439032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-10-25 14:15 - 2017-09-30 02:02 - 000175512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-10-25 14:15 - 2017-09-30 02:01 - 000124544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2017-10-25 14:15 - 2017-09-29 07:46 - 023678976 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-10-25 14:15 - 2017-09-29 07:45 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-10-25 14:15 - 2017-09-29 07:44 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2017-10-25 14:15 - 2017-09-29 07:43 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-10-25 14:15 - 2017-09-29 07:43 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2017-10-25 14:15 - 2017-09-29 07:43 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2017-10-25 14:15 - 2017-09-29 07:42 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mgmtapi.dll
2017-10-25 14:15 - 2017-09-29 07:41 - 013844992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-10-25 14:15 - 2017-09-29 07:41 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2017-10-25 14:15 - 2017-09-29 07:40 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-10-25 14:15 - 2017-09-29 07:40 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-10-25 14:15 - 2017-09-29 07:40 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-10-25 14:15 - 2017-09-29 07:39 - 020511232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-10-25 14:15 - 2017-09-29 07:39 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-10-25 14:15 - 2017-09-29 07:39 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 001135616 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-10-25 14:15 - 2017-09-29 07:37 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2017-10-25 14:15 - 2017-09-29 07:37 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2017-10-25 14:15 - 2017-09-29 07:36 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-10-25 14:15 - 2017-09-29 07:36 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-10-25 14:15 - 2017-09-29 07:35 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 017370624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 006255616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 003669504 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-10-25 14:15 - 2017-09-29 07:34 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 000798720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-10-25 14:15 - 2017-09-29 07:33 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-10-25 14:15 - 2017-09-29 07:33 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-10-25 14:15 - 2017-09-29 07:33 - 001506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-10-25 14:15 - 2017-09-29 07:33 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 002782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 002340864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 001244160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-10-25 14:15 - 2017-09-29 07:32 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtapi.dll
2017-10-25 14:15 - 2017-09-29 07:31 - 003107328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-10-25 14:15 - 2017-09-29 07:31 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-10-25 14:15 - 2017-09-29 07:31 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-10-25 14:15 - 2017-09-29 07:31 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-10-25 14:15 - 2017-09-29 07:31 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-10-25 14:15 - 2017-09-29 07:30 - 023686144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-10-25 14:15 - 2017-09-29 07:30 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-25 14:15 - 2017-09-29 07:30 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-10-25 14:15 - 2017-09-29 07:30 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 001460736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2017-10-25 14:15 - 2017-09-29 07:28 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2017-10-25 14:15 - 2017-09-29 07:28 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cipher.exe
2017-10-25 14:15 - 2017-09-29 07:27 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 001321984 ____R (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 001468928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 008199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 002503680 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 001628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 003140096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 002730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-10-25 14:15 - 2017-09-29 07:23 - 002446336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-10-25 14:15 - 2017-09-29 07:23 - 001887744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001460224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000756224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-10-25 14:15 - 2017-09-29 07:22 - 002829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-10-25 14:15 - 2017-09-29 07:22 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-25 14:15 - 2017-09-29 07:22 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-10-25 14:15 - 2017-09-29 07:21 - 003304448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-10-25 14:15 - 2017-09-29 07:21 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-25 14:15 - 2017-09-29 07:21 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-10-25 14:15 - 2017-09-29 07:21 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-25 14:15 - 2017-09-29 07:21 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-10-25 14:15 - 2017-09-29 07:21 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 001811456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 000804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-25 14:15 - 2017-09-29 07:20 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 002088448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 002438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 001527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-10-25 14:15 - 2017-09-29 07:18 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 000603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2017-10-25 14:15 - 2017-09-29 07:18 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2017-10-25 14:15 - 2017-09-29 05:40 - 000804312 _____ C:\WINDOWS\SysWOW64\locale.nls
2017-10-25 14:15 - 2017-09-29 05:40 - 000804312 _____ C:\WINDOWS\system32\locale.nls
2017-10-25 14:15 - 2017-09-20 15:08 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-10-25 14:15 - 2017-09-20 15:08 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-10-25 14:15 - 2017-09-20 15:08 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-10-25 14:15 - 2017-09-18 23:20 - 001065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-10-25 14:15 - 2017-09-18 23:20 - 000900376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-10-25 14:15 - 2017-09-18 23:18 - 000965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-10-25 14:15 - 2017-09-18 23:17 - 001395664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-10-25 14:15 - 2017-09-18 23:17 - 001186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-10-25 14:15 - 2017-09-18 23:17 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-10-25 14:15 - 2017-09-18 23:11 - 001018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-10-25 14:15 - 2017-09-18 23:09 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-10-25 14:15 - 2017-09-18 22:25 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2017-10-25 14:15 - 2017-09-18 22:20 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-10-25 14:15 - 2017-09-18 22:20 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2017-10-25 14:15 - 2017-09-18 22:15 - 000648704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-10-25 14:14 - 2017-09-30 05:40 - 000642680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-10-25 14:14 - 2017-09-30 05:40 - 000184728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2017-10-25 14:14 - 2017-09-30 05:40 - 000072944 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2017-10-25 14:14 - 2017-09-29 07:33 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-25 14:14 - 2017-09-29 07:32 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-10-25 14:14 - 2017-09-29 07:32 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-10-25 14:14 - 2017-09-29 07:31 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\efssvc.dll
2017-10-25 14:14 - 2017-09-29 07:30 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2017-10-25 14:14 - 2017-09-29 07:30 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-10-25 14:14 - 2017-09-29 07:29 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-25 14:14 - 2017-09-29 07:29 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-25 14:14 - 2017-09-29 07:29 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ServiceWorkerHost.exe
2017-10-25 14:14 - 2017-09-29 07:27 - 000565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-10-25 14:14 - 2017-09-29 07:27 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-10-25 14:14 - 2017-09-29 07:26 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2017-10-25 14:14 - 2017-09-29 07:23 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-10-25 14:14 - 2017-09-29 07:22 - 001438208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-10-25 14:14 - 2017-09-29 07:21 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvc.dll
2017-10-25 14:14 - 2017-09-29 07:21 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-25 14:14 - 2017-09-29 07:20 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2017-10-25 14:14 - 2017-09-29 07:18 - 000347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-10-25 14:14 - 2017-09-29 07:18 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2017-10-25 14:14 - 2017-09-29 07:18 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\cipher.exe
2017-10-25 14:14 - 2017-09-18 22:26 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2017-10-25 14:14 - 2017-09-18 22:23 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2017-10-24 23:38 - 2017-10-24 23:39 - 000000000 ____D C:\Windows.old
2017-10-24 23:37 - 2017-10-24 23:37 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004708504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004671832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002476712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001146176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001106904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001013912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000958664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-10-24 23:37 - 2017-10-24 23:37 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000569264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-10-24 23:37 - 2017-10-24 23:37 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000387936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000085784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 007337472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004462120 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004330920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002972552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002647224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-10-24 23:36 - 2017-10-24 23:36 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-10-24 23:36 - 2017-10-24 23:36 - 002006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001930840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001668344 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001639936 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001619816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001077248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000946688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000871448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000844288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-10-24 23:36 - 2017-10-24 23:36 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000685512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000627080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000610720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-10-24 23:36 - 2017-10-24 23:36 - 000546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthHFSrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000410168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000381824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000359560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000316320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000291904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000280480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-10-24 23:36 - 2017-10-24 23:36 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcrecovery.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000169376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000159648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\csplte.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-10-24 23:36 - 2017-10-24 23:36 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000143736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000115792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000081176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000064680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000052768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000049720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000042456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-10-24 23:36 - 2017-10-24 23:36 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-10-24 23:30 - 2017-10-24 23:30 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-10-24 23:30 - 2017-10-24 14:42 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-10-24 23:28 - 2017-10-24 23:28 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-10-24 23:28 - 2017-10-24 23:28 - 000000000 ____D C:\Program Files\MSBuild
2017-10-24 23:28 - 2017-10-24 23:28 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-10-24 23:28 - 2017-10-24 23:28 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-10-24 23:28 - 2017-02-10 19:26 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:26 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:26 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-10-24 23:28 - 2017-02-10 19:21 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:21 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:21 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-10-24 14:56 - 2017-10-24 14:56 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-10-24 14:55 - 2017-10-24 14:55 - 000000020 ___SH C:\Users\paulf\ntuser.ini
2017-10-24 14:55 - 2017-10-24 14:55 - 000000000 ____D C:\Users\paulf\AppData\Local\DBG
2017-10-24 14:54 - 2017-10-24 14:54 - 000000000 ____D C:\ProgramData\USOShared
2017-10-24 14:53 - 2017-11-02 20:29 - 001085434 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-10-24 14:51 - 2017-10-24 14:52 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2017-10-24 14:51 - 2017-10-24 14:52 - 000007623 _____ C:\WINDOWS\diagerr.xml
2017-10-24 14:50 - 2017-11-02 13:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-10-24 14:50 - 2017-10-28 17:10 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2516327635-2037600327-2752607068-1001
2017-10-24 14:50 - 2017-10-25 13:55 - 000004650 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-10-24 14:50 - 2017-10-25 13:55 - 000004422 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-10-24 14:50 - 2017-10-24 19:10 - 000004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5BC36F2D-C80E-462C-8A3C-42620F2CC860}
2017-10-24 14:50 - 2017-10-24 14:50 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-10-24 14:50 - 2017-10-24 14:50 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000003344 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-10-24 14:50 - 2017-10-24 14:50 - 000003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000003120 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-10-24 14:50 - 2017-10-24 14:50 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002800 _____ C:\WINDOWS\System32\Tasks\klcp_update
2017-10-24 14:50 - 2017-10-24 14:50 - 000002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002714 _____ C:\WINDOWS\System32\Tasks\{474F428F-B6C4-9455-6C74-04159716460E}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002694 _____ C:\WINDOWS\System32\Tasks\{08C41D91-8F47-2CC7-9926-3A52FDBFB8EB}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002552 _____ C:\WINDOWS\System32\Tasks\{B6761D67-8BD7-4211-B678-B0ED9D84362C}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-10-24 14:47 - 2017-10-24 14:47 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-10-24 14:44 - 2017-10-24 14:48 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-10-24 14:44 - 2017-03-18 20:56 - 002233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-10-24 14:43 - 2017-11-02 20:27 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-24 14:43 - 2017-11-02 20:25 - 000000000 ____D C:\Users\paulf
2017-10-24 14:43 - 2017-10-24 14:45 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-24 14:43 - 2017-10-24 14:45 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-10-24 14:43 - 2017-10-24 14:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-10-24 14:43 - 2017-10-24 14:43 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2017-10-24 14:43 - 2017-10-24 14:43 - 000000000 ____D C:\WINDOWS\system32\DAX2
2017-10-24 14:43 - 2017-05-01 20:52 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-10-24 14:43 - 2017-05-01 20:51 - 006437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-10-24 14:43 - 2017-05-01 20:51 - 002479552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-10-24 14:43 - 2017-05-01 20:51 - 001762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-10-24 14:43 - 2017-05-01 20:51 - 000548800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-10-24 14:43 - 2017-05-01 20:51 - 000392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-10-24 14:43 - 2017-05-01 20:51 - 000081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-10-24 14:43 - 2017-05-01 20:51 - 000069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-10-24 14:43 - 2017-04-25 21:11 - 007944687 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-10-24 14:42 - 2017-11-02 20:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-10-24 14:42 - 2017-10-25 18:15 - 000486712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-24 14:42 - 2017-10-24 14:42 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-10-24 14:42 - 2017-10-24 14:42 - 000000000 ____D C:\Program Files\Realtek

Franksee · Nov 2, 2017

2017-10-23 15:26 - 2017-10-23 15:32 - 000091584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-10-23 15:26 - 2017-10-23 15:26 - 000251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\4B6A4B2B.sys
2017-10-23 15:22 - 2017-10-23 15:32 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-10-23 15:06 - 2017-10-23 15:06 - 000000000 ___HD C:\Program Files (x86)\Temp
2017-10-23 15:03 - 2017-10-23 15:04 - 060956425 _____ C:\Users\paulf\Downloads\ALC1200_Audio_V6015859_Windows7.zip
2017-10-23 12:04 - 2017-10-23 12:04 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-23 12:04 - 2017-10-06 11:52 - 000136312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-10-23 12:04 - 2017-09-13 23:20 - 000798008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-10-23 12:04 - 2017-09-13 23:20 - 000490296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-10-23 12:04 - 2017-09-13 23:19 - 000927544 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-10-23 12:04 - 2017-09-13 23:19 - 000591160 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-10-23 12:00 - 2017-10-23 12:00 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-23 11:58 - 2017-10-23 12:00 - 071535032 _____ (Malwarebytes ) C:\Users\paulf\Downloads\mb3-setup-consumer-3.2.2.2029-1.0.212-1.0.2951 (1).exe
2017-10-23 11:50 - 2017-10-23 11:50 - 000001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-10-23 11:50 - 2017-10-11 01:01 - 001796216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-10-23 11:50 - 2017-10-11 01:01 - 001578104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-10-23 11:50 - 2017-10-11 01:01 - 000919160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-10-23 11:49 - 2017-10-24 14:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-10-23 11:49 - 2017-10-23 11:49 - 000097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-10-23 11:49 - 2017-10-23 11:49 - 000000000 ____D C:\Program Files (x86)\Java
2017-10-23 11:48 - 2017-10-23 11:48 - 001852992 _____ (Oracle Corporation) C:\Users\paulf\Downloads\JavaSetup8u151.exe
2017-10-23 11:48 - 2017-10-10 23:26 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-10-23 11:45 - 2017-10-23 11:46 - 081400776 _____ (NVIDIA Corporation) C:\Users\paulf\Downloads\GeForce_Experience_v3.10.0.95.exe
2017-10-23 09:55 - 2017-10-23 09:55 - 007333587 _____ C:\Users\paulf\Downloads\E4481_P6T_SE_manual.zip
2017-10-23 09:55 - 2017-10-23 09:55 - 000066464 _____ C:\Users\paulf\Downloads\IE4283_P6T_P6T_SE_Insert.zip
2017-10-21 14:14 - 2017-10-21 14:14 - 000000578 _____ C:\Users\paulf\Desktop\World of Warships.lnk
2017-10-21 14:13 - 2017-10-21 14:13 - 006054816 _____ (Wargaming.net ) C:\Users\paulf\Downloads\WoWS_internet_install_eu.exe
2017-10-20 19:03 - 2017-10-20 19:03 - 001528543 _____ C:\Users\paulf\Desktop\Booking Document.pdf
2017-10-20 19:02 - 2017-10-20 19:02 - 001529674 _____ C:\Users\paulf\Downloads\Booking Document.pdf
2017-10-19 21:11 - 2016-01-14 01:27 - 000003118 _____ C:\Users\paulf\Desktop\license.conf
2017-10-19 21:06 - 2017-10-19 21:07 - 071535032 _____ (Malwarebytes ) C:\Users\paulf\Downloads\mb3-setup-consumer-3.2.2.2029-1.0.212-1.0.2951.exe
2017-10-19 17:07 - 2017-10-19 17:07 - 000000000 ____D C:\Users\paulf\Desktop\Dashhcam
2017-10-19 17:06 - 2017-10-19 17:06 - 000001164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dashcam Viewer.lnk
2017-10-19 17:06 - 2017-10-19 17:06 - 000001152 _____ C:\Users\Public\Desktop\Dashcam Viewer.lnk
2017-10-19 17:06 - 2017-10-19 17:06 - 000000000 ____D C:\Program Files (x86)\Dashcam Viewer
2017-10-19 17:03 - 2017-10-19 17:05 - 062831199 _____ C:\Users\paulf\Downloads\DashcamViewerWin_v2.7.3.zip
2017-10-19 16:59 - 2017-10-19 16:59 - 001207296 _____ (DATAKAM) C:\Users\paulf\Downloads\RegistratorViewer.exe
2017-10-14 15:14 - 2017-10-14 15:14 - 000000000 ____D C:\Users\paulf\AppData\Local\Foxhole
2017-10-14 15:09 - 2017-10-14 15:09 - 000000222 _____ C:\Users\paulf\Desktop\Foxhole.url
2017-10-11 19:20 - 2017-10-11 19:20 - 000000000 ____D C:\Users\paulf\AppData\Local\DreadGame
2017-10-11 15:58 - 2017-10-11 16:03 - 236169535 _____ C:\Users\paulf\Downloads\hive-win64.zip
2017-10-11 15:37 - 2017-10-11 15:38 - 059990936 _____ C:\Users\paulf\Downloads\DreadnoughtInstaller (2).exe
2017-10-11 07:26 - 2017-10-11 07:26 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-10-10 20:21 - 2017-10-10 20:21 - 059990936 _____ C:\Users\paulf\Downloads\DreadnoughtInstaller (1).exe
2017-10-10 20:20 - 2017-10-24 14:48 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dreadnought
2017-10-10 20:20 - 2017-10-10 20:20 - 000000836 _____ C:\Users\paulf\Desktop\Play Dreadnought.lnk
2017-10-10 20:19 - 2017-10-10 20:19 - 059990936 _____ C:\Users\paulf\Downloads\DreadnoughtInstaller.exe
2017-10-08 21:15 - 2017-10-08 21:22 - 000000000 ____D C:\Users\paulf\AppData\LocalLow\eforb
2017-10-08 21:07 - 2017-10-08 21:07 - 000000000 ____D C:\Users\paulf\AppData\Local\FortniteGame
2017-10-08 20:06 - 2017-10-08 20:06 - 000000222 _____ C:\Users\paulf\Desktop\The SKIES.url
2017-10-08 19:56 - 2017-10-08 19:56 - 000000000 ____D C:\Users\paulf\AppData\Local\UnrealEngineLauncher
2017-10-08 19:56 - 2017-10-08 19:56 - 000000000 ____D C:\Users\paulf\AppData\Local\EpicGamesLauncher
2017-10-08 19:55 - 2017-10-08 19:57 - 000000000 ____D C:\ProgramData\Epic
2017-10-08 19:55 - 2017-10-08 19:55 - 000000789 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2017-10-08 19:55 - 2017-10-08 19:55 - 000000789 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2017-10-08 19:54 - 2017-10-08 19:55 - 031653888 _____ C:\Users\paulf\Downloads\EpicInstaller-6.5.0-fortnite-bd532a4e2cd049eaad6c5b542c7cf32c.msi

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-02 20:27 - 2017-07-14 12:31 - 000000000 ____D C:\Users\paulf\AppData\Local\MyComGames
2017-11-02 20:26 - 2016-05-20 07:33 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-02 20:26 - 2016-04-29 13:40 - 000000000 ___RD C:\Users\paulf\OneDrive
2017-11-02 16:34 - 2017-07-25 20:54 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\Outlook Files
2017-11-02 16:30 - 2016-05-10 20:43 - 000000000 ____D C:\Users\paulf\AppData\Roaming\uTorrent
2017-11-02 08:59 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-01 21:10 - 2016-05-20 07:41 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-11-01 10:46 - 2017-03-18 21:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-31 16:51 - 2017-03-18 21:01 - 000000000 ____D C:\WINDOWS\INF
2017-10-31 10:21 - 2016-04-29 13:39 - 000000000 ____D C:\Users\paulf\AppData\Local\Packages
2017-10-30 07:19 - 2016-05-14 10:21 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\My Games
2017-10-28 17:10 - 2016-04-29 13:40 - 000002367 _____ C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-10-28 12:00 - 2016-05-20 09:10 - 000000000 ____D C:\Users\paulf\AppData\Local\UnrealEngine
2017-10-28 12:00 - 2016-04-30 07:19 - 000000000 ____D C:\ProgramData\Package Cache
2017-10-28 11:21 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-10-28 11:03 - 2016-04-29 13:42 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-10-28 07:33 - 2017-03-18 11:40 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-10-27 16:34 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\rescache
2017-10-27 11:57 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-10-26 06:36 - 2016-02-13 13:20 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-25 18:14 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-10-25 18:14 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\Provisioning
2017-10-25 18:13 - 2017-03-18 21:03 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-10-25 18:13 - 2017-03-18 21:03 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2017-10-25 14:18 - 2017-03-18 20:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-10-25 13:59 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\appcompat
2017-10-25 13:55 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-10-25 13:55 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-10-24 23:41 - 2017-03-18 21:03 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-10-24 23:39 - 2017-03-18 21:06 - 000000000 ____D C:\WINDOWS\Setup
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\setup
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-10-24 23:31 - 2017-03-19 02:30 - 000000000 ____D C:\WINDOWS\OCR
2017-10-24 23:28 - 2017-03-18 20:56 - 000465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2017-10-24 23:28 - 2017-03-18 20:56 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2017-10-24 23:28 - 2017-03-18 20:56 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2017-10-24 23:28 - 2017-03-18 20:56 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2017-10-24 23:25 - 2016-05-05 11:33 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2017-10-24 18:48 - 2017-08-26 16:56 - 000000000 ____D C:\Users\paulf\AppData\Local\Targem
2017-10-24 15:01 - 2016-04-29 14:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-10-24 14:57 - 2016-12-11 12:26 - 000000000 ____D C:\Users\paulf\AppData\Roaming\NVIDIA
2017-10-24 14:55 - 2017-03-18 21:03 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-10-24 14:55 - 2016-09-22 06:07 - 000000000 ____D C:\Users\paulf\AppData\Local\ConnectedDevicesPlatform
2017-10-24 14:54 - 2017-03-18 21:03 - 000000000 ____D C:\ProgramData\USOPrivate
2017-10-24 14:53 - 2017-09-16 20:39 - 000000000 ___DC C:\WINDOWS\Panther
2017-10-24 14:53 - 2016-08-06 21:17 - 000000258 __RSH C:\ProgramData\ntuser.pol
2017-10-24 14:52 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-10-24 14:52 - 2017-03-18 11:40 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-10-24 14:51 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\Registration
2017-10-24 14:51 - 2017-03-18 21:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-10-24 14:51 - 2016-07-16 11:47 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-10-24 14:51 - 2016-04-29 13:44 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-10-24 14:50 - 2017-03-19 02:31 - 000000000 ____D C:\WINDOWS\HoloShell
2017-10-24 14:50 - 2017-03-18 21:03 - 000000000 __RSD C:\WINDOWS\Media
2017-10-24 14:50 - 2017-03-18 21:03 - 000000000 __RHD C:\Users\Public\Libraries
2017-10-24 14:50 - 2016-05-05 02:51 - 000022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-10-24 14:48 - 2017-08-26 16:35 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossout
2017-10-24 14:48 - 2017-08-19 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2017-10-24 14:48 - 2017-07-23 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-10-24 14:48 - 2017-07-15 10:30 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2017-10-24 14:48 - 2017-07-14 15:02 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Armored Warfare MyCom Beta
2017-10-24 14:48 - 2017-07-14 12:31 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
2017-10-24 14:48 - 2017-05-12 16:41 - 000000000 ____D C:\WINDOWS\system32\UNP
2017-10-24 14:48 - 2017-03-28 15:15 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warships
2017-10-24 14:48 - 2017-03-18 21:03 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-10-24 14:48 - 2016-12-19 11:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-10-24 14:48 - 2016-09-28 14:29 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaPlayerLite
2017-10-24 14:48 - 2016-08-08 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-10-24 14:48 - 2016-07-30 11:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\webium's modpack
2017-10-24 14:48 - 2016-05-26 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\proDAD
2017-10-24 14:48 - 2016-05-26 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magic Bullet Looks Studio
2017-10-24 14:48 - 2016-05-26 10:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 12
2017-10-24 14:48 - 2016-05-26 09:33 - 000000000 ____D C:\WINDOWS\en
2017-10-24 14:48 - 2016-05-25 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2017-10-24 14:48 - 2016-05-20 07:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-10-24 14:48 - 2016-05-14 14:59 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-10-24 14:48 - 2016-05-14 14:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-10-24 14:48 - 2016-04-30 07:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-10-24 14:48 - 2016-04-29 14:16 - 000000000 ____D C:\WINDOWS\system32\STRING
2017-10-24 14:48 - 2016-04-29 13:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2017-10-24 14:45 - 2017-09-23 11:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ
2017-10-24 14:45 - 2017-08-05 09:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2017-10-24 14:45 - 2017-08-05 09:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
2017-10-24 14:45 - 2017-07-31 15:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KaOs
2017-10-24 14:45 - 2017-07-30 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Games
2017-10-24 14:45 - 2017-07-09 17:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Catalyst
2017-10-24 14:45 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-10-24 14:45 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\spool
2017-10-24 14:45 - 2017-03-18 21:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-10-24 14:45 - 2017-02-01 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA
2017-10-24 14:45 - 2016-12-12 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AFX
2017-10-24 14:45 - 2016-08-08 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2017-10-24 14:45 - 2016-08-08 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2017-10-24 14:45 - 2016-05-26 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle
2017-10-24 14:45 - 2016-04-29 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-10-24 14:45 - 2016-04-29 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5200 series
2017-10-24 14:45 - 2016-04-29 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon IJ Network Utilities
2017-10-24 14:45 - 2016-04-29 14:11 - 000000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2017-10-24 14:45 - 2016-04-29 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Energenie
2017-10-24 14:44 - 2016-12-21 18:10 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Syncios
2017-10-24 14:44 - 2016-04-29 22:16 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-10-24 14:44 - 2016-04-29 15:35 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EcoTech Marine
2017-10-24 14:43 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\Help
2017-10-24 14:43 - 2017-03-18 11:40 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-10-24 14:43 - 2016-07-07 11:51 - 000000000 ____D C:\Temp
2017-10-24 14:19 - 2017-07-11 06:54 - 000000000 ___HD C:\$WINDOWS.~BT
2017-10-23 15:43 - 2016-05-14 14:42 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-23 15:10 - 2016-05-20 20:47 - 000000000 ____D C:\Users\paulf\AppData\Local\CrashDumps
2017-10-23 15:09 - 2016-12-04 16:24 - 000000000 ____D C:\Users\paulf\AppData\Local\ElevatedDiagnostics
2017-10-23 14:20 - 2016-04-30 07:21 - 000000000 ____D C:\Users\paulf\AppData\Local\NVIDIA Corporation
2017-10-23 11:50 - 2017-09-08 15:10 - 000000000 ____D C:\ProgramData\Oracle
2017-10-23 11:50 - 2016-04-30 07:13 - 000000000 ____D C:\Users\paulf\AppData\Local\NVIDIA
2017-10-22 08:58 - 2016-08-06 22:17 - 000000485 _____ C:\Users\paulf\AppData\Roaming\WB.CFG
2017-10-21 14:14 - 2017-07-09 17:04 - 000000987 _____ C:\Users\paulf\Desktop\Total War. Rome II - Emperor Edition.lnk
2017-10-21 14:13 - 2016-04-29 13:49 - 000000000 ____D C:\Games
2017-10-20 18:48 - 2017-02-09 18:53 - 000000000 ____D C:\Users\paulf\AppData\Local\Adobe
2017-10-18 17:09 - 2016-04-29 14:20 - 000000000 ____D C:\Program Files\Microsoft Office 15
2017-10-13 11:00 - 2017-09-29 06:39 - 000000000 ____D C:\Program Files\rempl
2017-10-13 00:21 - 2017-03-18 21:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-10-13 00:21 - 2017-03-18 21:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-11 07:28 - 2016-04-29 15:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-11 07:26 - 2016-04-29 15:44 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-10-07 09:39 - 2016-05-26 15:40 - 001964544 _____ C:\Users\paulf\Desktop\Aquarium Log_v2.0.xls

==================== Files in the root of some directories =======

2016-08-06 22:17 - 2017-10-22 08:58 - 000000485 _____ () C:\Users\paulf\AppData\Roaming\WB.CFG
2017-11-02 15:29 - 2017-11-02 15:29 - 000000000 ___SH () C:\Users\paulf\AppData\Local\LumaEmu
2017-10-24 14:43 - 2017-10-24 14:43 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2016-05-26 10:29 - 2016-05-26 10:29 - 000001744 _____ () C:\ProgramData\__wdump.txt

Files to move or delete:
====================
C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\AnonymizerLauncher.exe
C:\Windows\Tasks\{08C41D91-8F47-2CC7-9926-3A52FDBFB8EB}.job
C:\Windows\Tasks\{474F428F-B6C4-9455-6C74-04159716460E}.job

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-10-24 14:42

==================== End of FRST.txt ============================

Franksee · Nov 2, 2017

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-11-2017
Ran by paulf (02-11-2017 20:40:09)
Running from C:\Users\paulf\Downloads
Windows 10 Home Version 1703 15063.674 (X64) (2017-10-24 14:53:19)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2516327635-2037600327-2752607068-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2516327635-2037600327-2752607068-503 - Limited - Disabled)
Guest (S-1-5-21-2516327635-2037600327-2752607068-501 - Limited - Disabled)
paulf (S-1-5-21-2516327635-2037600327-2752607068-1001 - Administrator - Enabled) => C:\Users\paulf

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«Total War. Rome II - Emperor Edition» 2.2.0.0 (HKLM-x32\...\«Total War. Rome II - Emperor Edition»_is1) (Version: 2.2.0.0 - SEGA)
µTorrent (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
7-Zip 17.00 beta (x64) (HKLM\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated)
AFX Gaming Mouse Driver (HKLM-x32\...\{3D084B77-BFBB-444B-8447-BE2379C5EA06}) (Version: - )
Age.of.Empires.III.Complete.Collection-KaOs Uninstaller v3.0 (HKLM-x32\...\Age.of.Empires.III.Complete.Collection-KaOs_is1) (Version: 3.0 - KaOsKrew)
Anno 2205 / RePack by Baracuda (HKLM-x32\...\Anno 2205_is1) (Version: 1.1.2124.38702 - )
AnonymizerGadget (HKU\.DEFAULT\...\AnonymizerGadget) (Version: 1 - Jetico lim) <==== ATTENTION
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 387.92 - NVIDIA Corporation) Hidden
Any Video Converter Ultimate 5.9.3 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com)
Apple Application Support (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Armored Warfare MyCom (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Armored Warfare MyCom) (Version: 1.123 - My.com B.V.)
Aslain's WoT Modpack version 9.17.0.1.04 (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 9.17.0.1.04 - Aslain)
Broken Sword 5 - the Serpent's Curse (HKLM-x32\...\Broken Sword 5 - the Serpent's Curse_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Canon IJ Network Scan Utility (HKLM-x32\...\Canon_IJ_Network_Scan_UTILITY) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version: - Canon Inc.)
Canon MP Navigator EX 4.0 (HKLM-x32\...\MP Navigator EX 4.0) (Version: - )
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.7.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Crossout Launcher 1.0.3.22 (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\CrossOutLauncher_is1) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dashcam Viewer version 2.7.3 (64-bit) (HKLM-x32\...\Dashcam Viewer_is1) (Version: 2.7.3 (64-bit) - )
Dirt.4.v1.04-ENG.repack version 1.04 (HKLM-x32\...\{32FFCB8E-23C9-435F-AFC0-7CE64F696FC2}}_is1) (Version: 1.04 - Ali213.net)
Dreadnought (HKLM-x32\...\Dreadnought) (Version: 3.0.0 - Grey Box)
Dying Light (HKLM-x32\...\Dying Light_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm)
EcoSmart Live Connection Manager (HKLM-x32\...\EcoSmart Live Connection Manager) (Version: 1.8.4.0 - EcoTech Marine)
Epic Games Launcher (HKLM-x32\...\{F7118EF5-320C-4340-99F4-25F970B428A3}) (Version: 1.1.125.0 - Epic Games, Inc.)
FlashAirTool (HKLM-x32\...\{7901CC20-2287-4644-A0C5-8D01A5039DBB}) (Version: 3.00.0002 - TOSHIBA CORPORATION)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto IV version 1.0.7.0 (HKLM-x32\...\Grand Theft Auto IV_is1) (Version: 1.0.7.0 - Mr DJ)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
KB4023057 (HKLM\...\{0C050BEE-16BE-4998-8959-2A421433DB6E}) (Version: 2.5.0.0 - Microsoft Corporation)
K-Lite Codec Pack 12.3.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.3.0 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Magic Bullet Looks Studio (HKLM-x32\...\Magic Bullet Looks Studio) (Version: - )
MediaPlayerLite 0.5.4.0 (HKLM-x32\...\MediaPlayerLite) (Version: 0.5.4.0 - MediaPlayerLite)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4971.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\OneDriveSetup.exe) (Version: 17.3.7074.1023 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Moto Racer 4 (HKLM\...\Moto Racer 4_is1) (Version: 1.0 - )
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mumble 1.2.9 (HKLM-x32\...\{49FF1E6E-E0F9-4CB3-8B3C-D4E8E1D32C1F}) (Version: 1.2.9 - Thorvald Natvig)
My.com Game Center (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\MyComGames) (Version: 3.206 - My.com B.V.)
Need for Speed Most Wanted (HKLM-x32\...\Need for Speed Most Wanted_is1) (Version: - )
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 387.92 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
NVIDIA Graphics Driver 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 387.92 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4971.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4971.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.4971.1002 - Microsoft Corporation) Hidden
Pinnacle Studio 12 (HKLM-x32\...\{D041EB9E-890A-4098-8F94-51DA194AC72A}) (Version: 12.0.0.6163 - Team V.R)
Pinnacle Studio 12 Ultimate Plugins (HKLM-x32\...\{D1860E6E-520E-4380-8433-E58E8F88B473}) (Version: 12.0.0.0 - Pinnacle Systems)
Pinnacle Video Driver (HKLM\...\{5EB90C06-964F-4195-B83E-BD7E55C88415}) (Version: 12.00.0017 - Pinnacle Systems)
Power Manager (HKLM-x32\...\{CA2CE23E-6751-4828-AF8B-66EA06E697F6}) (Version: 4.0.1.9 - Energenie)
proDAD Vitascene 1.0 (HKLM-x32\...\proDAD-Vitascene-1.0) (Version: - )
ProxyGate version 3.0.0.1180 (HKLM-x32\...\{1EC095EE-8CA3-43D6-B9F5-0C55B82ED3D7}}_is1) (Version: 3.0.0.1180 - Gold Click Ltd) <==== ATTENTION
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
RollerCoaster Tycoon World (HKLM\...\cm9sbGVyY29hc3RlcnR5Y29vbndvcmxk_is1) (Version: 1 - )
Smart View (HKLM-x32\...\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}) (Version: 1.0.0.0 - Samsung )
Sniper Elite 4 v.1.4-u10 (HKLM-x32\...\Sniper Elite 4_is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sudden Strike 4 Road to Dunkirk (HKLM\...\c3VkZGVuc3RyaWtlNA_is1) (Version: 1 - )
Syncios Data Transfer 1.4.1 (HKLM-x32\...\{6C4BB520-3416-4D67-B7EA-A9FF6662345F}_is1) (Version: 1.4.1 - Anvsoft, Inc.)
Tom Clancy's Ghost Recon Wildlands (HKLM\...\Tom Clancys Ghost Recon Wildlands_is1) (Version: 1.0 - )
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
War Thunder Launcher 1.0.3.35 (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
webiums modpack 0.9.20.0 v05 (HKLM-x32\...\{B64D8CE9-11B2-469D-A347-9A13C2BCA423}_is1) (Version: 05 - myWOTmods.com)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.30 beta 6 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.6 - win.rar GmbH)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
WinX DVD Ripper Platinum 7.5.12 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
World of Tanks (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warplanes (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C813eu}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-11-08] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-11-08] (Alexander Roshal)
ContextMenuHandlers1-x32: [WondershareVideoConverterFileOpreation] -> {FEB746CA-95C2-485F-B386-C30D4E56D22E} => C:\WINDOWS\SysWOW64\WSCM64.dll [2015-02-27] ()
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-11-08] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-11-08] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {018CBDF1-C462-4DA3-9407-A3FDF9E7193C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-29] (Google Inc.)
Task: {021ED8F7-B6FA-458F-94BA-5B08499B6118} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-09-05] (Microsoft Corporation)
Task: {0F0D4B31-4C38-4008-B45D-0ED10B222B99} - no filepath
Task: {21E635FE-C5FA-4377-AB5B-A2F541859C54} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_183_pepper.exe [2017-10-25] (Adobe Systems Incorporated)
Task: {2D969BD5-66CA-4F96-9F90-FA7DB0DBC846} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {3C0E75FE-C103-4371-B7B7-8B575DA94197} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-25] (Adobe Systems Incorporated)
Task: {481616B4-E450-4A3C-A26A-D6AC33484E65} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-11] (NVIDIA Corporation)
Task: {4C0808BA-2D7B-4737-AF12-073F540FF304} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {529C5540-F0A5-4037-AD71-53067C782128} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-08-01] ()
Task: {59A8EE96-7FCB-4E22-AA8B-32C2BFD5D770} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-11] (NVIDIA Corporation)
Task: {6ADAAAC6-A2AD-4E97-8E3E-CBC29F1372AA} - System32\Tasks\{08C41D91-8F47-2CC7-9926-3A52FDBFB8EB} => C:\PROGRA~2\COMMON~1\UPDATE~1\SYNCVE~1.EXE
Task: {7C5497CF-26A6-4839-9707-9B74E93188A7} - System32\Tasks\{474F428F-B6C4-9455-6C74-04159716460E} => C:\Users\paulf\AppData\Roaming\{E792D~1\SyncTask.exe <==== ATTENTION
Task: {8152529A-7650-4220-9E5C-229B6770F4D6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2017-03-14] (Microsoft Corporation)
Task: {8AEFF25B-4597-4456-B383-3EDBB3410D40} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-09-05] (Microsoft Corporation)
Task: {A0C228E0-D8B2-435E-84A3-ACA11691FD97} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {A72DB4FB-01A1-4E89-A288-9A2BB298C6A6} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {B36E98BB-15AE-48D3-A8BD-88468A2A985A} - System32\Tasks\{B6761D67-8BD7-4211-B678-B0ED9D84362C} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\paulf\AppData\Local\{E7CFD193-C367-BD2B-AEFF-98C38A97645B}\uninst.exe -c -FN="C:\Users\paulf\AppData\Roaming\{E792D129-C2C0-BC5F-A9F6-9B8D752466B3}\SyncTask.exe"-P=/Uninstall /s /noun /DelSelfDir
Task: {C30254EF-28DB-403D-AD3E-47081E2636AC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {C862EB2F-F2DC-416B-AC16-1A68784B0BFA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {CD65FC2B-1874-4E0F-A523-213AD4EAE808} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2017-03-14] (Microsoft Corporation)
Task: {D0C94AC3-1299-4EC3-9252-49FB2ADA584B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-29] (Google Inc.)
Task: {D4AB94BF-90CF-4E19-B0FC-5FDDC874896D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation)
Task: {D72165F9-DC50-418B-AF4E-1511BD8E4154} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\{08C41D91-8F47-2CC7-9926-3A52FDBFB8EB}.job => C:\PROGRA~2\COMMON~1\UPDATE~1\SYNCVE~1.EXE
Task: C:\WINDOWS\Tasks\{474F428F-B6C4-9455-6C74-04159716460E}.job => C:\Users\paulf\AppData\Roaming\{E792D~1\SyncTask.exe <==== ATTENTION

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2017-10-28 10:58 - 2014-09-09 02:14 - 000936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2017-10-23 11:48 - 2017-10-11 01:01 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-04-29 14:20 - 2017-01-17 03:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2017-03-18 20:58 - 2017-03-18 20:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-22 08:43 - 2017-01-31 12:34 - 008909512 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2017-10-24 15:29 - 2017-10-24 15:29 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-10-24 15:29 - 2017-10-24 15:29 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-10-24 15:29 - 2017-10-24 15:29 - 025446400 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-10-24 15:29 - 2017-10-24 15:29 - 002542592 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\skypert.dll
2017-10-24 15:29 - 2017-10-24 15:29 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2016-12-12 20:22 - 2016-07-06 10:55 - 000495616 _____ () C:\Program Files (x86)\AFX\AFXM0116 Gaming Mouse\Monitor.exe
2017-09-27 06:50 - 2017-09-21 07:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll
2017-09-27 06:50 - 2017-09-21 07:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll
2017-03-18 20:59 - 2017-03-19 02:31 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-10-28 10:58 - 2014-09-09 02:14 - 000104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2017-10-23 11:48 - 2017-10-11 01:01 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-05-20 07:35 - 2017-09-09 19:25 - 000688416 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-05-20 07:35 - 2017-10-31 03:22 - 002546976 _____ () C:\Program Files (x86)\Steam\video.dll
2016-05-20 07:34 - 2016-09-01 01:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-05-20 07:34 - 2016-01-27 07:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-05-20 07:34 - 2016-01-27 07:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-05-20 07:34 - 2016-01-27 07:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-05-20 07:34 - 2016-01-27 07:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-05-20 07:34 - 2016-01-27 07:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-05-20 07:34 - 2016-09-01 01:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-05-20 07:34 - 2016-09-01 01:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-05-20 07:34 - 2017-10-31 03:22 - 000901408 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-05-20 07:34 - 2016-07-04 22:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-07-14 12:31 - 2017-07-14 12:31 - 000144896 _____ () C:\Users\paulf\AppData\Local\MyComGames\zlib1.dll
2017-07-14 12:31 - 2017-07-14 12:31 - 000076176 _____ () C:\Users\paulf\AppData\Local\MyComGames\pxd.dll
2017-07-14 12:31 - 2017-07-14 12:31 - 000249744 _____ () C:\Users\paulf\AppData\Local\MyComGames\LightUpdate.dll
2017-07-14 12:31 - 2017-10-27 09:37 - 002495376 _____ () C:\Users\paulf\AppData\Local\MyComGames\BigUp2.dll
2017-10-03 21:18 - 2017-10-03 21:18 - 071411712 _____ () C:\Users\paulf\AppData\Local\MyComGames\Chrome\3.3202.1673\libcef.dll
2017-06-08 11:07 - 2017-09-07 02:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2016-12-13 10:52 - 2017-08-16 22:28 - 073130272 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2016-05-20 07:34 - 2015-09-24 23:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2016-12-12 20:22 - 2016-07-06 11:03 - 000057344 _____ () C:\Program Files (x86)\AFX\AFXM0116 Gaming Mouse\lan.dll
2016-12-12 20:22 - 2014-09-01 11:54 - 000049152 _____ () C:\Program Files (x86)\AFX\AFXM0116 Gaming Mouse\hiddriver.dll
2017-10-23 11:50 - 2017-10-11 01:00 - 070806136 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-07-11 14:45 - 2017-08-16 22:29 - 001936672 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libglesv2.dll
2017-07-11 14:45 - 2017-08-16 22:29 - 000113952 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-04-29 22:16 - 2017-07-06 06:38 - 000000828 _____ C:\WINDOWS\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\paulf\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{f84026da-a615-4efa-86fb-ba042e3daa5b}.JPG
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{0CEC87D0-AF6A-48F9-9F17-C2D0BBC548EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1B3A3D41-5FE4-4FB4-A68D-6A300AD86B96}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8B42A2D3-F1CF-4885-8D4D-CC335B718263}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B0064E90-CBCA-4F6E-8227-9B38468B06BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B661ADB8-4C9D-4B58-A971-3F4F0538E2FF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{0D106D10-4D6E-4C43-BC47-48C83DC02203}E:\rome total war\total war. rome ii - emperor edition\rome2.exe] => (Allow) E:\rome total war\total war. rome ii - emperor edition\rome2.exe
FirewallRules: [TCP Query User{CE7B9B76-E4F0-41D6-8898-209288F7E372}E:\rome total war\total war. rome ii - emperor edition\rome2.exe] => (Allow) E:\rome total war\total war. rome ii - emperor edition\rome2.exe
FirewallRules: [{03EA1836-4338-46AB-BAB9-0F47C4556FF9}] => (Allow) H:\Games\worldofwarships.exe
FirewallRules: [{55F5D94A-6AC9-4574-821B-F4CAA723972E}] => (Allow) H:\Games\worldofwarships.exe
FirewallRules: [{77C9183D-E85B-499F-954E-6AF8FB2CCEA0}] => (Allow) H:\Games\WoWSLauncher.exe
FirewallRules: [{2C4C47C4-40EA-44CE-8F37-1E402048BC22}] => (Allow) H:\Games\WoWSLauncher.exe
FirewallRules: [UDP Query User{196F4813-1F41-4A20-B0A3-46065439630D}E:\steamlibrary\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe
FirewallRules: [TCP Query User{8F454DB5-305B-429F-A294-6BF87B42EBA6}E:\steamlibrary\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe
FirewallRules: [{095D8D5B-7548-411C-80DE-40F90B0752F5}] => (Allow) E:\SteamLibrary\steamapps\common\Foxhole\War.exe
FirewallRules: [{06F87238-93F1-4107-A4C1-EF4064236DCC}] => (Allow) E:\SteamLibrary\steamapps\common\Foxhole\War.exe
FirewallRules: [{279192FF-6EAC-43F8-8021-42708FF9D34D}] => (Allow) E:\SteamLibrary\steamapps\common\The SKIES\Skies.exe
FirewallRules: [{5E4ADEE4-B6CE-4E31-A58D-021BDC869CF9}] => (Allow) E:\SteamLibrary\steamapps\common\The SKIES\Skies.exe
FirewallRules: [{ED1026BC-494B-4C54-B538-2494307794FD}] => (Block) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{EB26FC2F-61E9-42A5-87C5-3A2625CFE388}] => (Block) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{537FB838-6ECD-4C7A-808F-B7BD8AB9923D}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{590CC6A3-4197-442C-A669-5D498C476FE0}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{0065394B-C9E5-4927-AE80-47ECC7B484F4}E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{9F553B8C-E1C6-4FF8-A013-5CCD3F154FA2}E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{785F0731-17F8-4EE3-B451-188D4A037587}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{BE3F29D7-07F0-45D3-8191-8AD8F0176F11}] => (Allow) E:\Mr DJ\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{F82409C3-0172-48E3-A993-577E8289AA9D}] => (Allow) E:\Mr DJ\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [UDP Query User{B765A603-AEF3-40E7-9A08-E7AD66D72161}F:\games\crossout\launcher.exe] => (Allow) F:\games\crossout\launcher.exe
FirewallRules: [TCP Query User{41F41040-4FA8-4ECC-98FE-E1A8CA3CC590}F:\games\crossout\launcher.exe] => (Allow) F:\games\crossout\launcher.exe
FirewallRules: [UDP Query User{328750E0-2E52-4250-A3B4-B2A053E05A62}F:\games\warthunder\launcher.exe] => (Block) F:\games\warthunder\launcher.exe
FirewallRules: [TCP Query User{D323FD5B-B6DB-459E-B1C9-3F0E17AA801B}F:\games\warthunder\launcher.exe] => (Block) F:\games\warthunder\launcher.exe
FirewallRules: [UDP Query User{D376DE2E-32F3-48ED-BEB5-C62E36451F95}C:\program files\dc++\dcplusplus.exe] => (Allow) C:\program files\dc++\dcplusplus.exe
FirewallRules: [TCP Query User{935875B3-EA72-459B-877D-CD9B51C3A792}C:\program files\dc++\dcplusplus.exe] => (Allow) C:\program files\dc++\dcplusplus.exe
FirewallRules: [UDP Query User{CC17ABFB-FCB6-4BE6-B6D0-3DF1120224BB}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [TCP Query User{F2EDCB99-D70F-414D-9431-E31F34E7763C}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{E2BE713A-D0D2-47D5-956E-5D8E2DB690D9}C:\program files\windowsapps\xbmcfoundation.kodi_17.3.6.0_x86__4n2hpmxwrvr6p\kodi.exe] => (Allow) C:\program files\windowsapps\xbmcfoundation.kodi_17.3.6.0_x86__4n2hpmxwrvr6p\kodi.exe
FirewallRules: [TCP Query User{7D1EA2E9-625C-4F58-B168-86212833643B}C:\program files\windowsapps\xbmcfoundation.kodi_17.3.6.0_x86__4n2hpmxwrvr6p\kodi.exe] => (Allow) C:\program files\windowsapps\xbmcfoundation.kodi_17.3.6.0_x86__4n2hpmxwrvr6p\kodi.exe
FirewallRules: [UDP Query User{619640B8-734C-44E7-B6D5-4D86684BD211}F:\games\warthunder\win64\aces.exe] => (Allow) F:\games\warthunder\win64\aces.exe
FirewallRules: [TCP Query User{5C4E0F4A-CB13-411F-9522-65965AF68A1E}F:\games\warthunder\win64\aces.exe] => (Allow) F:\games\warthunder\win64\aces.exe
FirewallRules: [UDP Query User{ACD61F1C-B4B6-4177-8321-A350DB0D2CA9}F:\games\warthunder\launcher.exe] => (Allow) F:\games\warthunder\launcher.exe
FirewallRules: [TCP Query User{0D73D992-0A35-4044-935F-2D39A2DC0B69}F:\games\warthunder\launcher.exe] => (Allow) F:\games\warthunder\launcher.exe
FirewallRules: [{24CC63F4-7B24-427A-AB46-46D646760BCD}] => (Allow) E:\World of Warplanes\worldofwarplanes.exe
FirewallRules: [{87386255-A787-43F1-A42D-A3FF7AA8F824}] => (Allow) E:\World of Warplanes\worldofwarplanes.exe
FirewallRules: [{FDC9C027-21EF-461A-85DB-032C846D3E9F}] => (Allow) E:\World of Warplanes\WoWPLauncher.exe
FirewallRules: [{75E5A1AA-C2CA-4F6A-83D0-5CB39769EA01}] => (Allow) E:\World of Warplanes\WoWPLauncher.exe
FirewallRules: [UDP Query User{68BF378F-00F3-491D-AD49-3F9CBBEF5854}F:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) F:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [TCP Query User{D11C858D-2030-4548-8F99-A8E8DA2C8626}F:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) F:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [UDP Query User{7FD60F8E-231D-4669-94CA-69A66A543D38}C:\users\paulf\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\paulf\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{4F715D1C-0606-4046-B6F6-4EBBE6ACCE34}C:\users\paulf\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\paulf\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{E2571C65-C006-4806-B54B-43BD5DA3D546}E:\r.g. catalyst\total war. rome ii - emperor edition\rome2.exe] => (Allow) E:\r.g. catalyst\total war. rome ii - emperor edition\rome2.exe
FirewallRules: [TCP Query User{C228FAF5-5E49-4240-8882-BC7990454487}E:\r.g. catalyst\total war. rome ii - emperor edition\rome2.exe] => (Allow) E:\r.g. catalyst\total war. rome ii - emperor edition\rome2.exe
FirewallRules: [UDP Query User{EB9A14E4-AA80-4652-8357-EDA15B8A7E7C}C:\program files (x86)\energenie\power manager\pm.exe] => (Allow) C:\program files (x86)\energenie\power manager\pm.exe
FirewallRules: [TCP Query User{0E99C6ED-BF87-4EC9-BBC1-B998D72702C1}C:\program files (x86)\energenie\power manager\pm.exe] => (Allow) C:\program files (x86)\energenie\power manager\pm.exe
FirewallRules: [UDP Query User{202DB166-B418-4F12-95F4-1D09DA1A32A7}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [TCP Query User{B9959BF0-A487-49D0-A5AF-734FAE9C674C}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [{FF3A12D4-6AAD-4B6A-AE98-BAC1F03B7F25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{BC30E8D1-29FD-4895-933C-9962C22A373E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{9BAA1282-FA34-4198-8642-D42A9C5CF361}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{CB8BC936-AC34-4D84-9127-B195308D6753}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{C106F782-312F-4248-B0B8-7D9BDD966624}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{6B4639E7-9F24-4071-92F8-1BE877D982CF}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{6A973586-0D40-4698-9E25-5664AC3E4FB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{3D37AAD8-0A31-45A6-8EC2-F1203B00C708}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{59AD1F00-8013-475D-B4AF-984D13495623}] => (Allow) C:\Program Files (x86)\AnvSoft\Syncios Data Transfer\SynciosTransfer.exe
FirewallRules: [{D3D7C334-D545-4947-AE87-462BB0D7E4B2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{C3D1D948-D8CB-40FD-B6E7-1B5165413DB8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [UDP Query User{2E9E4ECB-9991-468E-9B8B-F4F58548579F}C:\program files\dc++\dcplusplus.exe] => (Allow) C:\program files\dc++\dcplusplus.exe
FirewallRules: [TCP Query User{2A628C70-3126-48AA-A934-3794DB3EF083}C:\program files\dc++\dcplusplus.exe] => (Allow) C:\program files\dc++\dcplusplus.exe
FirewallRules: [{3AB8CC4D-D359-41A3-A8DB-9AAD38737BB0}] => (Allow) C:\Program Files (x86)\Heroes & Generals\live\hng.exe
FirewallRules: [{2F506DC6-6A0A-409D-8149-65A0A4C7AC73}] => (Allow) C:\Program Files (x86)\Heroes & Generals\live\hng.exe
FirewallRules: [{07CE45E9-D3F4-4D65-BD83-2A92EBE2173E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{049A3C08-CC9E-4D46-BAE7-08BB61B6E154}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B42CB9C9-61F2-4080-A0DE-63C92046ECA8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{E91EF29D-DFC5-446C-8A2F-CD0AD8CC6403}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{5759C757-8E30-4F3D-9A06-99B204D0C9EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CFE48FF2-CA1D-4220-9C7B-F17125E26CBE}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{908D5F93-C7B1-4B7E-82C9-C06FDC1085F7}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{273ACA37-3F8B-48EB-B2F2-CDFBFB54A13D}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{4DAD4376-0DA0-4ED8-BAB3-E00B9C1E1157}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{CFB39994-9183-4947-9394-4A4EBDEA23D5}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{2474CF2C-9A7B-4526-ABF6-2F20E991EFE2}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{81FF24E8-6A9C-4E53-A068-17AEA84F0F3F}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{FDA5975E-884C-4AA5-BA08-B8CBDA892E13}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{20830B70-F8CA-4D25-9E32-2723295A0981}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [UDP Query User{8303D91B-191C-4718-9A7C-D61762C61DD7}C:\program files (x86)\energenie\power manager\pm.exe] => (Allow) C:\program files (x86)\energenie\power manager\pm.exe
FirewallRules: [TCP Query User{85811385-F7BD-4464-B48D-6754C6A36533}C:\program files (x86)\energenie\power manager\pm.exe] => (Allow) C:\program files (x86)\energenie\power manager\pm.exe
FirewallRules: [{B2270996-2D31-48AB-A9F7-132AFF57230D}] => (Allow) C:\Users\paulf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7D1A90E3-6240-4ECF-B45B-84616FA73EE9}] => (Allow) C:\Users\paulf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1EEA32A1-CF9A-48A6-854E-B2BFCDCAE473}] => (Allow) C:\Users\paulf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F7BC2DBF-D224-47D6-8A31-30C29B91A5FA}] => (Allow) C:\Users\paulf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{80803DCA-44BC-4E85-A361-1AC1F2B95684}] => (Allow) C:\Users\paulf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E375B178-1B7A-4F2A-B552-382587EA3D6B}] => (Allow) C:\Users\paulf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8D3BF841-DADD-4821-995E-65868A00EBF3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6885C169-D905-4983-9156-9D1942A6C823}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{78E464B1-CA75-4538-A562-A392912A9691}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1E132FC6-7829-400D-890F-28A5A6333266}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{87B1E614-B175-4FC3-89ED-68CB797517D3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{F792C7C4-6D04-4611-82AC-40B08A4B9231}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [TCP Query User{B99F663C-1AD2-4DB9-9DD3-698128652BF0}C:\program files (x86)\steam\steamapps\common\space\spacegame\binaries\win64\spserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\space\spacegame\binaries\win64\spserver.exe
FirewallRules: [UDP Query User{72C3CB09-3A3F-4BC9-9423-C200C6BF98E6}C:\program files (x86)\steam\steamapps\common\space\spacegame\binaries\win64\spserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\space\spacegame\binaries\win64\spserver.exe
FirewallRules: [{353B29CC-CA21-4BA6-997F-535708FB1F81}] => (Allow) c:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{0C8D18AD-68C0-4EC0-92BE-3FCF74B905E2}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{62A811A0-37B5-4220-A1CB-B4DB740CA8B1}] => (Allow) LPort=2869
FirewallRules: [{3FFAF4DB-4414-495A-B16E-4B42D4740806}] => (Allow) LPort=1900
FirewallRules: [{4BD8A520-E6AE-485B-BF70-264B5A79601F}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [{9D892CF1-B118-4FC7-8E27-03BBF818C898}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [{65FE4DF7-EF91-4C2E-8E96-4471327709CB}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{934022E3-14AC-4635-945F-C0F6F25050BD}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{F4CD3231-FF26-46BE-92B6-76FC7CC55705}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [{B6FD5673-0E13-40BD-96CE-DD919FD7474E}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [TCP Query User{2DA36620-2001-411E-8C3E-15BC993739B2}C:\program files (x86)\renegade x\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\renegade x\binaries\win32\udk.exe
FirewallRules: [UDP Query User{9AE529E8-88C1-4BAF-9272-6DDDDD24E3F4}C:\program files (x86)\renegade x\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\renegade x\binaries\win32\udk.exe
FirewallRules: [TCP Query User{3656BA87-633C-47BA-8A08-3DCEEA862FD2}C:\users\paulf\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\paulf\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{F6265CE4-0FAE-48CC-A885-CE3852EEFBDB}C:\users\paulf\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\paulf\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{D325C76A-4B04-481C-8947-9E834798543B}F:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) F:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [UDP Query User{70E1716C-B3DD-4DDF-8A0C-501E186257FA}F:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) F:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [TCP Query User{3458683A-BBA4-4FFA-8BD3-B01292F1A0DB}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{3CFEBA44-3437-41B9-A7AE-84BD4418AD85}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [TCP Query User{4148B2D1-26D6-498E-8BA9-8AA42E26930D}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe
FirewallRules: [UDP Query User{7444F05E-FCBB-4895-AFC3-49A1D1C6695E}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe
FirewallRules: [{9C1348CC-0421-4488-91B3-E8E1446D4D16}] => (Allow) C:\Program Files (x86)\Veebeam\VeebeamApp\VeebeamPlus.exe
FirewallRules: [{8C4F781A-4872-4A9F-8669-5EA59365FB9B}] => (Allow) C:\Program Files (x86)\Veebeam\VeebeamApp\VeebeamPlus.exe
FirewallRules: [{5B410DF4-68E9-4758-891F-D546F0C65C11}] => (Allow) C:\Program Files (x86)\Veebeam\VeebeamApp\VeebeamPlus.exe
FirewallRules: [{EB5CFE38-4BA2-4833-8AFC-A60ECAF3E2DC}] => (Allow) C:\Program Files (x86)\Veebeam\VeebeamApp\VeebeamPlus.exe
FirewallRules: [TCP Query User{F11D4B52-6824-4C67-A73D-30A88E0F15B7}H:\dying light\dyinglightgame.exe] => (Allow) H:\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{0BF877B6-7668-43DB-9621-322EEC94FD1B}H:\dying light\dyinglightgame.exe] => (Allow) H:\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{C786E49A-860C-497A-A3A7-8047C808D1A8}H:\moto racer 4\mr4\binaries\win64\mr4-win64-shipping.exe] => (Allow) H:\moto racer 4\mr4\binaries\win64\mr4-win64-shipping.exe
FirewallRules: [UDP Query User{40E0AC65-1C64-481B-8455-338688F683CC}H:\moto racer 4\mr4\binaries\win64\mr4-win64-shipping.exe] => (Allow) H:\moto racer 4\mr4\binaries\win64\mr4-win64-shipping.exe
FirewallRules: [TCP Query User{B8BB1133-99F6-44C5-B095-DD359337056D}H:\tom clancy's ghost recon wildlands\grw.exe] => (Allow) H:\tom clancy's ghost recon wildlands\grw.exe
FirewallRules: [UDP Query User{0F073B7A-238A-4CD2-AC2F-E8D16BE6BB64}H:\tom clancy's ghost recon wildlands\grw.exe] => (Allow) H:\tom clancy's ghost recon wildlands\grw.exe
FirewallRules: [{D4EAF2F8-42E5-40F8-9D3C-AC7DA42752EC}] => (Allow) H:\Last Man Standing\steamapps\common\LMS\Launcher.exe
FirewallRules: [{8568BC81-D518-4F6F-A70F-22144357CDFF}] => (Allow) H:\Last Man Standing\steamapps\common\LMS\Launcher.exe
FirewallRules: [TCP Query User{5C85CC57-E7CB-4A83-A342-7310F175E63E}H:\dayz\dayz standalone\dta\client.bin] => (Allow) H:\dayz\dayz standalone\dta\client.bin
FirewallRules: [UDP Query User{DFDBE2B9-B66B-4642-9A9A-2C272EB1527E}H:\dayz\dayz standalone\dta\client.bin] => (Allow) H:\dayz\dayz standalone\dta\client.bin
FirewallRules: [TCP Query User{67B16CB0-779A-4C86-9AD1-6D536E83D5B2}H:\last man standing\steamapps\common\lms\launcher.exe.new.exe] => (Allow) H:\last man standing\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [UDP Query User{4A4E5776-2F6C-4D99-86AD-849FBA70A999}H:\last man standing\steamapps\common\lms\launcher.exe.new.exe] => (Allow) H:\last man standing\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [TCP Query User{22A9B6C3-6494-46E8-B316-756E55FADB41}H:\last man standing\steamapps\common\lms\lms.exe] => (Allow) H:\last man standing\steamapps\common\lms\lms.exe
FirewallRules: [UDP Query User{90086304-39C2-4F66-985A-19341ACFC6D3}H:\last man standing\steamapps\common\lms\lms.exe] => (Allow) H:\last man standing\steamapps\common\lms\lms.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Unknown USB Device (Device Descriptor Request Failed)
Description: Unknown USB Device (Device Descriptor Request Failed)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/02/2017 08:32:17 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (11/02/2017 08:32:16 PM) (Source: Application) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/02/2017 08:30:15 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (11/02/2017 04:24:51 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (11/02/2017 01:56:14 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (11/02/2017 03:02:52 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (11/02/2017 01:21:11 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PGLog.exe, version: 3.0.0.95, time stamp: 0x57583ff8
Faulting module name: KERNELBASE.dll, version: 10.0.15063.674, time stamp: 0x6d16dd24
Exception code: 0x0eedfade
Fault offset: 0x000eb872
Faulting process id: 0x1830
Faulting application start time: 0x01d353762a677e43
Faulting application path: C:\Program Files (x86)\ProxyGate\PGLog.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 79472f38-2513-47b7-9137-76401308a55d
Faulting package full name:
Faulting package-relative application ID:

Error: (11/02/2017 01:21:11 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PGUpd.exe, version: 3.0.1.102, time stamp: 0x58ad0896
Faulting module name: KERNELBASE.dll, version: 10.0.15063.674, time stamp: 0x6d16dd24
Exception code: 0x0eedfade
Fault offset: 0x000eb872
Faulting process id: 0x30c4
Faulting application start time: 0x01d353743386b5a1
Faulting application path: C:\Program Files (x86)\ProxyGate\PGUpd.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: fe660340-ba61-41fb-b717-f5f50a8c951c
Faulting package full name:
Faulting package-relative application ID:

Error: (11/01/2017 10:44:53 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (10/31/2017 03:37:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: utorrentie.exe, version: 1.0.0.44090, time stamp: 0x59a491fe
Faulting module name: CoreMessaging.dll, version: 10.0.15063.608, time stamp: 0xc967ea2e
Exception code: 0xc00001ad
Fault offset: 0x00013e36
Faulting process id: 0x1bc4
Faulting application start time: 0x01d35242f0875fe6
Faulting application path: C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe
Faulting module path: C:\Windows\System32\CoreMessaging.dll
Report Id: 04e3d2b7-9aee-49c8-ba82-2190d54105ba
Faulting package full name:
Faulting package-relative application ID:

System errors:
=============
Error: (11/02/2017 01:52:48 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/02/2017 01:52:48 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/02/2017 01:52:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CldFlt service failed to start due to the following error:
The request is not supported.

Error: (11/02/2017 01:52:41 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 12:36:03 PM on ‎11/‎2/‎2017 was unexpected.

Error: (11/01/2017 09:06:47 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/01/2017 08:47:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/01/2017 08:47:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/01/2017 08:47:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CldFlt service failed to start due to the following error:
The request is not supported.

Error: (11/01/2017 08:47:39 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:40:31 PM on ‎11/‎1/‎2017 was unexpected.

Error: (11/01/2017 10:41:28 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

CodeIntegrity:
===================================
Date: 2017-10-28 12:25:22.768
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2017-10-24 15:55:26.945
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7 CPU 930 @ 2.80GHz
Percentage of memory in use: 26%
Total physical RAM: 12279.11 MB
Available physical RAM: 8974.92 MB
Total Virtual: 14135.11 MB
Available Virtual: 10351.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:8.73 GB) NTFS
Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: () (Fixed) (Total:229.26 GB) (Free:61.49 GB) NTFS
Drive f: () (Fixed) (Total:931.41 GB) (Free:41.43 GB) NTFS
Drive h: () (Fixed) (Total:1863.01 GB) (Free:1391.18 GB) NTFS
Drive i: (Resident.Evil.7) (CDROM) (Total:22.87 GB) (Free:0 GB) CDFS
Drive j: (Hearts of Iron IV Death or Disho) (CDROM) (Total:1.53 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: F5AB8698)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 232.8 GB) (Disk ID: D0F4738C)
Partition 1: (Not Active) - (Size=63 MB) - (Type=DE)
Partition 2: (Active) - (Size=229.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=3.5 GB) - (Type=DB)

========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: 2B7E7AE6)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: B130B9A3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

broni · Nov 3, 2017

Please, observe following rules:

Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.

If you're stuck, or you're not sure about certain step, always ask before doing anything else.

Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.

Never run more than one scan at a time.

Keep updating me regarding your computer behavior, good, or bad.

The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.

If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.

I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

==============================

Uninstall following unwanted programs:

AnonymizerGadget
ProxyGate

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2

Close all the running programs

Double click on downloaded setup.exe file to install the program.

Click on Start Scan button.

Click on another Start Scan button.

Wait until the Status box shows Scan Finished

Click on Remove Selected.

Wait until the Status box shows Deleting Finished.

Click on Report and copy/paste the content of the Notepad into your next reply.

RKreport.txt could also be found on your desktop.

If more than one log is produced post all logs.

Please download Malwarebytes to your desktop.

Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.

Then click Finish.

Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.

If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.

When the scan is complete, make sure that all Threats are selected, and click Remove Selected.

Restart your computer when prompted to do so.

The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.

Please download AdwCleaner by Xplode and save to your Desktop.

Double click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8/10 users right-click and select Run As Administrator

The tool will start to update the database if one is required.

Click on the Scan button.

AdwCleaner will begin...be patient as the scan may take some time to complete.

After the scan has finished, click on the Logfile button.

A window will open which lists the logs of your scans.

Click on the Scan tab.

Double-click the most recent scan which will be at the top of the list....the log will appear.

Review the results...see note below

After reviewing the log, click on the Clean button.

Press OK when asked to close all programs and follow the onscreen prompts.

Press OK again to allow AdwCleaner to restart the computer and complete the removal process.

After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).

To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.

Copy and paste the contents of AdwCleaner[CX].txt in your next reply.

A copy of all logfiles are saved to C:\AdwCleaner.

-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.

Franksee · Nov 5, 2017

RogueKiller V12.11.22.0 (x64) [Oct 30 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.15063) 64 bits version
Started in : Normal mode
User : paulf [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Scan -- Date : 11/03/2017 07:27:03 (Duration : 00:31:49)
Switches : -refid

¤¤¤ Processes : 1 ¤¤¤
[PUP.ProxyGate|PUP.Gen1|VT.PUP.Optional.GoldClick] Cloud.exe(2456) -- C:\Program Files (x86)\ProxyGate\Cloud.exe[7] -> Found

¤¤¤ Registry : 54 ¤¤¤
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\Appscion -> Found
[PUP.Conduit|PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\Conduit -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\Condut -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\DSiteProducts -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\IM -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\Linkey -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\Nosibay -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\ParetoLogic -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\Softonic -> Found
[PUP.SweetIM|PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\SweetIM -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\Appscion -> Found
[PUP.Conduit|PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\Conduit -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\Condut -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\DSiteProducts -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\IM -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\Linkey -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\Nosibay -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\ParetoLogic -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\Softonic -> Found
[PUP.SweetIM|PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\SweetIM -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\AppDataLow\Software\DynConIE -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\AppDataLow\Software\Rr Savings -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\AppDataLow\Software\DynConIE -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\AppDataLow\Software\Rr Savings -> Found
[PUP.OnlineIO|PUP.Gen1] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Uninstall\AnonymizerGadget -> Found
[PUP.OnlineIO|PUP.Gen1] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Uninstall\AnonymizerGadget -> Found
[PUP.Gen1] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\Microsoft\Windows\CurrentVersion\Uninstall\DigitalSite -> Found
[PUP.Gen1] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\Microsoft\Windows\CurrentVersion\Uninstall\DigitalSite -> Found
[PUP.OnlineIO|PUP.Gen1] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Uninstall\AnonymizerGadget -> Found
[PUP.OnlineIO|PUP.Gen1] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Uninstall\AnonymizerGadget -> Found
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | AnonymizerGadget : "C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\AGData\bin\AnonymizerLauncher.exe" /S /startup --ppapi-flash-path=./pepflashplayer.dll /source:1677 /subsource: [x] -> Found
[Suspicious.Path] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce | KyhuRAcNvF : "C:\WINDOWS\system32\config\SYSTEM~1\AppData\Local\YXVHVH~1\win32k.exe" [x] -> Found
[Suspicious.Path] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce | KyhuRAcNvF : "C:\WINDOWS\system32\config\SYSTEM~1\AppData\Local\YXVHVH~1\win32k.exe" [x] -> Found
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce | KyhuRAcNvF : "C:\WINDOWS\system32\config\SYSTEM~1\AppData\Local\YXVHVH~1\win32k.exe" [x] -> Found
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce | KyhuRAcNvF : "C:\WINDOWS\system32\config\SYSTEM~1\AppData\Local\YXVHVH~1\win32k.exe" [x] -> Found
[PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet001\Services\nuttkoqiez64 (C:\Program Files\003\nuttkoqiez64.exe run options=01110010030000000000000000000000 sourceguid=F4B522E8-37CD-4582-9026-66E6A362A315) -> Found
[PUP.ProxyGate|PUP.Gen1|VT.PUP.Optional.GoldClick] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\pgt_svc (C:\Program Files (x86)\ProxyGate\MainService.exe) -> Found
[PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet002\Services\nuttkoqiez64 (C:\Program Files\003\nuttkoqiez64.exe run options=01110010030000000000000000000000 sourceguid=F4B522E8-37CD-4582-9026-66E6A362A315) -> Found
[PUM.Proxy] (X64) HKEY_USERS\RK_User_ON_F_101A\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : -> Found
[PUM.Proxy] (X86) HKEY_USERS\RK_User_ON_F_101A\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : -> Found
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{617EFC02-A878-4790-B7BD-380D492F3E56}C:\users\user\appdata\local\temp\b9eea606aec4455f8e1121d8795a9dc4\relicdownloader.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\users\user\appdata\local\temp\b9eea606aec4455f8e1121d8795a9dc4\relicdownloader.exe|Name=relicdownloader.exe|Desc=relicdownloader.exe|Defer=User| [x] -> Found
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{D4EB8510-C536-4799-8CBB-8231C01868CC}C:\users\user\appdata\local\temp\b9eea606aec4455f8e1121d8795a9dc4\relicdownloader.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\users\user\appdata\local\temp\b9eea606aec4455f8e1121d8795a9dc4\relicdownloader.exe|Name=relicdownloader.exe|Desc=relicdownloader.exe|Defer=User| [x] -> Found
[PUP.SearchProtect] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {11D04015-06C5-4827-87A6-21347A871E73} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Windows\System32\dmwu.exe|Name=dmwu| [x] -> Found
[PUP.SearchProtect] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {C13C8BA2-FED9-4861-95C6-4D2E5DDDE1CC} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Windows\System32\dmwu.exe|Name=dmwu| [x] -> Found
[VT.W32.HfsAdware.1073] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {DF2D75C9-5B7B-46D5-B7C3-FD12F49BE3FB} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|App=C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe|Name=µTorrent (TCP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE| [x] -> Found
[VT.W32.HfsAdware.1073] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {7A367ED2-7041-490C-A0B8-F394B8F53368} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|App=C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe|Name=µTorrent (UDP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE| [x] -> Found
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{617EFC02-A878-4790-B7BD-380D492F3E56}C:\users\user\appdata\local\temp\b9eea606aec4455f8e1121d8795a9dc4\relicdownloader.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\users\user\appdata\local\temp\b9eea606aec4455f8e1121d8795a9dc4\relicdownloader.exe|Name=relicdownloader.exe|Desc=relicdownloader.exe|Defer=User| [x] -> Found
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{D4EB8510-C536-4799-8CBB-8231C01868CC}C:\users\user\appdata\local\temp\b9eea606aec4455f8e1121d8795a9dc4\relicdownloader.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\users\user\appdata\local\temp\b9eea606aec4455f8e1121d8795a9dc4\relicdownloader.exe|Name=relicdownloader.exe|Desc=relicdownloader.exe|Defer=User| [x] -> Found
[PUP.SearchProtect] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {11D04015-06C5-4827-87A6-21347A871E73} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Windows\System32\dmwu.exe|Name=dmwu| [x] -> Found
[PUP.SearchProtect] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {C13C8BA2-FED9-4861-95C6-4D2E5DDDE1CC} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Windows\System32\dmwu.exe|Name=dmwu| [x] -> Found
[VT.W32.HfsAdware.1073] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {DF2D75C9-5B7B-46D5-B7C3-FD12F49BE3FB} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|App=C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe|Name=µTorrent (TCP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE| [x] -> Found
[VT.W32.HfsAdware.1073] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_487C\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {7A367ED2-7041-490C-A0B8-F394B8F53368} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|App=C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe|Name=µTorrent (UDP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE| [x] -> Found

¤¤¤ Tasks : 2 ¤¤¤
[Suspicious.Path] %WINDIR%\Tasks\{474F428F-B6C4-9455-6C74-04159716460E}.job -- C:\Users\paulf\AppData\Roaming\{E792D~1\SyncTask.exe (/Check) -> Found
[Suspicious.Path] \{474F428F-B6C4-9455-6C74-04159716460E} -- C:\Users\paulf\AppData\Roaming\{E792D~1\SyncTask.exe (/Check) -> Found

¤¤¤ Files : 8 ¤¤¤
[PUP.uTorrentAds][File] C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe -> Found
[PUP.uTorrentAds][File] C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.4.8_42449\utorrentie.exe -> Found
[PUP.uTorrentAds][File] C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.4.9_43295\utorrentie.exe -> Found
[PUP.uTorrentAds][File] C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe -> Found
[PUP.uTorrentAds][File] C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe -> Found
[PUP.uTorrentAds][File] C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.5.0_43916\utorrentie.exe -> Found
[PUP.uTorrentAds][File] C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe -> Found
[PUP.ProxyGate|PUP.Gen1][Folder] C:\Program Files (x86)\ProxyGate -> Found

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 1 ¤¤¤
[PUP.Mindspark][Chrome:Addon] Default : MarineAquariumLite [moiiphobnfkcebehgeongkfomgmcoaed] -> Found

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: SanDisk SDSSDHP128G ATA Device +++++
--- User ---
[MBR] 2ff109b4cd37313292488270329c67a6
[BSP] 589effd96931550aede6217dbc60393c : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 122002 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: WDC WD2500JD-75HBB0 ATA Device +++++
--- User ---
[MBR] c611930143e83acc1ca71868a0dde90c
[BSP] ae203e84dcb456630d870d8f3155a2b5 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 62 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 128520 | Size: 234762 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] UNKNOWN (0xdb) [VISIBLE] Offset (sectors): 480921840 | Size: 3584 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: Hitachi HCS5C2020ALA632 ATA Device +++++
--- User ---
[MBR] e6a93a9ad7f68b323665f98425dbe5b4
[BSP] 86502e86158c83cec0941a4c1dc4b65c : Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 64 | Size: 1907718 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive3: Hitachi HDS721010CLA332 ATA Device +++++
--- User ---
[MBR] 227973f40b21fb1faa51cb58305f80d3
[BSP] 11fabc6a5236faec20bcf7fa3f5ff81d : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 953767 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

MALWAREBYTES

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 11/5/17
Scan Time: 10:32 AM
Log File: 96c5067e-c214-11e7-afe5-20cf300e6cb9.json
Administrator: Yes

-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.236
Update Package Version: 1.0.3178
License: Free

-System Information-
OS: Windows 10 (Build 15063.674)
CPU: x64
File System: NTFS
User: DESKTOP-EF1V79E\paulf

-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 393900
Threats Detected: 95
Threats Quarantined: 93
Time Elapsed: 2 min, 43 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 1
PUP.Optional.AnonymizerGadget.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, Quarantined, [1169], [-1],0.0.0

Registry Value: 3
PUP.Optional.AnonymizerGadget.PrxySvrRST, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Removal Failed, [1169], [-1],0.0.0
PUP.Optional.AnonymizerGadget.PrxySvrRST, HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [1169], [-1],0.0.0
PUP.Optional.AnonymizerGadget.PrxySvrRST, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Removal Failed, [1169], [-1],0.0.0

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 11
PUP.Optional.AnonymizerGadget.PrxySvrRST, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\ANONYMIZERGADGET, Quarantined, [1169], [329210],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\_metadata, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\config, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\icons, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\libs, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed, Quarantined, [850], [450132],1.0.3178

File: 80
PUP.Optional.AnonymizerGadget.PrxySvrRST, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\ANONYMIZERGADGET\ANONYMIZERGADGET.LNK, Quarantined, [1169], [329210],1.0.3178
PUP.Optional.AnonymizerGadget, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\AGDATA\CONFIG.JSON, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales\ca.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales\de.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales\en-GB.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales\en-US.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales\fr.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales\it.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales\sw.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales\zh-CN.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\locales\zh-TW.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\add.json, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\AGLoader.dll, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\AnonymizerGadget.dll, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\AnonymizerGadget.zip, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\AnonymizerLauncher.exe, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\cef.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\Ceflur.dll, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\cef_100_percent.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\cef_200_percent.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\cef_extensions.pak, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\chrome_elf.dll, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\Deutsch Gothic.ttf, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\ES.png, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\GB.png, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\icudtl.dat, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\libcef.dll, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\libEGL.dll, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\libGLESv2.dll, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\natives_blob.bin, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\pepflashplayer.dll, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\proxycheck.exe, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\snapshot_blob.bin, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\tlsr.dat, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\bin\widevinecdmadapter.dll, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.AnonymizerGadget, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\AGData\add.json, Quarantined, [1576], [338259],1.0.3178
PUP.Optional.MindSpark.Generic, C:\USERS\PAULF\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Replaced, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\USERS\PAULF\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Replaced, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\config\config.json, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\icons\icon128.png, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\icons\icon16.png, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\icons\icon19disabled.png, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\icons\icon19on.png, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\icons\icon48.png, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\ajax.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\background.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\chrome.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\content_script.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\dlp.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\dlpHelper.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\dynamicNewTab.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\extension_detect.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\index.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\logger.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\pageUtils.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\storage.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\TabManager.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\TemplateParser.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\ul.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\urlFragmentActions.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\urlUtils.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\util.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\js\webtooltabAPI.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\libs\PartnerId.js, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\_metadata\verified_contents.json, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\moiiphobnfkcebehgeongkfomgmcoaed\13.300.12.6722_0\dynamicNewTab.html, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\000003.log, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\CURRENT, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\LOCK, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\LOG, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\LOG.old, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\MANIFEST-000001, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\000003.log, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\CURRENT, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\LOCK, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\LOG, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\LOG.old, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\moiiphobnfkcebehgeongkfomgmcoaed\MANIFEST-000001, Quarantined, [850], [450132],1.0.3178
PUP.Optional.MindSpark.Generic, C:\USERS\PAULF\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\MOIIPHOBNFKCEBEHGEONGKFOMGMCOAED\13.300.12.6722_0\MANIFEST.JSON, Quarantined, [850], [450132],1.0.3178
PUP.Optional.AnonymizerGadget, C:\WINDOWS\TEMP\AUTOCHK.EXE, Quarantined, [1576], [338559],1.0.3178

Physical Sector: 0
(No malicious items detected)

(end)

# AdwCleaner 7.0.4.0 - Logfile created on Sun Nov 05 10:44:42 2017
# Updated on 2017/27/10 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [3542 B] - [2016/10/25 20:2:21]
C:/AdwCleaner/AdwCleaner[S0].txt - [4072 B] - [2016/10/25 20:1:11]
C:/AdwCleaner/AdwCleaner[S1].txt - [1149 B] - [2017/11/5 10:41:54]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########

# AdwCleaner 7.0.4.0 - Logfile created on Sun Nov 05 10:44:42 2017
# Updated on 2017/27/10 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [3542 B] - [2016/10/25 20:2:21]
C:/AdwCleaner/AdwCleaner[S0].txt - [4072 B] - [2016/10/25 20:1:11]
C:/AdwCleaner/AdwCleaner[S1].txt - [1149 B] - [2017/11/5 10:41:54]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########

broni · Nov 5, 2017

Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

Double click to run it.

Make sure you checkmark Addition.txt box.

Press Scan button.

Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.

Franksee · Nov 7, 2017

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-11-2017
Ran by paulf (administrator) on DESKTOP-EF1V79E (05-11-2017 21:05:27)
Running from C:\Users\paulf\Downloads
Loaded Profiles: paulf (Available Profiles: paulf)
Platform: Windows 10 Home Version 1703 15063.674 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Wargaming.net) C:\Games\World_of_Tanks\WargamingGameUpdater.exe
(MY.COM B.V.) C:\Users\paulf\AppData\Local\MyComGames\MyComGames.exe
(Gaijin Entertainment) C:\Users\paulf\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
() C:\Program Files (x86)\AFX\AFXM0116 Gaming Mouse\Monitor.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11709.1001.27.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8700.40485.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8700.40485.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Sony Interactive Entertainment Network America LLC) C:\Config.Msi\19a2055.rbf
(Sony Interactive Entertainment Network America LLC) C:\Config.Msi\19a2055.rbf
() C:\Config.Msi\19a2030.rbf
() C:\Config.Msi\19a2030.rbf
() C:\Config.Msi\19a2030.rbf
(Sony Interactive Entertainment Network America LLC) C:\Config.Msi\19a2028.rbf
(Sony Interactive Entertainment Network America LLC) C:\Config.Msi\19a2028.rbf
(Sony Interactive Entertainment Network America LLC) C:\Config.Msi\19a2028.rbf
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Farbar) C:\Users\paulf\Downloads\FRST64 (1).exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM-x32\...\Run: [Power Manager] => "C:\Program Files (x86)\Energenie\Power Manager\pm.exe" -winstartup
HKLM-x32\...\Run: [IJNetworkScanUtility] => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [206240 2010-08-24] (CANON INC.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => c:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [AFX Gaming Mouse Driver] => C:\Program Files (x86)\AFX\AFXM0116 Gaming Mouse\Monitor.exe [495616 2016-07-06] ()
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [World of Tanks] => C:\Games\World_of_Tanks\WargamingGameUpdater.exe [3135752 2017-02-28] (Wargaming.net)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [MyComGames] => C:\Users\paulf\AppData\Local\MyComGames\MyComGames.exe [5797776 2017-10-27] (MY.COM B.V.)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [Gaijin.Net Agent] => C:\Users\paulf\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2268232 2017-11-01] (Gaijin Entertainment)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [World of Warships (1)] => "H:\Games\WargamingGameUpdater.exe"
GroupPolicy: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{61bafd5b-67c1-4c68-b60d-e13755ebd4f9}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{61bafd5b-67c1-4c68-b60d-e13755ebd4f9}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7f5b7ff2-6c78-42ff-b4c4-6094f0e2f24d}: [NameServer] 8.8.8.8,8.8.4.4

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-18da69a9&q={searchTerms}
SearchScopes: HKLM -> {a62abdee-78a2-4ddb-9355-1c334abd6e43} URL =
SearchScopes: HKLM-x32 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-18da69a9&q={searchTerms}
SearchScopes: HKLM-x32 -> {a62abdee-78a2-4ddb-9355-1c334abd6e43} URL =
SearchScopes: HKU\S-1-5-21-2516327635-2037600327-2752607068-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2516327635-2037600327-2752607068-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-18da69a9&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-09-05] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-09-05] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2017-08-15] (Microsoft Corporation)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\PROGRA~3\WONDER~1\VIDEOC~1\WSBROW~1.DLL => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-23] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-09-05] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-23] (Oracle Corporation)
DPF: HKLM-x32 {2A293777-79CA-4DD9-A545-0E1718C0D3CF} hxxps://bg.itronenergypoint.net/IHVConnect2/KeyboxControl.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - No File

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com_xpi => not found
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-04-29] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-01] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2516327635-2037600327-2752607068-1001: @my.com/Games -> C:\Users\paulf\AppData\Local\MyComGames\NPMyComDetector.dll [2017-07-14] (MY.COM B.V.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.co.uk/"
CHR Profile: C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default [2017-11-05]
CHR Extension: (Slides) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Docs) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-29]
CHR Extension: (YouTube) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-29]
CHR Extension: (Google Cast) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2016-07-20]
CHR Extension: (Sheets) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Google Docs Offline) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-29]
CHR Extension: (Grammarly for Chrome) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2017-10-27]
CHR Extension: (Chrome Web Store Payments) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (TripAdvisor Browser Button) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiekdmlabennjdpgimlcpmphdjphlcha [2017-11-03]
CHR Extension: (Gmail) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-24]
CHR HKLM\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-09-09] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe [963544 2016-08-05] (ASUSTeK Computer Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058416 2017-09-05] (Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518264 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518264 2017-10-11] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-10-27] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460920 2017-10-11] (NVIDIA Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-06-04] ()
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-11-05] (Malwarebytes)
R1 MpKsl7acb719f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4CFDFA86-8BF0-4B14-83F9-D137B4FB4DBC}\MpKsl7acb719f.sys [58120 2017-11-05] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R3 netr28x; C:\WINDOWS\System32\drivers\netr28x.sys [2537984 2017-03-18] (MediaTek Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f936d37e592b25aa\nvlddmkm.sys [16936048 2017-10-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57976 2017-10-27] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2017-11-05] ()
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [115208 2014-11-21] (Oracle Corporation)
S3 veebeampol; C:\WINDOWS\System32\drivers\veebeampol.sys [14952 2013-10-24] (Veebeam Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-05 21:04 - 2017-11-05 21:04 - 002403328 _____ (Farbar) C:\Users\paulf\Downloads\FRST64 (1).exe
2017-11-05 18:31 - 2017-11-05 18:31 - 000001073 _____ C:\Users\Public\Desktop\PlayStation™Now.lnk
2017-11-05 18:31 - 2017-11-05 18:31 - 000000000 ____D C:\Users\paulf\AppData\Local\Gaikai
2017-11-05 18:31 - 2017-11-05 18:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayStation™Now
2017-11-05 18:25 - 2017-11-05 18:26 - 094162904 _____ (Sony Interactive Entertainment Network America LLC) C:\Users\paulf\Downloads\PlayStationNow-9.7.8 (2).exe
2017-11-05 18:13 - 2017-11-05 18:31 - 000000000 ____D C:\Program Files (x86)\PlayStationNow
2017-11-05 18:13 - 2017-11-05 18:25 - 000000000 ____D C:\Users\paulf\AppData\Roaming\playstation-now
2017-11-05 18:13 - 2017-11-05 18:13 - 000000000 ____D C:\Users\paulf\AppData\Local\Sony Interactive Entertainment Network America LLC
2017-11-05 18:13 - 2017-11-05 18:13 - 000000000 ____D C:\Program Files\DIFX
2017-11-05 18:12 - 2017-11-05 18:32 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Sony Interactive Entertainment Network America LLC
2017-11-05 18:12 - 2017-11-05 18:13 - 094162904 _____ (Sony Interactive Entertainment Network America LLC) C:\Users\paulf\Downloads\PlayStationNow-9.7.8 (1).exe
2017-11-05 18:11 - 2017-11-05 18:12 - 094162904 _____ (Sony Interactive Entertainment Network America LLC) C:\Users\paulf\Downloads\PlayStationNow-9.7.8.exe
2017-11-05 10:39 - 2017-11-05 10:39 - 008261584 _____ (Malwarebytes) C:\Users\paulf\Downloads\AdwCleaner.exe
2017-11-05 10:37 - 2017-11-05 10:37 - 000000000 ___HD C:\OneDriveTemp
2017-11-05 10:31 - 2017-11-05 10:31 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2017-11-05 10:31 - 2017-11-05 10:31 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-11-05 10:31 - 2017-11-05 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-11-05 10:31 - 2017-11-01 08:54 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-11-05 10:30 - 2017-11-05 10:31 - 078346672 _____ (Malwarebytes ) C:\Users\paulf\Downloads\mb3-setup-consumer-3.3.1.2183.exe
2017-11-05 10:28 - 2017-11-05 10:48 - 000069672 _____ C:\Users\paulf\Desktop\DAL.txt
2017-11-05 09:42 - 2017-11-05 09:43 - 000000000 ____D C:\Users\paulf\AppData\Local\Microsoft Windows
2017-11-05 00:32 - 2017-11-05 09:43 - 000000000 ____D C:\Users\paulf\AppData\LocalLow\uTorrent
2017-11-04 20:47 - 2017-11-04 20:47 - 005603499 _____ (UserBenchmark.com) C:\Users\paulf\Downloads\UserBenchMark.exe
2017-11-04 08:56 - 2017-11-04 08:56 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-11-04 08:56 - 2017-11-04 08:56 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-11-04 08:56 - 2017-10-27 17:50 - 000532088 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-11-04 08:56 - 2017-10-27 17:50 - 000437696 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-11-04 08:56 - 2017-10-27 16:06 - 000136312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-11-04 08:56 - 2017-09-13 23:20 - 000798008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-11-04 08:56 - 2017-09-13 23:20 - 000490296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-11-04 08:56 - 2017-09-13 23:19 - 000927544 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-11-04 08:56 - 2017-09-13 23:19 - 000591160 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-11-04 08:54 - 2017-10-27 17:50 - 040237688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 036239480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 035156928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 029270976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 023262280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 019037416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 013864048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 013254520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 011779328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 010882720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 004201592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 003614328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 001989056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438813.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 001673848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438813.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 001321448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 001135464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 001099712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 001038680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 001031104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000981112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000932288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000885680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000794392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000739448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000634224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000615544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000598464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000505976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000057976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-11-04 08:54 - 2017-10-27 17:50 - 000045496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-11-04 08:54 - 2017-10-27 17:50 - 000000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-11-04 08:54 - 2017-10-27 17:50 - 000000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-11-04 08:51 - 2017-11-04 08:56 - 460431568 _____ (NVIDIA Corporation) C:\Users\paulf\Downloads\388.13-desktop-win10-64bit-international-whql.exe
2017-11-03 07:22 - 2017-11-05 09:45 - 000028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2017-11-03 07:22 - 2017-11-04 23:29 - 000000000 ____D C:\ProgramData\RogueKiller
2017-11-03 07:22 - 2017-11-03 07:22 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2017-11-03 07:22 - 2017-11-03 07:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-11-03 07:22 - 2017-11-03 07:22 - 000000000 ____D C:\Program Files\RogueKiller
2017-11-03 07:16 - 2017-11-03 07:16 - 036097984 _____ (Adlice Software ) C:\Users\paulf\Downloads\RogueKiller_setup_ref3.exe
2017-11-02 20:40 - 2017-11-02 20:40 - 000062405 _____ C:\Users\paulf\Downloads\Addition.txt
2017-11-02 20:39 - 2017-11-05 21:05 - 000019535 _____ C:\Users\paulf\Downloads\FRST.txt
2017-11-02 20:38 - 2017-11-05 21:05 - 000000000 ____D C:\FRST
2017-11-02 20:38 - 2017-11-02 20:38 - 002403328 _____ (Farbar) C:\Users\paulf\Downloads\FRST64.exe
2017-11-02 20:28 - 2017-11-02 20:28 - 000656608 _____ (PC Drivers HeadQuarters LP) C:\Users\paulf\Downloads\DriverSupport.exe
2017-11-02 16:30 - 2017-11-02 16:30 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\Paradox Interactive
2017-11-02 16:29 - 2017-11-02 16:29 - 000000726 _____ C:\Users\paulf\Desktop\Hearts of Iron IV Death or Dishonor.lnk
2017-11-02 16:29 - 2017-11-02 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearts of Iron IV Death or Dishonor
2017-11-02 15:29 - 2017-11-02 15:29 - 000000000 ___SH C:\Users\paulf\AppData\Local\LumaEmu
2017-11-02 15:29 - 2017-11-02 15:29 - 000000000 ____D C:\Users\paulf\AppData\Local\DayZ
2017-11-02 07:11 - 2017-11-02 07:11 - 000016523 _____ C:\Users\paulf\Downloads\charterhouse-invoice-194783.pdf
2017-11-02 07:11 - 2017-11-02 07:11 - 000016523 _____ C:\Users\paulf\Desktop\charterhouse-invoice-194783.pdf
2017-11-01 21:10 - 2017-11-01 21:10 - 000000222 _____ C:\Users\paulf\Desktop\Last Man Standing.url
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Logitech
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Logishrd
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\Program Files\Logitech
2017-10-31 16:54 - 2017-10-31 16:54 - 000000000 ____D C:\Program Files\Common Files\Logitech
2017-10-31 16:53 - 2017-10-31 16:54 - 016082320 _____ (Logitech Inc.) C:\Users\paulf\Downloads\lgs510_x64.exe
2017-10-31 15:47 - 2017-10-31 15:47 - 000000813 _____ C:\Users\paulf\Desktop\Play DayZ Standalone.lnk
2017-10-31 15:47 - 2017-10-31 15:47 - 000000796 _____ C:\Users\paulf\Desktop\visit www.nosteam.ro.lnk
2017-10-30 07:20 - 2017-10-30 07:20 - 000000000 ____D C:\ProgramData\Tom Clancy's Ghost Recon Wildlands
2017-10-30 07:19 - 2017-10-30 07:19 - 000000000 ____D C:\Users\paulf\ansel
2017-10-29 13:16 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2017-10-29 13:16 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2017-10-29 13:16 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2017-10-29 13:16 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2017-10-29 13:16 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2017-10-29 13:16 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2017-10-29 13:16 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2017-10-29 13:16 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2017-10-29 13:16 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2017-10-29 13:16 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2017-10-29 13:16 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2017-10-29 13:16 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2017-10-29 13:16 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2017-10-29 13:16 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2017-10-29 13:16 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2017-10-29 13:16 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2017-10-29 13:16 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2017-10-29 13:16 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2017-10-29 13:16 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2017-10-29 13:16 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2017-10-29 13:16 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2017-10-29 13:16 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2017-10-29 13:16 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2017-10-29 13:16 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2017-10-29 13:16 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2017-10-29 13:16 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2017-10-29 13:16 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2017-10-29 13:16 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2017-10-29 13:16 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2017-10-29 13:16 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2017-10-29 13:16 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2017-10-29 13:16 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2017-10-29 13:16 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2017-10-29 13:16 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2017-10-29 13:16 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2017-10-29 13:16 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2017-10-29 13:16 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2017-10-29 13:16 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2017-10-29 13:16 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2017-10-29 13:16 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2017-10-29 13:16 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2017-10-29 13:16 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2017-10-29 13:16 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2017-10-29 13:16 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2017-10-29 13:16 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2017-10-29 13:16 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2017-10-29 13:16 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2017-10-29 13:16 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2017-10-29 13:16 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2017-10-29 13:16 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2017-10-29 13:16 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2017-10-29 13:16 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2017-10-29 13:16 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2017-10-29 13:16 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2017-10-29 13:16 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2017-10-29 13:16 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2017-10-29 13:16 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2017-10-29 13:16 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2017-10-29 13:16 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2017-10-29 13:16 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2017-10-29 13:16 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2017-10-29 13:16 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2017-10-29 13:16 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2017-10-29 13:16 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2017-10-29 13:16 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2017-10-29 13:16 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2017-10-29 13:16 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2017-10-29 13:16 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2017-10-29 13:16 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2017-10-29 13:16 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2017-10-29 13:16 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2017-10-29 13:16 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2017-10-29 13:16 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2017-10-29 13:16 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2017-10-29 13:16 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2017-10-29 13:16 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2017-10-29 13:16 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2017-10-29 13:16 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2017-10-29 13:16 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2017-10-29 13:16 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2017-10-29 13:16 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2017-10-29 13:16 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2017-10-29 13:16 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2017-10-29 13:16 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2017-10-29 13:16 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2017-10-29 13:16 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2017-10-29 13:16 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2017-10-29 13:16 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2017-10-29 13:16 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2017-10-29 13:16 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2017-10-29 13:16 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2017-10-29 13:16 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2017-10-29 13:16 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2017-10-29 13:16 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2017-10-29 13:16 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2017-10-29 13:16 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2017-10-29 13:16 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2017-10-29 13:16 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2017-10-29 13:16 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2017-10-29 13:16 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2017-10-29 13:16 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2017-10-29 13:16 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2017-10-29 13:16 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2017-10-29 13:16 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2017-10-29 13:16 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2017-10-29 13:16 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2017-10-29 13:16 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2017-10-29 12:44 - 2017-10-29 12:44 - 000000103 _____ C:\WINDOWS\SysWOW64\del.bat
2017-10-29 11:00 - 2017-10-29 11:00 - 000000732 _____ C:\Users\Public\Desktop\Tom Clancy's Ghost Recon Wildlands.lnk
2017-10-29 11:00 - 2017-10-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tom Clancy's Ghost Recon Wildlands
2017-10-29 09:21 - 2017-10-29 09:21 - 000000000 ____D C:\Users\paulf\AppData\LocalLow\Kite Games
2017-10-29 09:17 - 2017-10-29 09:17 - 000000393 _____ C:\Users\Public\Desktop\Sudden Strike 4.lnk
2017-10-29 09:17 - 2017-10-29 09:17 - 000000393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sudden Strike 4.lnk
2017-10-28 14:45 - 2017-10-28 14:46 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Novabench
2017-10-28 14:45 - 2017-10-28 14:46 - 000000000 ____D C:\ProgramData\Novabench
2017-10-28 14:45 - 2017-10-28 14:45 - 000000000 ____D C:\Users\paulf\AppData\Local\Novabench
2017-10-28 14:43 - 2017-10-28 14:44 - 096575488 _____ C:\Users\paulf\Downloads\novabench.msi
2017-10-28 13:37 - 2017-10-28 13:37 - 001949047 _____ C:\Users\paulf\Downloads\The Last of US PC Installer.rar
2017-10-28 12:36 - 2017-10-28 14:47 - 000000000 ____D C:\Users\paulf\AppData\Local\Ubisoft Game Launcher
2017-10-28 12:36 - 2017-10-28 14:47 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2017-10-28 12:30 - 2017-10-28 12:34 - 072177800 _____ (Ubisoft) C:\Users\paulf\Downloads\UplayInstaller.exe
2017-10-28 12:00 - 2017-10-28 12:00 - 000000000 ____D C:\Users\paulf\AppData\Local\MR4
2017-10-28 12:00 - 2017-10-28 12:00 - 000000000 ____D C:\ProgramData\Moto Racer 4
2017-10-28 11:58 - 2017-10-28 11:58 - 000000600 _____ C:\Users\Public\Desktop\Moto Racer 4.lnk
2017-10-28 11:58 - 2017-10-28 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moto Racer 4
2017-10-28 11:50 - 2017-10-28 11:50 - 000000556 _____ C:\Users\paulf\Desktop\Dirt 4.lnk
2017-10-28 11:40 - 2017-10-28 11:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dirt 4
2017-10-28 11:34 - 2017-10-28 11:34 - 076775409 _____ C:\Users\paulf\Downloads\AISuite3_Win10_V10147.zip
2017-10-28 11:22 - 2017-10-29 12:28 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Dirt.4.v1.04-ENG.repack
2017-10-28 10:56 - 2017-10-28 10:56 - 125914871 _____ C:\Users\paulf\Downloads\AISuite3_Win7-8-81-10_M7IGFHR_V10102.zip
2017-10-28 10:54 - 2017-10-28 10:54 - 019191253 _____ C:\Users\paulf\Downloads\AISuiteV10425.zip
2017-10-28 10:53 - 2017-10-28 10:53 - 021616952 _____ C:\Users\paulf\Downloads\AISuite_V10524.zip
2017-10-28 10:52 - 2017-10-28 10:52 - 023737323 _____ C:\Users\paulf\Downloads\ASUS_AISuite_V10614_XPVISTAWIN7 (2).zip
2017-10-28 10:52 - 2017-10-28 10:52 - 022614773 _____ C:\Users\paulf\Downloads\AISuite_V10538_XpVistaWin7 (2).zip
2017-10-27 20:44 - 2017-10-27 20:44 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\DyingLight
2017-10-27 16:40 - 2017-11-02 21:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2017-10-27 16:40 - 2017-10-27 16:40 - 000000622 _____ C:\Users\paulf\Desktop\Dying Light.lnk
2017-10-27 16:40 - 2017-10-27 16:40 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Dying Light
2017-10-27 15:10 - 2017-10-27 15:10 - 004355608 _____ C:\Users\paulf\Downloads\TurboV_V10204_XpVistaWin7.zip
2017-10-27 15:02 - 2017-10-27 15:02 - 022614773 _____ C:\Users\paulf\Downloads\AISuite_V10538_XpVistaWin7 (1).zip
2017-10-27 15:01 - 2017-10-27 15:01 - 023737323 _____ C:\Users\paulf\Downloads\ASUS_AISuite_V10614_XPVISTAWIN7 (1).zip
2017-10-27 14:59 - 2017-10-27 14:59 - 021850479 _____ C:\Users\paulf\Downloads\AiSuite_V10532.zip
2017-10-27 14:58 - 2017-10-27 14:58 - 022614773 _____ C:\Users\paulf\Downloads\AISuite_V10538_XpVistaWin7.zip
2017-10-27 14:57 - 2017-10-27 14:57 - 023737323 _____ C:\Users\paulf\Downloads\ASUS_AISuite_V10614_XPVISTAWIN7.zip
2017-10-27 14:43 - 2017-10-28 11:34 - 000000000 ____D C:\Users\paulf\Desktop\AI Suite
2017-10-27 14:40 - 2017-10-27 14:40 - 030857076 _____ C:\Users\paulf\Downloads\AI_Suite_II_Win7_Z10215.zip
2017-10-27 14:28 - 2017-10-27 14:28 - 000016896 _____ (ASUS) C:\WINDOWS\AsTaskSched.dll
2017-10-27 14:27 - 2017-10-27 14:27 - 000001769 _____ C:\WINDOWS\Language_trs.ini
2017-10-27 14:26 - 2017-10-28 11:03 - 000000000 ____D C:\Program Files (x86)\ASUS
2017-10-27 14:26 - 2017-10-27 14:26 - 000000000 ____D C:\ProgramData\ASUS
2017-10-27 14:26 - 2013-06-04 16:41 - 000028672 _____ (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2017-10-27 14:26 - 2013-06-04 16:41 - 000015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2017-10-27 14:22 - 2017-10-27 14:26 - 167887028 _____ C:\Users\paulf\Downloads\AISuite3_Win7-8-8-1_Z87-DELUXE-1.zip
2017-10-27 06:56 - 2017-10-27 06:56 - 000231760 _____ C:\Users\paulf\Downloads\CrucialUKScan.exe
2017-10-25 14:15 - 2017-09-30 05:52 - 001595152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-10-25 14:15 - 2017-09-30 05:51 - 001458320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-25 14:15 - 2017-09-30 05:51 - 001147288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-10-25 14:15 - 2017-09-30 05:51 - 000661224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-25 14:15 - 2017-09-30 05:50 - 001346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-10-25 14:15 - 2017-09-30 05:50 - 001068208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-10-25 14:15 - 2017-09-30 05:50 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-10-25 14:15 - 2017-09-30 05:49 - 001004136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-10-25 14:15 - 2017-09-30 05:49 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-10-25 14:15 - 2017-09-30 05:49 - 000135576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-10-25 14:15 - 2017-09-30 05:48 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-10-25 14:15 - 2017-09-30 05:48 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-10-25 14:15 - 2017-09-30 05:48 - 002327448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-10-25 14:15 - 2017-09-30 05:48 - 000644696 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2017-10-25 14:15 - 2017-09-30 05:47 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-10-25 14:15 - 2017-09-30 05:47 - 001194792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2017-10-25 14:15 - 2017-09-30 05:45 - 000511896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2017-10-25 14:15 - 2017-09-30 05:44 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-10-25 14:15 - 2017-09-30 05:44 - 000181912 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-10-25 14:15 - 2017-09-30 05:43 - 007318888 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-10-25 14:15 - 2017-09-30 05:43 - 002442136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-10-25 14:15 - 2017-09-30 05:42 - 004848952 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-10-25 14:15 - 2017-09-30 05:42 - 001506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-10-25 14:15 - 2017-09-30 05:42 - 000820120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-10-25 14:15 - 2017-09-30 05:41 - 005477600 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 005304496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 002086808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 000961944 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 000651672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-10-25 14:15 - 2017-09-30 05:41 - 000259400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2017-10-25 14:15 - 2017-09-30 05:41 - 000257432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll

Franksee · Nov 7, 2017

2017-10-25 14:15 - 2017-09-30 05:41 - 000228248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-10-25 14:15 - 2017-09-30 05:40 - 000724704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-10-25 14:15 - 2017-09-30 05:40 - 000558912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-10-25 14:15 - 2017-09-30 05:40 - 000408984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-10-25 14:15 - 2017-09-30 05:40 - 000336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-10-25 14:15 - 2017-09-30 05:40 - 000173976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2017-10-25 14:15 - 2017-09-30 05:39 - 021351760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-10-25 14:15 - 2017-09-30 05:39 - 000203672 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-25 14:15 - 2017-09-30 05:38 - 007910072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-10-25 14:15 - 2017-09-30 05:38 - 002239136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-10-25 14:15 - 2017-09-30 05:36 - 002672024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-10-25 14:15 - 2017-09-30 05:36 - 000057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-10-25 14:15 - 2017-09-30 02:29 - 001408536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-10-25 14:15 - 2017-09-30 02:29 - 000804784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-10-25 14:15 - 2017-09-30 02:26 - 001333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-10-25 14:15 - 2017-09-30 02:26 - 001292872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 001150776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 000606072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 000508344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 000480920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2017-10-25 14:15 - 2017-09-30 02:09 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-10-25 14:15 - 2017-09-30 02:09 - 000787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2017-10-25 14:15 - 2017-09-30 02:06 - 004471368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-10-25 14:15 - 2017-09-30 02:05 - 005827744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-10-25 14:15 - 2017-09-30 02:05 - 002603744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2017-10-25 14:15 - 2017-09-30 02:05 - 001266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-10-25 14:15 - 2017-09-30 02:05 - 000750488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-10-25 14:15 - 2017-09-30 02:05 - 000559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-10-25 14:15 - 2017-09-30 02:04 - 004215184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000612120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000347544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000182680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-10-25 14:15 - 2017-09-30 02:03 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-10-25 14:15 - 2017-09-30 02:03 - 006768288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-10-25 14:15 - 2017-09-30 02:03 - 001439032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-10-25 14:15 - 2017-09-30 02:02 - 000175512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-10-25 14:15 - 2017-09-30 02:01 - 000124544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2017-10-25 14:15 - 2017-09-29 07:46 - 023678976 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-10-25 14:15 - 2017-09-29 07:45 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-10-25 14:15 - 2017-09-29 07:44 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2017-10-25 14:15 - 2017-09-29 07:43 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-10-25 14:15 - 2017-09-29 07:43 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2017-10-25 14:15 - 2017-09-29 07:43 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2017-10-25 14:15 - 2017-09-29 07:42 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mgmtapi.dll
2017-10-25 14:15 - 2017-09-29 07:41 - 013844992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-10-25 14:15 - 2017-09-29 07:41 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2017-10-25 14:15 - 2017-09-29 07:40 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-10-25 14:15 - 2017-09-29 07:40 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-10-25 14:15 - 2017-09-29 07:40 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-10-25 14:15 - 2017-09-29 07:39 - 020511232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-10-25 14:15 - 2017-09-29 07:39 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-10-25 14:15 - 2017-09-29 07:39 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 001135616 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-10-25 14:15 - 2017-09-29 07:37 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2017-10-25 14:15 - 2017-09-29 07:37 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2017-10-25 14:15 - 2017-09-29 07:36 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-10-25 14:15 - 2017-09-29 07:36 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-10-25 14:15 - 2017-09-29 07:35 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 017370624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 006255616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 003669504 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-10-25 14:15 - 2017-09-29 07:34 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 000798720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-10-25 14:15 - 2017-09-29 07:33 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-10-25 14:15 - 2017-09-29 07:33 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-10-25 14:15 - 2017-09-29 07:33 - 001506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-10-25 14:15 - 2017-09-29 07:33 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 002782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 002340864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 001244160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-10-25 14:15 - 2017-09-29 07:32 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtapi.dll
2017-10-25 14:15 - 2017-09-29 07:31 - 003107328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-10-25 14:15 - 2017-09-29 07:31 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-10-25 14:15 - 2017-09-29 07:31 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-10-25 14:15 - 2017-09-29 07:31 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-10-25 14:15 - 2017-09-29 07:31 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-10-25 14:15 - 2017-09-29 07:30 - 023686144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-10-25 14:15 - 2017-09-29 07:30 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-25 14:15 - 2017-09-29 07:30 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-10-25 14:15 - 2017-09-29 07:30 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 001460736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2017-10-25 14:15 - 2017-09-29 07:28 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2017-10-25 14:15 - 2017-09-29 07:28 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cipher.exe
2017-10-25 14:15 - 2017-09-29 07:27 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 001321984 ____R (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 001468928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 008199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 002503680 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 001628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 003140096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 002730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-10-25 14:15 - 2017-09-29 07:23 - 002446336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-10-25 14:15 - 2017-09-29 07:23 - 001887744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001460224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000756224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-10-25 14:15 - 2017-09-29 07:22 - 002829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-10-25 14:15 - 2017-09-29 07:22 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-25 14:15 - 2017-09-29 07:22 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-10-25 14:15 - 2017-09-29 07:21 - 003304448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-10-25 14:15 - 2017-09-29 07:21 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-25 14:15 - 2017-09-29 07:21 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-10-25 14:15 - 2017-09-29 07:21 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-25 14:15 - 2017-09-29 07:21 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-10-25 14:15 - 2017-09-29 07:21 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 001811456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 000804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-25 14:15 - 2017-09-29 07:20 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 002088448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 002438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 001527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-10-25 14:15 - 2017-09-29 07:18 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 000603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2017-10-25 14:15 - 2017-09-29 07:18 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2017-10-25 14:15 - 2017-09-29 05:40 - 000804312 _____ C:\WINDOWS\SysWOW64\locale.nls
2017-10-25 14:15 - 2017-09-29 05:40 - 000804312 _____ C:\WINDOWS\system32\locale.nls
2017-10-25 14:15 - 2017-09-20 15:08 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-10-25 14:15 - 2017-09-20 15:08 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-10-25 14:15 - 2017-09-20 15:08 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-10-25 14:15 - 2017-09-18 23:20 - 001065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-10-25 14:15 - 2017-09-18 23:20 - 000900376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-10-25 14:15 - 2017-09-18 23:18 - 000965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-10-25 14:15 - 2017-09-18 23:17 - 001395664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-10-25 14:15 - 2017-09-18 23:17 - 001186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-10-25 14:15 - 2017-09-18 23:17 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-10-25 14:15 - 2017-09-18 23:11 - 001018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-10-25 14:15 - 2017-09-18 23:09 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-10-25 14:15 - 2017-09-18 22:25 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2017-10-25 14:15 - 2017-09-18 22:20 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-10-25 14:15 - 2017-09-18 22:20 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2017-10-25 14:15 - 2017-09-18 22:15 - 000648704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-10-25 14:14 - 2017-09-30 05:40 - 000642680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-10-25 14:14 - 2017-09-30 05:40 - 000184728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2017-10-25 14:14 - 2017-09-30 05:40 - 000072944 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2017-10-25 14:14 - 2017-09-29 07:33 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-25 14:14 - 2017-09-29 07:32 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-10-25 14:14 - 2017-09-29 07:32 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-10-25 14:14 - 2017-09-29 07:31 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\efssvc.dll
2017-10-25 14:14 - 2017-09-29 07:30 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2017-10-25 14:14 - 2017-09-29 07:30 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-10-25 14:14 - 2017-09-29 07:29 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-25 14:14 - 2017-09-29 07:29 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-25 14:14 - 2017-09-29 07:29 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ServiceWorkerHost.exe
2017-10-25 14:14 - 2017-09-29 07:27 - 000565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-10-25 14:14 - 2017-09-29 07:27 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-10-25 14:14 - 2017-09-29 07:26 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2017-10-25 14:14 - 2017-09-29 07:23 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-10-25 14:14 - 2017-09-29 07:22 - 001438208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-10-25 14:14 - 2017-09-29 07:21 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvc.dll
2017-10-25 14:14 - 2017-09-29 07:21 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-25 14:14 - 2017-09-29 07:20 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2017-10-25 14:14 - 2017-09-29 07:18 - 000347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-10-25 14:14 - 2017-09-29 07:18 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2017-10-25 14:14 - 2017-09-29 07:18 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\cipher.exe
2017-10-25 14:14 - 2017-09-18 22:26 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2017-10-25 14:14 - 2017-09-18 22:23 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2017-10-24 23:38 - 2017-11-04 09:03 - 000000000 ____D C:\Windows.old
2017-10-24 23:37 - 2017-10-24 23:37 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004708504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004671832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002476712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001146176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001106904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001013912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000958664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-10-24 23:37 - 2017-10-24 23:37 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000569264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-10-24 23:37 - 2017-10-24 23:37 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000387936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000085784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 007337472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004462120 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004330920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002972552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002647224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-10-24 23:36 - 2017-10-24 23:36 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-10-24 23:36 - 2017-10-24 23:36 - 002006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001930840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001668344 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001639936 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001619816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001077248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000946688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000871448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000844288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-10-24 23:36 - 2017-10-24 23:36 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000685512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000627080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000610720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-10-24 23:36 - 2017-10-24 23:36 - 000546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthHFSrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000410168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000381824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000359560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000316320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000291904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000280480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

broni · Nov 8, 2017

Go on....

Franksee · Nov 8, 2017

Sorry don't know what happened!

2017-10-24 23:36 - 2017-10-24 23:36 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-10-24 23:36 - 2017-10-24 23:36 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcrecovery.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000169376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000159648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\csplte.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-10-24 23:36 - 2017-10-24 23:36 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000143736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000115792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000081176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000064680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000052768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000049720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000042456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-10-24 23:36 - 2017-10-24 23:36 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-10-24 23:30 - 2017-10-24 23:30 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-10-24 23:30 - 2017-10-24 14:42 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-10-24 23:28 - 2017-10-24 23:28 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-10-24 23:28 - 2017-10-24 23:28 - 000000000 ____D C:\Program Files\MSBuild
2017-10-24 23:28 - 2017-10-24 23:28 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-10-24 23:28 - 2017-10-24 23:28 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-10-24 23:28 - 2017-02-10 19:26 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:26 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:26 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-10-24 23:28 - 2017-02-10 19:21 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:21 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:21 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-10-24 14:56 - 2017-10-24 14:56 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-10-24 14:55 - 2017-10-24 14:55 - 000000020 ___SH C:\Users\paulf\ntuser.ini
2017-10-24 14:55 - 2017-10-24 14:55 - 000000000 ____D C:\Users\paulf\AppData\Local\DBG
2017-10-24 14:54 - 2017-10-24 14:54 - 000000000 ____D C:\ProgramData\USOShared
2017-10-24 14:53 - 2017-11-05 10:52 - 001128674 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-10-24 14:51 - 2017-10-24 14:52 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2017-10-24 14:51 - 2017-10-24 14:52 - 000007623 _____ C:\WINDOWS\diagerr.xml
2017-10-24 14:50 - 2017-11-05 10:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-10-24 14:50 - 2017-11-04 20:48 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2516327635-2037600327-2752607068-1001
2017-10-24 14:50 - 2017-10-25 13:55 - 000004650 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-10-24 14:50 - 2017-10-25 13:55 - 000004422 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-10-24 14:50 - 2017-10-24 19:10 - 000004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5BC36F2D-C80E-462C-8A3C-42620F2CC860}
2017-10-24 14:50 - 2017-10-24 14:50 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-10-24 14:50 - 2017-10-24 14:50 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000003344 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-10-24 14:50 - 2017-10-24 14:50 - 000003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000003120 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-10-24 14:50 - 2017-10-24 14:50 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002800 _____ C:\WINDOWS\System32\Tasks\klcp_update
2017-10-24 14:50 - 2017-10-24 14:50 - 000002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002694 _____ C:\WINDOWS\System32\Tasks\{08C41D91-8F47-2CC7-9926-3A52FDBFB8EB}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002552 _____ C:\WINDOWS\System32\Tasks\{B6761D67-8BD7-4211-B678-B0ED9D84362C}
2017-10-24 14:50 - 2017-10-24 14:50 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-10-24 14:47 - 2017-10-24 14:47 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-10-24 14:44 - 2017-10-24 14:48 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-10-24 14:44 - 2017-03-18 20:56 - 002233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-10-24 14:43 - 2017-11-05 17:48 - 000000000 ____D C:\Users\paulf
2017-10-24 14:43 - 2017-11-05 15:07 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-24 14:43 - 2017-11-04 08:57 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-24 14:43 - 2017-10-27 16:36 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-10-24 14:43 - 2017-10-27 16:12 - 005960824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-10-24 14:43 - 2017-10-27 16:12 - 002587768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-10-24 14:43 - 2017-10-27 16:12 - 001766520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-10-24 14:43 - 2017-10-27 16:12 - 000607168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-10-24 14:43 - 2017-10-27 16:12 - 000449656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-10-24 14:43 - 2017-10-27 16:12 - 000123000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-10-24 14:43 - 2017-10-27 16:12 - 000081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-10-24 14:43 - 2017-10-25 10:33 - 007802921 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-10-24 14:43 - 2017-10-24 14:45 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-10-24 14:43 - 2017-10-24 14:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-10-24 14:43 - 2017-10-24 14:43 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2017-10-24 14:43 - 2017-10-24 14:43 - 000000000 ____D C:\WINDOWS\system32\DAX2
2017-10-24 14:42 - 2017-11-05 20:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-10-24 14:42 - 2017-10-25 18:15 - 000486712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-24 14:42 - 2017-10-24 14:42 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-10-24 14:42 - 2017-10-24 14:42 - 000000000 ____D C:\Program Files\Realtek
2017-10-23 15:26 - 2017-10-23 15:26 - 000251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\4B6A4B2B.sys
2017-10-23 15:22 - 2017-10-23 15:32 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-10-23 15:06 - 2017-10-23 15:06 - 000000000 ___HD C:\Program Files (x86)\Temp
2017-10-23 15:03 - 2017-10-23 15:04 - 060956425 _____ C:\Users\paulf\Downloads\ALC1200_Audio_V6015859_Windows7.zip
2017-10-23 12:00 - 2017-10-23 12:00 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-23 11:58 - 2017-10-23 12:00 - 071535032 _____ (Malwarebytes ) C:\Users\paulf\Downloads\mb3-setup-consumer-3.2.2.2029-1.0.212-1.0.2951 (1).exe
2017-10-23 11:50 - 2017-10-23 11:50 - 000001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-10-23 11:50 - 2017-10-11 01:01 - 001796216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-10-23 11:50 - 2017-10-11 01:01 - 001578104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-10-23 11:50 - 2017-10-11 01:01 - 000919160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-10-23 11:49 - 2017-10-24 14:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-10-23 11:49 - 2017-10-23 11:49 - 000097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-10-23 11:49 - 2017-10-23 11:49 - 000000000 ____D C:\Program Files (x86)\Java
2017-10-23 11:48 - 2017-10-23 11:48 - 001852992 _____ (Oracle Corporation) C:\Users\paulf\Downloads\JavaSetup8u151.exe
2017-10-23 11:48 - 2017-10-10 23:26 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-10-23 11:45 - 2017-10-23 11:46 - 081400776 _____ (NVIDIA Corporation) C:\Users\paulf\Downloads\GeForce_Experience_v3.10.0.95.exe
2017-10-23 09:55 - 2017-10-23 09:55 - 007333587 _____ C:\Users\paulf\Downloads\E4481_P6T_SE_manual.zip
2017-10-23 09:55 - 2017-10-23 09:55 - 000066464 _____ C:\Users\paulf\Downloads\IE4283_P6T_P6T_SE_Insert.zip
2017-10-21 14:14 - 2017-10-21 14:14 - 000000578 _____ C:\Users\paulf\Desktop\World of Warships.lnk
2017-10-21 14:13 - 2017-10-21 14:13 - 006054816 _____ (Wargaming.net ) C:\Users\paulf\Downloads\WoWS_internet_install_eu.exe
2017-10-20 19:03 - 2017-10-20 19:03 - 001528543 _____ C:\Users\paulf\Desktop\Booking Document.pdf
2017-10-20 19:02 - 2017-10-20 19:02 - 001529674 _____ C:\Users\paulf\Downloads\Booking Document.pdf
2017-10-19 21:11 - 2016-01-14 01:27 - 000003118 _____ C:\Users\paulf\Desktop\license.conf
2017-10-19 21:06 - 2017-10-19 21:07 - 071535032 _____ (Malwarebytes ) C:\Users\paulf\Downloads\mb3-setup-consumer-3.2.2.2029-1.0.212-1.0.2951.exe
2017-10-19 17:07 - 2017-10-19 17:07 - 000000000 ____D C:\Users\paulf\Desktop\Dashhcam
2017-10-19 17:06 - 2017-10-19 17:06 - 000001164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dashcam Viewer.lnk
2017-10-19 17:06 - 2017-10-19 17:06 - 000001152 _____ C:\Users\Public\Desktop\Dashcam Viewer.lnk
2017-10-19 17:06 - 2017-10-19 17:06 - 000000000 ____D C:\Program Files (x86)\Dashcam Viewer
2017-10-19 17:03 - 2017-10-19 17:05 - 062831199 _____ C:\Users\paulf\Downloads\DashcamViewerWin_v2.7.3.zip
2017-10-19 16:59 - 2017-10-19 16:59 - 001207296 _____ (DATAKAM) C:\Users\paulf\Downloads\RegistratorViewer.exe
2017-10-14 15:14 - 2017-10-14 15:14 - 000000000 ____D C:\Users\paulf\AppData\Local\Foxhole
2017-10-14 15:09 - 2017-10-14 15:09 - 000000222 _____ C:\Users\paulf\Desktop\Foxhole.url
2017-10-11 19:20 - 2017-10-11 19:20 - 000000000 ____D C:\Users\paulf\AppData\Local\DreadGame
2017-10-11 15:58 - 2017-10-11 16:03 - 236169535 _____ C:\Users\paulf\Downloads\hive-win64.zip
2017-10-11 15:37 - 2017-10-11 15:38 - 059990936 _____ C:\Users\paulf\Downloads\DreadnoughtInstaller (2).exe
2017-10-11 07:26 - 2017-10-11 07:26 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-10-10 20:21 - 2017-10-10 20:21 - 059990936 _____ C:\Users\paulf\Downloads\DreadnoughtInstaller (1).exe
2017-10-10 20:20 - 2017-10-24 14:48 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dreadnought
2017-10-10 20:20 - 2017-10-10 20:20 - 000000836 _____ C:\Users\paulf\Desktop\Play Dreadnought.lnk
2017-10-10 20:19 - 2017-10-10 20:19 - 059990936 _____ C:\Users\paulf\Downloads\DreadnoughtInstaller.exe
2017-10-08 21:15 - 2017-10-08 21:22 - 000000000 ____D C:\Users\paulf\AppData\LocalLow\eforb
2017-10-08 21:07 - 2017-10-08 21:07 - 000000000 ____D C:\Users\paulf\AppData\Local\FortniteGame
2017-10-08 20:06 - 2017-10-08 20:06 - 000000222 _____ C:\Users\paulf\Desktop\The SKIES.url
2017-10-08 19:56 - 2017-10-08 19:56 - 000000000 ____D C:\Users\paulf\AppData\Local\UnrealEngineLauncher
2017-10-08 19:56 - 2017-10-08 19:56 - 000000000 ____D C:\Users\paulf\AppData\Local\EpicGamesLauncher
2017-10-08 19:55 - 2017-10-08 19:57 - 000000000 ____D C:\ProgramData\Epic
2017-10-08 19:55 - 2017-10-08 19:55 - 000000789 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2017-10-08 19:55 - 2017-10-08 19:55 - 000000789 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2017-10-08 19:54 - 2017-10-08 19:55 - 031653888 _____ C:\Users\paulf\Downloads\EpicInstaller-6.5.0-fortnite-bd532a4e2cd049eaad6c5b542c7cf32c.msi

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-05 18:19 - 2016-12-11 12:26 - 000000000 ____D C:\Users\paulf\AppData\Roaming\NVIDIA
2017-11-05 18:19 - 2016-05-20 07:33 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-05 18:14 - 2017-03-18 21:01 - 000000000 ____D C:\WINDOWS\INF
2017-11-05 18:13 - 2016-04-30 07:19 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-05 18:13 - 2016-04-30 07:13 - 000000000 ____D C:\Users\paulf\AppData\Local\NVIDIA
2017-11-05 17:45 - 2017-07-25 20:54 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\Outlook Files
2017-11-05 10:46 - 2017-07-14 12:31 - 000000000 ____D C:\Users\paulf\AppData\Local\MyComGames
2017-11-05 10:46 - 2016-10-25 20:00 - 000000000 ____D C:\AdwCleaner
2017-11-05 10:45 - 2016-04-29 13:40 - 000000000 ___RD C:\Users\paulf\OneDrive
2017-11-05 10:44 - 2017-03-18 11:40 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-11-05 10:31 - 2016-05-14 14:42 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-11-05 10:24 - 2016-05-10 20:43 - 000000000 ____D C:\Users\paulf\AppData\Roaming\uTorrent
2017-11-05 06:46 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-04 20:48 - 2016-04-29 13:40 - 000002367 _____ C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-04 08:57 - 2016-07-07 11:51 - 000000000 ____D C:\Temp
2017-11-04 08:57 - 2016-04-30 07:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-11-04 08:42 - 2017-03-18 21:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-11-03 07:25 - 2016-08-08 18:35 - 000000000 ____D C:\Program Files (x86)\Anvsoft
2017-11-01 21:10 - 2016-05-20 07:41 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-10-31 10:21 - 2016-04-29 13:39 - 000000000 ____D C:\Users\paulf\AppData\Local\Packages
2017-10-30 07:19 - 2016-05-14 10:21 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\My Games
2017-10-28 12:00 - 2016-05-20 09:10 - 000000000 ____D C:\Users\paulf\AppData\Local\UnrealEngine
2017-10-28 11:21 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-10-28 11:03 - 2016-04-29 13:42 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-10-27 17:50 - 2017-05-19 17:03 - 001615472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-10-27 17:50 - 2017-05-19 17:03 - 000225208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-10-27 17:50 - 2017-05-19 16:47 - 004485048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-10-27 17:50 - 2017-05-19 16:47 - 003817584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-10-27 17:50 - 2017-05-19 13:22 - 000048442 _____ C:\WINDOWS\system32\nvinfo.pb
2017-10-27 16:34 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\rescache
2017-10-27 11:57 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-10-26 06:36 - 2016-02-13 13:20 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-25 18:14 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-10-25 18:14 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\Provisioning
2017-10-25 18:13 - 2017-03-18 21:03 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-10-25 18:13 - 2017-03-18 21:03 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2017-10-25 14:18 - 2017-03-18 20:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-10-25 13:59 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\appcompat
2017-10-25 13:55 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-10-25 13:55 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-10-24 23:41 - 2017-03-18 21:03 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-10-24 23:39 - 2017-03-18 21:06 - 000000000 ____D C:\WINDOWS\Setup
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\setup
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-10-24 23:38 - 2017-03-18 21:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-10-24 23:31 - 2017-03-19 02:30 - 000000000 ____D C:\WINDOWS\OCR
2017-10-24 23:28 - 2017-03-18 20:56 - 000465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2017-10-24 23:28 - 2017-03-18 20:56 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2017-10-24 23:28 - 2017-03-18 20:56 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2017-10-24 23:28 - 2017-03-18 20:56 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2017-10-24 23:28 - 2017-03-18 20:56 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2017-10-24 23:25 - 2016-05-05 11:33 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2017-10-24 18:48 - 2017-08-26 16:56 - 000000000 ____D C:\Users\paulf\AppData\Local\Targem
2017-10-24 17:42 - 2016-09-22 06:07 - 000000000 ____D C:\Users\paulf\AppData\Local\ConnectedDevicesPlatform
2017-10-24 15:01 - 2016-04-29 14:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-10-24 14:55 - 2017-03-18 21:03 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-10-24 14:54 - 2017-03-18 21:03 - 000000000 ____D C:\ProgramData\USOPrivate
2017-10-24 14:53 - 2017-09-16 20:39 - 000000000 ___DC C:\WINDOWS\Panther
2017-10-24 14:53 - 2016-08-06 21:17 - 000000258 __RSH C:\ProgramData\ntuser.pol
2017-10-24 14:52 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-10-24 14:52 - 2017-03-18 11:40 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-10-24 14:51 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\Registration
2017-10-24 14:51 - 2017-03-18 21:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-10-24 14:51 - 2016-07-16 11:47 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-10-24 14:51 - 2016-04-29 13:44 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-10-24 14:50 - 2017-03-19 02:31 - 000000000 ____D C:\WINDOWS\HoloShell
2017-10-24 14:50 - 2017-03-18 21:03 - 000000000 __RSD C:\WINDOWS\Media
2017-10-24 14:50 - 2017-03-18 21:03 - 000000000 __RHD C:\Users\Public\Libraries
2017-10-24 14:50 - 2016-05-05 02:51 - 000022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-10-24 14:48 - 2017-08-26 16:35 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossout
2017-10-24 14:48 - 2017-08-19 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2017-10-24 14:48 - 2017-07-23 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-10-24 14:48 - 2017-07-15 10:30 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2017-10-24 14:48 - 2017-07-14 15:02 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Armored Warfare MyCom Beta
2017-10-24 14:48 - 2017-07-14 12:31 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
2017-10-24 14:48 - 2017-05-12 16:41 - 000000000 ____D C:\WINDOWS\system32\UNP
2017-10-24 14:48 - 2017-03-28 15:15 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warships
2017-10-24 14:48 - 2017-03-18 21:03 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-10-24 14:48 - 2016-12-19 11:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-10-24 14:48 - 2016-09-28 14:29 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaPlayerLite
2017-10-24 14:48 - 2016-08-08 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-10-24 14:48 - 2016-07-30 11:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\webium's modpack
2017-10-24 14:48 - 2016-05-26 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\proDAD
2017-10-24 14:48 - 2016-05-26 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magic Bullet Looks Studio
2017-10-24 14:48 - 2016-05-26 10:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 12
2017-10-24 14:48 - 2016-05-26 09:33 - 000000000 ____D C:\WINDOWS\en
2017-10-24 14:48 - 2016-05-25 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2017-10-24 14:48 - 2016-05-20 07:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-10-24 14:48 - 2016-05-14 14:59 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-10-24 14:48 - 2016-05-14 14:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-10-24 14:48 - 2016-04-29 14:16 - 000000000 ____D C:\WINDOWS\system32\STRING
2017-10-24 14:48 - 2016-04-29 13:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2017-10-24 14:45 - 2017-09-23 11:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ
2017-10-24 14:45 - 2017-08-05 09:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2017-10-24 14:45 - 2017-08-05 09:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
2017-10-24 14:45 - 2017-07-31 15:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KaOs
2017-10-24 14:45 - 2017-07-30 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Games
2017-10-24 14:45 - 2017-07-09 17:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Catalyst
2017-10-24 14:45 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-10-24 14:45 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\system32\spool
2017-10-24 14:45 - 2017-03-18 21:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-10-24 14:45 - 2017-02-01 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA
2017-10-24 14:45 - 2016-12-12 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AFX
2017-10-24 14:45 - 2016-08-08 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2017-10-24 14:45 - 2016-08-08 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2017-10-24 14:45 - 2016-05-26 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle
2017-10-24 14:45 - 2016-04-29 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-10-24 14:45 - 2016-04-29 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5200 series
2017-10-24 14:45 - 2016-04-29 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon IJ Network Utilities
2017-10-24 14:45 - 2016-04-29 14:11 - 000000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2017-10-24 14:45 - 2016-04-29 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Energenie
2017-10-24 14:44 - 2016-12-21 18:10 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Syncios
2017-10-24 14:44 - 2016-04-29 22:16 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-10-24 14:43 - 2017-03-18 21:03 - 000000000 ____D C:\WINDOWS\Help
2017-10-24 14:43 - 2017-03-18 11:40 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-10-23 15:10 - 2016-05-20 20:47 - 000000000 ____D C:\Users\paulf\AppData\Local\CrashDumps
2017-10-23 15:09 - 2016-12-04 16:24 - 000000000 ____D C:\Users\paulf\AppData\Local\ElevatedDiagnostics
2017-10-23 14:20 - 2016-04-30 07:21 - 000000000 ____D C:\Users\paulf\AppData\Local\NVIDIA Corporation
2017-10-23 11:50 - 2017-09-08 15:10 - 000000000 ____D C:\ProgramData\Oracle
2017-10-22 08:58 - 2016-08-06 22:17 - 000000485 _____ C:\Users\paulf\AppData\Roaming\WB.CFG
2017-10-21 14:14 - 2017-07-09 17:04 - 000000987 _____ C:\Users\paulf\Desktop\Total War. Rome II - Emperor Edition.lnk
2017-10-21 14:13 - 2016-04-29 13:49 - 000000000 ____D C:\Games
2017-10-20 18:48 - 2017-02-09 18:53 - 000000000 ____D C:\Users\paulf\AppData\Local\Adobe
2017-10-18 17:09 - 2016-04-29 14:20 - 000000000 ____D C:\Program Files\Microsoft Office 15
2017-10-13 11:00 - 2017-09-29 06:39 - 000000000 ____D C:\Program Files\rempl
2017-10-13 00:21 - 2017-03-18 21:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-10-13 00:21 - 2017-03-18 21:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-11 07:28 - 2016-04-29 15:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-11 07:26 - 2016-04-29 15:44 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-10-07 09:39 - 2016-05-26 15:40 - 001964544 _____ C:\Users\paulf\Desktop\Aquarium Log_v2.0.xls

==================== Files in the root of some directories =======

2016-08-06 22:17 - 2017-10-22 08:58 - 000000485 _____ () C:\Users\paulf\AppData\Roaming\WB.CFG
2017-11-02 15:29 - 2017-11-02 15:29 - 000000000 ___SH () C:\Users\paulf\AppData\Local\LumaEmu
2017-10-24 14:43 - 2017-10-24 14:43 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2016-05-26 10:29 - 2016-05-26 10:29 - 000001744 _____ () C:\ProgramData\__wdump.txt

Files to move or delete:
====================
C:\Windows\Tasks\{08C41D91-8F47-2CC7-9926-3A52FDBFB8EB}.job

Some files in TEMP:
====================
2017-11-04 23:28 - 2017-10-24 23:36 - 001930840 _____ (Microsoft Corporation) C:\Users\paulf\AppData\Local\Temp\dllnt_dump.dll
2017-10-23 12:04 - 2017-10-06 11:52 - 000760032 _____ (NVIDIA Corporation) C:\Users\paulf\AppData\Local\Temp\nvSCPAPI.dll
2017-10-23 12:04 - 2017-10-06 11:52 - 000874184 _____ (NVIDIA Corporation) C:\Users\paulf\AppData\Local\Temp\nvSCPAPI64.dll
2017-11-04 08:54 - 2017-10-06 11:52 - 000370296 _____ (NVIDIA Corporation) C:\Users\paulf\AppData\Local\Temp\nvStInst.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-11-04 22:14

==================== End of FRST.txt ============================

broni · Nov 9, 2017

Second log?

Franksee · Nov 18, 2017

Apologies but I have had to change the power supply as it was faulty and only just got PC back up and running again.

FRST LOGS

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-11-2017
Ran by paulf (administrator) on DESKTOP-EF1V79E (18-11-2017 12:33:28)
Running from H:\Google Downloads
Loaded Profiles: paulf (Available Profiles: paulf)
Platform: Windows 10 Home Version 1703 15063.726 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Valve Corporation) H:\Steam\Steam.exe
(MY.COM B.V.) C:\Users\paulf\AppData\Local\MyComGames\MyComGames.exe
(Wargaming.net) H:\Wargaming.net\GameCenter\wgc.exe
() C:\Users\paulf\Desktop\DS4Windows.exe
(Wargaming.net) H:\Wargaming.net\GameCenter\dlls\wgc_watchdog.exe
(Valve Corporation) H:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) H:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11710.1001.27.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(BitTorrent Inc.) C:\Users\paulf\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe
(BitTorrent Inc.) C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [Steam] => H:\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [MyComGames] => C:\Users\paulf\AppData\Local\MyComGames\MyComGames.exe [5856656 2017-11-17] (MY.COM B.V.)
HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Run: [Wargaming.net Game Center] => H:\Wargaming.net\GameCenter\wgc.exe [2000632 2017-11-13] (Wargaming.net)
Startup: C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DS4Windows.lnk [2017-11-09]
ShortcutTarget: DS4Windows.lnk -> C:\Users\paulf\Desktop\DS4Windows.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e7fd5a58-669b-4e99-a226-61d19b0401bf}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.co.uk/"
CHR Profile: C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default [2017-11-18]
CHR Extension: (Slides) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-16]
CHR Extension: (Docs) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-16]
CHR Extension: (Google Drive) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-16]
CHR Extension: (YouTube) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-16]
CHR Extension: (Sheets) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-16]
CHR Extension: (Google Docs Offline) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-16]
CHR Extension: (Gmail) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-11-16]
CHR Extension: (Chrome Media Router) - C:\Users\paulf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-16]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-11-17] (Malwarebytes)
R1 MpKsl70aaa89f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8C8535C8-8C5B-4691-84F8-6235EE9318CD}\MpKsl70aaa89f.sys [58120 2017-11-17] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\System32\drivers\ASACPI.sys [17280 2013-05-17] ()
R3 netr28x; C:\WINDOWS\System32\drivers\netr28x.sys [2537984 2017-03-18] (MediaTek Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_f9309145156afb40\nvlddmkm.sys [14456912 2017-05-19] (NVIDIA Corporation)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [28344 2016-05-09] (Windows (R) Win 7 DDK provider)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-09-05] (QUALCOMM Incorporated)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [115208 2014-11-21] (Oracle Corporation)
S3 veebeampol; C:\WINDOWS\System32\drivers\veebeampol.sys [14952 2013-10-24] (Veebeam Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-18 12:32 - 2017-11-18 12:32 - 000002259 _____ C:\WINDOWS\epplauncher.mif
2017-11-18 09:00 - 2017-11-18 09:00 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-11-18 09:00 - 2017-11-18 09:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-11-18 09:00 - 2017-11-18 09:00 - 000000000 ____D C:\Program Files\VS Revo Group
2017-11-18 08:45 - 2017-11-18 08:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resident Evil 7 Biohazard
2017-11-18 08:20 - 2017-11-18 08:20 - 000028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2017-11-18 08:19 - 2017-11-18 08:22 - 000000000 ____D C:\ProgramData\RogueKiller
2017-11-18 08:19 - 2017-11-18 08:19 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2017-11-18 08:19 - 2017-11-18 08:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-11-18 08:19 - 2017-11-18 08:19 - 000000000 ____D C:\Program Files\RogueKiller
2017-11-17 21:22 - 2017-11-18 08:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlast 2
2017-11-17 17:09 - 2017-11-18 12:33 - 000000000 ____D C:\Users\paulf\AppData\LocalLow\uTorrent
2017-11-17 15:36 - 2017-11-17 15:36 - 000000000 ____D C:\Users\paulf\AppData\Local\CrashRpt
2017-11-17 14:23 - 2017-11-17 14:23 - 000000772 _____ C:\Users\Public\Desktop\Anno 2205.lnk
2017-11-17 14:23 - 2017-11-17 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Games
2017-11-17 14:03 - 2017-11-17 16:09 - 000000581 _____ C:\Users\paulf\Desktop\Crossout Launcher.lnk
2017-11-17 12:25 - 2017-11-17 12:25 - 000001624 _____ C:\Users\paulf\Desktop\World of Tanks EU.lnk
2017-11-17 12:24 - 2017-11-17 16:16 - 000000702 _____ C:\Users\paulf\Desktop\World of Warships EU.lnk
2017-11-17 12:24 - 2017-11-17 16:12 - 000000000 ____D C:\ProgramData\boost_interprocess
2017-11-17 12:24 - 2017-11-17 12:24 - 000000790 _____ C:\Users\paulf\Desktop\Game Center.lnk
2017-11-17 12:23 - 2017-11-17 16:12 - 000000000 ____D C:\Users\paulf\AppData\Local\MyComGames
2017-11-17 12:23 - 2017-11-17 12:23 - 000002089 _____ C:\Users\paulf\Desktop\My.com Game Center.lnk
2017-11-17 12:23 - 2017-11-17 12:23 - 000000140 _____ C:\Users\paulf\Desktop\Armored Warfare.url
2017-11-17 12:21 - 2017-11-17 12:21 - 000000000 ____D C:\ProgramData\Wargaming.net
2017-11-17 12:16 - 2017-11-17 12:24 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Wargaming.net
2017-11-17 12:03 - 2017-11-17 16:11 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2017-11-17 12:03 - 2017-11-17 12:03 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-11-17 12:03 - 2017-11-17 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-11-17 12:03 - 2017-11-17 12:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-11-17 12:03 - 2017-11-17 12:03 - 000000000 ____D C:\Program Files\Malwarebytes
2017-11-17 12:03 - 2017-11-01 08:54 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-11-17 11:59 - 2017-11-17 16:12 - 000000000 ____D C:\Users\paulf\AppData\Roaming\DS4Windows
2017-11-17 11:59 - 2013-05-19 01:02 - 000039168 _____ (Scarlet.Crush Productions) C:\WINDOWS\system32\Drivers\ScpVBus.sys
2017-11-17 11:56 - 2017-11-18 12:33 - 000000000 ____D C:\Users\paulf\AppData\Roaming\uTorrent
2017-11-17 11:56 - 2017-11-17 11:56 - 000000896 _____ C:\Users\paulf\Desktop\µTorrent.lnk
2017-11-17 11:15 - 2017-11-17 11:16 - 000000000 ____D C:\Users\paulf\AppData\Local\Microsoft Windows
2017-11-17 11:08 - 2017-11-17 12:30 - 000000000 ____D C:\Users\paulf\AppData\Local\Ubisoft Game Launcher
2017-11-17 11:08 - 2017-11-17 11:08 - 000000774 _____ C:\Users\paulf\Desktop\Uplay.lnk
2017-11-17 10:26 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2017-11-17 10:26 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2017-11-17 10:26 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2017-11-17 10:26 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2017-11-17 10:26 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2017-11-17 10:26 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2017-11-17 10:26 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2017-11-17 10:26 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2017-11-17 10:26 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2017-11-17 10:26 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2017-11-17 10:26 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2017-11-17 10:26 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2017-11-17 10:26 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2017-11-17 10:26 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2017-11-17 10:26 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2017-11-17 10:26 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2017-11-17 10:26 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2017-11-17 10:26 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2017-11-17 10:26 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2017-11-17 10:26 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2017-11-17 10:26 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2017-11-17 10:26 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2017-11-17 10:26 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2017-11-17 10:26 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2017-11-17 10:26 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2017-11-17 10:26 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2017-11-17 10:26 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2017-11-17 10:26 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2017-11-17 10:26 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2017-11-17 10:26 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2017-11-17 10:26 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2017-11-17 10:26 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2017-11-17 10:26 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2017-11-17 10:26 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2017-11-17 10:26 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2017-11-17 10:26 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2017-11-17 10:26 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2017-11-17 10:26 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2017-11-17 10:26 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2017-11-17 10:26 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2017-11-17 10:26 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2017-11-17 10:26 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2017-11-17 10:26 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2017-11-17 10:26 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2017-11-17 10:26 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2017-11-17 10:26 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2017-11-17 10:26 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2017-11-17 10:26 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2017-11-17 10:26 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2017-11-17 10:26 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2017-11-17 10:26 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2017-11-17 10:26 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2017-11-17 10:26 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2017-11-17 10:26 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2017-11-17 10:26 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2017-11-17 10:26 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2017-11-17 10:26 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2017-11-17 10:26 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2017-11-17 10:26 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2017-11-17 10:26 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2017-11-17 10:26 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2017-11-17 10:26 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2017-11-17 10:26 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2017-11-17 10:26 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2017-11-17 10:26 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2017-11-17 10:26 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2017-11-17 10:26 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2017-11-17 10:26 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2017-11-17 10:26 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2017-11-17 10:26 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2017-11-17 10:26 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2017-11-17 10:26 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2017-11-17 10:26 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2017-11-17 10:26 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2017-11-17 10:26 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2017-11-17 10:26 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2017-11-17 10:26 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2017-11-17 10:26 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2017-11-17 10:26 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2017-11-17 10:26 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2017-11-17 10:26 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2017-11-17 10:26 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2017-11-17 10:26 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2017-11-17 10:26 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2017-11-17 10:26 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2017-11-17 10:26 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2017-11-17 10:26 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2017-11-17 10:26 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2017-11-17 10:26 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2017-11-17 10:26 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2017-11-17 10:26 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2017-11-17 10:26 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2017-11-17 10:26 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2017-11-17 10:26 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2017-11-17 10:26 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2017-11-17 10:26 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2017-11-17 10:26 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2017-11-17 10:26 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2017-11-17 10:26 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2017-11-17 10:26 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2017-11-17 10:26 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2017-11-17 10:26 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2017-11-17 10:26 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2017-11-17 10:26 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2017-11-17 10:26 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2017-11-17 10:26 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2017-11-17 10:26 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2017-11-17 10:26 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2017-11-17 10:26 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2017-11-17 10:26 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2017-11-17 10:26 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2017-11-17 10:26 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2017-11-17 10:26 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2017-11-17 10:26 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2017-11-17 10:26 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2017-11-17 10:26 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2017-11-17 10:26 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2017-11-17 10:26 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2017-11-17 10:26 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2017-11-17 10:26 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2017-11-17 10:26 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2017-11-17 10:26 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2017-11-17 10:26 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2017-11-17 10:26 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2017-11-17 10:26 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2017-11-17 10:26 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2017-11-17 10:26 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2017-11-17 10:26 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2017-11-17 10:26 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2017-11-17 10:26 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2017-11-17 10:26 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2017-11-17 10:26 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2017-11-17 10:26 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2017-11-17 10:26 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2017-11-17 10:26 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2017-11-17 10:26 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2017-11-17 10:26 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2017-11-17 10:26 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2017-11-17 10:26 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2017-11-17 10:26 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2017-11-17 10:26 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2017-11-17 10:26 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2017-11-17 10:26 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2017-11-17 10:26 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2017-11-17 10:26 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2017-11-17 10:26 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2017-11-17 10:26 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2017-11-17 10:26 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2017-11-17 10:26 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2017-11-17 10:26 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2017-11-17 10:26 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2017-11-17 10:26 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2017-11-17 10:26 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2017-11-17 10:26 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2017-11-17 10:26 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2017-11-17 10:26 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2017-11-17 10:26 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2017-11-17 10:26 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2017-11-17 10:26 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2017-11-17 10:26 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2017-11-17 10:26 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2017-11-17 10:26 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2017-11-17 10:26 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2017-11-17 10:26 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2017-11-16 17:20 - 2017-11-16 17:20 - 000000000 ____D C:\Users\paulf\AppData\Local\Gaijin
2017-11-16 17:18 - 2015-11-08 15:36 - 000000000 ____D C:\Users\paulf\AppData\Roaming\uplay
2017-11-16 17:14 - 2017-11-16 17:15 - 000000000 ____D C:\Users\paulf\AppData\Local\Steam
2017-11-16 17:14 - 2017-11-16 17:14 - 000000000 ____D C:\Users\paulf\AppData\Local\CEF
2017-11-16 17:13 - 2017-11-16 17:13 - 000000000 ____D C:\Users\paulf\AppData\Local\Targem
2017-11-16 17:06 - 2017-11-16 17:06 - 000000549 _____ C:\Users\Public\Desktop\Steam.lnk
2017-11-16 17:06 - 2017-11-16 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-11-16 17:02 - 2017-11-16 17:02 - 000000000 ____D C:\ProgramData\Gaijin
2017-11-16 16:50 - 2017-11-16 16:50 - 000001358 _____ C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\explorer.lnk
2017-11-16 16:11 - 2017-11-16 16:11 - 000000000 ___HD C:\ProgramData\CanonBJ
2017-11-16 15:41 - 2017-11-16 15:37 - 000544424 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-11-16 15:39 - 2017-11-16 15:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-11-16 15:39 - 2017-11-16 15:39 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-11-16 15:39 - 2017-11-16 15:39 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-11-16 15:36 - 2017-11-16 15:36 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Google
2017-11-16 15:34 - 2017-11-16 15:34 - 000002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-16 15:33 - 2017-11-16 15:48 - 000000000 ____D C:\Users\paulf\AppData\Local\Google
2017-11-16 15:33 - 2017-11-16 15:34 - 000000000 ____D C:\Program Files (x86)\Google
2017-11-16 15:33 - 2017-11-16 15:33 - 000003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-16 15:33 - 2017-11-16 15:33 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-16 15:33 - 2017-11-16 15:33 - 000000000 ____D C:\Users\paulf\AppData\Local\MicrosoftEdge
2017-11-16 02:04 - 2017-11-17 18:33 - 000000000 ____D C:\Windows.old
2017-11-16 02:04 - 2017-11-16 02:04 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-11-16 02:04 - 2017-11-16 02:04 - 000000000 ____D C:\WINDOWS\InfusedApps
2017-11-16 02:04 - 2017-11-15 18:20 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-11-16 02:02 - 2017-11-16 02:02 - 000000000 ____D C:\WINDOWS\Setup
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\system32\winrm
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\system32\WCN
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\system32\slmgr
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\system32\0409
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\OCR
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\DigitalLocker
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\Program Files\MSBuild
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-11-16 01:59 - 2017-11-16 01:59 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-11-16 01:57 - 2017-11-05 01:40 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-11-16 01:57 - 2017-11-05 01:40 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-11-16 01:55 - 2017-11-18 12:29 - 000000000 ___HD C:\Program Files\WindowsApps
2017-11-16 01:55 - 2017-11-18 12:29 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-16 01:55 - 2017-11-17 11:27 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-11-16 01:55 - 2017-11-16 19:17 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-11-16 01:55 - 2017-11-16 19:17 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\system32\setup
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\WINDOWS\Provisioning
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-11-16 01:55 - 2017-11-16 19:17 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-11-16 01:55 - 2017-11-16 15:34 - 000000000 ___RD C:\Program Files (x86)
2017-11-16 01:55 - 2017-11-16 06:58 - 000000000 ____D C:\WINDOWS\appcompat
2017-11-16 01:55 - 2017-11-16 02:04 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-11-16 01:55 - 2017-11-16 02:02 - 000000000 ___RD C:\Program Files\Windows Defender
2017-11-16 01:55 - 2017-11-16 02:02 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-11-16 01:55 - 2017-11-16 02:02 - 000000000 ____D C:\WINDOWS\system32\migwiz
2017-11-16 01:55 - 2017-11-16 02:02 - 000000000 ____D C:\WINDOWS\system32\Dism
2017-11-16 01:55 - 2017-11-16 02:02 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ___SD C:\WINDOWS\system32\dsc
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\SystemApps
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\system32\MUI
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\system32\Com
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\IME
2017-11-16 01:55 - 2017-11-16 01:59 - 000000000 ____D C:\Program Files\Common Files\System
2017-11-16 01:55 - 2017-11-16 01:56 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2017-11-16 01:55 - 2017-11-16 01:56 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2017-11-16 01:55 - 2017-11-16 01:56 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2017-11-16 01:55 - 2017-11-16 01:56 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2017-11-16 01:55 - 2017-11-16 01:56 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 __SHD C:\Program Files\Windows Sidebar
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 __RSD C:\WINDOWS\Media
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ___SD C:\WINDOWS\system32\Nui
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\Web
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\Vss
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\tracing
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\TAPI
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SystemResources
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\winevt
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\ras
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\IME
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\icsxml
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\ias
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\downlevel
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\DDFs
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\System
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SKB
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\security
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\schemas
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\SchCache
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\Resources
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\rescache
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\Registration
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\PLA
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\Performance
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\ModemLogs
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\L2Schemas
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\InputMethod
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\Globalization
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\Cursors
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\Branding
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\bcastdvr
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\addins
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\Program Files\Windows Security
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\Program Files\Windows Portable Devices
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\Program Files\Windows NT
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\Program Files\Common Files\Services
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\Program Files (x86)\Windows NT
2017-11-16 01:55 - 2017-11-16 01:55 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2017-11-16 01:55 - 2017-11-16 01:54 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2017-11-16 01:55 - 2017-11-16 01:54 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2017-11-16 01:55 - 2017-11-16 01:54 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2017-11-16 01:55 - 2017-11-16 01:54 - 000015940 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2017-11-16 01:55 - 2017-11-16 01:54 - 000004096 _____ C:\WINDOWS\system32\config\VSMIDK
2017-11-16 01:55 - 2017-11-16 01:54 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2017-11-16 01:55 - 2017-11-16 01:54 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2017-11-16 01:55 - 2017-11-16 01:54 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2017-11-16 01:55 - 2017-11-16 01:54 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2017-11-16 01:55 - 2017-11-16 01:54 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2017-11-16 01:55 - 2017-11-16 01:54 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2017-11-16 01:55 - 2017-11-16 01:54 - 000000219 _____ C:\WINDOWS\system.ini
2017-11-16 01:55 - 2017-11-16 01:54 - 000000092 _____ C:\WINDOWS\win.ini
2017-11-16 01:55 - 2017-11-15 18:27 - 000000000 ____D C:\WINDOWS\system32\spool
2017-11-16 01:55 - 2017-11-15 18:27 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2017-11-16 01:55 - 2017-11-15 18:27 - 000000000 ____D C:\ProgramData\USOPrivate
2017-11-16 01:55 - 2017-11-15 18:27 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-11-16 01:55 - 2017-11-15 18:25 - 000000000 __RHD C:\Users\Public\Libraries
2017-11-16 01:55 - 2017-11-15 18:25 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-11-16 01:55 - 2017-11-15 18:23 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-11-16 01:55 - 2017-11-15 18:22 - 000000000 ___RD C:\WINDOWS\PrintDialog
2017-11-16 01:55 - 2017-11-15 18:22 - 000000000 ___RD C:\WINDOWS\MiracastView
2017-11-16 01:55 - 2017-11-15 18:22 - 000000000 ____D C:\WINDOWS\HoloShell
2017-11-16 01:55 - 2017-11-15 18:22 - 000000000 ____D C:\WINDOWS\Help
2017-11-16 01:54 - 2017-11-17 12:29 - 000000000 ____D C:\WINDOWS\INF
2017-11-16 01:50 - 2017-11-16 15:41 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-16 01:49 - 2017-11-17 16:11 - 071565312 _____ C:\WINDOWS\system32\config\SOFTWARE
2017-11-16 01:49 - 2017-11-17 16:11 - 013631488 _____ C:\WINDOWS\system32\config\SYSTEM
2017-11-16 01:49 - 2017-11-17 16:11 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2017-11-16 01:49 - 2017-11-17 16:11 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2017-11-16 01:49 - 2017-11-17 16:11 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY
2017-11-16 01:49 - 2017-11-16 02:20 - 000057344 _____ C:\WINDOWS\system32\config\SAM
2017-11-16 01:49 - 2017-11-16 01:59 - 000000000 ____D C:\WINDOWS\servicing
2017-11-16 01:49 - 2017-11-16 01:55 - 000000000 ____D C:\WINDOWS\system32\SMI
2017-11-16 01:49 - 2017-11-15 18:26 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-11-16 00:24 - 2017-11-15 18:27 - 000000000 ____D C:\WINDOWS\Panther
2017-11-16 00:23 - 2017-11-16 02:04 - 000000000 ___HD C:\$SysReset
2017-11-15 18:30 - 2017-11-15 18:30 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2516327635-2037600327-2752607068-1001
2017-11-15 18:29 - 2017-11-17 14:34 - 000000000 ____D C:\Users\paulf\AppData\Local\Comms
2017-11-15 18:29 - 2017-11-15 18:30 - 000002367 _____ C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-15 18:29 - 2017-11-15 18:29 - 000000000 ____D C:\Users\paulf\AppData\Local\DBG
2017-11-15 18:29 - 2017-11-15 18:29 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-11-15 18:27 - 2017-11-17 16:17 - 000956190 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-15 18:27 - 2017-11-17 11:13 - 000000000 ____D C:\Users\paulf\AppData\Local\Packages
2017-11-15 18:27 - 2017-11-16 06:59 - 000000000 ____D C:\Users\paulf\AppData\Local\Publishers
2017-11-15 18:27 - 2017-11-15 18:27 - 000000020 ___SH C:\Users\paulf\ntuser.ini
2017-11-15 18:27 - 2017-11-15 18:27 - 000000000 _SHDL C:\Users\Default User
2017-11-15 18:27 - 2017-11-15 18:27 - 000000000 _SHDL C:\Users\All Users
2017-11-15 18:27 - 2017-11-15 18:27 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Adobe
2017-11-15 18:27 - 2017-11-15 18:27 - 000000000 ____D C:\Users\paulf\AppData\Local\VirtualStore
2017-11-15 18:27 - 2017-11-15 18:27 - 000000000 ____D C:\Users\paulf\AppData\Local\TileDataLayer
2017-11-15 18:27 - 2017-11-15 18:27 - 000000000 ____D C:\Users\paulf\AppData\Local\ConnectedDevicesPlatform
2017-11-15 18:27 - 2017-11-15 18:27 - 000000000 ____D C:\ProgramData\USOShared
2017-11-15 18:26 - 2017-11-17 16:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-15 18:24 - 2017-11-17 16:13 - 000000000 ____D C:\Users\paulf
2017-11-15 18:23 - 2017-03-18 20:56 - 002233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-11-15 18:22 - 2017-11-17 16:11 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-15 18:22 - 2017-11-15 18:22 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-11-15 18:22 - 2017-05-01 20:52 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-11-15 18:22 - 2017-05-01 20:51 - 006437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-11-15 18:22 - 2017-05-01 20:51 - 002479552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-11-15 18:22 - 2017-05-01 20:51 - 001762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-11-15 18:22 - 2017-05-01 20:51 - 000548800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-11-15 18:22 - 2017-05-01 20:51 - 000392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-11-15 18:22 - 2017-05-01 20:51 - 000081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-11-15 18:22 - 2017-05-01 20:51 - 000069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-11-15 18:22 - 2017-04-25 21:11 - 007944687 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-11-15 18:21 - 2017-11-15 18:22 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-11-15 18:21 - 2017-11-15 18:22 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-11-15 18:21 - 2017-11-15 18:21 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2017-11-15 18:21 - 2017-11-15 18:21 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-11-15 18:21 - 2017-11-15 18:21 - 000000000 ____D C:\WINDOWS\system32\DAX2
2017-11-15 18:21 - 2017-11-15 18:21 - 000000000 ____D C:\Program Files\Realtek
2017-11-15 18:20 - 2017-11-18 12:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-15 18:20 - 2017-11-16 19:19 - 000217864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-11-15 07:39 - 2017-11-15 07:39 - 006375008 _____ (Wargaming.net (c) 2009-2017 ) C:\Users\paulf\Downloads\world_of_warships_install_eu_bh6xk6nqzf3x (1).exe
2017-11-14 22:29 - 2017-11-17 12:25 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2017-11-14 22:11 - 2017-11-14 22:12 - 006375008 _____ (Wargaming.net (c) 2009-2017 ) C:\Users\paulf\Downloads\world_of_warships_install_eu_bh6xk6nqzf3x.exe
2017-11-14 19:18 - 2017-11-02 05:03 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-11-14 19:18 - 2017-11-02 04:45 - 000613136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-11-14 19:18 - 2017-11-02 04:45 - 000362144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-11-14 19:18 - 2017-11-02 04:45 - 000354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-11-14 19:18 - 2017-11-02 04:45 - 000283544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-11-14 19:18 - 2017-11-02 04:45 - 000172952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-11-14 19:18 - 2017-11-02 04:30 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-11-14 19:18 - 2017-11-02 04:30 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-11-14 19:18 - 2017-11-02 04:25 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2017-11-14 19:18 - 2017-11-02 04:24 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-11-14 19:18 - 2017-11-02 04:23 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-11-14 19:18 - 2017-10-15 14:49 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-11-14 19:18 - 2017-10-15 14:45 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-11-14 19:18 - 2017-10-15 14:44 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-11-14 19:18 - 2017-10-15 14:41 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-11-14 19:18 - 2017-10-15 14:38 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-11-14 19:17 - 2017-11-02 05:21 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-11-14 19:17 - 2017-11-02 05:21 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-11-14 19:17 - 2017-11-02 05:21 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-11-14 19:17 - 2017-11-02 05:21 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-11-14 19:17 - 2017-11-02 05:21 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-11-14 19:17 - 2017-11-02 05:21 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-11-14 19:17 - 2017-11-02 05:20 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-11-14 19:17 - 2017-11-02 05:20 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-11-14 19:17 - 2017-11-02 05:20 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-11-14 19:17 - 2017-11-02 05:20 - 000965016 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-11-14 19:17 - 2017-11-02 05:20 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-11-14 19:17 - 2017-11-02 05:20 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-11-14 19:17 - 2017-11-02 05:20 - 000543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-11-14 19:17 - 2017-11-02 05:20 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-11-14 19:17 - 2017-11-02 05:20 - 000469568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2017-11-14 19:17 - 2017-11-02 05:20 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-11-14 19:17 - 2017-11-02 05:20 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-11-14 19:17 - 2017-11-02 05:16 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-11-14 19:17 - 2017-11-02 05:16 - 002398696 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-11-14 19:17 - 2017-11-02 05:16 - 002327448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-11-14 19:17 - 2017-11-02 05:15 - 001239448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-11-14 19:17 - 2017-11-02 05:15 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-11-14 19:17 - 2017-11-02 05:14 - 000667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-11-14 19:17 - 2017-11-02 05:14 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2017-11-14 19:17 - 2017-11-02 05:13 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-11-14 19:17 - 2017-11-02 05:13 - 002443672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

Franksee · Nov 18, 2017

2017-11-14 19:17 - 2017-11-02 05:13 - 001345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-11-14 19:17 - 2017-11-02 05:13 - 000546712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-11-14 19:17 - 2017-11-02 05:13 - 000212888 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-11-14 19:17 - 2017-11-02 05:13 - 000095640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2017-11-14 19:17 - 2017-11-02 05:12 - 000727336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-11-14 19:17 - 2017-11-02 05:12 - 000714648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-11-14 19:17 - 2017-11-02 05:12 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-11-14 19:17 - 2017-11-02 05:12 - 000643192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-11-14 19:17 - 2017-11-02 05:12 - 000430848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-11-14 19:17 - 2017-11-02 05:12 - 000412752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-11-14 19:17 - 2017-11-02 05:12 - 000319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-11-14 19:17 - 2017-11-02 05:12 - 000144248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-11-14 19:17 - 2017-11-02 05:12 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2017-11-14 19:17 - 2017-11-02 05:12 - 000026472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-11-14 19:17 - 2017-11-02 05:11 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-11-14 19:17 - 2017-11-02 05:10 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-11-14 19:17 - 2017-11-02 05:05 - 000871408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-11-14 19:17 - 2017-11-02 05:05 - 000187800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-11-14 19:17 - 2017-11-02 05:04 - 001292360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-11-14 19:17 - 2017-11-02 04:49 - 001838848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-11-14 19:17 - 2017-11-02 04:45 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-11-14 19:17 - 2017-11-02 04:45 - 000133896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-11-14 19:17 - 2017-11-02 04:44 - 023680000 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-11-14 19:17 - 2017-11-02 04:44 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-11-14 19:17 - 2017-11-02 04:44 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-11-14 19:17 - 2017-11-02 04:43 - 020372896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-11-14 19:17 - 2017-11-02 04:37 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-11-14 19:17 - 2017-11-02 04:37 - 001278976 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-11-14 19:17 - 2017-11-02 04:37 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-11-14 19:17 - 2017-11-02 04:37 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-11-14 19:17 - 2017-11-02 04:37 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-11-14 19:17 - 2017-11-02 04:36 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2017-11-14 19:17 - 2017-11-02 04:36 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-11-14 19:17 - 2017-11-02 04:35 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2017-11-14 19:17 - 2017-11-02 04:35 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-11-14 19:17 - 2017-11-02 04:35 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-11-14 19:17 - 2017-11-02 04:35 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2017-11-14 19:17 - 2017-11-02 04:35 - 000002560 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-11-14 19:17 - 2017-11-02 04:34 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-11-14 19:17 - 2017-11-02 04:34 - 000438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2017-11-14 19:17 - 2017-11-02 04:34 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-11-14 19:17 - 2017-11-02 04:34 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-11-14 19:17 - 2017-11-02 04:34 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2017-11-14 19:17 - 2017-11-02 04:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-11-14 19:17 - 2017-11-02 04:34 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-11-14 19:17 - 2017-11-02 04:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-11-14 19:17 - 2017-11-02 04:34 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2017-11-14 19:17 - 2017-11-02 04:33 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-11-14 19:17 - 2017-11-02 04:33 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
2017-11-14 19:17 - 2017-11-02 04:33 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2017-11-14 19:17 - 2017-11-02 04:33 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-11-14 19:17 - 2017-11-02 04:33 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPKICmdlet.dll
2017-11-14 19:17 - 2017-11-02 04:32 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-11-14 19:17 - 2017-11-02 04:32 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-11-14 19:17 - 2017-11-02 04:32 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2017-11-14 19:17 - 2017-11-02 04:31 - 020512256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-11-14 19:17 - 2017-11-02 04:31 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-11-14 19:17 - 2017-11-02 04:31 - 000411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-11-14 19:17 - 2017-11-02 04:31 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2017-11-14 19:17 - 2017-11-02 04:30 - 013381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-11-14 19:17 - 2017-11-02 04:30 - 007339008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-11-14 19:17 - 2017-11-02 04:30 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-11-14 19:17 - 2017-11-02 04:30 - 000719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-11-14 19:17 - 2017-11-02 04:30 - 000635392 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-11-14 19:17 - 2017-11-02 04:30 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2017-11-14 19:17 - 2017-11-02 04:30 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-11-14 19:17 - 2017-11-02 04:30 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-11-14 19:17 - 2017-11-02 04:30 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-11-14 19:17 - 2017-11-02 04:30 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-11-14 19:17 - 2017-11-02 04:29 - 019338240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-11-14 19:17 - 2017-11-02 04:29 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-11-14 19:17 - 2017-11-02 04:29 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-11-14 19:17 - 2017-11-02 04:29 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-11-14 19:17 - 2017-11-02 04:29 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-11-14 19:17 - 2017-11-02 04:29 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-11-14 19:17 - 2017-11-02 04:28 - 023684096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-11-14 19:17 - 2017-11-02 04:28 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-11-14 19:17 - 2017-11-02 04:28 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-11-14 19:17 - 2017-11-02 04:28 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-11-14 19:17 - 2017-11-02 04:28 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-11-14 19:17 - 2017-11-02 04:28 - 000002560 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-11-14 19:17 - 2017-11-02 04:27 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-11-14 19:17 - 2017-11-02 04:27 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-11-14 19:17 - 2017-11-02 04:27 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2017-11-14 19:17 - 2017-11-02 04:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-11-14 19:17 - 2017-11-02 04:27 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-11-14 19:17 - 2017-11-02 04:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-11-14 19:17 - 2017-11-02 04:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPKICmdlet.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 008197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 005963776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 003060224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 001937408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-11-14 19:17 - 2017-11-02 04:26 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 012227072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 011888128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 004727808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 002052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-11-14 19:17 - 2017-11-02 04:25 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 001713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-11-14 19:17 - 2017-11-02 04:25 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-11-14 19:17 - 2017-11-02 04:24 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-11-14 19:17 - 2017-11-02 04:24 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-11-14 19:17 - 2017-11-02 04:24 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2017-11-14 19:17 - 2017-11-02 04:24 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2017-11-14 19:17 - 2017-11-02 04:24 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-11-14 19:17 - 2017-11-02 04:23 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-11-14 19:17 - 2017-11-02 04:23 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-11-14 19:17 - 2017-11-02 04:23 - 000680960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-11-14 19:17 - 2017-11-02 04:23 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-11-14 19:17 - 2017-11-02 04:23 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-11-14 19:17 - 2017-11-02 04:23 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-11-14 19:17 - 2017-11-02 04:22 - 006254080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-11-14 19:17 - 2017-11-02 04:22 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-11-14 19:17 - 2017-11-02 04:22 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-11-14 19:17 - 2017-11-02 04:22 - 001884160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2017-11-14 19:17 - 2017-11-02 04:22 - 001494528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-11-14 19:17 - 2017-11-02 04:21 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-11-14 19:17 - 2017-11-02 04:21 - 003653120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-11-14 19:17 - 2017-11-02 04:21 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-11-14 19:17 - 2017-11-02 04:21 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-11-14 19:17 - 2017-11-02 04:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2017-11-14 19:17 - 2017-10-25 07:40 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-11-14 19:17 - 2017-10-15 15:09 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-11-14 19:17 - 2017-10-15 15:03 - 006765728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-11-14 19:17 - 2017-10-15 15:01 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-11-14 19:17 - 2017-10-15 14:59 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-11-14 19:17 - 2017-10-15 14:57 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-11-14 19:17 - 2017-10-15 14:57 - 000409496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-11-14 19:17 - 2017-10-15 14:56 - 000872464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-11-14 19:17 - 2017-10-15 14:55 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-11-14 19:17 - 2017-10-15 14:53 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-11-14 19:17 - 2017-10-15 14:53 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-11-14 19:17 - 2017-10-15 14:51 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-11-14 19:17 - 2017-10-15 14:49 - 000094616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-11-14 19:17 - 2017-10-15 14:45 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-11-14 19:17 - 2017-10-15 14:44 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-11-14 19:17 - 2017-10-15 14:42 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-11-14 19:17 - 2017-10-15 14:42 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-11-14 19:17 - 2017-10-15 14:41 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-11-14 19:17 - 2017-10-15 14:15 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-11-14 19:17 - 2017-10-15 14:14 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-11-14 19:17 - 2017-10-15 14:13 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-11-14 19:17 - 2017-10-15 14:10 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-11-14 19:17 - 2017-10-15 14:09 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-11-14 19:17 - 2017-10-15 14:09 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-11-14 19:17 - 2017-10-15 14:08 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-11-14 19:17 - 2017-10-15 14:08 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-11-14 19:17 - 2017-10-15 14:07 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-11-14 19:17 - 2017-10-15 14:05 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-11-14 19:17 - 2017-10-15 14:05 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-11-14 19:17 - 2017-10-15 14:04 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-11-14 19:17 - 2017-10-15 14:02 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-11-14 19:17 - 2017-10-15 14:00 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-11-13 17:51 - 2017-11-15 18:25 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-11-13 17:51 - 2017-11-13 17:51 - 072185968 _____ (Ubisoft) C:\Users\paulf\Downloads\UplayInstaller (2).exe
2017-11-13 08:05 - 2017-11-13 08:06 - 072185968 _____ (Ubisoft) C:\Users\paulf\Downloads\UplayInstaller (1).exe
2017-11-12 21:02 - 2017-11-12 21:02 - 000022164 _____ C:\Users\paulf\Downloads\1CCE29AD4F1E46239E4AFD4560084DD4D230F1C2.torrent
2017-11-12 20:05 - 2017-11-12 20:05 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\TomTom
2017-11-10 13:43 - 2017-11-15 18:25 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2017-11-10 13:42 - 2017-11-10 13:42 - 039234032 _____ C:\Users\paulf\Downloads\Afterburner_4.4.0.zip
2017-11-10 13:29 - 2017-11-10 13:32 - 459940794 _____ C:\Users\paulf\Downloads\nvidia_388.13_w1064.zip
2017-11-09 20:47 - 2016-10-08 22:17 - 003168256 _____ () C:\Users\paulf\Desktop\DS4Windows.exe
2017-11-09 20:42 - 2017-11-09 20:42 - 001174539 _____ C:\Users\paulf\Downloads\DS4Windows.zip
2017-11-09 16:51 - 2017-11-09 16:51 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\Intel XTU Profiles
2017-11-09 16:30 - 2017-11-09 16:30 - 038618496 _____ (Intel Corporation) C:\Users\paulf\Downloads\xtu-setup-exe.exe
2017-11-09 16:03 - 2017-11-09 16:04 - 125914871 _____ C:\Users\paulf\Downloads\AISuite3_Win7-8-81-10_M7IGFHR_V10102 (1).zip
2017-11-09 13:17 - 2017-11-09 13:17 - 032002048 _____ C:\Users\paulf\Downloads\EpicInstaller-6.7.0.msi
2017-11-09 13:17 - 2017-11-09 13:17 - 032002048 _____ C:\Users\paulf\Downloads\EpicInstaller-6.7.0 (1).msi
2017-11-08 22:26 - 2017-11-08 22:26 - 001743008 _____ ( ) C:\Users\paulf\Downloads\cpu-z_1.81-en.exe
2017-11-08 16:43 - 2017-11-08 16:44 - 116602337 _____ C:\Users\paulf\Downloads\AISuiteIII_V10159_DIP5_10390.zip
2017-11-07 17:41 - 2017-11-07 17:41 - 008983107 _____ C:\Users\paulf\Downloads\Manual (1).pdf
2017-11-07 17:34 - 2017-11-07 17:35 - 008983107 _____ C:\Users\paulf\Downloads\Manual.pdf
2017-11-07 11:04 - 2017-11-07 11:05 - 000359677 _____ C:\Users\paulf\Downloads\Product_Sheet (2).pdf
2017-11-07 11:04 - 2017-11-07 11:04 - 000359677 _____ C:\Users\paulf\Downloads\Product_Sheet.pdf
2017-11-07 11:04 - 2017-11-07 11:04 - 000359677 _____ C:\Users\paulf\Downloads\Product_Sheet (1).pdf
2017-11-05 21:23 - 2017-11-05 21:23 - 000012290 _____ C:\Users\paulf\Downloads\Paul-Heaton- -Jacqui-Abbott--What-Have-We-Become-(Deluxe-Edition)-Album-2014-zip.torrent
2017-11-05 21:04 - 2017-11-05 21:04 - 002403328 _____ (Farbar) C:\Users\paulf\Downloads\FRST64 (1).exe
2017-11-05 18:25 - 2017-11-05 18:26 - 094162904 _____ (Sony Interactive Entertainment Network America LLC) C:\Users\paulf\Downloads\PlayStationNow-9.7.8 (2).exe
2017-11-05 18:12 - 2017-11-05 18:13 - 094162904 _____ (Sony Interactive Entertainment Network America LLC) C:\Users\paulf\Downloads\PlayStationNow-9.7.8 (1).exe
2017-11-05 18:11 - 2017-11-05 18:12 - 094162904 _____ (Sony Interactive Entertainment Network America LLC) C:\Users\paulf\Downloads\PlayStationNow-9.7.8.exe
2017-11-05 10:39 - 2017-11-05 10:39 - 008261584 _____ (Malwarebytes) C:\Users\paulf\Downloads\AdwCleaner.exe
2017-11-05 10:30 - 2017-11-05 10:31 - 078346672 _____ (Malwarebytes ) C:\Users\paulf\Downloads\mb3-setup-consumer-3.3.1.2183.exe
2017-11-04 20:47 - 2017-11-04 20:47 - 005603499 _____ (UserBenchmark.com) C:\Users\paulf\Downloads\UserBenchMark.exe
2017-11-04 08:51 - 2017-11-04 08:56 - 460431568 _____ (NVIDIA Corporation) C:\Users\paulf\Downloads\388.13-desktop-win10-64bit-international-whql.exe
2017-11-03 07:16 - 2017-11-03 07:16 - 036097984 _____ (Adlice Software ) C:\Users\paulf\Downloads\RogueKiller_setup_ref3.exe
2017-11-02 20:40 - 2017-11-05 21:06 - 000065242 _____ C:\Users\paulf\Downloads\Addition.txt
2017-11-02 20:39 - 2017-11-05 21:06 - 000157782 _____ C:\Users\paulf\Downloads\FRST.txt
2017-11-02 20:38 - 2017-11-18 12:33 - 000000000 ____D C:\FRST
2017-11-02 20:38 - 2017-11-02 20:38 - 002403328 _____ (Farbar) C:\Users\paulf\Downloads\FRST64.exe
2017-11-02 20:28 - 2017-11-02 20:28 - 000656608 _____ (PC Drivers HeadQuarters LP) C:\Users\paulf\Downloads\DriverSupport.exe
2017-11-02 16:30 - 2017-11-02 16:30 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\Paradox Interactive
2017-11-02 07:11 - 2017-11-02 07:11 - 000016523 _____ C:\Users\paulf\Downloads\charterhouse-invoice-194783.pdf
2017-10-31 16:53 - 2017-10-31 16:54 - 016082320 _____ (Logitech Inc.) C:\Users\paulf\Downloads\lgs510_x64.exe
2017-10-30 07:19 - 2017-10-30 07:19 - 000000000 ____D C:\Users\paulf\ansel
2017-10-29 09:21 - 2017-10-29 09:21 - 000000000 ____D C:\Users\paulf\AppData\LocalLow\Kite Games
2017-10-28 14:43 - 2017-10-28 14:44 - 096575488 _____ C:\Users\paulf\Downloads\novabench.msi
2017-10-28 13:37 - 2017-10-28 13:37 - 001949047 _____ C:\Users\paulf\Downloads\The Last of US PC Installer.rar
2017-10-28 12:30 - 2017-10-28 12:34 - 072177800 _____ (Ubisoft) C:\Users\paulf\Downloads\UplayInstaller.exe
2017-10-28 11:34 - 2017-10-28 11:34 - 076775409 _____ C:\Users\paulf\Downloads\AISuite3_Win10_V10147.zip
2017-10-28 10:56 - 2017-10-28 10:56 - 125914871 _____ C:\Users\paulf\Downloads\AISuite3_Win7-8-81-10_M7IGFHR_V10102.zip
2017-10-28 10:54 - 2017-10-28 10:54 - 019191253 _____ C:\Users\paulf\Downloads\AISuiteV10425.zip
2017-10-28 10:53 - 2017-10-28 10:53 - 021616952 _____ C:\Users\paulf\Downloads\AISuite_V10524.zip
2017-10-28 10:52 - 2017-10-28 10:52 - 023737323 _____ C:\Users\paulf\Downloads\ASUS_AISuite_V10614_XPVISTAWIN7 (2).zip
2017-10-28 10:52 - 2017-10-28 10:52 - 022614773 _____ C:\Users\paulf\Downloads\AISuite_V10538_XpVistaWin7 (2).zip
2017-10-27 20:44 - 2017-10-27 20:44 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\DyingLight
2017-10-27 15:10 - 2017-10-27 15:10 - 004355608 _____ C:\Users\paulf\Downloads\TurboV_V10204_XpVistaWin7.zip
2017-10-27 15:02 - 2017-10-27 15:02 - 022614773 _____ C:\Users\paulf\Downloads\AISuite_V10538_XpVistaWin7 (1).zip
2017-10-27 15:01 - 2017-10-27 15:01 - 023737323 _____ C:\Users\paulf\Downloads\ASUS_AISuite_V10614_XPVISTAWIN7 (1).zip
2017-10-27 14:59 - 2017-10-27 14:59 - 021850479 _____ C:\Users\paulf\Downloads\AiSuite_V10532.zip
2017-10-27 14:58 - 2017-10-27 14:58 - 022614773 _____ C:\Users\paulf\Downloads\AISuite_V10538_XpVistaWin7.zip
2017-10-27 14:57 - 2017-10-27 14:57 - 023737323 _____ C:\Users\paulf\Downloads\ASUS_AISuite_V10614_XPVISTAWIN7.zip
2017-10-27 14:40 - 2017-10-27 14:40 - 030857076 _____ C:\Users\paulf\Downloads\AI_Suite_II_Win7_Z10215.zip
2017-10-27 14:22 - 2017-10-27 14:26 - 167887028 _____ C:\Users\paulf\Downloads\AISuite3_Win7-8-8-1_Z87-DELUXE-1.zip
2017-10-27 06:56 - 2017-10-27 06:56 - 000231760 _____ C:\Users\paulf\Downloads\CrucialUKScan.exe
2017-10-25 14:15 - 2017-09-30 05:52 - 001595152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-10-25 14:15 - 2017-09-30 05:51 - 001458320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-25 14:15 - 2017-09-30 05:51 - 000661224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-25 14:15 - 2017-09-30 05:50 - 001068208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-10-25 14:15 - 2017-09-30 05:49 - 001004136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-10-25 14:15 - 2017-09-30 05:49 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-10-25 14:15 - 2017-09-30 05:49 - 000135576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-10-25 14:15 - 2017-09-30 05:48 - 000644696 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2017-10-25 14:15 - 2017-09-30 05:47 - 001194792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2017-10-25 14:15 - 2017-09-30 05:45 - 000511896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2017-10-25 14:15 - 2017-09-30 05:44 - 000181912 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-10-25 14:15 - 2017-09-30 05:43 - 007318888 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-10-25 14:15 - 2017-09-30 05:42 - 004848952 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-10-25 14:15 - 2017-09-30 05:42 - 001506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-10-25 14:15 - 2017-09-30 05:42 - 000820120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-10-25 14:15 - 2017-09-30 05:41 - 005304496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 002086808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 000961944 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 000651672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-10-25 14:15 - 2017-09-30 05:41 - 000259400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2017-10-25 14:15 - 2017-09-30 05:41 - 000257432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-10-25 14:15 - 2017-09-30 05:41 - 000228248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-10-25 14:15 - 2017-09-30 05:40 - 000558912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-10-25 14:15 - 2017-09-30 05:40 - 000408984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-10-25 14:15 - 2017-09-30 05:40 - 000336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-10-25 14:15 - 2017-09-30 05:40 - 000173976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2017-10-25 14:15 - 2017-09-30 05:39 - 000203672 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-25 14:15 - 2017-09-30 05:38 - 002239136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-10-25 14:15 - 2017-09-30 05:36 - 002672024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-10-25 14:15 - 2017-09-30 05:36 - 000057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-10-25 14:15 - 2017-09-30 02:29 - 001408536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-10-25 14:15 - 2017-09-30 02:29 - 000804784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-10-25 14:15 - 2017-09-30 02:26 - 001333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 001150776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 000606072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 000508344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-10-25 14:15 - 2017-09-30 02:10 - 000480920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2017-10-25 14:15 - 2017-09-30 02:09 - 000787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2017-10-25 14:15 - 2017-09-30 02:06 - 004471368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-10-25 14:15 - 2017-09-30 02:05 - 005827744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-10-25 14:15 - 2017-09-30 02:05 - 002603744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2017-10-25 14:15 - 2017-09-30 02:05 - 001266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-10-25 14:15 - 2017-09-30 02:05 - 000750488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-10-25 14:15 - 2017-09-30 02:05 - 000559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-10-25 14:15 - 2017-09-30 02:04 - 004215184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000347544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-10-25 14:15 - 2017-09-30 02:04 - 000182680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-10-25 14:15 - 2017-09-30 02:03 - 001439032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-10-25 14:15 - 2017-09-30 02:02 - 000175512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-10-25 14:15 - 2017-09-30 02:01 - 000124544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2017-10-25 14:15 - 2017-09-29 07:44 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2017-10-25 14:15 - 2017-09-29 07:43 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-10-25 14:15 - 2017-09-29 07:43 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2017-10-25 14:15 - 2017-09-29 07:43 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2017-10-25 14:15 - 2017-09-29 07:42 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mgmtapi.dll
2017-10-25 14:15 - 2017-09-29 07:41 - 013844992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-10-25 14:15 - 2017-09-29 07:41 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2017-10-25 14:15 - 2017-09-29 07:40 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-10-25 14:15 - 2017-09-29 07:40 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 001135616 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-10-25 14:15 - 2017-09-29 07:38 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-10-25 14:15 - 2017-09-29 07:37 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2017-10-25 14:15 - 2017-09-29 07:37 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 017370624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 000798720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-10-25 14:15 - 2017-09-29 07:34 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-10-25 14:15 - 2017-09-29 07:33 - 001506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 002782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 002340864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 001244160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-10-25 14:15 - 2017-09-29 07:32 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2017-10-25 14:15 - 2017-09-29 07:32 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtapi.dll
2017-10-25 14:15 - 2017-09-29 07:31 - 003107328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-10-25 14:15 - 2017-09-29 07:31 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-10-25 14:15 - 2017-09-29 07:30 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 001460736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-10-25 14:15 - 2017-09-29 07:29 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2017-10-25 14:15 - 2017-09-29 07:28 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-25 14:15 - 2017-09-29 07:28 - 000104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2017-10-25 14:15 - 2017-09-29 07:28 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cipher.exe
2017-10-25 14:15 - 2017-09-29 07:27 - 001321984 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-10-25 14:15 - 2017-09-29 07:27 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-10-25 14:15 - 2017-09-29 07:26 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-10-25 14:15 - 2017-09-29 07:25 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 002503680 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 001628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-10-25 14:15 - 2017-09-29 07:24 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 003140096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 002730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-10-25 14:15 - 2017-09-29 07:23 - 001887744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001460224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 001052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-10-25 14:15 - 2017-09-29 07:23 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-10-25 14:15 - 2017-09-29 07:22 - 002829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-10-25 14:15 - 2017-09-29 07:22 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-25 14:15 - 2017-09-29 07:21 - 003304448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-10-25 14:15 - 2017-09-29 07:21 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-25 14:15 - 2017-09-29 07:21 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-10-25 14:15 - 2017-09-29 07:21 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-25 14:15 - 2017-09-29 07:21 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-10-25 14:15 - 2017-09-29 07:21 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 001811456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 000804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2017-10-25 14:15 - 2017-09-29 07:20 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-25 14:15 - 2017-09-29 07:20 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 002088448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2017-10-25 14:15 - 2017-09-29 07:19 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 002438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 001527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-10-25 14:15 - 2017-09-29 07:18 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 000603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-10-25 14:15 - 2017-09-29 07:18 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2017-10-25 14:15 - 2017-09-29 07:18 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2017-10-25 14:15 - 2017-09-29 05:40 - 000804312 _____ C:\WINDOWS\SysWOW64\locale.nls
2017-10-25 14:15 - 2017-09-29 05:40 - 000804312 _____ C:\WINDOWS\system32\locale.nls
2017-10-25 14:15 - 2017-09-20 15:08 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-10-25 14:15 - 2017-09-20 15:08 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-10-25 14:15 - 2017-09-18 23:20 - 001065104 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-10-25 14:15 - 2017-09-18 23:20 - 000900376 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-10-25 14:15 - 2017-09-18 23:17 - 001395664 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-10-25 14:15 - 2017-09-18 23:17 - 001186464 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-10-25 14:15 - 2017-09-18 23:11 - 001018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-10-25 14:15 - 2017-09-18 23:09 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-10-25 14:15 - 2017-09-18 22:25 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2017-10-25 14:15 - 2017-09-18 22:20 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-10-25 14:15 - 2017-09-18 22:20 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2017-10-25 14:15 - 2017-09-18 22:15 - 000648704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-10-25 14:14 - 2017-09-30 05:40 - 000184728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2017-10-25 14:14 - 2017-09-30 05:40 - 000072944 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2017-10-25 14:14 - 2017-09-29 07:33 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-25 14:14 - 2017-09-29 07:32 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-10-25 14:14 - 2017-09-29 07:31 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\efssvc.dll
2017-10-25 14:14 - 2017-09-29 07:30 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2017-10-25 14:14 - 2017-09-29 07:30 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-10-25 14:14 - 2017-09-29 07:29 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-25 14:14 - 2017-09-29 07:29 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-25 14:14 - 2017-09-29 07:29 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ServiceWorkerHost.exe
2017-10-25 14:14 - 2017-09-29 07:27 - 000565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-10-25 14:14 - 2017-09-29 07:27 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-10-25 14:14 - 2017-09-29 07:26 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2017-10-25 14:14 - 2017-09-29 07:23 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-10-25 14:14 - 2017-09-29 07:22 - 001438208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-10-25 14:14 - 2017-09-29 07:21 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvc.dll
2017-10-25 14:14 - 2017-09-29 07:21 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-25 14:14 - 2017-09-29 07:20 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2017-10-25 14:14 - 2017-09-29 07:18 - 000347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-10-25 14:14 - 2017-09-29 07:18 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2017-10-25 14:14 - 2017-09-29 07:18 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\cipher.exe
2017-10-25 14:14 - 2017-09-18 22:26 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2017-10-25 14:14 - 2017-09-18 22:23 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004708504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004671832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002476712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001146176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001106904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 001013912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000958664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000569264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-10-24 23:37 - 2017-10-24 23:37 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000085784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2017-10-24 23:37 - 2017-10-24 23:37 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-10-24 23:37 - 2017-10-24 23:37 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004462120 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 004330920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002972552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002647224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 002006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001930840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001668344 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001639936 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001619816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001077248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000946688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000844288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-10-24 23:36 - 2017-10-24 23:36 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000685512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000627080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000610720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-10-24 23:36 - 2017-10-24 23:36 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthHFSrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000381824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000291904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcrecovery.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000159648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\csplte.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000115792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000081176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000064680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-10-24 23:36 - 2017-10-24 23:36 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000052768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000049720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000042456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-10-24 23:36 - 2017-10-24 23:36 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-10-24 23:36 - 2017-10-24 23:36 - 000031932 ____N C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-10-24 23:36 - 2017-10-24 23:36 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-10-24 23:28 - 2017-02-10 19:26 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:26 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:26 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-10-24 23:28 - 2017-02-10 19:21 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:21 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-10-24 23:28 - 2017-02-10 19:21 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-10-23 15:03 - 2017-10-23 15:04 - 060956425 _____ C:\Users\paulf\Downloads\ALC1200_Audio_V6015859_Windows7.zip
2017-10-23 11:58 - 2017-10-23 12:00 - 071535032 _____ (Malwarebytes ) C:\Users\paulf\Downloads\mb3-setup-consumer-3.2.2.2029-1.0.212-1.0.2951 (1).exe
2017-10-23 11:48 - 2017-10-23 11:48 - 001852992 _____ (Oracle Corporation) C:\Users\paulf\Downloads\JavaSetup8u151.exe
2017-10-23 11:45 - 2017-10-23 11:46 - 081400776 _____ (NVIDIA Corporation) C:\Users\paulf\Downloads\GeForce_Experience_v3.10.0.95.exe
2017-10-23 09:55 - 2017-10-23 09:55 - 007333587 _____ C:\Users\paulf\Downloads\E4481_P6T_SE_manual.zip
2017-10-23 09:55 - 2017-10-23 09:55 - 000066464 _____ C:\Users\paulf\Downloads\IE4283_P6T_P6T_SE_Insert.zip
2017-10-21 14:13 - 2017-10-21 14:13 - 006054816 _____ (Wargaming.net ) C:\Users\paulf\Downloads\WoWS_internet_install_eu.exe
2017-10-20 19:02 - 2017-10-20 19:02 - 001529674 _____ C:\Users\paulf\Downloads\Booking Document.pdf
2017-10-19 21:06 - 2017-10-19 21:07 - 071535032 _____ (Malwarebytes ) C:\Users\paulf\Downloads\mb3-setup-consumer-3.2.2.2029-1.0.212-1.0.2951.exe
2017-10-19 17:03 - 2017-10-19 17:05 - 062831199 _____ C:\Users\paulf\Downloads\DashcamViewerWin_v2.7.3.zip
2017-10-19 16:59 - 2017-10-19 16:59 - 001207296 _____ (DATAKAM) C:\Users\paulf\Downloads\RegistratorViewer.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-17 12:24 - 2016-04-29 13:49 - 000000000 ____D C:\Games
2017-11-17 12:23 - 2017-07-14 12:31 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
2017-11-17 12:15 - 2017-08-26 16:35 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossout
2017-11-16 19:19 - 2016-02-13 13:20 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-11-16 17:18 - 2017-04-29 19:02 - 000000199 _____ C:\Users\paulf\Desktop\Counter-Strike Global Offensive.url
2017-11-16 01:53 - 2017-03-18 20:56 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2017-11-15 18:30 - 2016-04-29 13:40 - 000000000 ___RD C:\Users\paulf\OneDrive
2017-11-15 18:25 - 2017-07-15 10:30 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2017-11-15 18:25 - 2017-07-14 15:02 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Armored Warfare MyCom Beta
2017-11-15 18:25 - 2016-12-21 18:10 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Syncios
2017-11-15 18:25 - 2016-05-20 07:41 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-11-15 18:22 - 2016-07-07 11:51 - 000000000 ____D C:\Temp
2017-11-15 07:50 - 2017-07-25 20:54 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\Outlook Files
2017-11-14 07:30 - 2017-03-28 15:15 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warships
2017-11-13 22:02 - 2016-05-14 10:21 - 000000000 ____D C:\Users\paulf\OneDrive\Documents\My Games
2017-11-05 10:46 - 2016-10-25 20:00 - 000000000 ____D C:\AdwCleaner
2017-10-24 23:25 - 2016-05-05 11:33 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2017-10-24 14:48 - 2017-10-10 20:20 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dreadnought
2017-10-24 14:48 - 2016-09-28 14:29 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaPlayerLite
2017-10-24 14:48 - 2016-05-14 14:59 - 000000000 ____D C:\Users\paulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

Some files in TEMP:
====================
2017-11-18 08:19 - 2017-10-24 23:36 - 001930840 _____ (Microsoft Corporation) C:\Users\paulf\AppData\Local\Temp\dllnt_dump.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-11-15 18:05

==================== End of FRST.txt ============================

Franksee · Nov 18, 2017

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2017
Ran by paulf (18-11-2017 12:34:22)
Running from H:\Google Downloads
Windows 10 Home Version 1703 15063.726 (X64) (2017-11-15 18:27:39)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2516327635-2037600327-2752607068-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2516327635-2037600327-2752607068-503 - Limited - Disabled)
Guest (S-1-5-21-2516327635-2037600327-2752607068-501 - Limited - Disabled)
paulf (S-1-5-21-2516327635-2037600327-2752607068-1001 - Administrator - Enabled) => C:\Users\paulf

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
Anno 2205 / RePack by Baracuda (HKLM-x32\...\Anno 2205_is1) (Version: 1.1.2124.38702 - )
Armored Warfare MyCom (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Armored Warfare MyCom) (Version: 1.131 - My.com B.V.)
Crossout Launcher 1.0.3.25 (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\CrossOutLauncher_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
My.com Game Center (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\MyComGames) (Version: 3.219 - My.com B.V.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.)
RogueKiller version 12.11.24.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.11.24.0 - Adlice Software)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 15.0 - Ubisoft)
Wargaming.net Game Center (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\Wargaming.net Game Center) (Version: 17.8.1.6304 - Wargaming.net)
World of Tanks EU (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World of Warships EU (HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\...\WOWS.EU.PRODUCTION) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {B4E3487D-4284-456E-A7BD-1C25D7A4D9A6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-16] (Google Inc.)
Task: {C9E42B0E-431A-4F83-B692-8B1FBD362EDC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-16] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2017-11-15 18:22 - 2017-05-01 20:51 - 000133752 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-11-17 12:03 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-03-18 20:58 - 2017-03-18 20:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-11-16 15:40 - 2017-11-16 15:41 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-11-16 15:40 - 2017-11-16 15:41 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-11-16 15:40 - 2017-11-16 15:41 - 025461760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-11-16 15:40 - 2017-11-16 15:41 - 002552832 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\skypert.dll
2017-11-16 15:40 - 2017-11-16 15:41 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2017-11-09 20:47 - 2016-10-08 22:17 - 003168256 _____ () C:\Users\paulf\Desktop\DS4Windows.exe
2017-11-16 15:36 - 2017-11-16 15:36 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11710.1001.27.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-03-18 20:59 - 2017-03-19 02:31 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-11-16 15:34 - 2017-11-10 09:57 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libglesv2.dll
2017-11-16 15:34 - 2017-11-10 09:57 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libegl.dll
2017-11-16 17:14 - 2017-09-09 19:25 - 000688416 _____ () H:\Steam\SDL2.dll
2017-11-16 17:14 - 2017-10-31 03:22 - 002546976 _____ () H:\Steam\video.dll
2017-11-16 17:14 - 2016-01-27 07:49 - 000491008 _____ () H:\Steam\libavformat-56.dll
2017-11-16 17:14 - 2016-09-01 01:02 - 004969248 _____ () H:\Steam\v8.dll
2017-11-16 17:14 - 2016-01-27 07:49 - 000442880 _____ () H:\Steam\libavutil-54.dll
2017-11-16 17:14 - 2016-01-27 07:49 - 000332800 _____ () H:\Steam\libavresample-2.dll
2017-11-16 17:14 - 2016-01-27 07:49 - 002549760 _____ () H:\Steam\libavcodec-56.dll
2017-11-16 17:14 - 2016-01-27 07:49 - 000485888 _____ () H:\Steam\libswscale-3.dll
2017-11-16 17:14 - 2016-09-01 01:02 - 001195296 _____ () H:\Steam\icuuc.dll
2017-11-16 17:14 - 2016-09-01 01:02 - 001563936 _____ () H:\Steam\icui18n.dll
2017-11-16 17:14 - 2017-10-31 03:22 - 000901408 _____ () H:\Steam\bin\chromehtml.DLL
2017-11-16 17:14 - 2016-07-04 22:17 - 000266560 _____ () H:\Steam\openvr_api.dll
2017-11-17 12:23 - 2017-11-17 12:23 - 000144896 _____ () C:\Users\paulf\AppData\Local\MyComGames\zlib1.dll
2017-11-17 12:23 - 2017-11-17 12:23 - 000076176 _____ () C:\Users\paulf\AppData\Local\MyComGames\pxd.dll
2017-11-17 12:23 - 2017-11-17 12:23 - 000249744 _____ () C:\Users\paulf\AppData\Local\MyComGames\LightUpdate.dll
2017-11-17 12:23 - 2017-11-17 12:23 - 002495376 _____ () C:\Users\paulf\AppData\Local\MyComGames\BigUp2.dll
2017-10-03 21:18 - 2017-10-03 21:18 - 071411712 _____ () C:\Users\paulf\AppData\Local\MyComGames\Chrome\3.3202.1673\libcef.dll
2017-11-17 12:24 - 2017-11-13 21:20 - 001663736 _____ () \\?\H:\Wargaming.net\GameCenter\dlls\libGLESv2.dll
2017-11-17 12:24 - 2017-11-13 21:20 - 000091896 _____ () \\?\H:\Wargaming.net\GameCenter\dlls\libEGL.dll
2017-11-17 12:24 - 2017-11-13 21:20 - 048874744 _____ () \\?\H:\Wargaming.net\GameCenter\dlls\libcef.dll
2017-11-16 17:14 - 2017-09-07 02:04 - 000678400 _____ () H:\Steam\bin\cef\cef.win7\SDL2.dll
2017-11-16 17:14 - 2017-08-16 22:28 - 073130272 _____ () H:\Steam\bin\cef\cef.win7\libcef.dll
2017-11-16 17:14 - 2015-09-24 23:52 - 000119208 _____ () H:\Steam\winh264.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-11-16 01:55 - 2017-11-16 01:54 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2516327635-2037600327-2752607068-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{98614ED1-33CB-4395-8D0F-40E1AF0E898D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{CDAE1B45-5B3B-4351-822C-06AC074494A2}F:\games\crossout\launcher.exe] => (Allow) F:\games\crossout\launcher.exe
FirewallRules: [UDP Query User{CE2CEE09-1F3F-44F4-81E3-DC35FC5809BE}F:\games\crossout\launcher.exe] => (Allow) F:\games\crossout\launcher.exe
FirewallRules: [{119DE6B8-D4C1-49BF-B49C-5F5BE6AFD1E2}] => (Allow) H:\Steam\Steam.exe
FirewallRules: [{6A15EF31-FFBB-4DD0-AA99-C04E1A26BDA2}] => (Allow) H:\Steam\Steam.exe
FirewallRules: [{6B0D4D49-FDAB-44EE-8BF2-4DD5C48CAC7D}] => (Allow) H:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{235AAC5F-FFA2-45AC-A2F7-06F841F639F5}] => (Allow) H:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{0D7F0D1D-132F-452D-A964-5A49F423F388}F:\games\warthunder\launcher.exe] => (Allow) F:\games\warthunder\launcher.exe
FirewallRules: [UDP Query User{32485366-8DAE-4330-A63F-D26301F2AD63}F:\games\warthunder\launcher.exe] => (Allow) F:\games\warthunder\launcher.exe
FirewallRules: [{E7B8D548-EA73-474B-9141-3B61D4DAE37A}] => (Allow) H:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{ABD56C39-1214-42C4-BD72-BB3A5DA0E39A}] => (Allow) H:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{1D06825F-06FB-49B9-891E-2B9E422A7BA0}] => (Allow) C:\Users\paulf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{83677260-0C0A-4D7F-9484-7DD38EC949C9}] => (Allow) C:\Users\paulf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{FFEF107E-A2B5-4F98-BB4B-716A7BF7F125}H:\crossout\launcher.exe] => (Allow) H:\crossout\launcher.exe
FirewallRules: [UDP Query User{20B6F45C-C0C5-4DF2-8722-4398B8C8BE5A}H:\crossout\launcher.exe] => (Allow) H:\crossout\launcher.exe
FirewallRules: [TCP Query User{4698FB5F-B256-465C-B081-18623AF5A02B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{BDE062C1-E2BA-4AC2-8318-A1D6EB7C8426}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{D1CB5E90-DA45-4D49-B750-8947CE1DBA4F}C:\users\paulf\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\paulf\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{04543774-CA6C-42E4-8092-D8728BC30FAE}C:\users\paulf\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\paulf\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{86B15DB8-EDB5-459D-B5FA-ADBDD628F4C9}H:\wargaming.net\gamecenter\wgc.exe] => (Allow) H:\wargaming.net\gamecenter\wgc.exe
FirewallRules: [UDP Query User{E4948625-3333-4F86-AD95-4F91A0C0919D}H:\wargaming.net\gamecenter\wgc.exe] => (Allow) H:\wargaming.net\gamecenter\wgc.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: Unknown USB Device (Device Descriptor Request Failed)
Description: Unknown USB Device (Device Descriptor Request Failed)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/18/2017 12:32:17 PM) (Source: Microsoft Security Client Setup) (EventID: 100) (User: DESKTOP-EF1V79E)
Description: HRESULT:0x8004FF6F
Description:You don’t need to install Microsoft Security Essentials. Your version of Windows includes an updated version of Windows Defender that provides the same level of protection as Microsoft Security Essentials, along with other significant improvements. <a>For more information on the differences and improvements, see online Help</a>. Error code:0x8004FF6F.

Error: (11/18/2017 12:25:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-EF1V79E)
Description: Package Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe+App was terminated because it took too long to suspend.

Error: (11/18/2017 12:25:47 PM) (Source: COM) (EventID: 10031) (User: )
Description: An unmarshaling policy check was performed when unmarshaling a custom marshaled object and the class {41FD88F7-F295-4D39-91AC-A85F3149A05B} was rejected

Error: (11/17/2017 02:56:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Microsoft.StickyNotes.exe, version: 1.8.0.0, time stamp: 0x58d88b40
Faulting module name: Windows.UI.Xaml.dll, version: 10.0.15063.674, time stamp: 0xaf452875
Exception code: 0xc000027b
Fault offset: 0x00000000005f94ed
Faulting process id: 0x180c
Faulting application start time: 0x01d35fb439d9ba66
Faulting application path: C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.8.0.0_x64__8wekyb3d8bbwe\Microsoft.StickyNotes.exe
Faulting module path: C:\Windows\System32\Windows.UI.Xaml.dll
Report Id: ebfd09ff-c996-4152-a014-36c11cdd2fb6
Faulting package full name: Microsoft.MicrosoftStickyNotes_1.8.0.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: App

Error: (11/17/2017 01:05:18 PM) (Source: COM) (EventID: 10031) (User: )
Description: An unmarshaling policy check was performed when unmarshaling a custom marshaled object and the class {41FD88F7-F295-4D39-91AC-A85F3149A05B} was rejected

Error: (11/17/2017 12:29:50 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (11/16/2017 03:34:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HxTsr.exe, version: 16.0.7906.4225, time stamp: 0x5898ef4f
Faulting module name: biwinrt.dll, version: 10.0.15063.0, time stamp: 0x87ee4a59
Exception code: 0xe0464645
Fault offset: 0x00000000000156f9
Faulting process id: 0x1f4
Faulting application start time: 0x01d35ef073514462
Faulting application path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7906.42257.0_x64__8wekyb3d8bbwe\HxTsr.exe
Faulting module path: C:\Windows\System32\biwinrt.dll
Report Id: 9d40730f-cb2c-439a-a800-a98f2f58017b
Faulting package full name: microsoft.windowscommunicationsapps_17.7906.42257.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (11/16/2017 03:34:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HxTsr.exe, version: 16.0.7906.4225, time stamp: 0x5898ef4f
Faulting module name: biwinrt.dll, version: 10.0.15063.0, time stamp: 0x87ee4a59
Exception code: 0xe0464645
Fault offset: 0x00000000000156f9
Faulting process id: 0x165c
Faulting application start time: 0x01d35ef0616e9142
Faulting application path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7906.42257.0_x64__8wekyb3d8bbwe\HxTsr.exe
Faulting module path: C:\Windows\System32\biwinrt.dll
Report Id: eea0ffbb-adb0-44a1-8258-b90b462247ad
Faulting package full name: microsoft.windowscommunicationsapps_17.7906.42257.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (11/15/2017 06:44:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HxTsr.exe, version: 16.0.7906.4225, time stamp: 0x5898ef4f
Faulting module name: biwinrt.dll, version: 10.0.15063.0, time stamp: 0x87ee4a59
Exception code: 0xe0464645
Fault offset: 0x00000000000156f9
Faulting process id: 0x13fc
Faulting application start time: 0x01d35e41c9dfe20d
Faulting application path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7906.42257.0_x64__8wekyb3d8bbwe\HxTsr.exe
Faulting module path: C:\Windows\System32\biwinrt.dll
Report Id: 57d38f6e-8060-426d-84e6-6815c58f156a
Faulting package full name: microsoft.windowscommunicationsapps_17.7906.42257.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (11/15/2017 06:44:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HxTsr.exe, version: 16.0.7906.4225, time stamp: 0x5898ef4f
Faulting module name: biwinrt.dll, version: 10.0.15063.0, time stamp: 0x87ee4a59
Exception code: 0xe0464645
Fault offset: 0x00000000000156f9
Faulting process id: 0x1258
Faulting application start time: 0x01d35e41b7fde35c
Faulting application path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7906.42257.0_x64__8wekyb3d8bbwe\HxTsr.exe
Faulting module path: C:\Windows\System32\biwinrt.dll
Report Id: f493d192-9559-4a24-9f9b-4cc183cb62c0
Faulting package full name: microsoft.windowscommunicationsapps_17.7906.42257.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

System errors:
=============
Error: (11/18/2017 12:25:47 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/18/2017 08:50:32 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/17/2017 04:11:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/17/2017 04:11:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/17/2017 04:11:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CldFlt service failed to start due to the following error:
The request is not supported.

Error: (11/17/2017 04:11:48 PM) (Source: BTHUSB) (EventID: 5) (User: )
Description: The Bluetooth driver expected an HCI event with a certain size but did not receive it.

Error: (11/17/2017 04:10:47 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/17/2017 04:10:14 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/17/2017 02:57:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/17/2017 02:56:56 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7 CPU 930 @ 2.80GHz
Percentage of memory in use: 25%
Total physical RAM: 12279.11 MB
Available physical RAM: 9164.91 MB
Total Virtual: 14711.11 MB
Available Virtual: 10980.39 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:49.2 GB) NTFS
Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: () (Fixed) (Total:229.26 GB) (Free:229.13 GB) NTFS
Drive f: () (Fixed) (Total:931.41 GB) (Free:240.09 GB) NTFS
Drive g: (MB Support CD) (CDROM) (Total:1.91 GB) (Free:0 GB) CDFS
Drive h: () (Fixed) (Total:1863.01 GB) (Free:1286.56 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 2B7E7AE6)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: B130B9A3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: F5AB8698)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows XP) (Size: 232.8 GB) (Disk ID: D0F4738C)
Partition 1: (Not Active) - (Size=63 MB) - (Type=DE)
Partition 2: (Active) - (Size=229.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=3.5 GB) - (Type=DB)

==================== End of Addition.txt ============================

Franksee · Nov 18, 2017

Thank you

broni · Nov 19, 2017

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2

Close all the running programs

Double click on downloaded setup.exe file to install the program.

Click on Start Scan button.

Click on another Start Scan button.

Wait until the Status box shows Scan Finished

Click on Remove Selected.

Wait until the Status box shows Deleting Finished.

Click on Report and copy/paste the content of the Notepad into your next reply.

RKreport.txt could also be found on your desktop.

If more than one log is produced post all logs.

Please download Malwarebytes to your desktop.

Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.

Then click Finish.

Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.

If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.

When the scan is complete, make sure that all Threats are selected, and click Remove Selected.

Restart your computer when prompted to do so.

The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.

Please download AdwCleaner by Xplode and save to your Desktop.

Double click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8/10 users right-click and select Run As Administrator

The tool will start to update the database if one is required.

Click on the Scan button.

AdwCleaner will begin...be patient as the scan may take some time to complete.

After the scan has finished, click on the Logfile button.

A window will open which lists the logs of your scans.

Click on the Scan tab.

Double-click the most recent scan which will be at the top of the list....the log will appear.

Review the results...see note below

After reviewing the log, click on the Clean button.

Press OK when asked to close all programs and follow the onscreen prompts.

Press OK again to allow AdwCleaner to restart the computer and complete the removal process.

After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).

To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.

Copy and paste the contents of AdwCleaner[CX].txt in your next reply.

A copy of all logfiles are saved to C:\AdwCleaner.

-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.

Franksee · Nov 21, 2017

RogueKiller V12.11.25.0 (x64) [Nov 20 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.15063) 64 bits version
Started in : Normal mode
User : paulf [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Scan -- Date : 11/21/2017 13:01:25 (Duration : 00:21:17)
Switches : -refid

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 1 ¤¤¤
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{4e80d0d1-7973-46bb-8e64-d0f78b1cdc3d} | DhcpNameServer : 10.11.0.1 ([]) -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 1 ¤¤¤
[PUP.uTorrentAds][File] C:\Users\paulf\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe -> Found

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: SanDisk SDSSDHP128G ATA Device +++++
--- User ---
[MBR] 2ff109b4cd37313292488270329c67a6
[BSP] 589effd96931550aede6217dbc60393c : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 122002 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: WDC WD2500JD-75HBB0 ATA Device +++++
--- User ---
[MBR] c611930143e83acc1ca71868a0dde90c
[BSP] ae203e84dcb456630d870d8f3155a2b5 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 62 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 128520 | Size: 234762 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] UNKNOWN (0xdb) [VISIBLE] Offset (sectors): 480921840 | Size: 3584 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: Hitachi HCS5C2020ALA632 ATA Device +++++
--- User ---
[MBR] e6a93a9ad7f68b323665f98425dbe5b4
[BSP] 86502e86158c83cec0941a4c1dc4b65c : Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 64 | Size: 1907718 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive3: Hitachi HDS721010CLA332 ATA Device +++++
--- User ---
[MBR] 227973f40b21fb1faa51cb58305f80d3
[BSP] 11fabc6a5236faec20bcf7fa3f5ff81d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 953767 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

Franksee · Nov 21, 2017

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 11/21/17
Scan Time: 1:27 PM
Log File: bac4d45c-cebf-11e7-a3dd-20cf300e6cb9.json
Administrator: Yes

-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.236
Update Package Version: 1.0.3310
License: Free

-System Information-
OS: Windows 10 (Build 15063.726)
CPU: x64
File System: NTFS
User: DESKTOP-EF1V79E\paulf

-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 355699
Threats Detected: 3
Threats Quarantined: 3
Time Elapsed: 0 min, 41 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 3
PUP.Optional.Trovi, C:\USERS\PAULF\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [4978], [454808],1.0.3310
PUP.Optional.Conduit, C:\USERS\PAULF\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [578], [454835],1.0.3310
PUP.Optional.Trovi, C:\USERS\PAULF\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [4978], [454808],1.0.3310

Physical Sector: 0
(No malicious items detected)

(end)

Franksee · Nov 21, 2017

# AdwCleaner 7.0.4.0 - Logfile created on Tue Nov 21 13:31:49 2017
# Updated on 2017/27/10 by Malwarebytes
# Database: 11-21-2017.1
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [3542 B] - [2016/10/25 20:2:21]
C:/AdwCleaner/AdwCleaner[C1].txt - [1319 B] - [2017/11/5 10:44:42]
C:/AdwCleaner/AdwCleaner[S0].txt - [4072 B] - [2016/10/25 20:1:11]
C:/AdwCleaner/AdwCleaner[S1].txt - [1149 B] - [2017/11/5 10:41:54]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt ##########

Log in or Sign up

[Active] Clean up needed

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Log in or Sign up

[Active] Clean up needed

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

broni Malware Annihilator Techie7 Moderator Head Security

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Franksee Established Techie7 Member

Useful Searches