WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. Join 93116 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Comptuer crashing on spyware check, not connecting online [Solved]

Started by joshuam , Sep 23 2017 01:24 PM

spyware crash connectivity

This topic is locked

19 replies to this topic

#1 joshuam

Authentic Member

Authentic Member
20 posts

Posted 23 September 2017 - 01:24 PM

Hello,

My computer lately has had trouble connecting to the internet. It will appear to be when I check my wireless adapter, but I can't use my browser or other programs on the internet. A normal diagnostic doesn't seem to return anything useful. What's more is that if I use Superantispyware to check (even with updates) after awhile it crashes the computer. Malwarebytes doesn't seem to return anything.

Here are the results from aswMBR and Farbar, repectively:

aswMBR version 1.0.1.2252 Copyright© 2014 AVAST Software
Run date: 2017-09-23 19:12:53
-----------------------------
19:12:53.313    OS Version: Windows x64 6.2.9200
19:12:53.313    Number of processors: 4 586 0x200
19:12:53.314    ComputerName: DESKTOP-RLUVH3J UserName: Josh
19:12:56.989    Initialize success
19:12:56.991    VM: initialized successfully
19:12:56.992    VM: Amd CPU supported
19:15:26.328    AVAST engine defs: 17030301
19:15:58.721    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:15:58.723    Disk 0 Vendor: ST1000DM003-1ER162 CC45 Size: 953869MB BusType: 3
19:15:58.973    Disk 0 MBR read successfully
19:15:58.975    Disk 0 MBR scan
19:15:59.013    Disk 0 Windows 7 default MBR code
19:15:59.018    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          500 MB offset 2048
19:15:59.061    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       953367 MB offset 1026048
19:15:59.130    Disk 0 scanning C:\WINDOWS\system32\drivers
19:16:13.201    Service scanning
19:16:43.989    Modules scanning
19:16:43.995    Disk 0 trace - called modules:
19:16:44.341    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys hal.dll PCIIDEX.SYS atapi.sys
19:16:44.346    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffda0a1668c060]
19:16:44.350    3 CLASSPNP.SYS[fffff80c7bb05efb] -> nt!IofCallDriver -> [0xffffda0a15b4e9b0]
19:16:44.354    5 ACPI.sys[fffff80c7aa54571] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xffffda0a15b54060]
19:16:47.519    AVAST engine scan C:\WINDOWS
19:16:53.162    AVAST engine scan C:\WINDOWS\system32
19:21:34.852    AVAST engine scan C:\WINDOWS\system32\drivers
19:21:56.105    AVAST engine scan C:\Users\Josh
20:07:52.874    AVAST engine scan C:\ProgramData
20:15:30.987    Disk 0 statistics 6592235/0/0 @ 1.52 MB/s
20:15:30.993    Scan finished successfully
20:15:49.728    Disk 0 MBR has been saved successfully to "C:\Users\Josh\Desktop\MBR.dat"
20:15:49.787    The log file has been saved successfully to "C:\Users\Josh\Desktop\aswMBR.txt"

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-09-2017 02
Ran by Josh (administrator) on DESKTOP-RLUVH3J (23-09-2017 20:16:43)
Running from C:\Users\Josh\Desktop
Loaded Profiles: Josh (Available Profiles: Josh)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-08-18] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-09-15] (Apple Inc.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [506864 2013-03-08] (MSI)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-12-11] (Raptr, Inc)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2014-06-27] (Power Software Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3071776 2017-09-07] (Valve Corporation)
HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\...\Run: [Private Internet Access] => C:\Program Files\pia_manager\pia_manager.exe [8817658 2015-08-19] ()
HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7935904 2016-01-25] (SUPERAntiSpyware)
HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2016-09-11]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{5d7d62d9-f2e8-4723-a7b9-d532c3396879}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5d7d62d9-f2e8-4723-a7b9-d532c3396879}: [DhcpNameServer] 209.222.18.222 209.222.18.218
Tcpip\..\Interfaces\{8c810314-7c03-4eb1-bfa7-f11c451d4bca}: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{b6b9fae8-e3ab-4700-82a4-ab9febffcfe5}: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{b819c044-6300-470c-9237-2087b60b2321}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{b819c044-6300-470c-9237-2087b60b2321}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{f1e03970-63c8-43c6-b16a-02ff235ccb99}: [DhcpNameServer] 209.222.18.222 209.222.18.218

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://uk.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-4095220593-1037748550-1296689265-1006 -> {8D359765-D916-408C-A99D-B3F099CDD827} URL = hxxps://uk.search.yahoo.com/search?p={searchTerms}&intl=uk&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-07-11] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2017-06-13] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-09-09] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-09] (Oracle Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
Toolbar: HKU\S-1-5-21-4095220593-1037748550-1296689265-1006 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Josh\AppData\Roaming\Mozilla\Firefox\Profiles\r6wyhiup.default-1454333552708 [2017-09-23]
FF Extension: (Search and New Tab by Yahoo) - C:\Users\Josh\AppData\Roaming\Mozilla\Firefox\Profiles\r6wyhiup.default-1454333552708\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-08-08]
FF Extension: (Reddit Enhancement Suite) - C:\Users\Josh\AppData\Roaming\Mozilla\Firefox\Profiles\r6wyhiup.default-1454333552708\Extensions\jid1-xUfzOsOFlzSOXg@jetpack.xpi [2017-09-22]
FF Extension: (Adblock Plus) - C:\Users\Josh\AppData\Roaming\Mozilla\Firefox\Profiles\r6wyhiup.default-1454333552708\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-09-12]
FF HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Josh\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: (Ace Stream Web Extension) - C:\Users\Josh\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2015-12-18]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll [2017-09-12] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-12] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-09-09] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-09-09] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-09-30] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4095220593-1037748550-1296689265-1006: @acestream.net/acestreamplugin,version=3.1.2 -> C:\Users\Josh\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies)

Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQoMUQ9FFQVAbQhbUAlcFQwVJhRZUA9ADAEbdlwJBA9IQwwWdx9aFQQTQkcFME0FBloEURNNfWpdAEsSSWJGInJWDk4=&q={searchTerms}
CHR DefaultSearchKeyword: Default -> searchinterneat-a.akamaihd.net
CHR DefaultNewTabURL: Default -> hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAYXcA8MVQkSDARAcQkVVQBHRxhCcQ8JTA1JF1ASJQ8BAwBEFhNBNARaAktXUUEeJ1pNER8fHGZGIUtbCW4UQ35NL04=
CHR Profile: C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default [2017-06-17]
CHR Extension: (YouTube) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Bookmarks Menu) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffmdedmghpoipeldijkdlcckdpempkdi [2015-08-19]
CHR Extension: (Deluminate) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\iebboopaeangfpceklajfohhbpkkfiaa [2017-06-02]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2017-06-02]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-06-02]
CHR Extension: (Gmail) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-18]
CHR Extension: (Chrome Media Router) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-02]
CHR HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042544 2017-03-14] (Microsoft Corporation)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161264 2013-02-20] (MSI)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1001920 2017-06-26] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2017-06-26] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2017-06-26] (McAfee, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2017-08-08] (Microsoft Corporation)
S2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0313676.inf_amd64_96bbc33bec5c7fae\atikmdag.sys [36558208 2017-05-16] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0313676.inf_amd64_96bbc33bec5c7fae\atikmpag.sys [528760 2017-05-16] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-09-18] (Advanced Micro Devices)
R1 MpKsl8cca1949; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E756C88D-7AD2-4E62-B1F4-6FE7F6B09569}\MpKsl8cca1949.sys [44928 2017-09-23] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [5195776 2016-07-16] (Realtek Semiconductor Corporation )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [117768 2016-01-19] (Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 aswMBR; C:\Users\Josh\AppData\Local\Temp\aswMBR.sys [62728 2017-09-23] () [File not signed] <==== ATTENTION
U3 aswVmm; C:\Users\Josh\AppData\Local\Temp\aswVmm.sys [224896 2017-09-23] () <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-23 20:16 - 2017-09-23 20:17 - 000017870 _____ C:\Users\Josh\Desktop\FRST.txt
2017-09-23 20:15 - 2017-09-23 20:15 - 000002081 _____ C:\Users\Josh\Desktop\aswMBR.txt
2017-09-23 20:15 - 2017-09-23 20:15 - 000000512 _____ C:\Users\Josh\Desktop\MBR.dat
2017-09-23 19:10 - 2017-09-23 19:11 - 005198336 _____ (AVAST Software) C:\Users\Josh\Desktop\aswMBR.exe
2017-09-23 18:50 - 2017-09-23 20:16 - 000000000 ____D C:\FRST
2017-09-23 18:50 - 2017-09-23 18:50 - 002399744 _____ (Farbar) C:\Users\Josh\Desktop\FRST64.exe
2017-09-15 15:26 - 2017-04-21 22:50 - 000030912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2017-09-15 15:25 - 2017-04-21 22:53 - 000029376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2017-09-15 15:25 - 2017-04-21 22:53 - 000018600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2017-09-15 15:25 - 2017-04-21 22:50 - 000018592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-09-14 18:51 - 2017-09-07 08:07 - 000315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-09-14 18:51 - 2017-09-07 07:32 - 001573792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-09-14 18:51 - 2017-09-07 07:32 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-09-14 18:51 - 2017-09-07 07:29 - 002048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-09-14 18:51 - 2017-09-07 07:24 - 000869848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2017-09-14 18:51 - 2017-09-07 07:24 - 000263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-09-14 18:51 - 2017-09-07 07:22 - 001504056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-09-14 18:51 - 2017-09-07 07:22 - 001431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-09-14 18:51 - 2017-09-07 07:21 - 005722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-09-14 18:51 - 2017-09-07 07:21 - 002265368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-09-14 18:51 - 2017-09-07 07:21 - 000975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-09-14 18:51 - 2017-09-07 07:21 - 000861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-09-14 18:51 - 2017-09-07 07:21 - 000780640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-09-14 18:51 - 2017-09-07 07:21 - 000116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2017-09-14 18:51 - 2017-09-07 07:20 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-09-14 18:51 - 2017-09-07 07:20 - 000577976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-09-14 18:51 - 2017-09-07 07:20 - 000339896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-09-14 18:51 - 2017-09-07 07:20 - 000267104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-09-14 18:51 - 2017-09-07 07:20 - 000139104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-09-14 18:51 - 2017-09-07 07:20 - 000037200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-09-14 18:51 - 2017-09-07 07:19 - 002168288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-09-14 18:51 - 2017-09-07 07:19 - 000846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2017-09-14 18:51 - 2017-09-07 07:19 - 000606560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2017-09-14 18:51 - 2017-09-07 07:19 - 000111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2017-09-14 18:51 - 2017-09-07 07:17 - 006665952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-14 18:51 - 2017-09-07 07:17 - 004023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-09-14 18:51 - 2017-09-07 07:17 - 001845512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-09-14 18:51 - 2017-09-07 07:17 - 001557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-09-14 18:51 - 2017-09-07 07:17 - 001360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-09-14 18:51 - 2017-09-07 07:17 - 001277856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-09-14 18:51 - 2017-09-07 07:17 - 000981888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-09-14 18:51 - 2017-09-07 07:16 - 020967840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-09-14 18:51 - 2017-09-07 07:16 - 000962768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-09-14 18:51 - 2017-09-07 07:13 - 001412640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-09-14 18:51 - 2017-09-07 07:13 - 000546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-09-14 18:51 - 2017-09-07 07:12 - 000306800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2017-09-14 18:51 - 2017-09-07 07:07 - 005686784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-09-14 18:51 - 2017-09-07 07:01 - 001631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-09-14 18:51 - 2017-09-07 07:01 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-09-14 18:51 - 2017-09-07 07:00 - 000037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-09-14 18:51 - 2017-09-07 06:59 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-09-14 18:51 - 2017-09-07 06:58 - 000554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-09-14 18:51 - 2017-09-07 06:58 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2017-09-14 18:51 - 2017-09-07 06:58 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IconCodecService.dll
2017-09-14 18:51 - 2017-09-07 06:57 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\socialapis.dll
2017-09-14 18:51 - 2017-09-07 06:57 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-09-14 18:51 - 2017-09-07 06:57 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2017-09-14 18:51 - 2017-09-07 06:57 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2017-09-14 18:51 - 2017-09-07 06:57 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2017-09-14 18:51 - 2017-09-07 06:56 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-09-14 18:51 - 2017-09-07 06:56 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2017-09-14 18:51 - 2017-09-07 06:55 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2017-09-14 18:51 - 2017-09-07 06:55 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-09-14 18:51 - 2017-09-07 06:55 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2017-09-14 18:51 - 2017-09-07 06:54 - 000857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-09-14 18:51 - 2017-09-07 06:54 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-09-14 18:51 - 2017-09-07 06:54 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2017-09-14 18:51 - 2017-09-07 06:54 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-09-14 18:51 - 2017-09-07 06:54 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2017-09-14 18:51 - 2017-09-07 06:54 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2017-09-14 18:51 - 2017-09-07 06:54 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2017-09-14 18:51 - 2017-09-07 06:54 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-09-14 18:51 - 2017-09-07 06:54 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-09-14 18:51 - 2017-09-07 06:53 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll
2017-09-14 18:51 - 2017-09-07 06:53 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-09-14 18:51 - 2017-09-07 06:53 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2017-09-14 18:51 - 2017-09-07 06:53 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-09-14 18:51 - 2017-09-07 06:53 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-09-14 18:51 - 2017-09-07 06:53 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2017-09-14 18:51 - 2017-09-07 06:53 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-09-14 18:51 - 2017-09-07 06:53 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-09-14 18:51 - 2017-09-07 06:53 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-09-14 18:51 - 2017-09-07 06:52 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-09-14 18:51 - 2017-09-07 06:52 - 000557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-09-14 18:51 - 2017-09-07 06:52 - 000265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2017-09-14 18:51 - 2017-09-07 06:52 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2017-09-14 18:51 - 2017-09-07 06:52 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 001243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-09-14 18:51 - 2017-09-07 06:51 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-09-14 18:51 - 2017-09-07 06:51 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-09-14 18:51 - 2017-09-07 06:50 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPTpm12.dll
2017-09-14 18:51 - 2017-09-07 06:50 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-09-14 18:51 - 2017-09-07 06:50 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2017-09-14 18:51 - 2017-09-07 06:50 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2017-09-14 18:51 - 2017-09-07 06:50 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-09-14 18:51 - 2017-09-07 06:50 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2017-09-14 18:51 - 2017-09-07 06:50 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2017-09-14 18:51 - 2017-09-07 06:50 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2017-09-14 18:51 - 2017-09-07 06:50 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2017-09-14 18:51 - 2017-09-07 06:50 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-09-14 18:51 - 2017-09-07 06:49 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2017-09-14 18:51 - 2017-09-07 06:49 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2017-09-14 18:51 - 2017-09-07 06:49 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-09-14 18:51 - 2017-09-07 06:49 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2017-09-14 18:51 - 2017-09-07 06:49 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-09-14 18:51 - 2017-09-07 06:49 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2017-09-14 18:51 - 2017-09-07 06:48 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-09-14 18:51 - 2017-09-07 06:48 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2017-09-14 18:51 - 2017-09-07 06:48 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-09-14 18:51 - 2017-09-07 06:48 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2017-09-14 18:51 - 2017-09-07 06:48 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-09-14 18:51 - 2017-09-07 06:48 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-09-14 18:51 - 2017-09-07 06:48 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-09-14 18:51 - 2017-09-07 06:48 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-09-14 18:51 - 2017-09-07 06:48 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-09-14 18:51 - 2017-09-07 06:47 - 001456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-09-14 18:51 - 2017-09-07 06:47 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2017-09-14 18:51 - 2017-09-07 06:47 - 000846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2017-09-14 18:51 - 2017-09-07 06:47 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2017-09-14 18:51 - 2017-09-07 06:47 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sbe.dll
2017-09-14 18:51 - 2017-09-07 06:47 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2017-09-14 18:51 - 2017-09-07 06:47 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-09-14 18:51 - 2017-09-07 06:47 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2017-09-14 18:51 - 2017-09-07 06:46 - 007626240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-09-14 18:51 - 2017-09-07 06:45 - 013875712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-09-14 18:51 - 2017-09-07 06:45 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2017-09-14 18:51 - 2017-09-07 06:44 - 004615168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-09-14 18:51 - 2017-09-07 06:44 - 001534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-09-14 18:51 - 2017-09-07 06:44 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-09-14 18:51 - 2017-09-07 06:44 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-09-14 18:51 - 2017-09-07 06:44 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2017-09-14 18:51 - 2017-09-07 06:43 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-09-14 18:51 - 2017-09-07 06:42 - 001077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2017-09-14 18:51 - 2017-09-07 06:42 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2017-09-14 18:51 - 2017-09-07 06:42 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2017-09-14 18:51 - 2017-09-07 06:41 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-09-14 18:51 - 2017-09-07 06:40 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-09-14 18:51 - 2017-09-07 06:40 - 003198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-09-14 18:51 - 2017-09-07 06:40 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2017-09-14 18:51 - 2017-09-07 06:40 - 000746496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2017-09-14 18:51 - 2017-09-07 06:40 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-09-14 18:51 - 2017-09-07 06:40 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-09-14 18:51 - 2017-09-07 06:39 - 006109696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-09-14 18:51 - 2017-09-07 06:39 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2017-09-14 18:51 - 2017-09-07 06:38 - 001255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-09-14 18:51 - 2017-09-07 06:38 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-09-14 18:51 - 2017-09-07 06:38 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2017-09-14 18:51 - 2017-09-07 06:37 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2017-09-14 18:51 - 2017-09-07 06:37 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-09-14 18:51 - 2017-09-07 06:36 - 003520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2017-09-14 18:51 - 2017-09-07 06:36 - 002641920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-09-14 18:51 - 2017-09-07 06:36 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-09-14 18:51 - 2017-09-07 06:36 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2017-09-14 18:51 - 2017-09-07 06:35 - 007470080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-09-14 18:51 - 2017-09-07 06:35 - 000641024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-09-14 18:51 - 2017-09-07 06:35 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2017-09-14 18:51 - 2017-09-07 06:35 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2017-09-14 18:51 - 2017-09-07 06:34 - 003733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-09-14 18:51 - 2017-09-07 06:34 - 000709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2017-09-14 18:51 - 2017-09-07 06:34 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-09-14 18:51 - 2017-09-07 06:34 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2017-09-14 18:51 - 2017-09-07 06:33 - 002682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2017-09-14 18:51 - 2017-09-07 06:33 - 001656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2017-09-14 18:51 - 2017-09-07 06:33 - 001599488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-09-14 18:51 - 2017-09-07 06:33 - 001135616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-09-14 18:51 - 2017-09-07 06:33 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-09-14 18:51 - 2017-09-07 06:33 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-09-14 18:51 - 2017-09-07 06:33 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-09-14 18:51 - 2017-09-07 06:32 - 002482688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-09-14 18:51 - 2017-09-07 06:32 - 001993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-09-14 18:51 - 2017-09-07 06:32 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2017-09-14 18:51 - 2017-09-07 06:32 - 001170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-09-14 18:51 - 2017-09-07 06:32 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-09-14 18:51 - 2017-09-07 06:32 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-09-14 18:51 - 2017-09-07 06:32 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-09-14 18:51 - 2017-09-07 06:31 - 001988608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-09-14 18:51 - 2017-09-07 06:31 - 001886720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-09-14 18:51 - 2017-09-07 06:31 - 001004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2017-09-14 18:51 - 2017-09-07 06:31 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-09-14 18:51 - 2017-09-07 06:31 - 000621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-09-14 18:51 - 2017-09-07 06:31 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2017-09-14 18:51 - 2017-09-07 06:31 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-09-14 18:51 - 2017-09-07 06:31 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2017-09-14 18:51 - 2017-09-07 06:30 - 002747904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-09-14 18:51 - 2017-09-07 06:30 - 002740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-09-14 18:51 - 2017-09-07 06:30 - 002648576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-09-14 18:51 - 2017-09-07 06:30 - 001556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-09-14 18:51 - 2017-09-07 06:30 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-09-14 18:51 - 2017-09-07 06:30 - 001170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-09-14 18:51 - 2017-09-07 06:30 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2017-09-14 18:51 - 2017-09-07 06:30 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-09-14 18:51 - 2017-09-07 06:29 - 002997760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-09-14 18:51 - 2017-09-07 06:29 - 001576448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2017-09-14 18:51 - 2017-09-07 06:29 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-09-14 18:51 - 2017-09-07 06:29 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-09-14 18:51 - 2017-09-07 06:28 - 003106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-09-14 18:51 - 2017-09-07 06:28 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2017-09-14 18:51 - 2017-09-07 06:28 - 000449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-09-14 18:51 - 2017-09-07 06:22 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-09-14 18:51 - 2017-09-07 06:19 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-09-14 18:51 - 2017-09-07 06:17 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-09-14 18:51 - 2017-09-07 06:16 - 001507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-09-14 18:51 - 2017-09-07 06:15 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-09-14 18:51 - 2017-09-07 06:14 - 000561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-09-14 18:51 - 2017-09-07 06:14 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-09-14 18:51 - 2017-09-07 06:13 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2017-09-14 18:51 - 2017-09-07 06:13 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-09-14 18:51 - 2017-09-07 06:12 - 000963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-09-14 18:51 - 2017-09-07 06:07 - 000483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-09-14 18:51 - 2017-09-07 06:01 - 004596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-09-14 18:51 - 2017-09-07 06:01 - 003401216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-09-14 18:51 - 2017-09-07 05:58 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-09-14 18:51 - 2017-09-07 05:56 - 002539008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-09-14 18:51 - 2017-09-07 05:55 - 002424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-09-14 18:51 - 2017-09-07 05:54 - 000903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-09-14 18:51 - 2017-08-22 06:08 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-09-14 18:51 - 2017-08-22 05:57 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-09-14 18:51 - 2017-08-22 05:55 - 002333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2017-09-14 18:51 - 2017-08-22 05:49 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2017-09-14 18:51 - 2017-08-08 07:03 - 000218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-09-14 18:51 - 2017-08-08 07:03 - 000102240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2017-09-14 18:51 - 2017-08-08 06:56 - 000054240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-09-14 18:51 - 2017-08-08 06:53 - 000715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-09-14 18:51 - 2017-08-08 06:53 - 000557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-09-14 18:51 - 2017-08-08 06:25 - 000255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2017-09-14 18:51 - 2017-08-08 06:21 - 000340832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-09-14 18:51 - 2017-08-08 06:16 - 000294952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-09-14 18:51 - 2017-08-08 06:16 - 000086232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2017-09-14 18:51 - 2017-08-08 05:58 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-09-14 18:51 - 2017-08-08 05:56 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2017-09-14 18:51 - 2017-08-08 05:56 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2017-09-14 18:51 - 2017-08-08 05:54 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-09-14 18:51 - 2017-08-08 05:53 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-09-14 18:51 - 2017-08-08 05:53 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-09-14 18:51 - 2017-08-08 05:53 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2017-09-14 18:51 - 2017-08-08 05:50 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-09-14 18:51 - 2017-08-08 05:50 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-09-14 18:51 - 2017-08-08 05:50 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-09-14 18:51 - 2017-08-08 05:49 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2017-09-14 18:51 - 2017-08-08 05:48 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2017-09-14 18:51 - 2017-08-08 05:47 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-09-14 18:51 - 2017-08-08 05:41 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-09-14 18:51 - 2017-03-04 07:53 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2017-09-14 18:51 - 2017-03-04 07:24 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-09-14 18:51 - 2017-03-04 07:17 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2017-09-14 18:51 - 2017-03-04 07:13 - 006474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-09-14 18:51 - 2017-03-04 07:05 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2017-09-14 18:51 - 2017-03-04 07:01 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-09-14 18:51 - 2016-12-21 05:43 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-09-14 18:51 - 2016-09-15 17:40 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-09-14 18:51 - 2016-09-15 17:24 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-09-14 18:50 - 2017-09-07 07:32 - 001706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-09-14 18:50 - 2017-09-07 07:10 - 000603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-09-14 18:50 - 2017-09-07 07:03 - 007780704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-09-14 18:50 - 2017-09-07 07:03 - 002213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-09-14 18:50 - 2017-09-07 07:03 - 000998920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-09-14 18:50 - 2017-09-07 07:01 - 002681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-14 18:50 - 2017-09-07 07:01 - 002049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-09-14 18:50 - 2017-09-07 06:57 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-09-14 18:50 - 2017-09-07 06:56 - 001069720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-09-14 18:50 - 2017-09-07 06:56 - 000328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-09-14 18:50 - 2017-09-07 06:54 - 007220696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-09-14 18:50 - 2017-09-07 06:54 - 002761248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-09-14 18:50 - 2017-09-07 06:54 - 002188128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-09-14 18:50 - 2017-09-07 06:54 - 001860288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-09-14 18:50 - 2017-09-07 06:54 - 001739072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-09-14 18:50 - 2017-09-07 06:54 - 001157008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-09-14 18:50 - 2017-09-07 06:53 - 000097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2017-09-14 18:50 - 2017-09-07 06:52 - 000858464 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-09-14 18:50 - 2017-09-07 06:52 - 000148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2017-09-14 18:50 - 2017-09-07 06:52 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-09-14 18:50 - 2017-09-07 06:52 - 000044464 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-09-14 18:50 - 2017-09-07 06:51 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-09-14 18:50 - 2017-09-07 06:51 - 000092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-09-14 18:50 - 2017-09-07 06:50 - 022220864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-09-14 18:50 - 2017-09-07 06:50 - 008168000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-14 18:50 - 2017-09-07 06:50 - 004260064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-09-14 18:50 - 2017-09-07 06:50 - 001983408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-09-14 18:50 - 2017-09-07 06:50 - 001702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-09-14 18:50 - 2017-09-07 06:50 - 001072248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-09-14 18:50 - 2017-09-07 06:50 - 000244824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-09-14 18:50 - 2017-09-07 06:49 - 001277824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-09-14 18:50 - 2017-09-07 06:49 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-09-14 18:50 - 2017-09-07 06:49 - 000241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-09-14 18:50 - 2017-09-07 06:47 - 000661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-09-14 18:50 - 2017-09-07 06:45 - 002532704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-09-14 18:50 - 2017-09-07 06:45 - 000387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-09-14 18:50 - 2017-09-07 06:43 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-09-14 18:50 - 2017-09-07 06:41 - 019413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-09-14 18:50 - 2017-09-07 06:39 - 018363904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-09-14 18:50 - 2017-09-07 06:37 - 012204544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-09-14 18:50 - 2017-09-07 06:34 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-09-14 18:50 - 2017-09-07 06:31 - 003663872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-09-14 18:50 - 2017-09-07 06:31 - 002028032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-09-14 18:50 - 2017-09-07 06:31 - 001509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-09-14 18:50 - 2017-09-07 06:24 - 001631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-14 18:50 - 2017-09-07 06:23 - 022569984 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-09-14 18:50 - 2017-09-07 06:23 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-09-14 18:50 - 2017-09-07 06:22 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-09-14 18:50 - 2017-09-07 06:22 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-09-14 18:50 - 2017-09-07 06:21 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-09-14 18:50 - 2017-09-07 06:21 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-09-14 18:50 - 2017-09-07 06:21 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-09-14 18:50 - 2017-09-07 06:21 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-09-14 18:50 - 2017-09-07 06:21 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-09-14 18:50 - 2017-09-07 06:21 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-09-14 18:50 - 2017-09-07 06:20 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-09-14 18:50 - 2017-09-07 06:20 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-09-14 18:50 - 2017-09-07 06:20 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-09-14 18:50 - 2017-09-07 06:19 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2017-09-14 18:50 - 2017-09-07 06:19 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-09-14 18:50 - 2017-09-07 06:18 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2017-09-14 18:50 - 2017-09-07 06:18 - 000418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-09-14 18:50 - 2017-09-07 06:18 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-09-14 18:50 - 2017-09-07 06:18 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-09-14 18:50 - 2017-09-07 06:18 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-09-14 18:50 - 2017-09-07 06:17 - 000505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-09-14 18:50 - 2017-09-07 06:17 - 000418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-09-14 18:50 - 2017-09-07 06:17 - 000360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-09-14 18:50 - 2017-09-07 06:17 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-09-14 18:50 - 2017-09-07 06:17 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-09-14 18:50 - 2017-09-07 06:17 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-09-14 18:50 - 2017-09-07 06:17 - 000139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-09-14 18:50 - 2017-09-07 06:17 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-14 18:50 - 2017-09-07 06:16 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-09-14 18:50 - 2017-09-07 06:16 - 000748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-09-14 18:50 - 2017-09-07 06:16 - 000691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-09-14 18:50 - 2017-09-07 06:16 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-09-14 18:50 - 2017-09-07 06:16 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-09-14 18:50 - 2017-09-07 06:16 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\socialapis.dll
2017-09-14 18:50 - 2017-09-07 06:16 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-09-14 18:50 - 2017-09-07 06:15 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-09-14 18:50 - 2017-09-07 06:15 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-09-14 18:50 - 2017-09-07 06:15 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-09-14 18:50 - 2017-09-07 06:15 - 000389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-09-14 18:50 - 2017-09-07 06:15 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-09-14 18:50 - 2017-09-07 06:15 - 000260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-09-14 18:50 - 2017-09-07 06:15 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-09-14 18:50 - 2017-09-07 06:15 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-09-14 18:50 - 2017-09-07 06:14 - 006288384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-09-14 18:50 - 2017-09-07 06:14 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-09-14 18:50 - 2017-09-07 06:14 - 000748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-09-14 18:50 - 2017-09-07 06:14 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-09-14 18:50 - 2017-09-07 06:14 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-09-14 18:50 - 2017-09-07 06:13 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-09-14 18:50 - 2017-09-07 06:13 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-09-14 18:50 - 2017-09-07 06:13 - 000437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-09-14 18:50 - 2017-09-07 06:13 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-09-14 18:50 - 2017-09-07 06:13 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-09-14 18:50 - 2017-09-07 06:12 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-09-14 18:50 - 2017-09-07 06:12 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2017-09-14 18:50 - 2017-09-07 06:11 - 000634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-09-14 18:50 - 2017-09-07 06:11 - 000583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-09-14 18:50 - 2017-09-07 06:11 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-09-14 18:50 - 2017-09-07 06:10 - 017200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-14 18:50 - 2017-09-07 06:09 - 000945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-14 18:50 - 2017-09-07 06:09 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-14 18:50 - 2017-09-07 06:08 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-09-14 18:50 - 2017-09-07 06:08 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-09-14 18:50 - 2017-09-07 06:07 - 007655424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-09-14 18:50 - 2017-09-07 06:07 - 003778048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-09-14 18:50 - 2017-09-07 06:07 - 002104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-09-14 18:50 - 2017-09-07 06:07 - 001589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-09-14 18:50 - 2017-09-07 06:07 - 001403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-09-14 18:50 - 2017-09-07 06:07 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2017-09-14 18:50 - 2017-09-07 06:07 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2017-09-14 18:50 - 2017-09-07 06:05 - 001105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-09-14 18:50 - 2017-09-07 06:05 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-09-14 18:50 - 2017-09-07 06:05 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-09-14 18:50 - 2017-09-07 06:04 - 001908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-14 18:50 - 2017-09-07 06:04 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2017-09-14 18:50 - 2017-09-07 06:03 - 001837056 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-09-14 18:50 - 2017-09-07 06:03 - 001078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-09-14 18:50 - 2017-09-07 06:03 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-09-14 18:50 - 2017-09-07 06:02 - 013107712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-09-14 18:50 - 2017-09-07 06:01 - 023675904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-09-14 18:50 - 2017-09-07 06:01 - 002390016 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-09-14 18:50 - 2017-09-07 06:01 - 001217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-09-14 18:50 - 2017-09-07 06:01 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-09-14 18:50 - 2017-09-07 06:01 - 000411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2017-09-14 18:50 - 2017-09-07 06:01 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-09-14 18:50 - 2017-09-07 06:00 - 008114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-09-14 18:50 - 2017-09-07 06:00 - 008077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-09-14 18:50 - 2017-09-07 06:00 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-09-14 18:50 - 2017-09-07 06:00 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-09-14 18:50 - 2017-09-07 06:00 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-09-14 18:50 - 2017-09-07 06:00 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2017-09-14 18:50 - 2017-09-07 05:59 - 004474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-14 18:50 - 2017-09-07 05:59 - 001281536 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-09-14 18:50 - 2017-09-07 05:59 - 001040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-09-14 18:50 - 2017-09-07 05:59 - 000760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-09-14 18:50 - 2017-09-07 05:59 - 000650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-09-14 18:50 - 2017-09-07 05:59 - 000611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-09-14 18:50 - 2017-09-07 05:58 - 002097152 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-09-14 18:50 - 2017-09-07 05:58 - 001700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-09-14 18:50 - 2017-09-07 05:58 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-09-14 18:50 - 2017-09-07 05:58 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2017-09-14 18:50 - 2017-09-07 05:57 - 005611520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-09-14 18:50 - 2017-09-07 05:57 - 003134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-09-14 18:50 - 2017-09-07 05:57 - 002895360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-09-14 18:50 - 2017-09-07 05:57 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-09-14 18:50 - 2017-09-07 05:57 - 001275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-09-14 18:50 - 2017-09-07 05:57 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-09-14 18:50 - 2017-09-07 05:56 - 004149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-09-14 18:50 - 2017-09-07 05:56 - 002695680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-09-14 18:50 - 2017-09-07 05:56 - 002286592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-09-14 18:50 - 2017-09-07 05:56 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-09-14 18:50 - 2017-09-07 05:56 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-09-14 18:50 - 2017-09-07 05:56 - 000846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-09-14 18:50 - 2017-09-07 05:56 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-09-14 18:50 - 2017-09-07 05:55 - 001984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-09-14 18:50 - 2017-09-07 05:55 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-09-14 18:50 - 2017-09-07 05:55 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-09-14 18:50 - 2017-09-07 05:55 - 001512448 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-09-14 18:50 - 2017-09-07 05:55 - 001369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-09-14 18:50 - 2017-09-07 05:55 - 001131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-09-14 18:50 - 2017-09-07 05:55 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-09-14 18:50 - 2017-09-07 05:54 - 004743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-09-14 18:50 - 2017-09-07 05:54 - 000834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-09-14 18:50 - 2017-09-07 05:53 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-09-14 18:50 - 2017-09-07 05:52 - 003299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-09-14 18:50 - 2017-09-07 05:52 - 001121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-09-14 18:50 - 2017-09-07 05:52 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-09-14 18:50 - 2017-09-07 05:52 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-09-14 18:50 - 2017-09-07 05:52 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-14 18:50 - 2017-08-22 06:46 - 000360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-09-14 18:50 - 2017-08-22 06:06 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-09-14 18:50 - 2017-08-22 06:05 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2017-09-14 18:50 - 2017-08-22 06:04 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-09-14 18:50 - 2017-08-22 06:02 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-09-14 18:50 - 2017-08-22 05:53 - 013441536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-09-14 18:50 - 2017-08-22 05:50 - 012349440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-09-14 18:50 - 2017-08-22 05:43 - 002852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-09-14 18:50 - 2017-08-22 05:43 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-09-14 18:50 - 2017-08-08 07:06 - 000133984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-09-14 18:50 - 2017-08-08 07:01 - 000376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-09-14 18:50 - 2017-08-08 06:59 - 000357984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2017-09-14 18:50 - 2017-08-08 06:59 - 000118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-09-14 18:50 - 2017-08-08 06:53 - 000026976 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-09-14 18:50 - 2017-08-08 06:45 - 001102176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-09-14 18:50 - 2017-08-08 06:45 - 000453544 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-09-14 18:50 - 2017-08-08 06:23 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-09-14 18:50 - 2017-08-08 06:18 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-09-14 18:50 - 2017-08-08 06:18 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-09-14 18:50 - 2017-08-08 06:17 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-09-14 18:50 - 2017-08-08 06:15 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-09-14 18:50 - 2017-08-08 06:14 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-09-14 18:50 - 2017-08-08 06:14 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-09-14 18:50 - 2017-08-08 06:12 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-09-14 18:50 - 2017-08-08 06:10 - 000945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-09-14 18:50 - 2017-08-08 05:55 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-09-14 18:50 - 2017-08-08 05:54 - 001228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-09-14 18:50 - 2017-03-04 08:03 - 000160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-09-14 18:50 - 2017-03-04 07:39 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-09-14 18:50 - 2017-03-04 07:28 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-09-14 18:50 - 2017-03-04 07:28 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-09-14 18:50 - 2017-03-04 07:27 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-09-14 18:50 - 2017-03-04 07:27 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-09-14 18:50 - 2017-03-04 07:13 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2017-09-14 18:50 - 2017-03-04 07:08 - 001266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-09-14 18:50 - 2016-11-02 11:43 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-09-14 18:50 - 2016-09-15 17:34 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2017-09-14 18:50 - 2016-09-15 17:30 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2017-09-14 18:49 - 2017-09-07 07:20 - 000367208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-09-14 18:49 - 2017-09-07 07:16 - 000379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-09-14 18:49 - 2017-09-07 07:04 - 000894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-09-14 18:49 - 2017-09-07 07:03 - 001887408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-09-14 18:49 - 2017-09-07 07:02 - 032693432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2017-09-14 18:49 - 2017-09-07 07:00 - 000764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-09-14 18:49 - 2017-09-07 06:58 - 000168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2017-09-14 18:49 - 2017-09-07 06:57 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-09-14 18:49 - 2017-09-07 06:54 - 000658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-09-14 18:49 - 2017-09-07 06:54 - 000402784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-09-14 18:49 - 2017-09-07 06:54 - 000146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-09-14 18:49 - 2017-09-07 06:53 - 002446704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-09-14 18:49 - 2017-09-07 06:53 - 000684896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-09-14 18:49 - 2017-09-07 06:53 - 000624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-09-14 18:49 - 2017-09-07 06:53 - 000431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-09-14 18:49 - 2017-09-07 06:53 - 000383776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-09-14 18:49 - 2017-09-07 06:53 - 000296288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-09-14 18:49 - 2017-09-07 06:53 - 000144736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-09-14 18:49 - 2017-09-07 06:52 - 002915704 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-09-14 18:49 - 2017-09-07 06:52 - 001267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-09-14 18:49 - 2017-09-07 06:52 - 001100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-09-14 18:49 - 2017-09-07 06:52 - 000989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-09-14 18:49 - 2017-09-07 06:50 - 001694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-09-14 18:49 - 2017-09-07 06:50 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-09-14 18:49 - 2017-09-07 06:49 - 001600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-09-14 18:49 - 2017-09-07 06:46 - 001566552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-09-14 18:49 - 2017-09-07 06:46 - 000628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-09-14 18:49 - 2017-09-07 06:45 - 000372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-09-14 18:49 - 2017-09-07 06:30 - 007218176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-14 18:49 - 2017-09-07 06:22 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-14 18:49 - 2017-09-07 06:22 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-09-14 18:49 - 2017-09-07 06:22 - 000045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-09-14 18:49 - 2017-09-07 06:22 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\IconCodecService.dll
2017-09-14 18:49 - 2017-09-07 06:21 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-09-14 18:49 - 2017-09-07 06:21 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2017-09-14 18:49 - 2017-09-07 06:20 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2017-09-14 18:49 - 2017-09-07 06:20 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2017-09-14 18:49 - 2017-09-07 06:20 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-09-14 18:49 - 2017-09-07 06:20 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-09-14 18:49 - 2017-09-07 06:19 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-09-14 18:49 - 2017-09-07 06:19 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-09-14 18:49 - 2017-09-07 06:19 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-09-14 18:49 - 2017-09-07 06:19 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-09-14 18:49 - 2017-09-07 06:18 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-09-14 18:49 - 2017-09-07 06:18 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-09-14 18:49 - 2017-09-07 06:18 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-09-14 18:49 - 2017-09-07 06:18 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-09-14 18:49 - 2017-09-07 06:17 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-09-14 18:49 - 2017-09-07 06:17 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2017-09-14 18:49 - 2017-09-07 06:17 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-09-14 18:49 - 2017-09-07 06:17 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-09-14 18:49 - 2017-09-07 06:16 - 000781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-09-14 18:49 - 2017-09-07 06:16 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-09-14 18:49 - 2017-09-07 06:16 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-09-14 18:49 - 2017-09-07 06:16 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-09-14 18:49 - 2017-09-07 06:16 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-09-14 18:49 - 2017-09-07 06:16 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-09-14 18:49 - 2017-09-07 06:15 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-09-14 18:49 - 2017-09-07 06:15 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2017-09-14 18:49 - 2017-09-07 06:15 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-09-14 18:49 - 2017-09-07 06:15 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-09-14 18:49 - 2017-09-07 06:15 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-09-14 18:49 - 2017-09-07 06:15 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2017-09-14 18:49 - 2017-09-07 06:15 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2017-09-14 18:49 - 2017-09-07 06:15 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-09-14 18:49 - 2017-09-07 06:15 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2017-09-14 18:49 - 2017-09-07 06:14 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-09-14 18:49 - 2017-09-07 06:14 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-09-14 18:49 - 2017-09-07 06:14 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-09-14 18:49 - 2017-09-07 06:14 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-09-14 18:49 - 2017-09-07 06:14 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-09-14 18:49 - 2017-09-07 06:14 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-09-14 18:49 - 2017-09-07 06:14 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-09-14 18:49 - 2017-09-07 06:14 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-09-14 18:49 - 2017-09-07 06:13 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2017-09-14 18:49 - 2017-09-07 06:13 - 000480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-09-14 18:49 - 2017-09-07 06:12 - 001010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-09-14 18:49 - 2017-09-07 06:12 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-09-14 18:49 - 2017-09-07 06:12 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-09-14 18:49 - 2017-09-07 06:12 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-09-14 18:49 - 2017-09-07 06:11 - 000966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2017-09-14 18:49 - 2017-09-07 06:11 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-09-14 18:49 - 2017-09-07 06:11 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-09-14 18:49 - 2017-09-07 06:10 - 001037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-09-14 18:49 - 2017-09-07 06:08 - 009129984 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-09-14 18:49 - 2017-09-07 06:08 - 001639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-09-14 18:49 - 2017-09-07 06:08 - 000932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-09-14 18:49 - 2017-09-07 06:08 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2017-09-14 18:49 - 2017-09-07 06:05 - 005114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-09-14 18:49 - 2017-09-07 06:04 - 004749824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-09-14 18:49 - 2017-09-07 06:04 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-09-14 18:49 - 2017-09-07 06:04 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-09-14 18:49 - 2017-09-07 06:04 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2017-09-14 18:49 - 2017-09-07 06:03 - 000942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-09-14 18:49 - 2017-09-07 06:02 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-09-14 18:49 - 2017-09-07 06:02 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2017-09-14 18:49 - 2017-09-07 06:01 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-09-14 18:49 - 2017-09-07 06:00 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-09-14 18:49 - 2017-09-07 05:59 - 002510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-14 18:49 - 2017-09-07 05:59 - 002279424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-14 18:49 - 2017-09-07 05:59 - 001359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-09-14 18:49 - 2017-09-07 05:59 - 000821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2017-09-14 18:49 - 2017-09-07 05:59 - 000821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-09-14 18:49 - 2017-09-07 05:59 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-09-14 18:49 - 2017-09-07 05:59 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-09-14 18:49 - 2017-09-07 05:58 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-09-14 18:49 - 2017-09-07 05:58 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-09-14 18:49 - 2017-09-07 05:58 - 001692160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-14 18:49 - 2017-09-07 05:58 - 001656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-09-14 18:49 - 2017-09-07 05:58 - 000886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2017-09-14 18:49 - 2017-09-07 05:58 - 000376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2017-09-14 18:49 - 2017-09-07 05:57 - 002916864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-09-14 18:49 - 2017-09-07 05:57 - 001643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-09-14 18:49 - 2017-09-07 05:57 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-09-14 18:49 - 2017-09-07 05:57 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-09-14 18:49 - 2017-09-07 05:56 - 003202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-09-14 18:49 - 2017-09-07 05:56 - 000909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-09-14 18:49 - 2017-09-07 05:55 - 003616256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-09-14 18:49 - 2017-09-07 05:55 - 002820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-09-14 18:49 - 2017-09-07 05:55 - 002217472 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-09-14 18:49 - 2017-09-07 05:54 - 003542016 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2017-09-14 18:49 - 2017-09-07 05:54 - 001328640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-09-14 18:49 - 2017-09-07 05:54 - 000716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-09-14 18:49 - 2017-09-07 05:53 - 001726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-09-14 18:49 - 2017-08-22 06:43 - 000026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-09-14 18:49 - 2017-08-22 06:09 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-09-14 18:49 - 2017-08-22 05:57 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-09-14 18:49 - 2017-08-22 05:52 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2017-09-14 18:49 - 2017-08-22 05:47 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-09-14 18:49 - 2017-08-22 05:41 - 002319872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-09-14 18:49 - 2017-08-08 07:15 - 000245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-09-14 18:49 - 2017-08-08 07:09 - 000065648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-09-14 18:49 - 2017-08-08 07:03 - 002253664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-09-14 18:49 - 2017-08-08 06:55 - 000404320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-09-14 18:49 - 2017-08-08 06:52 - 000649568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-09-14 18:49 - 2017-08-08 06:52 - 000450400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-09-14 18:49 - 2017-08-08 06:52 - 000386408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-09-14 18:49 - 2017-08-08 06:52 - 000101776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2017-09-14 18:49 - 2017-08-08 06:52 - 000079712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-09-14 18:49 - 2017-08-08 06:20 - 000173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-09-14 18:49 - 2017-08-08 06:20 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-09-14 18:49 - 2017-08-08 06:20 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-09-14 18:49 - 2017-08-08 06:20 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2017-09-14 18:49 - 2017-08-08 06:18 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-09-14 18:49 - 2017-08-08 06:17 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-09-14 18:49 - 2017-08-08 06:16 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2017-09-14 18:49 - 2017-08-08 06:16 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2017-09-14 18:49 - 2017-08-08 06:15 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-09-14 18:49 - 2017-08-08 06:15 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-09-14 18:49 - 2017-08-08 06:13 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2017-09-14 18:49 - 2017-08-08 06:13 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2017-09-14 18:49 - 2017-08-08 06:04 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-09-14 18:49 - 2017-08-08 05:58 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-09-14 18:49 - 2017-08-08 05:51 - 001817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-09-14 18:49 - 2017-08-01 06:09 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2017-09-14 18:49 - 2017-03-04 08:09 - 000178520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-09-14 18:49 - 2017-03-04 08:07 - 000947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-09-14 18:49 - 2017-03-04 07:32 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-09-14 18:49 - 2017-03-04 07:29 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-09-14 18:49 - 2017-03-04 07:10 - 006664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-09-09 15:12 - 2017-09-09 15:12 - 010428303 _____ C:\Users\Josh\Downloads\dbgl081(1).zip
2017-09-09 15:10 - 2017-09-17 10:13 - 000000000 ____D C:\Users\Josh\Documents\dbgl
2017-09-09 15:07 - 2017-09-09 15:06 - 000193536 _____ () C:\Users\Josh\Documents\launch.exe
2017-09-09 15:07 - 2017-01-31 15:03 - 000963035 _____ C:\Users\Josh\Documents\dbgl.jar
2017-09-09 15:07 - 2017-01-31 15:03 - 000018332 _____ C:\Users\Josh\Documents\COPYING
2017-09-09 15:07 - 2017-01-31 15:03 - 000000556 _____ C:\Users\Josh\Documents\readme.txt
2017-09-09 15:07 - 2017-01-31 15:03 - 000000406 _____ C:\Users\Josh\Documents\dbgl.cmd
2017-09-09 15:07 - 2017-01-31 15:03 - 000000396 _____ C:\Users\Josh\Documents\dbglcons.cmd
2017-09-09 15:07 - 2017-01-31 15:03 - 000000080 _____ C:\Users\Josh\Documents\add.bat
2017-09-09 15:06 - 2017-09-09 15:08 - 000000000 ____D C:\Users\Josh\Documents\db
2017-09-09 15:06 - 2017-01-31 15:03 - 000000000 ____D C:\Users\Josh\Documents\xsl
2017-09-09 15:06 - 2017-01-31 15:03 - 000000000 ____D C:\Users\Josh\Documents\lib
2017-09-09 15:06 - 2017-01-31 15:03 - 000000000 ____D C:\Users\Josh\Documents\export
2017-09-09 15:06 - 2017-01-31 15:03 - 000000000 ____D C:\Users\Josh\Documents\dosroot
2017-09-09 15:06 - 2017-01-31 15:03 - 000000000 ____D C:\Users\Josh\Documents\DOSBox-0.74
2017-09-09 15:06 - 2017-01-31 15:03 - 000000000 ____D C:\Users\Josh\Documents\captures
2017-09-09 14:27 - 2017-09-09 14:38 - 1055025100 _____ C:\Users\Josh\Downloads\taoot_de_offline.dbgl.zip
2017-09-09 14:27 - 2017-09-09 14:27 - 000000000 ____D C:\Users\Josh\.swt
2017-09-09 14:26 - 2017-09-09 15:09 - 010427849 _____ C:\Users\Josh\Downloads\dbgl081.zip
2017-09-09 14:25 - 2017-09-09 14:25 - 000738880 _____ (Oracle Corporation) C:\Users\Josh\Downloads\JavaSetup8u144.exe
2017-09-07 18:34 - 2017-09-07 19:34 - 000003446 _____ C:\WINDOWS\System32\Tasks\McAfee Remediation (Prepare)
2017-08-29 18:32 - 2017-08-04 06:31 - 001564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-08-29 18:32 - 2017-08-04 06:31 - 001214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-08-29 18:32 - 2017-08-04 06:31 - 000629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-08-29 18:32 - 2017-08-04 06:31 - 000544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-08-29 18:32 - 2017-08-04 06:31 - 000335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-08-29 18:32 - 2017-08-04 06:31 - 000334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-08-29 18:32 - 2017-08-04 06:31 - 000233824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-08-29 18:32 - 2017-08-04 06:31 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-08-29 18:32 - 2017-08-04 06:31 - 000096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-08-29 18:32 - 2017-08-04 06:31 - 000034656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-08-29 18:32 - 2017-08-04 05:26 - 000192864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-23 19:08 - 2016-11-18 20:20 - 000000000 ____D C:\Users\Josh\AppData\LocalLow\Mozilla
2017-09-23 19:07 - 2015-08-19 02:15 - 000192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-09-23 18:59 - 2015-08-18 20:08 - 000000000 ____D C:\Program Files (x86)\Steam
2017-09-23 18:58 - 2016-09-26 17:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-23 18:57 - 2016-09-26 08:40 - 000000000 ____D C:\Users\Josh
2017-09-23 18:57 - 2016-09-26 08:35 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-09-23 18:57 - 2016-07-16 07:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-09-23 18:45 - 2016-09-26 08:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-09-23 18:30 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-09-23 18:01 - 2015-12-10 09:56 - 000000000 ____D C:\Users\Josh\AppData\Roaming\Raptr
2017-09-23 17:19 - 2016-07-16 12:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-23 17:19 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-23 15:34 - 2015-08-18 12:07 - 000000000 ____D C:\Users\Josh\Documents\Euro Truck Simulator 2
2017-09-20 18:15 - 2017-07-26 18:22 - 000003376 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4095220593-1037748550-1296689265-1006
2017-09-20 18:15 - 2015-08-18 12:05 - 000002364 _____ C:\Users\Josh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-20 18:15 - 2015-08-18 12:05 - 000000000 ___RD C:\Users\Josh\OneDrive
2017-09-19 18:22 - 2015-08-18 12:03 - 000000000 ____D C:\Users\Josh\AppData\Local\Publishers
2017-09-16 10:48 - 2015-08-19 02:14 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2017-09-15 15:46 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\rescache
2017-09-15 15:30 - 2016-07-16 12:36 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-15 15:21 - 2015-07-20 12:42 - 001620564 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-15 15:17 - 2015-07-20 13:36 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-09-15 15:15 - 2016-07-16 12:45 - 000000000 ____D C:\WINDOWS\INF
2017-09-15 15:14 - 2016-09-26 08:32 - 000427672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-14 23:44 - 2016-07-16 12:47 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-09-14 23:44 - 2016-07-16 12:47 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-09-14 23:44 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\SysWOW64\en-GB
2017-09-14 23:44 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-09-14 23:44 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\system32\migwiz
2017-09-14 23:44 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\system32\en-GB
2017-09-14 23:43 - 2016-07-16 12:47 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-09-14 23:43 - 2016-07-16 12:47 - 000000000 ___RD C:\Program Files\Windows Defender
2017-09-14 23:43 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-09-14 23:43 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\Provisioning
2017-09-14 23:43 - 2016-07-16 12:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-09-14 23:43 - 2016-07-16 12:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-09-14 23:43 - 2016-07-16 12:47 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-09-13 22:28 - 2016-07-16 12:42 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2017-09-13 22:26 - 2016-07-16 12:43 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2017-09-13 22:25 - 2016-07-16 12:42 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-09-12 20:25 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-09-12 20:25 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-09-12 18:37 - 2015-08-18 22:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-12 18:35 - 2015-08-18 22:14 - 138202976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-09 15:04 - 2016-11-26 19:06 - 000000000 ____D C:\Program Files (x86)\McAfee
2017-09-09 14:28 - 2016-01-18 22:34 - 000000000 ____D C:\ProgramData\Oracle
2017-09-09 14:27 - 2016-01-18 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-09-09 14:27 - 2016-01-18 22:34 - 000000000 ____D C:\Program Files (x86)\Java
2017-09-09 14:26 - 2016-01-18 22:34 - 000097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-09-07 19:34 - 2015-09-30 20:05 - 000000000 ____D C:\ProgramData\McAfee
2017-09-07 18:34 - 2016-11-26 19:06 - 000000000 ____D C:\Program Files\Common Files\AV
2017-09-05 20:01 - 2016-07-16 12:49 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-09-05 20:01 - 2016-07-16 12:49 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-09-03 22:19 - 2015-08-18 12:07 - 000000000 ____D C:\Users\Josh\Documents\Brighton Stuff
2017-09-01 17:03 - 2015-09-30 20:05 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-30 09:38 - 2016-11-18 19:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-08-30 09:38 - 2016-02-01 14:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-24 18:38 - 2015-08-18 12:54 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-24 18:38 - 2015-08-18 12:54 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk

==================== Files in the root of some directories =======

2016-09-26 08:34 - 2016-09-26 08:34 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-09-15 20:43

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-09-2017 02
Ran by Josh (23-09-2017 20:17:59)
Running from C:\Users\Josh\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-26 16:10:31)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-4095220593-1037748550-1296689265-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4095220593-1037748550-1296689265-503 - Limited - Disabled)
Guest (S-1-5-21-4095220593-1037748550-1296689265-501 - Limited - Disabled)
Josh (S-1-5-21-4095220593-1037748550-1296689265-1006 - Administrator - Enabled) => C:\Users\Josh

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
Ace Stream Media 3.1.2 (HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\...\AceStream) (Version: 3.1.2 - Ace Stream Media) <==== ATTENTION
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{3540ADD5-822B-47FB-B1C2-CD7B2C8E9FEC}) (Version: 4.0.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{C9C0FE2C-602E-49D7-8C42-5B9E8FF04798}) (Version: 4.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Call of Duty (HKLM-x32\...\Steam App 2620) (Version: - Infinity Ward)
Call of Duty 2 (HKLM-x32\...\Steam App 2630) (Version: - Infinity Ward)
Call of Duty: United Offensive (HKLM-x32\...\Steam App 2640) (Version: - Gray Matter Studios)
Catalyst Control Center Next Localization BR (HKLM\...\{118C2119-84B6-E32C-63E2-B56DBCF41CE5}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{3E245378-BF77-6946-C6F6-096DBE5EAB82}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{51F85784-6799-5CA3-97B2-2E5904FC3E58}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{45907537-804A-514F-5280-5F4F12A6DCBC}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{5A083A57-10D6-D4E5-292C-F274870E73A4}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{8E6F5592-ED7E-9C50-74AC-BF417B1FE291}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{962364E4-08BB-347D-32E7-2B789F37BF8A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{AD28960A-6190-C991-C964-308B86EAA2E2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{DF0D7C1C-72B6-9FFB-DF66-B3720237BB80}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{238F6F6F-2544-86CF-3AB6-2CDADAB58CF0}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{84C3F2C5-F7B2-2F08-CDF4-79EF7CC55D74}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{A0407E39-2AA4-60B3-885F-3C5347B6909E}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0989D0EA-AFF3-5F9A-3D25-20EE133E409B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0E8A3B17-D603-B1B6-C205-1685EBDD23E9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{EC688BD0-240D-AE40-55F3-234E54919AE6}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{1E7D3072-1D28-E33A-99DF-85D9F7ECD06E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{A8689A0F-5928-7300-B82B-C5E85131B7BA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{E27224E3-7913-DA1E-5B08-9BEEC8FEE3D1}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{76AAF56B-93D8-161D-809A-EC05F3B913DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{95A52FC1-C728-841D-1BFC-CC793B77B0A4}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{BA26B70C-3D8C-2D14-4122-211FB3E6F691}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{063CED74-F5F0-870E-DC9C-2D78FDEDA3EE}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{5FEACE78-C338-9AED-FF05-7DE7E273C774}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{A22CDEBA-6DB5-12CD-F6CE-6238C2D78363}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{13BB60AA-88F7-4B1F-2DEC-D81EEDE8B3AA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{A3795528-F572-6314-C4E3-EE9DAF0FBF02}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{C0BFC67D-E447-02C8-6046-C078DFE9EC97}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{37AA6227-FF2C-95AC-87C0-45DCC0BB87DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{4853A56D-7931-A08B-5BA7-8E2D61043DF9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{94C72EBE-2908-F0AC-62DA-D61951830F8F}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{5B987681-3652-492B-6A11-E02AC0FE5959}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{B28CF677-E2C8-12CA-52BB-19B6F066D36A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{EB328356-1DF0-1CCE-3607-6361DD329219}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{43F6D22B-E0E9-EE90-9B62-1C5FC5D15A55}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{86BFE5B4-1FCE-3C02-6373-92B1AE6431E8}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{87E6EC29-AEC5-28CB-F773-93EB6C1B8A2B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{0742432E-42D9-2240-4CA1-8595CCCBAA77}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{CA55697D-BD74-3ED8-6B21-D7EDAD3B7D02}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{D4490E0F-8E7B-1097-B56A-7643C75F1C28}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{CFC860C8-4F51-E08C-A74C-2E444ED06160}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{DAB44116-0266-C65B-B643-AC11217C3041}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{EAEAA839-44F4-22DF-D1CC-88C3B2A3D4B1}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{3AF70346-52C7-0334-606F-118D1C1CB7A2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9338D693-38B7-1ED4-9B42-BFA1D5600CCB}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{A3973655-E448-4A1B-477C-988A79D132D9}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{53AE8AC7-5213-67AF-0DC0-CED696B77643}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{6DC92550-D065-4B36-C4D3-D8D7A702A7A7}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{C971C145-258D-6650-7088-13DDB161327A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{B2A83706-3F14-1532-20CD-B4EE715A8945}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{DC9DFCBF-87DA-892C-6151-99CC9EF46E3E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{EBA09DAF-14B4-7BE7-676E-6E2FB21EDBDD}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{44ED2CDA-4197-E9E9-B328-26E1FB749116}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{9AA4DD93-94BF-22EA-C9D2-7084F304A31B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{C1EFF2A2-DF4A-F6D1-B99C-1ED194AE9E78}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{3450566C-4561-0EE8-B1AB-D5C79CCE8D2C}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{379D900B-A785-6DB0-012E-434356A365B3}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{46EB68BE-8AAC-8C2B-7284-8DEDE6B5CD2A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{366C4FB5-CF6E-258B-418D-E6D29549A278}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{7A6E431B-CF43-EC3E-FD7E-0A0AAB1B25FC}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{FCE8438C-3272-D63F-479F-670F082B294B}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{25D1751E-7CA2-5F6D-0125-0A16E47AF9FE}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{89A1F076-19B8-A2B1-D5A3-E8247EFAF157}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{B10089DE-934F-6E0F-683A-B788F89348DF}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Desktop Toys Window (HKLM-x32\...\Desktop Toys Window) (Version: - )
DILBERT's Desktop Games (HKLM-x32\...\DILBERT's Desktop Games) (Version: - )
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
Europa Universalis IV Demo (HKLM-x32\...\Steam App 247890) (Version: - Paradox Development Studio)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.99 - Google Inc.) Hidden
Grand Theft Auto III (HKLM-x32\...\Steam App 12100) (Version: - Rockstar Games)
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North)
Grand Theft Auto: San Andreas (HKLM\...\Steam App 12120) (Version: - Rockstar Games)
Grand Theft Auto: Vice City (HKLM-x32\...\Steam App 12110) (Version: - Rockstar Games)
Hearts of Iron III (HKLM-x32\...\Steam App 25890) (Version: - Paradox Development Studio)
Hitman: Blood Money (HKLM-x32\...\Steam App 6860) (Version: - IO Interactive)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.19.108.1 - Intel Security)
iTunes (HKLM\...\{88509E20-3936-4D88-A1C0-B274C7BB5151}) (Version: 12.3.0.44 - Apple Inc.)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
LibreOffice 5.1.4.2 (HKLM-x32\...\{D5D4AC5C-C757-4EB2-857C-B021DB22482C}) (Version: 5.1.4.2 - The Document Foundation)
Madden NFL 08 (HKLM-x32\...\{A3BC1DBD-64D6-4EBC-0091-24C811662D40}) (Version: - Electronic Arts)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 15.0.4953.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{EB3DF0F0-0525-4C5A-A2F8-DEC868A3075D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 55.0.3 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 55.0.3 (x86 en-GB)) (Version: 55.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 55.0.3.6445 - Mozilla)
MS Access 97 SP2 (HKLM-x32\...\MS Access 97 SP2) (Version: - )
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NASCAR '14 (HKLM-x32\...\Steam App 254130) (Version: - Eutechnyx)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4953.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4953.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.4953.1001 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Papers, Please (HKLM\...\Steam App 239030) (Version: - 3909)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Port of Call (HKLM-x32\...\Steam App 356520) (Version: - Underdog Games)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.0 - Power Software Ltd)
Private Internet Access Support Files (HKLM-x32\...\{7D72DAFF-DCB2-437B-BC22-4B2ABF21462B}) (Version: 1.0.0.0 - Private Internet Access)
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.9 - Rockstar Games)
RollerCoaster Tycoon Deluxe (HKLM-x32\...\GOGPACKRTC_is1) (Version: 2.1.0.18 - GOG.com)
Sid Meier's Civilization IV (HKLM-x32\...\Steam App 3900) (Version: - Firaxis Games)
Sid Meier's Pirates! (HKLM\...\Steam App 3920) (Version: - Firaxis Games)
SimCity 3000 Unlimited (HKLM-x32\...\SimCity 3000 Unlimited) (Version: - )
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version: - Obsidian Entertainment)
STAR WARS™ Knights of the Old Republic™ II: The Sith Lords™ (HKLM-x32\...\Steam App 208580) (Version: - Obsidian Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1204 - SUPERAntiSpyware.com)
Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.018 - MSI)
System Requirements Lab Detection (HKLM-x32\...\{AD941891-AC32-413C-98C3-AF24D4EE0354}) (Version: 6.1.6.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
The Last Express (HKLM-x32\...\GOGPACKTHELASTEXPRESS_is1) (Version: 2.0.0.9 - GOG.com)
The Political Machine 2016 (HKLM-x32\...\Steam App 404620) (Version: - Stardock Entertainment)
The Political Machine Demo (HKLM-x32\...\The Political Machine Demo) (Version: - )
TP-LINK TL-WN823N Driver (HKLM-x32\...\{CE194A8D-C8DF-47EB-AB04-5A54CDC1C5BD}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Trials 2: Second Edition (HKLM\...\Steam App 16600) (Version: - Redlynx)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
UpdateAssistant (HKLM-x32\...\{139493B2-F1BC-4F05-A974-B49297C1EB04}) (Version: 1.1.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17329 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Winki (HKLM-x32\...\{81CF5153-38CF-41e2-AC3C-3D477C987D96}_is1) (Version: 3.2.131 - MSI)
WinRAR 5.30 beta 3 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.3 - win.rar GmbH)
Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version: - Yahoo Inc.)
Zombie Army Trilogy (HKLM-x32\...\Steam App 301640) (Version: - Rebellion)
Zork Grand Inquisitor (HKLM-x32\...\GOGPACKZORKDARKINQUISITOR_is1) (Version: 2.0.0.15 - GOG.com)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2014-06-27] (Power Software Ltd)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-08-30] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-08-30] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2014-06-27] (Power Software Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-04-24] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll -> No File
ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2014-06-27] (Power Software Ltd)
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-08-30] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-08-30] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0CA9DE45-48A5-48E9-8C5D-C432E644BFBF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-18] (Google Inc.)
Task: {16AF2CC3-ED12-4F27-B8FF-95BF7C9D801D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-12] (Adobe Systems Incorporated)
Task: {276D262C-7EE1-4CAE-9D92-333A9FFEBE1E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2017-03-14] (Microsoft Corporation)
Task: {277427D1-2425-4D26-968A-B04654BE1077} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {44CC6ADC-1B3F-470B-8BD2-CF6F2B63F8C1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {493C5F12-9855-4434-B990-A35F442CA301} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2017-03-14] (Microsoft Corporation)
Task: {49ABB4FD-E599-4DF2-8A83-8548BDDEE6C8} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {5384BFC7-95CA-4B36-9785-F2F742E02C17} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-18] (Google Inc.)
Task: {580354B1-22FE-4190-BC77-5F258841767E} - System32\Tasks\{9F08CD6B-00FA-4D87-9D41-8683341AC9AF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Maxis\SimCity 3000 Unlimited\Apps\sc3U.exe" -d "C:\Program Files (x86)\Maxis\SimCity 3000 Unlimited\Apps"
Task: {5C7B8097-A8F7-4FFF-9424-57256C3D5BDA} - System32\Tasks\{CE9A613B-41FA-4AD0-B769-728065D72C1F} => C:\Windows\system32\pcalua.exe -a F:\MECCTour.exe -d F:\
Task: {77B32965-9184-4267-AD23-2ADA61470C0A} - System32\Tasks\{6D5919E7-BBFF-6522-CFC5-3AF9D232F30C} => C:\Windows\system32\regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\be891514\f5ce7462.dll" <==== ATTENTION
Task: {7A36F9B3-F8C4-4CC4-9F8E-70C427E45A46} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {839DE56F-2804-4AEA-8379-3EE04D4EE370} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-04-24] (Advanced Micro Devices, Inc.)
Task: {8BB49610-C4E3-4587-8994-FE7546A7B4E1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2017-07-11] (Microsoft Corporation)
Task: {8CAB3721-D00C-4D66-862A-CC8644382344} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Josh\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {BA67649D-F322-4539-B8A4-5DB6C841DD14} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe
Task: {BF825DB0-51FC-452A-9F0F-94E256654366} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [2016-06-21] (Microsoft Corporation)
Task: {CFE68041-6B67-4D96-81EE-2E02F1D8B19C} - System32\Tasks\{0B773EF6-D718-4B87-9899-796B38A01F5D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Microsoft Games\Halo\halo.exe" -d "C:\Program Files (x86)\Microsoft Games\Halo"
Task: {EC041B63-8CE3-43F5-AED1-5CB4DB6EA549} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [2017-08-03] (McAfee, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Josh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Titanic - Adventure out of Time\Titanic - Adventure out of Time (Alt launch method).lnk -> C:\Program Files (x86)\Titanic\LaunchTitanic.bat ()
Shortcut: C:\Users\Public\Desktop\Titanic - Adventure out of Time (Alt launch method).lnk -> C:\Program Files (x86)\Titanic\LaunchTitanic.bat ()

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-09-14 18:50 - 2017-09-07 07:01 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-30 17:28 - 2017-01-17 04:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 000085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 001328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-03-21 19:23 - 2017-01-31 13:34 - 008909512 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 000739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 000071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-14 02:59 - 2016-09-14 02:59 - 000011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-14 02:59 - 2016-09-14 02:59 - 002013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 000191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2016-09-26 09:26 - 2016-09-26 09:26 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 21:23 - 2017-03-04 07:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 21:24 - 2017-03-04 07:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 21:24 - 2017-03-04 07:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 21:24 - 2017-03-04 07:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-09-14 18:49 - 2017-09-07 05:53 - 001033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-09-14 18:50 - 2017-09-07 05:53 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-09-14 18:50 - 2017-09-07 05:59 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-11 18:22 - 2015-02-11 11:32 - 002206208 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2017-08-23 18:18 - 2017-08-23 18:18 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-08-23 18:18 - 2017-08-23 18:18 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-08-23 18:18 - 2017-08-23 18:18 - 036162048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-08-23 18:18 - 2017-08-23 18:18 - 002237952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\skypert.dll
2016-09-11 18:22 - 2014-12-29 16:17 - 001411072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2016-09-11 18:22 - 2015-02-11 17:25 - 000193024 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2016-09-11 18:22 - 2015-02-11 15:00 - 001693696 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJRtl.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 000087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 000043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 000805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 005812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 000067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 001662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 000494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 000096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 000110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 000010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 000356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 000036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 000111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 000044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 000417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 000167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 000313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 000127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 000009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2015-10-21 21:29 - 2015-10-21 21:29 - 000113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll
2015-10-21 21:29 - 2015-10-21 21:29 - 002396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 000583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 000141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2014-06-18 01:56 - 2014-06-18 01:56 - 002717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 001213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-23 00:06 - 2010-11-23 00:06 - 000055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 000495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 001183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 000483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 000655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 001306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 000565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 001640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 000506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 001053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 000497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 000603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 000474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 12:04 - 2016-11-27 11:49 - 000000828 _____ C:\WINDOWS\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4095220593-1037748550-1296689265-1006\Control Panel\Desktop\\Wallpaper -> C:\Users\Josh\AppData\Roaming\Mozilla\Firefox\Desktop Background.bmp
DNS Servers: 194.168.4.100 - 194.168.8.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{782F68FE-2C2D-4C1C-A09E-DD95C405A18D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{43E3BEB3-2C94-4912-AE6B-188D341E19D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{C463E6CA-E391-4E20-814F-F887824708E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{4960F99D-25A2-4B9C-8C1D-D30DEE80C9EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{53E48EBE-D5FC-4B24-B4B3-019F21A19346}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{BBAA29A6-4636-4962-8867-B11B1969FBDB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [UDP Query User{F6CC0581-5F15-43BF-98CD-171BA0CF031C}C:\users\josh\documents\titanic - honor and glory demo 2\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) C:\users\josh\documents\titanic - honor and glory demo 2\engine\binaries\win64\ue4game-win64-shipping.exe
FirewallRules: [TCP Query User{1C951F3B-7588-4D16-B9C0-3D9519CAACE9}C:\users\josh\documents\titanic - honor and glory demo 2\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) C:\users\josh\documents\titanic - honor and glory demo 2\engine\binaries\win64\ue4game-win64-shipping.exe
FirewallRules: [{E5C33966-301F-4614-8461-3ED708764676}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Pirates!\Pirates!.exe
FirewallRules: [{35DBFEA6-9938-43EA-9B9C-D2FF0F53C9BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Pirates!\Pirates!.exe
FirewallRules: [{20C68B39-A6F5-428B-A3AF-442CAF2E745D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{D16109DB-771D-419C-ABE5-D6299D1E244E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{468FCFE3-7633-4C06-980B-AA54253B7F08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trials 2 Second Edition\launcher.exe
FirewallRules: [{46F9140F-AA53-42D6-BBCF-B00A38A24CB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trials 2 Second Edition\launcher.exe
FirewallRules: [UDP Query User{D3989F1E-6DF4-44A4-912A-5AB9132C71BD}C:\users\josh\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\josh\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [TCP Query User{74C7851F-E4CE-43F5-9427-AED636B952DC}C:\users\josh\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\josh\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [{70F74362-9E2B-4618-86C4-01E0352DC942}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{6AE640EC-1436-4AB6-9860-68050740C946}] => (Allow) LPort=1900
FirewallRules: [{A35E4425-E19C-455C-B022-1549ECCB2E51}] => (Allow) LPort=2869
FirewallRules: [{C8D565CE-813E-459C-B02F-C68D31D3B99C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{6ED49CAF-A0B9-4DE6-895B-B42080190339}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Political Machine 2016\PM2016.exe
FirewallRules: [{6DADA17E-93CD-4ED6-A7AD-B59F6B59EA8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Political Machine 2016\PM2016.exe
FirewallRules: [{8FD80D9D-C96E-4CEF-ADD9-9B2DC46CCE66}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1790CFAE-1236-40DB-AD6B-74D5E8525BA1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{82EB888E-B9EA-4577-BB11-CA976A5213C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Knights of the Old Republic II\swkotor2.exe
FirewallRules: [{4140C858-7C62-4849-83D3-100A11153BCD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Knights of the Old Republic II\swkotor2.exe
FirewallRules: [{C8049775-0330-48F0-8DE0-6767259C8A59}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{1E5DAC93-9F84-4FD9-BE02-B9ADA732AC7A}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{9AFD2066-DC6A-4135-B5A6-4057F925CA9B}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{D99A7D2B-323A-4408-A07F-FDC7C5FA56E0}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{B5F60E98-F6A4-4653-AFBB-21D36556573F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty\CoDUOMP.exe
FirewallRules: [{A9A5B521-3AD3-4FFA-A544-94BDB844AB94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty\CoDUOMP.exe
FirewallRules: [{C2DC4187-48AD-420A-BC20-266F95D2C582}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty\CoDUOSP.exe
FirewallRules: [{E43B6DB0-A77C-4810-8A9E-7A48BE75F49B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty\CoDUOSP.exe
FirewallRules: [{3BCAA605-E814-4468-8738-2A06B8E86C95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty\CoDMP.exe
FirewallRules: [{3F40B22A-6C60-4A5F-A73C-FEE6E569A82B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty\CoDMP.exe
FirewallRules: [{24998798-9C44-4419-8112-9E230748EA72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty\CoDSP.exe
FirewallRules: [{0EABDD24-608C-4CE9-B095-E350138323A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty\CoDSP.exe
FirewallRules: [{D9BDFDC8-7763-4BB6-B0B3-EFF06A5D5319}] => (Allow) C:\Users\Josh\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CDE8719B-02F1-4775-9219-138145BF3450}] => (Allow) C:\Users\Josh\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{24BA7511-E756-461E-AA7F-B842069FBD0E}] => (Allow) C:\Users\Josh\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B8D855C1-6CE2-4870-96B8-1BE1C9561D54}] => (Allow) C:\Users\Josh\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{66A723AA-1528-43D6-822C-F8BAC63495BC}] => (Allow) C:\Users\Josh\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2B4869E1-E047-4CFE-A02F-D3058D1FE87B}] => (Allow) C:\Users\Josh\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{423CB64B-E9FE-4198-B1DF-DA0B99D473CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{5CF1F688-FB70-417D-8DFB-71CF01A1613E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{BEE9D4A0-3D69-4EC2-A181-6CF58DC62162}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{D54CA4E0-48F9-48EB-A5CC-88EA5E309911}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{C1F5B32D-CA52-4562-AD5F-2390F0182539}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{1AFCA93D-96A6-487E-8D97-954814AD2188}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{BED96AD5-8477-4A51-8DA5-262653C1EBA9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV Demo\eu4.exe
FirewallRules: [{B690DA9E-F42A-40EB-ADBF-25A3475CDD27}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV Demo\eu4.exe
FirewallRules: [{0FAACCD6-2DE8-42B7-9E46-82CB48D58762}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hitman Blood Money\configure.exe
FirewallRules: [{A3C3B21B-5FB2-4065-B620-804276F1108B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hitman Blood Money\configure.exe
FirewallRules: [{BEBF20D3-AC98-4ABF-ACF6-D0B7F38F7C1B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hitman Blood Money\HitmanBloodMoney.exe
FirewallRules: [{4E800196-3E15-4AF0-B5A0-F515BC70A7D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hitman Blood Money\HitmanBloodMoney.exe
FirewallRules: [{240749A2-BA14-41E7-9BC5-7C1009274FB5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{51951816-9DC6-4BA3-BA13-427EB78EA67A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{CD790F21-BE4A-4CB9-93B5-EF674316318C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{137A11E2-04EA-41EF-A166-4D85E1176D12}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{CC2666F2-8876-47F0-999C-49BE9D1C376F}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{B6309405-368A-4ED1-AEAC-64EAB0E6135F}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{FF55167D-D09D-408E-8DED-A2D4308E6143}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{1546A66E-2F6C-41F0-A024-38121E5B08BC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C181B4E2-7867-41D6-913C-B1662AFF5C14}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1F02A63F-D8A6-4A52-A851-B3D8DFED2ABC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{59472917-D817-48E9-9CB3-0589A46778AE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{48A2F4D3-9E4D-43BE-BB54-875E3196279F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto 3\gta3.exe
FirewallRules: [{6D168AAD-2367-4CDF-B907-2750E8434D3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto 3\gta3.exe
FirewallRules: [{97FD8D69-9F9B-4BBF-9F39-455726195B2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{073F01AA-ECBD-46CE-8ECF-36638D9F3D49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{B2FB3466-28AF-4745-B3BF-465C607B92CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{7DE0C5E5-B0D4-4687-81B8-145A77245A9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{5470538E-4063-47E8-B094-2AB2A8A65723}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{A0551BB5-9D9E-4B56-BE04-4CACBE174CCA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{ED82A27F-DE49-43C5-A224-5D8AD6D1CAA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{6FAF7B61-B093-4EC7-880D-3D929EFC413A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{37082278-1851-4C5A-B742-C6694EC7AB02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Port of Call\PortOfCall.exe
FirewallRules: [{39E1E0D8-33EE-4893-BB9F-10D48E69761C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Port of Call\PortOfCall.exe
FirewallRules: [{ED609A02-27D8-4419-80F9-EE6B1AE86279}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2MP_s.exe
FirewallRules: [{0E202C45-0772-47CB-95A1-4D883AEE15BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2MP_s.exe
FirewallRules: [{81521A33-214F-490D-8568-4EB4C2C1FA4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2SP_s.exe
FirewallRules: [{CB2FF728-F99D-49D5-BC18-3F8EFB359C0B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2SP_s.exe
FirewallRules: [{EE651815-5FA2-4E0E-90E2-C1ED5828563C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe
FirewallRules: [{A94AF4BD-8E17-4F9C-8ADB-4B435A2363FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe
FirewallRules: [{8E80B96C-1057-4718-A3D7-28149D335A12}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NASCAR 14\bin\NASCAR14.exe
FirewallRules: [{BC7C3676-487D-4656-A82C-0756D16A19F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NASCAR 14\bin\NASCAR14.exe
FirewallRules: [{9E24244E-3025-4F26-A0F2-E7284888C372}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{5C26712A-C74B-4283-BAC3-286F4B9C14C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [UDP Query User{0ECFD16B-9A92-487D-A11A-3D122E709976}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{D1FD2E71-B90B-4383-AE90-E362C07B607F}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{E28A1038-5C32-4A86-8DB2-7491DEF6E658}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{A398B241-A234-437D-B73C-4553F68E3D2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{D10D761A-B873-4907-B1EB-7762BF650368}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{970F7130-A430-4E2B-9198-315B9F8AAB5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{BA0FA78D-901D-48B4-9F06-ABAC6AB40E11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron 3\hoi3.exe
FirewallRules: [{6A8DC034-DA18-43FD-9782-2B28F4348203}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron 3\hoi3.exe
FirewallRules: [{E938C59D-3D21-41B4-A877-29A655FBB102}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{17701B58-065E-476D-B9BF-F6DA6282B892}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{F1ACC83F-527E-44A5-8156-647260123A46}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3FD5F5AC-B369-4F93-99ED-2A25FF103ADA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BACB68A1-425D-470C-A872-790280FC3C5A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{3B84C429-E491-44A0-A542-4739E9673C55}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{7BE97FA0-276B-45CE-9712-2E3C9F571A8A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{B2D0027B-C5DA-4A34-82C3-F3574D04441A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{DDD6FAFC-3620-4B4B-A1D1-BBDD618C8F91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{7FC0FE78-F810-4403-936B-E1464D28C2FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{5E21AD3D-2D65-44A2-9DE9-5D1AC30E473F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{8A8EC04A-6F78-491D-B56F-7396E423DAA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{BF5784CC-FA63-4E45-96D4-B0A6B813367E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{7FBB0965-3FB7-401A-B9BC-5F5421C963ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{5F2CE300-3857-41CE-87DD-7CAC2E8A4AC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{BD04F0E5-FA06-41ED-8298-817337BB94DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{4B1F44AC-E5E0-4D13-9B99-5B7AD4614FE4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{CAA4A48D-7494-41BD-9FCA-2CBFFB068920}C:\program files (x86)\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_144\bin\javaw.exe
FirewallRules: [UDP Query User{6C5FCDA3-5854-4CEB-AE35-278E17389230}C:\program files (x86)\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_144\bin\javaw.exe

==================== Restore Points =========================

09-09-2017 08:45:51 Scheduled Checkpoint
12-09-2017 18:34:16 Windows Update
19-09-2017 20:07:31 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (09/23/2017 07:08:13 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004C003
Command-line arguments:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=0567073a-7d74-403b-b2d5-6b35da372d8d;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (09/23/2017 07:08:13 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C003
Sku Id=0567073a-7d74-403b-b2d5-6b35da372d8d

Error: (09/23/2017 07:08:13 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details.
hr=0xC004C003

Error: (09/23/2017 07:08:10 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C003
Sku Id=0567073a-7d74-403b-b2d5-6b35da372d8d

Error: (09/23/2017 07:08:10 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details.
hr=0xC004C003

Error: (09/23/2017 07:04:35 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x80072EE7
Command-line arguments:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=0567073a-7d74-403b-b2d5-6b35da372d8d;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (09/23/2017 07:04:35 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x80072EE7
Command-line arguments:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=0567073a-7d74-403b-b2d5-6b35da372d8d;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (09/23/2017 07:04:35 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0x80072EE7
Sku Id=0567073a-7d74-403b-b2d5-6b35da372d8d

Error: (09/23/2017 07:04:35 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details.
hr=0x80072EE7

Error: (09/23/2017 07:04:35 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0x80072EE7
Sku Id=0567073a-7d74-403b-b2d5-6b35da372d8d

System errors:
=============
Error: (09/23/2017 06:59:03 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/23/2017 06:58:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The InstallerService service failed to start due to the following error:
The system cannot find the file specified.

Error: (09/23/2017 06:58:35 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: The password notification DLL "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" failed to load with error 126. Please verify that the notification DLL path defined in the registry, HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages, refers to a correct and absolute path (<drive>:\<path>\<filename>.<ext>) and not a relative or invalid path. If the DLL path is correct, please validate that any supporting files are located in the same directory, and that the system account has read access to both the DLL path and any supporting files. Contact the provider of the notification DLL for additional support. Further details can be found on the web at http://go.microsoft..../?LinkId=245898.

Error: (09/23/2017 06:57:49 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/23/2017 06:45:47 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/23/2017 06:45:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The InstallerService service failed to start due to the following error:
The system cannot find the file specified.

Error: (09/23/2017 06:45:32 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: The password notification DLL "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" failed to load with error 126. Please verify that the notification DLL path defined in the registry, HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages, refers to a correct and absolute path (<drive>:\<path>\<filename>.<ext>) and not a relative or invalid path. If the DLL path is correct, please validate that any supporting files are located in the same directory, and that the system account has read access to both the DLL path and any supporting files. Contact the provider of the notification DLL for additional support. Further details can be found on the web at http://go.microsoft..../?LinkId=245898.

Error: (09/23/2017 06:45:32 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 18:31:33 on ‎23/‎09/‎2017 was unexpected.

Error: (09/23/2017 06:32:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/23/2017 06:31:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The InstallerService service failed to start due to the following error:
The system cannot find the file specified.

CodeIntegrity:
===================================
Date: 2017-09-23 19:08:24.559
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

Date: 2017-09-23 19:08:24.558
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

Date: 2017-09-23 19:08:24.557
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

Date: 2017-09-23 19:08:24.555
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

Date: 2017-09-23 19:08:24.554
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

Date: 2017-09-23 19:08:24.553
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

Date: 2017-09-23 19:08:24.552
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

Date: 2017-09-23 19:08:24.550
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

Date: 2017-09-23 18:48:43.236
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

Date: 2017-09-23 18:48:43.235
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8414.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

Processor: AMD FX™-4350 Quad-Core Processor
Percentage of memory in use: 43%
Total physical RAM: 8191.18 MB
Available physical RAM: 4646.38 MB
Total Virtual: 9471.18 MB
Available Virtual: 5595.7 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.02 GB) (Free:575.68 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 488D4B1C)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Advertisements

Register to Remove

#2 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 23 September 2017 - 03:07 PM

Hello joshuam and welcome to the WTT forum.

My name is Satchfan and I would be glad to help you with your computer problem.

Please read the following guidelines which will help to make cleaning your machine easier:

please follow all instructions in the order posted
please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear
all logs/reports, etc. must be posted in Notepad. Please ensure that word wrap is unchecked. In Notepad click Format, uncheck Word wrap if it is checked
if you don't understand something, please don't hesitate to ask for clarification before proceeding
the fixes are specific to your problem and should only be used for this issue on this machine.
please reply within 3 days. If you do not reply within this period I will post a reminder but topics with no reply in 4 days will be closed!

IMPORTANT:

Please DO NOT install/uninstall any programs unless asked to.
Please DO NOT run any scans other than those requested

===================================================

Note: Please run these in the order given in the instructions.

===================================================

Download and run AdwCleaner

Download AdwCleaner from here and save it to your desktop.

run AdwCleaner by clicking on Scan
when it has finished, leave everything that was found checked, (ticked), then click on Clean
if it asks to reboot, allow the reboot
on reboot a log will be produced; please attach the content of the log to your next reply.

===================================================

Download and run Junkware Removal Tool

Please download Junkware Removal Tool to your desktop.

shut down your protection software now to avoid potential conflicts.
run the tool by double-clicking it. If you are using Windows Vista/7/8/10, instead of double-clicking, right-mouse click JRT.exe and select 'Run as Administrator'
the tool will open and start scanning your system
please be patient as this can take a while to complete depending on your system's specifications
on completion, a log (JRT.txt) is saved to your desktop and will automatically open
post the contents of JRT.txt into your next message.

================================================

Please run FRST again and make sure there is a checkmark next to ‘Addition.txt’ before you hit Scan.

Logs to include with next post:

AdwCleaner log
JRT.txt
New Frst.txt
New Addition.txt

Thanks

Satchfan

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#3 joshuam

Authentic Member

Authentic Member
20 posts

Posted 24 September 2017 - 11:47 AM

Hello Satchfan,

Thank you for responding to my request. I have done what you've requested and the logs can be found attached to this post. I hope I've done this right, sorry if I haven't!

Attached Files

Addition.txt 67KB 780 downloads
aswMBR.txt 4.25KB 659 downloads
FRST.txt 99.37KB 663 downloads
JRT.txt 752bytes 627 downloads

Edited by joshuam, 24 September 2017 - 11:50 AM.

#4 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 24 September 2017 - 02:16 PM

I'll look at these tomorrow and repy but meanwhile, I asked for the result of Adware Cleaner, not aswMBR.

Please post the AdwCleaner log: the log should be located at C:\AdwCleaner[S1][/b].txt

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#5 joshuam

Authentic Member

Authentic Member
20 posts

Posted 24 September 2017 - 04:05 PM

Gah, you're right, apologies for that. I also just noticed there's a typo in the topic header....double fail for me.

Files re-attached to this reply!

Also for what it's worth I haven't encountered these problems so far today.

Attached Files

Addition.txt 67KB 679 downloads
AdwCleanerC0.txt 3.84KB 672 downloads
FRST.txt 99.37KB 613 downloads
JRT.txt 752bytes 659 downloads

Edited by joshuam, 24 September 2017 - 04:05 PM.

#6 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 25 September 2017 - 02:21 AM

I'm glad things have improved but a bit of work to be done yet.

Run Farbar Recovery Scan Tool

right-click FRST/FRST64 and select ‘Run as administrator’
highlight the contents of the code box below, then press Ctrl+c:

Start::
CloseProcesses:
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-4095220593-1037748550-1296689265-1006 -> {8D359765-D916-408C-A99D-B3F099CDD827} URL = hxxps://uk.search.yahoo.com/search?p={searchTerms}&intl=uk&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
Toolbar: HKU\S-1-5-21-4095220593-1037748550-1296689265-1006 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
CHR DefaultSearchURL: Default -> hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQoMUQ9FFQVAbQhbUAlcFQwVJhRZUA9ADAEbdlwJBA9IQwwWdx9aFQQTQkcFME0FBloEURNNfWpdAEsSSWJGInJWDk4=&q={searchTerms}
CHR DefaultSearchKeyword: Default -> searchinterneat-a.akamaihd.net
CHR DefaultNewTabURL: Default -> hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAYXcA8MVQkSDARAcQkVVQBHRxhCcQ8JTA1JF1ASJQ8BAwBEFhNBNARaAktXUUEeJ1pNER8fHGZGIUtbCW4UQ35NL04=
CHR Extension: (Chrome Web Store Payments) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-06-02]
CHR Extension: (Chrome Media Router) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-02]
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.99 - Google Inc.) Hidden
Task: {0CA9DE45-48A5-48E9-8C5D-C432E644BFBF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-18] (Google Inc.)
Task: {5384BFC7-95CA-4B36-9785-F2F742E02C17} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-18] (Google Inc.)
Task: {5C7B8097-A8F7-4FFF-9424-57256C3D5BDA} - System32\Tasks\{CE9A613B-41FA-4AD0-B769-728065D72C1F} => C:\Windows\system32\pcalua.exe -a F:\MECCTour.exe -d F:\
Task: {77B32965-9184-4267-AD23-2ADA61470C0A} - System32\Tasks\{6D5919E7-BBFF-6522-CFC5-3AF9D232F30C} => C:\Windows\system32\regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\be891514\f5ce7462.dll" <==== ATTENTION
Task: {EC041B63-8CE3-43F5-AED1-5CB4DB6EA549} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [2017-08-03] (McAfee, Inc.)
FirewallRules: [UDP Query User{D3989F1E-6DF4-44A4-912A-5AB9132C71BD}C:\users\josh\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\josh\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [TCP Query User{74C7851F-E4CE-43F5-9427-AED636B952DC}C:\users\josh\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\josh\appdata\roaming\acestream\engine\ace_engine.exe
EmptyTemp:
End::

NOTE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

in the FRST window, press the ‘Fix’ button once and wait
please reboot the computer if requested
it will create a log on your desktop, (Fixlog.txt); please post it to your reply.

===================================================

Download zoek.exe to your Desktop:

Important: Disable your AntiVirus and AntiSpyware programs, so they do not interfere with the running of Zoek.exe. You can find instructions how to disable your security applications here.

on Windows Vista, 7/8/10, right-click Zoek.exe and select: Run as Administrator
give it a few seconds to appear
copy/paste the entire script inside the codebox below into the input field of Zoek:
```
createsrpoint;
autoclean;
emptyalltemp;
ipconfig /flushdns;b
```
close any open programs.
click the Run script button, and wait. It takes a few minutes to run.
when the tool finishes, the zoek-results.log is opened in Notepad: the log can also be found on the systemdrive, normally C:\
if a reboot is needed, the log will be opened after the reboot.

Logs to include with next post:

Fixlog.txt
zoek-results.log

Thanks

Satchfan

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#7 joshuam

Authentic Member

Authentic Member
20 posts

Posted 25 September 2017 - 12:21 PM

Well, this is weird.

The first step went just fine, Fixlog.txt has been attached.

When I tried to donwload zoek.exe, I clicked through and got a strange file that didn't seem relevant (picture attached). I thoughtlessly downloaded it at first, but it was unopenable as just a plain "File" and its named seemed to be a random string of numbers and letters. I input the URL target by hand and then I got the proper zoek file, and ran it. Shortly after that, my computer crashed. No log has been produced.

The link you provide for disabling other security application first seemed to me to just refer to this very same topic. After my computer crashed, it seems to just refer to the index page. Also, I can't seem to right click it.

Edit: Ran zoek again, it ran this time. It seemed that it had got stuck for quite awhile, I opened the Task Manager and noticed a file called "PEVZ.exe" was running during this time. I killed it, and then the scan continued almost immediately. A quick google search showed me this is a trojan of some kind. Thoughts?

zoek results attached now.

Attached Thumbnails

Attached Files

Fixlog.txt 8.27KB 595 downloads
zoek-results.txt 6.15KB 787 downloads

Edited by joshuam, 25 September 2017 - 01:12 PM.

#8 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 25 September 2017 - 02:16 PM

Ignore the warnings for Zoek and run it

Sorry for the outdated link on the other .Please go here to disable Windows Defender.

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#9 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 26 September 2017 - 02:46 AM

Could you please not edit your post in order to add logs as it can become confusing: just add another reply. Thanks.

Run Malwarebytes Anti-Malware

Please download and run the installer for Malwarebytes 3.0.

follow the prompts to install the program, (Malwarebytes 3.0 will automatically upgrade Malwarebytes Anti-Malware 2.x to Malwarebytes 3.0)
at the end, be sure a checkmark is placed next to the following
- Launch Malwarebytes Anti-Malware
- a 14 day trial of the Premium features is pre-selected: deselect this if you don’t want it, (it won’t diminish the scanning and removal capabilities of the program)
click Finish
on the Dashboard, click Update Now
after the update completes, click the Scan Now' button
if an update is available, clicking the Update Now button will update it
a Threat Scan will begin.
when the scan is complete, if malware has been detected, click Apply Actions to allow MBAM to clean what was found
when the prompt to restart the computer appears, click Yes
after the restart once you are back at your desktop, open MBAM once more
click on the ‘History’ tab, the ‘Application Logs’
double-click on the scan log which shows the date and time of the scan just performed
click Copy to Clipboard
please paste the contents of the clipboard into your reply.

===================================================

Please run FRST again and make sure there is a checkmark next to ‘Addition.txt’ before you hit Scan.

Logs to include with next post:

Mbam.txt
New Frst.txt
New Addition.txt

Can you tell me how things are now.

Thanks

Satchfan

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#10 joshuam

Authentic Member

Authentic Member
20 posts

Posted 27 September 2017 - 12:27 PM

Apologies for that, will keep it in mind going forward.

Please find the requested files attached.

Attached Files

Addition.txt 74.98KB 650 downloads
FRST.txt 102.28KB 621 downloads
mbam.txt 1.22KB 631 downloads

Advertisements

Register to Remove

#11 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 27 September 2017 - 01:28 PM

That’s looking good.

Just a couple of things and we can tidy up.

Uninstall programs

Please uninstall Google Update Helper

===================================================

Run Zemana AntiMalware

Download Zemana AntiMalware:

open the program and without changing any options, press Scan
after the scan is finished, if threats are detected press Next to remove them

Note: If restart is required to finish the cleaning process, you should click Reboot. If reboot isn't required, please restart your computer manually.

open Zemana AntiMalware again and locate the report
please paste the contents into your reply.

Can you tell me if there are any outstanding problems.

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#12 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 01 October 2017 - 12:18 AM

Hi joshuam

It has been several days since I sent my last set of instructions to help with your computer problem.

Please let me know if you still need help. If I don't get a reply within 24 hours I'll assume all is well and close this topic.

Satchfan

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#13 joshuam

Authentic Member

Authentic Member
20 posts

Posted 01 October 2017 - 03:57 AM

Hi there,

Sorry, been a busy few days. I've taken the recommended steps and have attached the Zemana log in my reply.

Attached Files

zemana.txt 804bytes 600 downloads

#14 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 01 October 2017 - 08:31 AM

Thanks for getting back.

Please let me know if you're happy to tidy up or if there are any remaining problems.

Satchfan

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#15 joshuam

Authentic Member

Authentic Member
20 posts

Posted 01 October 2017 - 11:18 AM

I just tried scanning with Superantispyware again and it still crashed my computer. Do you think that may not be a malware issue and that I should just refrain from using that program?

Other than that I'm happy with the cleanup. Thanks.

Also tagged with one or more of these keywords: spyware, crash, connectivity

Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal → Gaming computer keeps running extremely slow and keep getting repeated Started by ShaneA94 , 08 Nov 2023 Hacked, spyware, malware	0 replies 150,991 views	ShaneA94 08 Nov 2023
Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal → Infected computers Started by bussw83 , 07 Mar 2022 hacker, spyware	6 replies 63,655 views	Juliet 29 Mar 2022
Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal → spyware, possibly a virus, programs i cant delete, internet slowing do Started by Tractorboy44 , 26 May 2021 spyware, virus	9 replies 108,140 views	Juliet 28 Jun 2021
Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal → Jerky Mouse Movements Solved By Disconnecting Myself From The Internet Started by Cage , 20 Apr 2019 hacked, spyware, windows 10 and 3 more...	3 replies 54,925 views	Juliet 02 May 2019
Hardware → General Hardware → ASUS TP203 Laptop Multiple Crash/Freeze with debug info Started by maldini , 22 Nov 2018 ASUS, Laptop, Crash, Freeze	7 replies 20,327 views	maldini 24 Nov 2018

1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users

Body Background

skin color theme