Solved Mystery error Message

  • Hi there and welcome to PC Help Forum (PCHF), a more effective way to get the Tech Support you need!
    We have Experts in all areas of Tech, including Malware Removal, Crash Fixing and BSOD's , Microsoft Windows, Computer DIY and PC Hardware, Networking, Gaming, Tablets and iPads, General and Specific Software Support and so much more.

    Why not Click Here To Sign Up and start enjoying great FREE Tech Support.

    This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Status
Not open for further replies.
MR.Wolfie

MR.Wolfie

PCHF Member
Apr 13, 2017
7
1
41
Earth
sites.google.com
Hi I am new here but I keep getting this message on start up
Strange error.png

I am running Windows 10
 
Autoruns Log.

Download Autoruns and Autorunsc Unzip it to your desktop and then right click autoruns.exe run as administrator.
After the scan is finished then click on File>>>>>>>>>>>Save
The default name will be autoruns.arn make sure to save it as Autoruns.txt under the file type option.
in other words make sure it is a .txt file instead of .arn Attach the text in your next reply.
 
  • Like
Reactions: MR.Wolfie
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "31/03/2017 7:20 PM" ""
+ "AvastUI.exe" "AvLaunch component" "AVAST Software" "c:\program files\avast software\avast\avlaunch.exe" "29/03/2017 12:43 AM" ""
+ "GamecomSound" "RIG 500 Audio Panel" "" "c:\program files\plantronics\hd1\optimus3d_x64.exe" "16/09/2015 5:44 PM" ""
+ "IAStorIcon" "Delayed launcher" "Intel Corporation" "c:\program files\intel\intel(r) rapid storage technology\iastoriconlaunch.exe" "18/11/2015 7:42 AM" ""
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe" "23/03/2017 10:58 AM" ""
+ "MBCfg64" "" "Creative Technology Ltd." "c:\windows\system32\mbcfg64.dll" "1/07/2013 4:17 PM" ""
+ "RTHDVCPL" "Realtek HD Audio Manager" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\rtkngui64.exe" "18/01/2016 6:23 PM" ""
+ "ShadowPlay" "NVIDIA Capture Server Proxy" "NVIDIA Corporation" "c:\windows\system32\nvspcap64.dll" "23/02/2017 11:56 PM" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "30/03/2017 3:47 AM" ""
+ "Dropbox" "Dropbox" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropbox.exe" "21/03/2017 3:37 AM" ""
+ "KeePass 2 PreLoad" "KeePass" "Dominik Reichl" "c:\program files (x86)\keepass password safe 2\keepass.exe" "9/01/2017 7:38 PM" ""
+ "Razer Synapse" "Razer Synapse" "Razer Inc." "c:\program files (x86)\razer\synapse\rzsynapse.exe" "2/03/2017 6:48 PM" ""
+ "Sound Blaster X-Fi MB 3" "Sound Blaster X-Fi MB3" "Creative Technology Ltd" "c:\program files (x86)\creative\sound blaster x-fi mb3\sound blaster x-fi mb3\sbxfimb3.exe" "12/06/2015 3:29 PM" ""
+ "SunJavaUpdateSched" "Java Update Scheduler" "Oracle Corporation" "c:\program files (x86)\common files\java\java update\jusched.exe" "13/12/2016 12:51 PM" ""
+ "UpdReg" "Creative UpdReg" "Creative Technology Ltd." "c:\windows\updreg.exe" "11/05/2000 11:31 AM" ""
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "11/04/2017 2:24 PM" ""
+ "CCleaner Monitoring" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner64.exe" "4/03/2017 3:12 AM" ""
+ "DAEMON Tools Lite Automount" "DAEMON Tools Lite" "Disc Soft Ltd" "c:\wolfies\programs\daemon tools lite\dtagent.exe" "6/02/2017 6:35 PM" ""
+ "Discord" "Discord" "Hammer & Chisel, Inc." "c:\programdata\maste\discord\app-0.0.297\discord.exe" "5/01/2017 7:44 AM" ""
+ "OneDrive" "Microsoft OneDrive" "Microsoft Corporation" "c:\users\maste\appdata\local\microsoft\onedrive\onedrive.exe" "28/03/2017 10:49 AM" ""
+ "Overwolf" "Overwolf Launcher" "" "c:\program files (x86)\overwolf\overwolflauncher.exe" "20/02/2017 9:13 PM" ""
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe" "14/03/2017 5:50 PM" ""
+ "Steam" "Steam Client Bootstrapper" "Valve Corporation" "c:\program files (x86)\steam\steam.exe" "23/03/2017 9:14 AM" ""
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce" "" "" "" "13/04/2017 10:17 AM" ""
+ "RPMKickstart" "RPMKickstartEx" "TODO: <Company name>" "c:\program files\gigabyte\smart backup\rpmkickstartex.exe" "1/04/2014 6:25 PM" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce" "" "" "" "13/04/2017 10:17 AM" ""
+ "DualBiosRescue" "dbrro" "" "c:\program files (x86)\gigabyte\gigabytefirmwareupdateutility\dbrro.exe" "19/08/2015 5:33 PM" ""
+ "EasyTune" "etro" "GIGA-BYTE TECHNOLOGY CO., LTD." "c:\program files (x86)\gigabyte\easytune\etro.exe" "3/10/2016 9:58 PM" ""
+ "EasyTuneEngineService" "EngineRunOnce" "GIGA-BYTE TECHNOLOGY CO., LTD." "c:\program files (x86)\gigabyte\easytuneengineservice\enginerunonce.exe" "31/03/2016 9:10 PM" ""
+ "PreRun" "PreRun" "" "c:\program files (x86)\gigabyte\appcenter\prerun.exe" "30/04/2013 6:12 AM" ""
+ "SIV" "sivro" "GIGA-BYTE TECHNOLOGY CO., LTD." "c:\program files (x86)\gigabyte\siv\sivro.exe" "26/04/2016 7:47 PM" ""
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" "" "4/10/2016 3:30 PM" ""
+ "Killer Network Manager.lnk" "Killer Network Manager" "Rivet Networks" "c:\program files\killer networking\network manager\networkmanager.exe" "13/02/2016 6:27 AM" ""
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "7/01/2017 12:49 PM" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe" "16/07/2016 11:55 AM" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "10/04/2017 6:09 PM" ""
+ "Google Chrome" "Google Chrome Installer" "Google Inc." "c:\program files (x86)\google\chrome\application\57.0.2987.133\installer\chrmstp.exe" "29/03/2017 10:23 AM" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe" "16/07/2016 11:11 AM" ""
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "31/03/2017 7:20 PM" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\wolfies\programs\7-zip\7-zip.dll" "5/10/2016 12:21 AM" ""
+ "ANotepad++64" "ShellHandler for Notepad++ (64 bit)" "" "c:\wolfies\programs\notepad++\nppshell_06.dll" "12/05/2014 7:19 PM" ""
+ "avast" "Avast Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll" "29/03/2017 12:58 AM" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ "GDContextMenu" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\contextmenu64.dll" "22/03/2017 12:29 AM" ""
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers" "" "" "" "6/01/2017 11:41 PM" ""
+ "TheDeskTopContextMenu Class" "igfxDTCM Module" "Intel Corporation" "c:\windows\system32\igfxdtcm.dll" "12/08/2016 6:52 AM" ""
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "8/02/2017 9:39 AM" ""
+ "00asw" "Avast Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll" "29/03/2017 12:58 AM" ""
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "31/03/2017 7:20 PM" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\wolfies\programs\7-zip\7-zip.dll" "5/10/2016 12:21 AM" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ "GDContextMenu" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\contextmenu64.dll" "22/03/2017 12:29 AM" ""
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" "" "8/01/2017 9:29 PM" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\wolfies\programs\7-zip\7-zip.dll" "5/10/2016 12:21 AM" ""
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" "" "25/03/2017 7:24 AM" ""
+ "DropboxCopyHook" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "25/03/2017 7:24 AM" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ "igfxDTCM" "igfxDTCM Module" "Intel Corporation" "c:\windows\system32\igfxdtcm.dll" "12/08/2016 6:52 AM" ""
+ "NvCplDesktopContext" "NVIDIA Display Shell Extension" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll" "1/04/2017 11:33 AM" ""
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "8/01/2017 9:29 PM" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\wolfies\programs\7-zip\7-zip.dll" "5/10/2016 12:21 AM" ""
+ "avast" "Avast Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll" "29/03/2017 12:58 AM" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "25/03/2017 7:24 AM" ""
+ " DropboxExt01" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt02" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt03" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt04" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt05" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt06" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt07" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt08" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt09" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt10" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext64.15.0.dll" "7/04/2017 2:31 AM" ""
+ " GoogleDriveBlacklisted" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll" "22/03/2017 12:29 AM" ""
+ " GoogleDriveSynced" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll" "22/03/2017 12:29 AM" ""
+ " GoogleDriveSyncing" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll" "22/03/2017 12:29 AM" ""
+ "00asw" "Avast Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll" "29/03/2017 12:58 AM" ""
+ "00avast" "Avast Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll" "29/03/2017 12:58 AM" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "25/03/2017 7:24 AM" ""
+ " DropboxExt01" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt02" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt03" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt04" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt05" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt06" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt07" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt08" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt09" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
+ " DropboxExt10" "Dropbox Shell Extension" "Dropbox, Inc." "c:\program files (x86)\dropbox\client\dropboxext.15.0.dll" "7/04/2017 2:31 AM" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "22/01/2017 10:25 AM" ""
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll" "19/04/2016 10:28 PM" ""
+ "Java(tm) Plug-In 2 SSV Helper" "Java(TM) Platform SE binary" "Oracle Corporation" "c:\program files\java\jre1.8.0_121\bin\jp2ssv.dll" "13/12/2016 12:32 PM" ""
+ "Java(tm) Plug-In SSV Helper" "Java(TM) Platform SE binary" "Oracle Corporation" "c:\program files\java\jre1.8.0_121\bin\ssv.dll" "13/12/2016 12:31 PM" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "22/01/2017 10:25 AM" ""
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll" "19/04/2016 10:31 PM" ""
+ "Java(tm) Plug-In 2 SSV Helper" "Java(TM) Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre1.8.0_121\bin\jp2ssv.dll" "13/12/2016 12:30 PM" ""
+ "Java(tm) Plug-In SSV Helper" "Java(TM) Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre1.8.0_121\bin\ssv.dll" "13/12/2016 12:30 PM" ""
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" "" "6/01/2017 11:41 PM" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll" "19/04/2016 10:28 PM" ""
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" "" "6/01/2017 11:41 PM" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll" "19/04/2016 10:31 PM" ""
"Task Scheduler" "" "" "" "" ""
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe" "15/02/2017 11:20 AM" ""
+ "\Avast Emergency Update" "Avast Emergency Update" "AVAST Software" "c:\program files\avast software\avast\avemupdate.exe" "29/03/2017 12:42 AM" ""
+ "\AVAST Software\Avast settings backup" "Avast Settings Backup" "AVAST Software" "c:\program files\common files\av\avast! antivirus\backup.exe" "26/01/2017 5:55 PM" ""
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe" "4/03/2017 3:09 AM" ""
+ "\DropboxUpdateTaskMachineCore" "Dropbox Update" "Dropbox, Inc." "c:\program files (x86)\dropbox\update\dropboxupdate.exe" "22/10/2015 4:22 AM" ""
+ "\DropboxUpdateTaskMachineUA" "Dropbox Update" "Dropbox, Inc." "c:\program files (x86)\dropbox\update\dropboxupdate.exe" "22/10/2015 4:22 AM" ""
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "15/07/2016 4:59 PM" ""
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "15/07/2016 4:59 PM" ""
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs" "16/07/2016 9:12 PM" ""
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe" "16/07/2016 11:55 AM" ""
+ "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA Container" "NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "20/01/2017 1:31 AM" ""
+ "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA nodejs launcher" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvnode\nvnodejslauncher.exe" "23/02/2017 11:57 PM" ""
+ "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA driver profile updater" "NVIDIA Corporation" "c:\program files\nvidia corporation\update core\nvprofileupdater64.exe" "22/02/2017 12:32 AM" ""
+ "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA driver profile updater" "NVIDIA Corporation" "c:\program files\nvidia corporation\update core\nvprofileupdater64.exe" "22/02/2017 12:32 AM" ""
+ "\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA telemetry monitor" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\update core\nvtmmon.exe" "22/02/2017 12:27 AM" ""
+ "\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\update core\nvtmrep.exe" "22/02/2017 12:27 AM" ""
+ "\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\update core\nvtmrep.exe" "22/02/2017 12:27 AM" ""
+ "\OneDrive Standalone Update Task v2" "Standalone Updater" "Microsoft Corporation" "c:\users\maste\appdata\local\microsoft\onedrive\onedrivestandaloneupdater.exe" "28/03/2017 10:49 AM" ""
+ "\Overwolf Updater Task" "OverwolfUpdater" "Overwolf LTD" "c:\program files (x86)\overwolf\overwolfupdater.exe" "22/03/2017 5:35 AM" ""
+ "\SafeZone scheduled Autoupdate 1483712114" "Avast SafeZone Browser" "Avast Software" "c:\program files\avast software\szbrowser\launcher.exe" "22/03/2017 6:49 PM" ""
+ "\{17B35073-4F96-4EFF-A8F6-189010C68CA3}" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\chrome.exe" "29/03/2017 7:57 AM" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "13/04/2017 10:16 AM" ""
+ "Apple Mobile Device Service" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe" "13/02/2015 12:48 PM" ""
+ "AppleChargerSrv" "Apple mobile devices charging service" "" "c:\windows\system32\applechargersrv.exe" "6/04/2010 5:53 PM" ""
+ "aswbIDSAgent" "Provides Identity Protection Against Cyber Crime." "AVAST Software s.r.o." "c:\program files\avast software\avast\x64\aswidsagenta.exe" "21/03/2017 10:31 PM" ""
+ "avast! Antivirus" "Manages and implements Avast antivirus services for this computer. This includes the real-time shields, the virus chest and the scheduler." "AVAST Software" "c:\program files\avast software\avast\avastsvc.exe" "29/03/2017 12:46 AM" ""
+ "BEService" "" "" "c:\program files (x86)\common files\battleye\beservice.exe" "13/01/2017 12:24 PM" ""
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe" "13/08/2015 8:17 AM" ""
+ "cphs" "Intel(R) Content Protection HECI Service - enables communication with the Content Protection FW" "Intel Corporation" "c:\windows\syswow64\intelcphecisvc.exe" "10/07/2015 8:49 AM" ""
+ "cplspcon" "Intel(R) Content Protection HDCP Service - enables communication with Content Protection HDCP HW" "Intel Corporation" "c:\windows\system32\intelcphdcpsvc.exe" "12/08/2016 7:28 AM" ""
+ "Creative ALchemy AL6 Licensing Service" "Provides licensing services for Creative ALchemy." "Creative Labs" "c:\program files (x86)\common files\creative labs shared\service\al6licensing.exe" "17/02/2007 12:23 AM" ""
+ "Creative Audio Engine Licensing Service" "Provides licensing services for Creative Audio Engine." "Creative Labs" "c:\program files (x86)\common files\creative labs shared\service\ctaelicensing.exe" "17/02/2007 12:23 AM" ""
+ "CTAudSvcService" "Creative Audio Service" "Creative Technology Ltd" "c:\program files (x86)\creative\shared files\ctaudsvc.exe" "14/09/2011 5:04 PM" ""
+ "dbupdate" "Keeps your Dropbox software up to date. If this service is disabled or stopped, your Dropbox software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Dropbox software using it." "Dropbox, Inc." "c:\program files (x86)\dropbox\update\dropboxupdate.exe" "22/10/2015 4:22 AM" ""
+ "dbupdatem" "Keeps your Dropbox software up to date. If this service is disabled or stopped, your Dropbox software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Dropbox software using it." "Dropbox, Inc." "c:\program files (x86)\dropbox\update\dropboxupdate.exe" "22/10/2015 4:22 AM" ""
+ "DbxSvc" "Dropbox Service" "Dropbox, Inc." "c:\windows\system32\dbxsvc.exe" "21/01/2017 2:53 AM" ""
+ "Disc Soft Lite Bus Service" "Disc Soft Bus Service Lite" "Disc Soft Ltd" "c:\wolfies\programs\daemon tools lite\discsoftbusservicelite.exe" "6/02/2017 6:34 PM" ""
+ "EasyAntiCheat" "EasyAntiCheat Service" "EasyAntiCheat Ltd" "c:\windows\syswow64\easyanticheat.exe" "2/12/2016 1:58 AM" ""
+ "EasyTuneEngineService" "EasyTune Engine service" "GIGA-BYTE TECHNOLOGY CO., LTD." "c:\program files (x86)\gigabyte\easytuneengineservice\easytuneengineservice.exe" "14/06/2016 7:45 PM" ""
+ "EvoSvc" "Provides networking and misc. features for Evolve." "Echobit LLC" "c:\program files\echobit\evolve\evosvc.exe" "7/11/2015 8:42 AM" ""
+ "EvtEng" "Manages the event trace messages for all the Intel® PROSet/Wireless Software components." "Intel(R) Corporation" "c:\program files\intel\wifi\bin\evteng.exe" "27/12/2016 8:46 PM" ""
+ "ExpressVpnService" "This service enables ExpressVPN to connect to VPN locations and allows Network Lock to operate. It also ensures that VPN locations and configuration settings are updated on a regular basis. If this service is stopped, ExpressVPN will not function and any VPN connection will be terminated." "" "c:\program files (x86)\expressvpn\bootstrap\amd64\nssm.exe" "1/09/2014 1:04 AM" ""
+ "gadjservice" "AdjustService" "" "c:\program files (x86)\gigabyte\appcenter\adjustservice.exe" "25/06/2015 11:15 AM" ""
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "15/07/2016 4:59 PM" ""
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "15/07/2016 4:59 PM" ""
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe" "3/03/2012 6:43 AM" ""
+ "hshld" "Hotspot Shield 6.5.4" "AnchorFree Inc." "c:\program files (x86)\hotspot shield\bin\cmw_srv.exe" "22/03/2017 3:55 AM" ""
+ "HwmRecordService" "HwmRecordService" "GIGA-BYTE TECHNOLOGY CO., LTD." "c:\program files (x86)\gigabyte\siv\hwmrecordservice.exe" "24/05/2016 10:19 PM" ""
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files\intel\intel(r) rapid storage technology\iastordatamgrsvc.exe" "4/11/2015 7:57 PM" ""
+ "ibtsiva" "Intel(R) Wireless Bluetooth(R) iBtSiva Service" "Intel Corporation" "c:\windows\system32\ibtsiva.exe" "3/12/2016 8:15 AM" ""
+ "ICCS" "Intel(R) Integrated Clock Controller Service - Intel(R) ICCS" "Intel Corporation" "c:\program files (x86)\intel\intel(r) integrated clock controller service\iccproxy.exe" "3/06/2015 10:27 AM" ""
+ "igfxCUIService2.0.0.0" "Service for Intel(R) HD Graphics Control Panel" "Intel Corporation" "c:\windows\system32\igfxcuiservice.exe" "12/08/2016 6:50 AM" ""
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe" "23/03/2017 10:56 AM" ""
+ "Killer Service V2" "Controls the Killer NIC functionality. This service must be started in order for the features presented in the Network Manager to be active." "Rivet Networks" "c:\program files\killer networking\network manager\killerservice.exe" "13/02/2016 6:28 AM" ""
+ "MyWiFiDHCPDNS" "Wireless PAN DHCP and DNS Server" "" "c:\program files\intel\wifi\bin\pandhcpdns.exe" "27/12/2016 8:29 PM" ""
+ "NvContainerLocalSystem" "Container service for NVIDIA root features" "NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "20/01/2017 1:31 AM" ""
+ "NvContainerNetworkService" "Container service for NVIDIA network features" "NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "20/01/2017 1:31 AM" ""
+ "NVDisplay.ContainerLocalSystem" "Container service for NVIDIA root features" "NVIDIA Corporation" "c:\program files\nvidia corporation\display.nvcontainer\nvdisplay.container.exe" "1/04/2017 11:34 AM" ""
+ "NvTelemetryContainer" "Container service for NVIDIA Telemetry" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvtelemetry\nvtelemetrycontainer.exe" "15/03/2017 10:27 AM" ""
+ "OcButtonService" "OcButtonService" "GIGA-BYTE TECHNOLOGY CO., LTD." "c:\program files (x86)\gigabyte\easytuneengineservice\ocbuttonservice.exe" "14/06/2016 7:49 PM" ""
+ "Origin Client Service" "OriginClientService" "Electronic Arts" "c:\wolfies\programs\origin\originclientservice.exe" "25/03/2017 4:51 AM" ""
+ "Origin Web Helper Service" "OriginWebHelperService" "Electronic Arts" "c:\wolfies\programs\origin\originwebhelperservice.exe" "25/03/2017 4:52 AM" ""
+ "OverwolfUpdater" "OverwolfUpdater" "Overwolf LTD" "c:\program files (x86)\overwolf\overwolfupdater.exe" "22/03/2017 5:35 AM" ""
+ "Razer Game Scanner Service" "GameScannerService" "" "c:\program files (x86)\razer\razer services\gss\gamescannerservice.exe" "25/09/2016 7:50 AM" ""
+ "RegSrvc" "Provides registry access to all Intel® PROSet/Wireless Software components" "Intel(R) Corporation" "c:\program files\common files\intel\wirelesscommon\regsrvc.exe" "27/12/2016 8:27 PM" ""
+ "RzSurroundVADStreamingService" "RazerSurround VAD Streaming Service" "Razer Inc" "c:\programdata\razer\synapse\devices\razer surround\driver\rzsurroundvadstreamingservice.exe" "4/11/2016 11:39 AM" ""
+ "Sense" "Windows Defender Advanced Threat Protection service helps protect against advanced threats by monitoring and reporting security events that happen on the computer." "Microsoft Corporation" "c:\program files\windows defender advanced threat protection\mssense.exe" "16/09/2016 2:01 AM" ""
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe" "2/01/2017 9:20 AM" ""
+ "Smart TimeLock" "Smart TimeLock - Computer time management." "Gigabyte Technology CO., LTD." "c:\program files (x86)\gigabyte\smart timelock\timemgmtdaemon.exe" "22/02/2013 4:06 PM" ""
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe" "23/03/2017 9:13 AM" ""
+ "TeamViewer" "TeamViewer Remote Software" "TeamViewer GmbH" "c:\program files (x86)\teamviewer\teamviewer_service.exe" "15/12/2016 8:16 PM" ""
+ "WdNisSvc" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\windows defender\nissrv.exe" "16/07/2016 11:54 AM" ""
+ "WinDefend" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\msmpeng.exe" "4/03/2017 4:04 PM" ""
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe" "7/09/2016 2:11 PM" ""
+ "ZeroConfigService" "Manages the zero configuration service for all the Intel® PROSet/Wireless Software components." "Intel® Corporation" "c:\program files\intel\wifi\bin\zeroconfigservice.exe" "27/12/2016 8:44 PM" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "13/04/2017 10:16 AM" ""
+ "3ware" "LSI 3ware SCSI Storport Driver" "LSI" "c:\windows\system32\drivers\3ware.sys" "19/05/2015 7:58 AM" ""
+ "ADP80XX" "PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller" "PMC-Sierra" "c:\windows\system32\drivers\adp80xx.sys" "10/04/2015 6:19 AM" ""
+ "AFTrafMgr1.2" "Hotspot Shield support device driver" "AnchorFree Inc." "c:\program files (x86)\hotspot shield\bin\trafmgr_1_2_64.sys" "8/12/2016 3:11 AM" ""
+ "amdsata" "AHCI 1.3 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys" "14/05/2015 9:44 PM" ""
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys" "12/12/2012 6:51 AM" ""
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys" "1/05/2015 10:25 AM" ""
+ "AppleCharger" "Apple mobile devices charging program" "" "c:\windows\system32\drivers\applecharger.sys" "28/10/2013 11:29 AM" ""
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "PMC-Sierra, Inc." "c:\windows\system32\drivers\arcsas.sys" "10/04/2015 4:42 AM" ""
+ "aswbidsdriver" "IDS Application Activity Monitor Driver." "AVAST Software s.r.o." "c:\windows\system32\drivers\aswbidsdrivera.sys" "21/03/2017 10:28 PM" ""
+ "aswbidsh" "Application Activity Monitor Helper Driver" "AVAST Software s.r.o." "c:\windows\system32\drivers\aswbidsha.sys" "21/03/2017 10:28 PM" ""
+ "aswblog" "Logging Driver" "AVAST Software s.r.o." "c:\windows\system32\drivers\aswbloga.sys" "21/03/2017 10:28 PM" ""
+ "aswbuniv" "Universal Driver" "AVAST Software s.r.o." "c:\windows\system32\drivers\aswbuniva.sys" "21/03/2017 10:28 PM" ""
+ "aswHwid" "avast! HardwareID" "AVAST Software" "c:\windows\system32\drivers\aswhwid.sys" "29/03/2017 12:42 AM" ""
+ "aswKbd" "avast! keyboard filter driver (aswKbd)" "AVAST Software" "c:\windows\system32\drivers\aswkbd.sys" "29/03/2017 12:42 AM" ""
+ "aswMonFlt" "avast! mini-filter driver (aswMonFlt)" "AVAST Software" "c:\windows\system32\drivers\aswmonflt.sys" "29/03/2017 12:54 AM" ""
+ "aswRdr" "avast! WFP Redirect driver" "AVAST Software" "c:\windows\system32\drivers\aswrdr2.sys" "29/03/2017 12:43 AM" ""
+ "aswRvrt" "Avast Revert" "AVAST Software" "c:\windows\system32\drivers\aswrvrt.sys" "29/03/2017 12:42 AM" ""
+ "aswSnx" "avast! virtualization driver (aswSnx)" "AVAST Software" "c:\windows\system32\drivers\aswsnx.sys" "29/03/2017 12:43 AM" ""
+ "aswSP" "avast! Self Protection" "AVAST Software" "c:\windows\system32\drivers\aswsp.sys" "29/03/2017 12:54 AM" ""
+ "aswStm" "avast! StreamFilter Callout Driver" "AVAST Software" "c:\windows\system32\drivers\aswstm.sys" "29/03/2017 1:00 AM" ""
+ "aswVmm" "avast! VM Monitor" "AVAST Software" "c:\windows\system32\drivers\aswvmm.sys" "29/03/2017 12:54 AM" ""
+ "b06bdrv" "QLogic Gigabit Ethernet VBD" "QLogic Corporation" "c:\windows\system32\drivers\bxvbda.sys" "25/05/2016 4:33 PM" ""
+ "bcmfn" "BCM Function 2 Device Driver" "Windows (R) Win 7 DDK provider" "c:\windows\system32\drivers\bcmfn.sys" "8/06/2015 6:02 PM" ""
+ "bcmfn2" "BCM Function 2 Device Driver" "Windows (R) Win 7 DDK provider" "c:\windows\system32\drivers\bcmfn2.sys" "16/03/2014 7:37 PM" ""
+ "BfLwf" "@oem20.inf,%BfLwf_Desc%;Killer Bandwidth Control" "Rivet Networks, LLC." "c:\windows\system32\drivers\bwcw10x64.sys" "10/02/2016 3:53 AM" ""
+ "cht4iscsi" "Chelsio iSCSI VMiniport Driver" "Chelsio Communications" "c:\windows\system32\drivers\cht4sx64.sys" "20/04/2016 7:24 PM" ""
+ "cht4vbd" "Virtual Bus Driver for Chelsio ® T4 Chipset" "Chelsio Communications" "c:\windows\system32\drivers\cht4vx64.sys" "15/04/2016 5:02 PM" ""
+ "dbx" "Dropbox Mini-Filter Driver" "" "File not found: system32\DRIVERS\dbx.sys" "" ""
+ "dg_ssudbus" "SAMSUNG USB Composite Device Driver" "Samsung Electronics Co., Ltd." "c:\windows\system32\drivers\ssudbus.sys" "24/08/2016 5:30 PM" ""
+ "dtlitescsibus" "DAEMON Tools Lite Virtual SCSI Bus Driver" "Disc Soft Ltd" "c:\windows\system32\drivers\dtlitescsibus.sys" "25/09/2015 5:47 AM" ""
+ "dtliteusbbus" "DAEMON Tools Lite Virtual USB Bus Driver" "Disc Soft Ltd" "c:\windows\system32\drivers\dtliteusbbus.sys" "28/12/2015 10:35 PM" ""
+ "ebdrv" "QLogic 10 GigE VBD" "QLogic Corporation" "c:\windows\system32\drivers\evbda.sys" "25/05/2016 4:31 PM" ""
+ "EvolveVirtualAdapter" "Evolve Virtual Miniport Driver" "Echobit, LLC" "c:\windows\system32\drivers\evolve.sys" "7/08/2010 2:17 PM" ""
+ "gdrv" "GIGABYTE Tools" "Windows (R) Server 2003 DDK provider" "c:\windows\gdrv.sys" "4/07/2013 1:57 PM" ""
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys" "4/05/2012 5:26 AM" ""
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys" "27/03/2013 7:06 AM" ""
+ "iagpio" "Intel(R) Serial IO GPIO Controller Driver" "Intel(R) Corporation" "c:\windows\system32\drivers\iagpio.sys" "18/02/2016 5:05 PM" ""
+ "iai2c" "Intel(R) Serial IO I2C Driver" "Intel(R) Corporation" "c:\windows\system32\drivers\iai2c.sys" "22/09/2015 4:23 PM" ""
+ "iaLPSS2i_GPIO2" "Intel(R) Serial IO GPIO Driver v2" "Intel Corporation" "c:\windows\system32\drivers\ialpss2i_gpio2.sys" "3/03/2016 11:36 AM" ""
+ "iaLPSS2i_I2C" "Intel(R) Serial IO I2C Driver v2" "Intel Corporation" "c:\windows\system32\drivers\ialpss2i_i2c.sys" "3/03/2016 11:36 AM" ""
+ "iaLPSSi_GPIO" "Intel(R) Serial IO GPIO Controller Driver" "Intel Corporation" "c:\windows\system32\drivers\ialpssi_gpio.sys" "2/02/2015 6:30 PM" ""
+ "iaLPSSi_I2C" "Intel(R) Serial IO I2C Controller Driver" "Intel Corporation" "c:\windows\system32\drivers\ialpssi_i2c.sys" "25/02/2015 1:22 AM" ""
+ "iaStorA" "Intel(R) Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastora.sys" "4/11/2015 7:57 PM" ""
+ "iaStorAV" "Intel(R) Rapid Storage Technology driver (inbox) - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorav.sys" "19/02/2015 9:38 PM" ""
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys" "12/04/2011 4:18 AM" ""
+ "ibbus" "InfiniBand Fabric Bus Driver" "Mellanox" "c:\windows\system32\drivers\ibbus.sys" "10/04/2016 11:16 PM" ""
+ "ibtusb" "Intel(R) Wireless Bluetooth(R) Filter Driver" "Intel Corporation" "c:\windows\system32\drivers\ibtusb.sys" "3/12/2016 8:15 AM" ""
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys" "12/08/2016 7:29 AM" ""
+ "IntcAzAudAddService" "Realtek(r) High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys" "23/01/2016 12:39 AM" ""
+ "IntcDAud" "Intel(R) Display Audio Driver" "Intel(R) Corporation" "c:\windows\system32\drivers\intcdaud.sys" "27/06/2016 11:05 PM" ""
+ "KillerEth" "Killer e2400 PCI-E Gigabit Ethernet Controller" "Qualcomm Atheros, Inc." "c:\windows\system32\drivers\e2xw10x64.sys" "27/01/2016 9:28 AM" ""
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys" "26/03/2015 5:06 AM" ""
+ "LSI_SAS2i" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2i.sys" "29/03/2016 4:19 AM" ""
+ "LSI_SAS3i" "Avago SAS Gen3 Driver (StorPort)" "Avago Technologies" "c:\windows\system32\drivers\lsi_sas3i.sys" "29/03/2016 4:19 AM" ""
+ "LSI_SSS" "LSI SSS PCIe/Flash Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sss.sys" "16/03/2013 9:09 AM" ""
+ "MBfilt" "Creative Audio Driver" "Creative Technology Ltd." "c:\windows\system32\drivers\mbfilt64.sys" "31/07/2009 1:10 PM" ""
+ "megasas" "MEGASAS RAID Controller Driver for Windows" "Avago Technologies" "c:\windows\system32\drivers\megasas.sys" "5/03/2015 12:06 PM" ""
+ "megasas2i" "MEGASAS RAID Controller Driver for Windows" "Avago Technologies" "c:\windows\system32\drivers\megasas2i.sys" "23/07/2016 7:06 AM" ""
+ "megasr" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys" "4/06/2013 7:32 AM" ""
+ "MEIx64" "Intel(R) Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\teedriverw8x64.sys" "1/09/2015 5:19 AM" ""
+ "mlx4_bus" "MLX4 Bus Driver" "Mellanox" "c:\windows\system32\drivers\mlx4_bus.sys" "10/04/2016 11:19 PM" ""
+ "mvumis" "Marvell Flash Controller Driver" "Marvell Semiconductor, Inc." "c:\windows\system32\drivers\mvumis.sys" "24/05/2014 6:09 AM" ""
+ "ndfltr" "NetworkDirect Support Filter Driver" "Mellanox" "c:\windows\system32\drivers\ndfltr.sys" "10/04/2016 11:16 PM" ""
+ "Neo_VPN" "@oem64.inf,%Neo.Service.Desc%;VPN Client Adapter - VPN" "Trust.Zone VPN Project" "c:\windows\system32\drivers\neo_vpn.sys" "30/08/2016 6:25 AM" ""
+ "NetAdapterCx" "" "" "c:\windows\system32\drivers\netadaptercx.sys" "16/07/2016 11:58 AM" ""
+ "Netwtw04" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netwtw04.sys" "15/01/2017 9:33 PM" ""
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys" "15/03/2017 10:18 PM" ""
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 381.65 " "NVIDIA Corporation" "c:\windows\system32\driverstore\filerepository\nv_dispi.inf_amd64_e69a53b8ddde469c\nvlddmkm.sys" "1/04/2017 10:56 AM" ""
+ "nvraid" "NVIDIA® nForce(TM) RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys" "22/04/2014 3:58 AM" ""
+ "nvstor" "NVIDIA® nForce(TM) Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys" "22/04/2014 4:04 AM" ""
+ "NvStreamKms" "Nvidia Streaming Kernel Service" "NVIDIA Corporation" "c:\program files\nvidia corporation\nvstreamsrv\nvstreamkms.sys" "20/01/2017 1:28 AM" ""
+ "nvvad_WaveExtensible" "NVIDIA Virtual Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvvad64v.sys" "19/12/2016 3:20 PM" ""
+ "nvvhci" "Virtual USB Host Controller driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvvhci.sys" "28/12/2016 11:14 AM" ""
+ "percsas2i" "MEGASAS RAID Controller Driver for Windows" "Avago Technologies" "c:\windows\system32\drivers\percsas2i.sys" "15/03/2016 10:20 AM" ""
+ "percsas3i" "MEGASAS RAID Controller Driver for Windows" "Avago Technologies" "c:\windows\system32\drivers\percsas3i.sys" "5/03/2016 6:52 AM" ""
+ "Phosgene" "FaceRig virtual video camera" "Adoriasoft LLC" "c:\windows\system32\drivers\phosgene.sys" "2/09/2015 4:58 PM" ""
+ "rzendpt" "Razer RzEndPt" "Razer Inc" "c:\windows\system32\drivers\rzendpt.sys" "11/08/2015 8:43 PM" ""
+ "rzpmgrk" "Razer Overlay Support" "Razer, Inc." "c:\windows\system32\drivers\rzpmgrk.sys" "18/09/2015 4:12 AM" ""
+ "rzpnk" "Razer Overlay Support" "Razer, Inc." "c:\windows\system32\drivers\rzpnk.sys" "17/09/2015 9:46 AM" ""
+ "RZSURROUNDVADService" "RazerSurround VAD Audio driver" "Windows (R) Win 7 DDK provider" "c:\windows\system32\drivers\rzsurroundvad.sys" "15/02/2016 5:27 PM" ""
+ "rzudd" "Razer Rzudd Engine" "Razer Inc" "c:\windows\system32\drivers\rzudd.sys" "11/08/2015 8:43 PM" ""
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys" "25/09/2008 3:58 AM" ""
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys" "2/10/2008 7:26 AM" ""
+ "ssudmdm" "@oem53.inf,%ssud.Service.Desc%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.)" "Samsung Electronics Co., Ltd." "c:\windows\system32\drivers\ssudmdm.sys" "24/08/2016 5:30 PM" ""
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows x64" "Promise Technology, Inc." "c:\windows\system32\drivers\stexstor.sys" "27/11/2012 9:32 AM" ""
+ "tapexpressvpn" "TAP-Windows Virtual Network Driver (NDIS 6.0)" "The OpenVPN Project" "c:\windows\system32\drivers\tapexpressvpn.sys" "8/09/2016 5:18 PM" ""
+ "taphss6" "Anchorfree HSS VPN Adapter" "Anchorfree Inc." "c:\windows\system32\drivers\taphss6.sys" "1/04/2016 11:51 AM" ""
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys" "11/06/2015 3:38 PM" ""
+ "UsbCharger" "BC compliant mobile device (Android phone/tablet) charging program" "" "c:\windows\system32\drivers\usbcharger.sys" "24/10/2013 6:56 PM" ""
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys" "23/04/2014 4:51 AM" ""
+ "VSTXRAID" "VIA StorX RAID Controller Driver" "VIA Corporation" "c:\windows\system32\drivers\vstxraid.sys" "22/01/2013 4:30 AM" ""
+ "WinMad" "Kernel WinMad" "Mellanox" "c:\windows\system32\drivers\winmad.sys" "10/04/2016 11:16 PM" ""
+ "WinVerbs" "Kernel WinVerbs" "Mellanox" "c:\windows\system32\drivers\winverbs.sys" "10/04/2016 11:16 PM" ""
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Font Drivers" "" "" "" "16/07/2016 9:19 PM" ""
+ "Adobe Type Manager" "Windows NT OpenType/Type 1 Font Driver" "Adobe Systems Incorporated" "c:\windows\system32\atmfd.dll" "4/03/2017 4:02 PM" ""
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "7/04/2017 11:45 PM" ""
+ "msacm.bdmpeg" "" "" "c:\windows\system32\bdmpega64.acm" "5/08/2013 3:41 PM" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm" "16/07/2016 11:56 AM" ""
+ "vidc.mjpg" "" "" "c:\windows\system32\bdmjpeg64.dll" "5/08/2013 3:41 PM" ""
+ "vidc.mpeg" "" "" "c:\windows\system32\bdmpegv64.dll" "5/08/2013 3:41 PM" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "7/04/2017 11:45 PM" ""
+ "msacm.bdmpeg" "" "" "c:\windows\syswow64\bdmpega.acm" "5/08/2013 3:41 PM" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm" "16/07/2016 11:11 AM" ""
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll" "16/07/2016 11:12 AM" ""
+ "vidc.mjpg" "" "" "c:\windows\syswow64\bdmjpeg.dll" "5/08/2013 3:41 PM" ""
+ "vidc.mpeg" "" "" "c:\windows\syswow64\bdmpegv.dll" "5/08/2013 3:41 PM" ""
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "27/03/2017 4:08 PM" ""
+ "Bandisoft MPEG-1 Audio Decoder" "Bandisoft Directshow Filter" "www.Bandisoft.com" "c:\program files (x86)\bandimpeg1\bdfilters64.dll" "5/08/2013 3:41 PM" ""
+ "Bandisoft MPEG-1 Video Decoder" "Bandisoft Directshow Filter" "www.Bandisoft.com" "c:\program files (x86)\bandimpeg1\bdfilters64.dll" "5/08/2013 3:41 PM" ""
+ "Theora Encode Filter" "" "" "c:\wolfies\programs\open codecs\x64\dsftheoraencoder.dll" "12/01/2011 10:26 AM" ""
+ "WebM Muxer Filter" "WebM Multiplexer Filter" "Google" "c:\wolfies\programs\open codecs\x64\webmmux.dll" "12/01/2011 10:27 AM" ""
+ "WebM Splitter Filter" "Webm Splitter Filter" "Google" "c:\wolfies\programs\open codecs\x64\webmsplit.dll" "12/01/2011 10:27 AM" ""
+ "WebM VP8 Decoder Filter" "WebM VP8 Decoder Filter" "Google" "c:\wolfies\programs\open codecs\x64\vp8decoder.dll" "12/01/2011 10:28 AM" ""
+ "WebM VP8 Encoder Filter" "WebM VP8 Encoder Filter" "Google" "c:\wolfies\programs\open codecs\x64\vp8encoder.dll" "12/01/2011 10:28 AM" ""
+ "Xiph.Org FLAC Decoder" "" "" "c:\wolfies\programs\open codecs\x64\dsfflacdecoder.dll" "12/01/2011 10:27 AM" ""
+ "Xiph.Org FLAC Encoder" "" "" "c:\wolfies\programs\open codecs\x64\dsfflacencoder.dll" "12/01/2011 10:27 AM" ""
+ "Xiph.Org Native FLAC Decoder" "" "" "c:\wolfies\programs\open codecs\x64\dsfnativeflacsource.dll" "12/01/2011 10:27 AM" ""
+ "Xiph.Org Ogg Demuxer" "" "" "c:\wolfies\programs\open codecs\x64\dsfoggdemux2.dll" "12/01/2011 10:26 AM" ""
+ "Xiph.Org Ogg Muxer" "" "" "c:\wolfies\programs\open codecs\x64\dsfoggmux.dll" "12/01/2011 10:27 AM" ""
+ "Xiph.Org Speex Decoder" "" "" "c:\wolfies\programs\open codecs\x64\dsfspeexdecoder.dll" "12/01/2011 10:26 AM" ""
+ "Xiph.Org Speex Encoder" "" "" "c:\wolfies\programs\open codecs\x64\dsfspeexencoder.dll" "12/01/2011 10:26 AM" ""
+ "Xiph.Org Theora Decoder" "" "" "c:\wolfies\programs\open codecs\x64\dsftheoradecoder.dll" "12/01/2011 10:26 AM" ""
+ "Xiph.Org Vorbis Decoder" "" "" "c:\wolfies\programs\open codecs\x64\dsfvorbisdecoder.dll" "12/01/2011 10:26 AM" ""
+ "Xiph.Org Vorbis Encoder" "" "" "c:\wolfies\programs\open codecs\x64\dsfvorbisencoder.dll" "12/01/2011 10:26 AM" ""
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "27/03/2017 4:08 PM" ""
+ "Bandisoft MPEG-1 Audio Decoder" "Bandisoft Directshow Filter" "www.Bandisoft.com" "c:\program files (x86)\bandimpeg1\bdfilters.dll" "5/08/2013 3:41 PM" ""
+ "Bandisoft MPEG-1 Video Decoder" "Bandisoft Directshow Filter" "www.Bandisoft.com" "c:\program files (x86)\bandimpeg1\bdfilters.dll" "5/08/2013 3:41 PM" ""
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files\echobit\evolve\external\lavfilters\lavaudio.ax" "25/01/2012 1:05 AM" ""
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files\echobit\evolve\external\lavfilters\lavsplitter.ax" "25/01/2012 1:05 AM" ""
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files\echobit\evolve\external\lavfilters\lavsplitter.ax" "25/01/2012 1:05 AM" ""
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files\echobit\evolve\external\lavfilters\lavvideo.ax" "25/01/2012 1:05 AM" ""
+ "Theora Encode Filter" "" "" "c:\wolfies\programs\open codecs\dsftheoraencoder.dll" "12/01/2011 10:21 AM" ""
+ "WebM Muxer Filter" "WebM Multiplexer Filter" "Google" "c:\program files (x86)\common files\webm project\webmdshow\webmmux.dll" "26/10/2013 8:43 AM" ""
+ "WebM Source Filter" "WebM Source Filter" "Google" "c:\program files (x86)\common files\webm project\webmdshow\webmsource.dll" "26/10/2013 8:44 AM" ""
+ "WebM Splitter Filter" "Webm Splitter Filter" "Google" "c:\program files (x86)\common files\webm project\webmdshow\webmsplit.dll" "26/10/2013 8:44 AM" ""
+ "WebM Vorbis Decoder Filter" "WebM Vorbis Decoder" "" "c:\program files (x86)\common files\webm project\webmdshow\webmvorbisdecoder.dll" "26/10/2013 8:44 AM" ""
+ "WebM VP8 Decoder Filter" "WebM VP8 Decoder Filter" "Google" "c:\program files (x86)\common files\webm project\webmdshow\vp8decoder.dll" "26/10/2013 8:44 AM" ""
+ "WebM VP8 Encoder Filter" "WebM VP8 Encoder Filter" "Google" "c:\program files (x86)\common files\webm project\webmdshow\vp8encoder.dll" "26/10/2013 8:44 AM" ""
+ "WebM VP9 Decoder Filter" "WebM VP9 Decoder Filter" "Google" "c:\program files (x86)\common files\webm project\webmdshow\vp9decoder.dll" "26/10/2013 8:57 AM" ""
+ "Xiph.Org FLAC Decoder" "" "" "c:\wolfies\programs\open codecs\dsfflacdecoder.dll" "12/01/2011 10:21 AM" ""
+ "Xiph.Org FLAC Encoder" "" "" "c:\wolfies\programs\open codecs\dsfflacencoder.dll" "12/01/2011 10:21 AM" ""
+ "Xiph.Org Native FLAC Decoder" "" "" "c:\wolfies\programs\open codecs\dsfnativeflacsource.dll" "12/01/2011 10:21 AM" ""
+ "Xiph.Org Ogg Demuxer" "" "" "c:\wolfies\programs\open codecs\dsfoggdemux2.dll" "12/01/2011 10:21 AM" ""
+ "Xiph.Org Ogg Muxer" "" "" "c:\wolfies\programs\open codecs\dsfoggmux.dll" "12/01/2011 10:21 AM" ""
+ "Xiph.Org Speex Decoder" "" "" "c:\wolfies\programs\open codecs\dsfspeexdecoder.dll" "12/01/2011 10:21 AM" ""
+ "Xiph.Org Speex Encoder" "" "" "c:\wolfies\programs\open codecs\dsfspeexencoder.dll" "12/01/2011 10:21 AM" ""
+ "Xiph.Org Theora Decoder" "" "" "c:\wolfies\programs\open codecs\dsftheoradecoder.dll" "12/01/2011 10:21 AM" ""
+ "Xiph.Org Vorbis Decoder" "" "" "c:\wolfies\programs\open codecs\dsfvorbisdecoder.dll" "12/01/2011 10:21 AM" ""
+ "Xiph.Org Vorbis Encoder" "" "" "c:\wolfies\programs\open codecs\dsfvorbisencoder.dll" "12/01/2011 10:21 AM" ""
"HKLM\SOFTWARE\Classes\Htmlfile\Shell\Open\Command\(Default)" "" "" "" "5/10/2016 6:44 AM" ""
+ "C:\Program Files\Internet Explorer\iexplore.exe" "Internet Explorer" "Microsoft Corporation" "c:\program files\internet explorer\iexplore.exe" "4/03/2017 3:55 PM" ""
"HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls" "" "" "" "16/07/2016 9:18 PM" ""
+ "_Wow64" "" "" "File not found: C:\Windows\SysWOW64\Wow64.dll" "" ""
+ "_Wow64cpu" "" "" "File not found: C:\Windows\SysWOW64\Wow64cpu.dll" "" ""
+ "_Wow64win" "" "" "File not found: C:\Windows\SysWOW64\Wow64win.dll" "" ""
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" "" "4/10/2016 5:03 PM" ""
+ "AutoGreenCP" "" "" "c:\windows\system32\autogreencp.dll" "21/08/2015 4:06 PM" ""
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" "" "7/01/2017 9:09 AM" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll" "13/08/2015 8:18 AM" ""
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" "" "7/01/2017 9:09 AM" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll" "13/08/2015 8:17 AM" ""
"HKLM\Software\Microsoft\Office\Outlook\Addins" "" "" "" "6/01/2017 11:42 PM" ""
+ "Connect Class" "OutlookChangeNotifier" "Apple Inc." "c:\program files\common files\apple\mobile device support\outlookchangenotifieraddin.dll" "9/09/2016 3:21 AM" ""
 
  • Like
Reactions: MR.Wolfie
Not finding the reference in the logs...

Lets look a bit deeper....

Please run Farbar Recovery Scan Tool to give me a fresh look at your system.

Please download the FRST 32 bit or FRST 64bit version to suit your operating system. It is important FRST is downloaded to your desktop.

If you are unsure if your operating system is 32 or 64 Bit please go HERE.

  • Right-click on FRST icon and select Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Make sure that Addition option is checked, as well as Shortcut.txt
  • Press Scan button and wait.
  • The tool will produce three logfiles on your desktop: FRST.txt, and Addition.txt -- & Shortcut.txt
Please Copy & Paste them into your next reply. But attach Shortcut.txt
 
  • Like
Reactions: MR.Wolfie
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by maste (administrator) on EEVEE (13-04-2017 12:03:58)
Running from C:\Users\maste\Downloads
Loaded Profiles: maste (Available Profiles: defaultuser0 & maste)
Platform: Windows 10 Pro Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
() C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Disc Soft Ltd) C:\Wolfies\Programs\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Electronic Arts) C:\Wolfies\Programs\Origin\OriginWebHelperService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\Smart TimeLock\AlarmClock.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Gigabyte Technology CO.) C:\Program Files\Gigabyte\Smart Backup\RPMDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeHost.exe
() C:\Program Files\Plantronics\HD1\optimus3D_x64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hammer & Chisel, Inc.) C:\ProgramData\maste\Discord\app-0.0.297\Discord.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Hammer & Chisel, Inc.) C:\ProgramData\maste\Discord\app-0.0.297\Discord.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB3\Sound Blaster X-Fi MB3\SBXFIMB3.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Hammer & Chisel, Inc.) C:\ProgramData\maste\Discord\app-0.0.297\Discord.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Razer, Inc.) C:\Users\maste\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.103.44.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.103.44.0\OverwolfHelper64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Razer, Inc.) C:\Users\maste\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Mojang) C:\Wolfies\Games\minecraft\MinecraftLauncher.exe
(Mojang) C:\Wolfies\Games\minecraft\MinecraftLauncher.exe
(Oracle Corporation) C:\Wolfies\Games\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
(Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.103.44.0\OverwolfBrowser.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8104.42387.0_x64__8wekyb3d8bbwe\HxTsr.exe
() C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8104.42387.0_x64__8wekyb3d8bbwe\HxMail.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8844032 2016-01-27] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-05] (Intel Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [GamecomSound] => C:\Program Files\Plantronics\HD1\optimus3D_x64.exe [3321632 2015-10-19] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-03-22] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-04-01] (AVAST Software)
HKLM-x32\...\Run: [Sound Blaster X-Fi MB 3] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB3\Sound Blaster X-Fi MB3\SBXFIMB3.exe [2112512 2015-06-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2017-03-02] (Razer Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2867712 2017-01-09] (Dominik Reichl)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28329912 2017-04-07] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\Gigabyte\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>)
HKLM-x32\...\RunOnce: [EasyTune] => C:\Program Files (x86)\GIGABYTE\EasyTune\etro.exe [5632 2016-10-03] (GIGA-BYTE TECHNOLOGY CO., LTD.)
HKLM-x32\...\RunOnce: [EasyTuneEngineService] => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EngineRunOnce.exe [14632 2016-05-03] (GIGA-BYTE TECHNOLOGY CO., LTD.)
HKLM-x32\...\RunOnce: [SIV] => C:\Program Files (x86)\GIGABYTE\SIV\sivro.exe [5632 2016-04-27] (GIGA-BYTE TECHNOLOGY CO., LTD.)
HKLM-x32\...\RunOnce: [DualBiosRescue] => C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe [12096 2015-08-19] ()
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] ()
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\Run: [Discord] => C:\ProgramData\maste\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3019552 2017-03-23] (Valve Corporation)
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-04] (Piriform Ltd)
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Wolfies\Programs\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-06] (Disc Soft Ltd)
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1058360 2017-03-22] ()
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-01] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-01] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-04-07] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-10-04]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{16a6161c-f829-41f6-9486-be026f076226}: [DhcpNameServer] 10.157.0.1
Tcpip\..\Interfaces\{8a84d0c0-c686-4d0d-a847-4310ccc0f768}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{d952ef50-838f-4589-81ae-c463424c2cda}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2016-07-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-22] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-01-06] (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-22] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-22] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-01-06] (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-22] (Oracle Corporation)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2016-07-16] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-01-06] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-01-06] (Google Inc.)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-01-06]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2017-01-06]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-22] (Oracle Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1227197.dll [2017-02-20] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-22] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqncPExR2N28ytodD9Xa1vXSdfqtMaAXG3CqUIVeAopGqIgBPc-JowK8w_sEXzHCvZ4CD1momms2-h2kI8pGF0NlCKrU2O1Jw7RU9U0AptRbjZXLxmgnG2ybkBKgUj51oEwgGAdsSMNJWTnvL3ZJ7CixrNQ,,
CHR StartupUrls: Default -> "hxxp://www.facebook.com/","hxxps://www.google.com.au/","hxxp://www.youtube.com/"
CHR DefaultSearchKeyword: Default -> google.com.au_
CHR Profile: C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default [2017-04-13]
CHR Extension: (Google Slides) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-10-04]
CHR Extension: (Google Docs) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-04]
CHR Extension: (Google Drive) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-04]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2017-03-01]
CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2017-04-10]
CHR Extension: (YouTube) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-04]
CHR Extension: (Adblock Plus) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-23]
CHR Extension: (Google Search) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-10-04]
CHR Extension: (Dropbox for Gmail) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2017-03-01]
CHR Extension: (Avast SafePrice) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-03-14]
CHR Extension: (Google Sheets) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-10-04]
CHR Extension: (Chrome Capture) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggaabchcecdbomdcnbahdfddfikjmphe [2017-03-29]
CHR Extension: (Google Docs Offline) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-06]
CHR Extension: (AdBlock) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-13]
CHR Extension: (SwagButton) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngocbkfmikdgphklgmmehbjjlfgdemm [2017-04-10]
CHR Extension: (Avast Online Security) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-04-04]
CHR Extension: (FA Notify) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifliepkgmpfjldjnkiloelnbgcpdgglp [2017-01-06]
CHR Extension: (Grammarly for Chrome) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2017-04-06]
CHR Extension: (Google Hangouts) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2017-02-11]
CHR Extension: (Little Alchemy) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2017-01-06]
CHR Extension: (Firing Rage - Shooting Game!) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfbnajlkodkbdljddpmcpicfddnjehhe [2017-03-07]
CHR Extension: (Webutation) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfclfmabiojpommfcalfdgjjeaahnjbj [2017-01-06]
CHR Extension: (Ge.tt) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\nflehelhgpjjhfiigceaplnmgiblnclo [2017-01-06]
CHR Extension: (Chrome Web Store Payments) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2017-04-06]
CHR Extension: (chromeIPass) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompiailgknfdndiefoaoiligalphfdae [2017-03-18]
CHR Extension: (Gmail) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-04]
CHR Extension: (Chrome Media Router) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-03-17] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-07] ()
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7398336 2017-03-30] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [261712 2017-04-01] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1465352 2017-01-14] ()
S3 cplspcon; C:\Windows\system32\IntelCpHDCPSvc.exe [439784 2016-08-18] (Intel Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2016-10-04] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2016-10-04] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [406016 2011-09-15] (Creative Technology Ltd) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-07] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-07] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46408 2017-04-07] (Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Wolfies\Programs\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-06] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [392480 2017-02-16] (EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142632 2016-06-14] (GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2017-01-16] (Echobit LLC)
R2 ExpressVpnService; C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe [331264 2017-02-06] () [File not signed]
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2604664 2017-03-21] (AnchorFree Inc.)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [118568 2016-05-25] (GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-05] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [365032 2016-08-18] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [454872 2016-02-13] (Rivet Networks)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-12-27] ()
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-24] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-24] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-04-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-04-01] (NVIDIA Corporation)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [127272 2016-06-14] (GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Origin Client Service; C:\Wolfies\Programs\Origin\OriginClientService.exe [2124296 2017-04-04] (Electronic Arts)
R2 Origin Web Helper Service; C:\Wolfies\Programs\Origin\OriginWebHelperService.exe [2185232 2017-04-04] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1325384 2017-03-22] (Overwolf LTD)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] ()
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-11-04] (Razer Inc)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-16] (Microsoft Corporation)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-03-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-12-27] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AFTrafMgr1.2; C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_2_64.sys [57272 2017-02-16] (AnchorFree Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-29] ()
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [307736 2017-03-30] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-03-30] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334088 2017-03-30] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-03-30] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-04-01] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-04-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [127112 2017-04-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-04-01] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-04-01] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1005048 2017-04-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [556784 2017-04-01] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [164064 2017-04-01] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-04-01] (AVAST Software)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW10x64.sys [144456 2016-02-13] (Rivet Networks, LLC.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-03-26] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-03-26] (Disc Soft Ltd)
S3 EvolveVirtualAdapter; C:\Windows\System32\drivers\evolve.sys [21656 2017-01-16] (Echobit, LLC)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [736000 2016-12-12] (Intel Corporation)
R3 KillerEth; C:\Windows\System32\drivers\e2xw10x64.sys [162456 2016-02-13] (Qualcomm Atheros, Inc.)
S3 Neo_VPN; C:\Windows\System32\drivers\neo_vpn.sys [22784 2017-01-22] (Trust.Zone VPN Project)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [7932160 2017-01-24] (Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e69a53b8ddde469c\nvlddmkm.sys [14841784 2017-04-04] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47672 2017-01-06] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [76840 2017-04-01] (NVIDIA Corporation)
R3 Phosgene; C:\Windows\system32\DRIVERS\Phosgene.sys [34136 2015-09-02] (Adoriasoft LLC)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [50392 2015-08-14] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-10-08] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\Windows\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 tapexpressvpn; C:\Windows\System32\drivers\tapexpressvpn.sys [26624 2016-12-15] (The OpenVPN Project)
R3 taphss6; C:\Windows\System32\drivers\taphss6.sys [42064 2017-03-21] (Anchorfree Inc.)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-25] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-13 12:00 - 2017-04-13 12:02 - 00085676 _____ C:\Users\maste\Downloads\Addition.txt
2017-04-13 11:59 - 2017-04-13 12:03 - 00037082 _____ C:\Users\maste\Downloads\FRST.txt
2017-04-13 11:59 - 2017-04-13 12:03 - 00000000 ____D C:\FRST
2017-04-13 11:58 - 2017-04-13 11:59 - 02424832 _____ (Farbar) C:\Users\maste\Downloads\FRST64.exe
2017-04-13 11:09 - 2017-04-13 11:09 - 00099482 _____ C:\Users\maste\Downloads\Autoruns.txt
2017-04-13 10:53 - 2017-04-13 10:53 - 01305227 _____ C:\Users\maste\Downloads\Autoruns.zip
2017-04-13 10:53 - 2017-04-13 10:53 - 00000000 ____D C:\Users\maste\Downloads\Autoruns
2017-04-12 19:05 - 2017-04-12 19:05 - 00000218 _____ C:\Users\maste\AppData\Local\recently-used.xbel
2017-04-12 18:52 - 2017-04-12 19:05 - 00000000 ____D C:\Users\maste\Downloads\Catfight (2016) [1080p] [YTS.AG]
2017-04-12 18:50 - 2017-04-12 18:50 - 00000000 ____D C:\Users\maste\Downloads\Day Of Reckoning (2016) [1080p] [YTS.AG]
2017-04-12 12:47 - 2017-04-12 12:47 - 00074717 _____ C:\Users\maste\Downloads\Ebin-Shaders-master-a3ce88e602193e72b674b56c229d55bff8f200b5.zip
2017-04-12 10:17 - 2017-04-12 10:17 - 00000000 ____D C:\Users\maste\AppData\Roaming\Twitch
2017-04-12 10:17 - 2017-04-12 10:17 - 00000000 ____D C:\ProgramData\Twitch
2017-04-12 10:16 - 2017-04-12 10:16 - 00001025 _____ C:\Users\maste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twitch.lnk
2017-04-12 09:44 - 2017-04-12 09:47 - 00000000 ____D C:\Users\maste\AppData\Local\Frontier_Developments
2017-04-12 09:30 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2017-04-12 09:30 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2017-04-12 09:30 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2017-04-12 09:30 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-04-12 09:29 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2017-04-12 09:29 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2017-04-12 09:29 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2017-04-12 09:29 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-04-12 09:29 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2017-04-12 09:29 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2017-04-12 09:29 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2017-04-12 09:29 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2017-04-12 09:29 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2017-04-12 09:29 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2017-04-12 09:29 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2017-04-12 09:26 - 2017-04-12 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frontier
2017-04-12 09:20 - 2017-04-12 09:25 - 128133104 _____ (Frontier Developments ) C:\Users\maste\Downloads\Client-Installer.exe
2017-04-12 08:16 - 2017-04-12 20:43 - 00000000 ___HD C:\OneDriveTemp
2017-04-10 20:29 - 2017-04-10 20:29 - 00000000 ____D C:\Users\maste\AppData\Local\Uber Entertainment
2017-04-10 19:51 - 2017-04-10 19:51 - 00392696 _____ C:\Users\maste\Downloads\invoice_1000397835_3017146879.pdf
2017-04-10 18:09 - 2017-04-10 18:09 - 00000000 ____D C:\Users\maste\AppData\Local\76561198022499344
2017-04-10 18:08 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2017-04-10 18:08 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2017-04-10 18:08 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2017-04-10 18:08 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2017-04-10 18:08 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2017-04-10 18:08 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-04-10 18:08 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2017-04-10 18:08 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-04-10 18:08 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2017-04-10 18:08 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2017-04-10 18:08 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2017-04-10 18:08 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2017-04-10 18:08 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2017-04-10 18:08 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2017-04-10 18:08 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2017-04-10 18:08 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2017-04-10 18:08 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2017-04-10 18:08 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2017-04-10 18:08 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2017-04-10 18:08 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2017-04-10 18:08 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-04-10 18:08 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2017-04-10 18:08 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2017-04-10 18:08 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2017-04-10 18:08 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-04-10 18:08 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2017-04-10 18:08 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2017-04-10 18:08 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2017-04-10 18:08 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2017-04-10 18:08 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2017-04-10 18:08 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-04-10 18:08 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2017-04-10 18:08 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2017-04-10 18:07 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2017-04-10 18:07 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2017-04-10 18:07 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2017-04-10 18:07 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2017-04-10 18:07 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2017-04-10 18:07 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-04-10 18:07 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2017-04-10 18:07 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-04-10 18:07 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2017-04-10 18:07 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2017-04-10 18:07 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2017-04-10 18:07 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-04-10 18:07 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2017-04-10 18:07 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2017-04-10 18:07 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2017-04-10 18:07 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2017-04-10 18:07 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2017-04-10 18:07 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2017-04-10 18:07 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-04-10 18:07 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2017-04-10 18:07 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2017-04-10 18:07 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2017-04-10 18:07 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2017-04-10 18:07 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2017-04-10 18:07 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2017-04-10 18:07 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-04-10 18:07 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-04-10 18:07 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2017-04-10 18:07 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2017-04-10 18:07 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2017-04-10 18:07 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2017-04-10 18:07 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-04-10 18:07 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2017-04-10 18:07 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2017-04-10 18:07 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2017-04-10 18:07 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2017-04-10 18:07 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2017-04-10 18:07 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2017-04-10 18:07 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2017-04-10 18:07 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-04-10 18:07 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2017-04-10 18:07 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2017-04-10 18:07 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2017-04-10 18:07 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-04-10 18:07 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2017-04-10 18:07 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2017-04-10 18:07 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2017-04-10 18:07 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2017-04-10 18:07 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2017-04-10 18:07 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-04-10 18:07 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2017-04-10 18:07 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2017-04-10 18:07 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2017-04-10 18:07 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-04-10 18:07 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2017-04-10 18:07 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2017-04-10 18:07 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2017-04-10 18:07 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2017-04-10 18:07 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2017-04-10 18:07 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2017-04-10 18:07 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2017-04-10 18:07 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-04-10 18:07 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2017-04-10 18:07 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2017-04-10 18:07 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2017-04-10 18:07 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2017-04-10 18:07 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2017-04-10 18:07 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2017-04-10 18:07 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2017-04-10 18:07 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-04-10 18:07 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2017-04-10 18:07 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2017-04-10 18:07 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2017-04-10 18:07 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2017-04-10 18:07 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2017-04-10 18:07 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2017-04-10 18:07 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2017-04-10 18:07 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2017-04-10 18:07 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2017-04-10 18:07 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2017-04-10 18:07 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2017-04-10 18:07 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-04-10 18:07 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2017-04-10 18:07 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2017-04-10 18:07 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2017-04-10 18:07 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2017-04-10 18:07 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2017-04-10 18:07 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2017-04-10 18:07 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-04-10 18:07 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2017-04-10 18:07 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2017-04-10 18:07 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2017-04-10 18:07 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2017-04-10 18:07 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2017-04-10 18:07 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2017-04-10 18:07 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2017-04-10 18:07 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2017-04-10 18:07 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2017-04-10 18:07 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2017-04-10 18:07 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2017-04-10 18:07 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2017-04-10 18:07 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2017-04-10 18:07 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2017-04-10 18:07 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2017-04-10 18:07 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2017-04-10 18:07 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2017-04-10 18:07 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2017-04-10 18:07 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2017-04-10 18:07 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2017-04-10 18:07 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2017-04-10 18:07 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2017-04-10 18:07 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2017-04-10 18:07 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2017-04-10 18:07 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2017-04-10 18:07 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2017-04-10 18:07 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2017-04-10 18:07 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2017-04-10 18:07 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2017-04-10 18:07 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2017-04-10 18:07 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2017-04-10 18:07 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2017-04-10 18:07 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2017-04-10 18:07 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2017-04-10 18:07 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2017-04-08 08:15 - 2017-04-08 08:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-04-07 23:46 - 2017-04-07 23:46 - 00000000 ____D C:\Windows\1C4551A64743409391E41477CD655043.TMP
2017-04-07 23:46 - 2017-04-01 12:57 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2017-04-07 23:45 - 2017-04-07 23:45 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-04-07 23:45 - 2017-04-01 11:06 - 00136248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-04-07 23:45 - 2017-03-11 06:47 - 00536864 _____ C:\Windows\system32\vulkan-1.dll
2017-04-07 23:45 - 2017-03-11 06:47 - 00525600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-04-07 23:45 - 2017-03-11 06:47 - 00254240 _____ C:\Windows\system32\vulkaninfo.exe
2017-04-07 23:45 - 2017-03-11 06:47 - 00233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-04-07 23:41 - 2017-04-03 01:42 - 00046008 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 40201152 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 35354048 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 35280320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 11111392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 11056272 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 10635192 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 09316648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 09014792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 08876272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 03790904 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 03246016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 01988032 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438165.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 01591352 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438165.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 01278528 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 01276128 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 01055800 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00995920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00993872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00990144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00960448 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00911296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00821184 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00776048 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00688968 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00652856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00618928 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00612088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00609728 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00577544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00499136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-04-07 23:41 - 2017-04-01 12:57 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-04-07 23:41 - 2017-04-01 12:57 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2017-04-07 20:26 - 2017-04-07 20:29 - 00000000 ____D C:\Users\maste\Downloads\[Exiled-Destiny] Ai Yori Aoshi Enishi [Dual-Audio DVD]
2017-04-07 02:27 - 2017-04-07 02:27 - 00046408 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-04-06 20:52 - 2017-04-10 18:09 - 00000000 ____D C:\Users\maste\Documents\Square Enix
2017-04-01 13:00 - 2017-04-01 13:00 - 00303053 _____ C:\Users\maste\Downloads\Dragon.webm
2017-04-01 12:13 - 2017-04-01 12:13 - 00004382 _____ C:\Windows\System32\Tasks\Overwolf Updater Task
2017-04-01 12:13 - 2017-04-01 12:13 - 00000000 ____D C:\Users\maste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2017-04-01 12:13 - 2017-04-01 12:13 - 00000000 ____D C:\Program Files (x86)\Overwolf
2017-04-01 12:12 - 2017-04-01 12:13 - 00000000 ____D C:\ProgramData\Overwolf
2017-04-01 12:08 - 2017-04-13 10:17 - 00000000 ____D C:\Users\maste\AppData\Local\Overwolf
2017-04-01 09:27 - 2017-04-01 09:26 - 00399944 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-03-30 17:31 - 2017-03-30 18:33 - 00000000 ____D C:\Users\maste\Downloads\Warrior's Gate (2016) [YTS.AG]
2017-03-30 06:53 - 2017-03-30 16:30 - 00000000 ____D C:\Users\maste\Downloads\Vengeance A Love Story (2017) [YTS.AG]
2017-03-30 06:09 - 2017-03-30 06:51 - 00000000 ____D C:\Users\maste\Downloads\The Bye Bye Man (2017) [YTS.AG]
2017-03-30 00:16 - 2017-03-30 00:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2017-03-30 00:00 - 2017-03-30 00:00 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2017-03-29 23:57 - 2017-04-07 14:44 - 00000000 ____D C:\Users\maste\AppData\Local\Battle.net
2017-03-29 23:57 - 2017-03-29 23:57 - 00000000 ____D C:\Users\maste\AppData\Local\Blizzard Entertainment
2017-03-29 23:57 - 2017-03-29 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blizzard App
2017-03-29 23:54 - 2017-03-30 00:00 - 00000000 ____D C:\Users\maste\AppData\Roaming\Battle.net
2017-03-29 23:52 - 2017-03-29 23:54 - 00000000 ____D C:\ProgramData\Battle.net
2017-03-29 11:45 - 2017-03-29 11:46 - 00000000 ____D C:\Users\maste\Documents\JustCause
2017-03-27 17:11 - 2017-03-30 02:48 - 00000000 ____D C:\Users\maste\Downloads\The Tailor Of Panama (2001) [1080p] [YTS.AG]
2017-03-27 17:07 - 2017-03-27 17:09 - 00000000 ____D C:\Users\maste\Downloads\The Offering (2016) [1080p] [YTS.AG]
2017-03-27 17:00 - 2017-04-07 21:34 - 00000000 ____D C:\Users\maste\Downloads\Morgan (2016) [1080p] [YTS.AG]
2017-03-27 16:10 - 2017-03-27 16:10 - 00000000 ____D C:\Users\maste\Documents\Holotech
2017-03-27 16:09 - 2017-03-27 16:09 - 00002811 _____ C:\Windows\unins000.dat
2017-03-27 16:09 - 2017-03-27 16:09 - 00000000 ____D C:\Program Files (x86)\Phosgene
2017-03-27 16:09 - 2017-03-27 16:08 - 01193161 _____ C:\Windows\unins000.exe
2017-03-27 16:09 - 2015-09-02 06:28 - 00034136 _____ (Adoriasoft LLC) C:\Windows\system32\Drivers\Phosgene.sys
2017-03-27 16:08 - 2017-03-27 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiph.Org
2017-03-27 16:06 - 2017-03-27 16:06 - 00000000 ____D C:\Program Files (x86)\directx
2017-03-26 16:45 - 2017-03-26 16:45 - 00000000 ____D C:\Users\maste\AppData\Local\Disc_Soft_Ltd
2017-03-26 16:39 - 2017-03-26 16:39 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2017-03-26 16:38 - 2017-03-26 20:26 - 00000000 ____D C:\Users\maste\AppData\Roaming\DAEMON Tools Lite
2017-03-26 16:38 - 2017-03-26 16:38 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2017-03-26 16:38 - 2017-03-26 16:38 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2017-03-26 16:38 - 2017-03-26 16:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2017-03-26 16:37 - 2017-03-26 16:37 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2017-03-26 16:23 - 2017-03-26 16:23 - 00000000 ____D C:\Users\maste\Downloads\DLM_Fastcut_Humble_Bundle_
2017-03-26 16:22 - 2017-03-26 16:22 - 00000000 ____D C:\Users\maste\Downloads\ChoiceChamber_v1.09
2017-03-26 16:22 - 2017-03-26 16:22 - 00000000 ____D C:\Users\maste\Downloads\beanbox_1.05_Humble
2017-03-26 16:22 - 2017-03-26 16:22 - 00000000 ____D C:\Users\maste\Documents\beanbox
2017-03-26 16:22 - 2017-03-26 16:22 - 00000000 ____D C:\Users\maste\AppData\Roaming\com.onemrbean.beanbox
2017-03-26 14:00 - 2017-03-26 14:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-03-26 14:00 - 2017-03-26 14:00 - 00000000 ____D C:\Program Files\iTunes
2017-03-26 14:00 - 2017-03-26 14:00 - 00000000 ____D C:\Program Files\iPod
2017-03-26 13:57 - 2017-03-26 13:57 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2017-03-26 13:57 - 2017-03-26 13:57 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2017-03-26 13:29 - 2017-03-26 13:30 - 00000000 ____D C:\Program Files (x86)\Hotspot Shield
2017-03-26 13:29 - 2017-03-26 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
2017-03-26 13:29 - 2017-03-26 13:29 - 00000000 ____D C:\ProgramData\Hotspot Shield
2017-03-25 18:23 - 2017-03-25 21:06 - 00000000 ____D C:\Users\maste\Downloads\Paterson (2016) [1080p] [YTS.AG]
2017-03-25 17:44 - 2017-04-07 21:34 - 00000000 ____D C:\Users\maste\Downloads\Hidden Figures (2016) [1080p] [YTS.AG]
2017-03-25 17:24 - 2017-04-07 21:34 - 00000000 ____D C:\Users\maste\Downloads\Arsenal (2017) [1080p] [YTS.AG]
2017-03-25 16:19 - 2017-04-07 23:21 - 00000000 ____D C:\Users\maste\Downloads\Don't Kill It (2016) [1080p] [YTS.AG]
2017-03-25 16:19 - 2017-03-25 16:20 - 00000000 ____D C:\Users\maste\Downloads\The Chamber (2016) [1080p] [YTS.AG]
2017-03-25 15:23 - 2017-03-25 17:04 - 00000000 ____D C:\Users\maste\Downloads\Ark Paint
2017-03-23 19:47 - 2017-03-23 19:47 - 00000000 ____D C:\Program Files\Common Files\Intel
2017-03-23 19:47 - 2017-03-23 19:47 - 00000000 ____D C:\Program Files (x86)\Cisco
2017-03-23 03:17 - 2017-03-23 03:17 - 00045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-03-23 03:17 - 2017-03-23 03:17 - 00045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-03-23 03:17 - 2017-03-23 03:17 - 00045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-03-21 16:02 - 2017-03-17 10:31 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437892.dll
2017-03-21 16:02 - 2017-03-17 10:31 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437892.dll
2017-03-21 13:29 - 2017-03-26 16:24 - 00000000 ____D C:\Users\maste\Downloads\Hentai
2017-03-21 10:33 - 2017-03-21 10:33 - 00042064 _____ (Anchorfree Inc.) C:\Windows\system32\Drivers\taphss6.sys
2017-03-18 19:07 - 2017-03-18 19:11 - 00000000 ____D C:\Users\maste\AppData\Roaming\MinerWars
2017-03-17 20:38 - 2017-03-17 20:38 - 00000000 ___HD C:\$AV_ASW
2017-03-17 20:38 - 2017-03-17 20:38 - 00000000 ____D C:\Users\maste\AppData\LocalLow\pocketgamesinc
2017-03-16 20:45 - 2017-03-20 13:43 - 00000000 ____D C:\Users\maste\Downloads\Red Billabong (2016) [1080p] [YTS.AG]
2017-03-16 09:13 - 2017-03-16 09:13 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-16 09:13 - 2017-03-16 09:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-15 23:59 - 2017-03-04 17:27 - 00484584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-03-15 23:59 - 2017-03-04 17:27 - 00315744 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-03-15 23:59 - 2017-03-04 17:14 - 01470816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2017-03-15 23:59 - 2017-03-04 17:10 - 00965472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2017-03-15 23:59 - 2017-03-04 16:54 - 00090976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2017-03-15 23:59 - 2017-03-04 16:49 - 02049480 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-03-15 23:59 - 2017-03-04 16:39 - 02206496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-03-15 23:59 - 2017-03-04 16:39 - 01969912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2017-03-15 23:59 - 2017-03-04 16:39 - 00857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-03-15 23:59 - 2017-03-04 16:39 - 00527808 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2017-03-15 23:59 - 2017-03-04 16:39 - 00497416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-03-15 23:59 - 2017-03-04 16:38 - 00130912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2017-03-15 23:59 - 2017-03-04 16:37 - 00557400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-03-15 23:59 - 2017-03-04 16:34 - 02048496 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2017-03-15 23:59 - 2017-03-04 16:34 - 01362512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2017-03-15 23:59 - 2017-03-04 16:32 - 00184416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2017-03-15 23:59 - 2017-03-04 16:26 - 00263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-03-15 23:59 - 2017-03-04 16:26 - 00248992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2017-03-15 23:59 - 2017-03-04 16:24 - 02277288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2017-03-15 23:59 - 2017-03-04 16:24 - 00524776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2017-03-15 23:59 - 2017-03-04 16:23 - 05722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-03-15 23:59 - 2017-03-04 16:23 - 02256080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-03-15 23:59 - 2017-03-04 16:23 - 01431232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-03-15 23:59 - 2017-03-04 16:23 - 00975744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-03-15 23:59 - 2017-03-04 16:23 - 00861024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2017-03-15 23:59 - 2017-03-04 16:23 - 00781152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-03-15 23:59 - 2017-03-04 16:23 - 00493912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-03-15 23:59 - 2017-03-04 16:23 - 00313568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2017-03-15 23:59 - 2017-03-04 16:23 - 00136032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2017-03-15 23:59 - 2017-03-04 16:22 - 00549088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2017-03-15 23:59 - 2017-03-04 16:22 - 00272720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-03-15 23:59 - 2017-03-04 16:21 - 01980768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-03-15 23:59 - 2017-03-04 16:21 - 00576408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-03-15 23:59 - 2017-03-04 16:20 - 00846560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 20969928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 06667528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 04023000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 01853224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 01557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 01360456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 01344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 01277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 01202384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 01123912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 00981376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 00976184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 00952416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 00640976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 00530480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 00374448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 00352760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2017-03-15 23:59 - 2017-03-04 16:17 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
2017-03-15 23:59 - 2017-03-04 16:16 - 04312248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-03-15 23:59 - 2017-03-04 16:16 - 00321792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2017-03-15 23:59 - 2017-03-04 16:15 - 00173408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-03-15 23:59 - 2017-03-04 16:15 - 00112120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2017-03-15 23:59 - 2017-03-04 16:12 - 01415240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-03-15 23:59 - 2017-03-04 16:12 - 01260784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-03-15 23:59 - 2017-03-04 16:12 - 00545944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2017-03-15 23:59 - 2017-03-04 16:12 - 00276832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2017-03-15 23:59 - 2017-03-04 16:10 - 00306800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2017-03-15 23:59 - 2017-03-04 16:06 - 05685760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-03-15 23:59 - 2017-03-04 16:04 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xboxgip.sys
2017-03-15 23:59 - 2017-03-04 16:00 - 01631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-03-15 23:59 - 2017-03-04 16:00 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2017-03-15 23:59 - 2017-03-04 16:00 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2017-03-15 23:59 - 2017-03-04 16:00 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2017-03-15 23:59 - 2017-03-04 16:00 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-03-15 23:59 - 2017-03-04 15:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-03-15 23:59 - 2017-03-04 15:59 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfp.dll
2017-03-15 23:59 - 2017-03-04 15:59 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInputUap.dll
2017-03-15 23:59 - 2017-03-04 15:59 - 00019968 _____ C:\Windows\SysWOW64\GamePanelExternalHook.dll
2017-03-15 23:59 - 2017-03-04 15:58 - 00224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2017-03-15 23:59 - 2017-03-04 15:57 - 00549376 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-03-15 23:59 - 2017-03-04 15:57 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-03-15 23:59 - 2017-03-04 15:57 - 00275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accountaccessor.dll
2017-03-15 23:59 - 2017-03-04 15:57 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2017-03-15 23:59 - 2017-03-04 15:57 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2017-03-15 23:59 - 2017-03-04 15:57 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRHelper.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2017-03-15 23:59 - 2017-03-04 15:56 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe
2017-03-15 23:59 - 2017-03-04 15:55 - 00255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2017-03-15 23:59 - 2017-03-04 15:55 - 00251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscandui.dll
2017-03-15 23:59 - 2017-03-04 15:55 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2017-03-15 23:59 - 2017-03-04 15:55 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCCSEngineShared.dll
2017-03-15 23:59 - 2017-03-04 15:55 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll
2017-03-15 23:59 - 2017-03-04 15:55 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BrowserSettingSync.dll
2017-03-15 23:59 - 2017-03-04 15:55 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2017-03-15 23:59 - 2017-03-04 15:55 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2017-03-15 23:59 - 2017-03-04 15:54 - 00328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-03-15 23:59 - 2017-03-04 15:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-03-15 23:59 - 2017-03-04 15:54 - 00142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2017-03-15 23:59 - 2017-03-04 15:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-03-15 23:59 - 2017-03-04 15:54 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfui.dll
2017-03-15 23:59 - 2017-03-04 15:54 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-03-15 23:59 - 2017-03-04 15:54 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-15 23:59 - 2017-03-04 15:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2017-03-15 23:59 - 2017-03-04 15:53 - 00531456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-03-15 23:59 - 2017-03-04 15:53 - 00506368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2017-03-15 23:59 - 2017-03-04 15:53 - 00392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2017-03-15 23:59 - 2017-03-04 15:53 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2017-03-15 23:59 - 2017-03-04 15:53 - 00334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DavSyncProvider.dll
2017-03-15 23:59 - 2017-03-04 15:53 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-15 23:59 - 2017-03-04 15:53 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2017-03-15 23:59 - 2017-03-04 15:53 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-15 23:59 - 2017-03-04 15:53 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-15 23:59 - 2017-03-04 15:53 - 00184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-03-15 23:59 - 2017-03-04 15:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2017-03-15 23:59 - 2017-03-04 15:52 - 01299968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-03-15 23:59 - 2017-03-04 15:52 - 00332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2017-03-15 23:59 - 2017-03-04 15:52 - 00265728 _____ C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2017-03-15 23:59 - 2017-03-04 15:52 - 00237568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-03-15 23:59 - 2017-03-04 15:52 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll
2017-03-15 23:59 - 2017-03-04 15:52 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2017-03-15 23:59 - 2017-03-04 15:52 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cemapi.dll
2017-03-15 23:59 - 2017-03-04 15:52 - 00183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-03-15 23:59 - 2017-03-04 15:52 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2017-03-15 23:59 - 2017-03-04 15:52 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 01243136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 00631296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl
2017-03-15 23:59 - 2017-03-04 15:51 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 00575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 00483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi32.dll
2017-03-15 23:59 - 2017-03-04 15:51 - 00185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 13873664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00632832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00424960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2017-03-15 23:59 - 2017-03-04 15:50 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-03-15 23:59 - 2017-03-04 15:49 - 00714752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-03-15 23:59 - 2017-03-04 15:49 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2017-03-15 23:59 - 2017-03-04 15:49 - 00431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2017-03-15 23:59 - 2017-03-04 15:49 - 00414208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2017-03-15 23:59 - 2017-03-04 15:49 - 00390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2017-03-15 23:59 - 2017-03-04 15:49 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2017-03-15 23:59 - 2017-03-04 15:49 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2017-03-15 23:59 - 2017-03-04 15:49 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2017-03-15 23:59 - 2017-03-04 15:49 - 00181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpipcfg.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 01231360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00896512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontext.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00819200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00548352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-03-15 23:59 - 2017-03-04 15:48 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2017-03-15 23:59 - 2017-03-04 15:47 - 00529920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-03-15 23:59 - 2017-03-04 15:47 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-03-15 23:59 - 2017-03-04 15:47 - 00238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 01456640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00968704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00858112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00850432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00816640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00762880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00760832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2017-03-15 23:59 - 2017-03-04 15:46 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2017-03-15 23:59 - 2017-03-04 15:46 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2017-03-15 23:59 - 2017-03-04 15:45 - 01543680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2017-03-15 23:59 - 2017-03-04 15:45 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-03-15 23:59 - 2017-03-04 15:45 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2017-03-15 23:59 - 2017-03-04 15:45 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2017-03-15 23:59 - 2017-03-04 15:44 - 01534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-03-15 23:59 - 2017-03-04 15:44 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 07626752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 06474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-03-15 23:59 - 2017-03-04 15:43 - 04613120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 03733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 02458112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 01228288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 00675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 00653312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-03-15 23:59 - 2017-03-04 15:43 - 00256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2017-03-15 23:59 - 2017-03-04 15:42 - 04596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2017-03-15 23:59 - 2017-03-04 15:42 - 00901120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-15 23:59 - 2017-03-04 15:42 - 00886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-03-15 23:59 - 2017-03-04 15:42 - 00884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-03-15 23:59 - 2017-03-04 15:42 - 00700416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Search.dll
2017-03-15 23:59 - 2017-03-04 15:42 - 00589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2017-03-15 23:59 - 2017-03-04 15:42 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2017-03-15 23:59 - 2017-03-04 15:41 - 01357312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2017-03-15 23:59 - 2017-03-04 15:41 - 01323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2017-03-15 23:59 - 2017-03-04 15:41 - 01320448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2017-03-15 23:59 - 2017-03-04 15:41 - 01137152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2017-03-15 23:59 - 2017-03-04 15:41 - 00355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2017-03-15 23:59 - 2017-03-04 15:40 - 03307008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2017-03-15 23:59 - 2017-03-04 15:40 - 01077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2017-03-15 23:59 - 2017-03-04 15:40 - 00471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-15 23:59 - 2017-03-04 15:40 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedit.exe
2017-03-15 23:59 - 2017-03-04 15:40 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcuiu.dll
2017-03-15 23:59 - 2017-03-04 15:39 - 00795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2017-03-15 23:59 - 2017-03-04 15:39 - 00570368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2017-03-15 23:59 - 2017-03-04 15:39 - 00343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2017-03-15 23:59 - 2017-03-04 15:39 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommon.dll
2017-03-15 23:59 - 2017-03-04 15:38 - 03405312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-03-15 23:59 - 2017-03-04 15:38 - 02424320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2017-03-15 23:59 - 2017-03-04 15:38 - 01266176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2017-03-15 23:59 - 2017-03-04 15:38 - 00713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2017-03-15 23:59 - 2017-03-04 15:37 - 02748928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-03-15 23:59 - 2017-03-04 15:37 - 02643456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-03-15 23:59 - 2017-03-04 15:37 - 01255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-03-15 23:59 - 2017-03-04 15:37 - 00903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-03-15 23:59 - 2017-03-04 15:37 - 00895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2017-03-15 23:59 - 2017-03-04 15:37 - 00545280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2017-03-15 23:59 - 2017-03-04 15:36 - 06109184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2017-03-15 23:59 - 2017-03-04 15:36 - 05380608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2017-03-15 23:59 - 2017-03-04 15:36 - 03198464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2017-03-15 23:59 - 2017-03-04 15:36 - 02538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-03-15 23:59 - 2017-03-04 15:36 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2017-03-15 23:59 - 2017-03-04 15:36 - 01369088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2017-03-15 23:59 - 2017-03-04 15:36 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll
2017-03-15 23:59 - 2017-03-04 15:36 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2017-03-15 23:59 - 2017-03-04 15:35 - 07468544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-03-15 23:59 - 2017-03-04 15:35 - 03520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2017-03-15 23:59 - 2017-03-04 15:35 - 01221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2017-03-15 23:59 - 2017-03-04 15:35 - 01133568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2017-03-15 23:59 - 2017-03-04 15:35 - 00545792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2017-03-15 23:59 - 2017-03-04 15:35 - 00458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2017-03-15 23:59 - 2017-03-04 15:35 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2017-03-15 23:59 - 2017-03-04 15:35 - 00134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2017-03-15 23:59 - 2017-03-04 15:35 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraCaptureUI.dll
2017-03-15 23:59 - 2017-03-04 15:34 - 00753152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2017-03-15 23:59 - 2017-03-04 15:34 - 00719872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_sr.dll
2017-03-15 23:59 - 2017-03-04 15:34 - 00640000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-03-15 23:59 - 2017-03-04 15:33 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2017-03-15 23:59 - 2017-03-04 15:33 - 02109952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2017-03-15 23:59 - 2017-03-04 15:33 - 01247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2017-03-15 23:59 - 2017-03-04 15:33 - 00409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2017-03-15 23:59 - 2017-03-04 15:33 - 00400384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2017-03-15 23:59 - 2017-03-04 15:33 - 00359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxclu.dll
2017-03-15 23:59 - 2017-03-04 15:32 - 04423680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-03-15 23:59 - 2017-03-04 15:32 - 02740224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2017-03-15 23:59 - 2017-03-04 15:32 - 02484736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2017-03-15 23:59 - 2017-03-04 15:32 - 02138112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2017-03-15 23:59 - 2017-03-04 15:32 - 01709056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2017-03-15 23:59 - 2017-03-04 15:32 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2017-03-15 23:59 - 2017-03-04 15:32 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVP9DEC.dll
2017-03-15 23:59 - 2017-03-04 15:32 - 01004544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2017-03-15 23:59 - 2017-03-04 15:32 - 00580608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 02682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 02646528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01993216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01656320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01595904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01571840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01564160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01293312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2017-03-15 23:59 - 2017-03-04 15:31 - 01232384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01154560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Pimstore.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 00827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 00773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-03-15 23:59 - 2017-03-04 15:31 - 00620544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 00560640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2017-03-15 23:59 - 2017-03-04 15:31 - 00422400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 04557824 _____ (Microsoft) C:\Windows\SysWOW64\dbgeng.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 02996736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-03-15 23:59 - 2017-03-04 15:30 - 02483200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 02003968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 01883648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00691200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00444416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2017-03-15 23:59 - 2017-03-04 15:30 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2017-03-15 23:59 - 2017-03-04 15:29 - 00353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2017-03-15 23:59 - 2017-03-04 15:29 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2017-03-15 23:59 - 2017-03-04 15:27 - 03106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-03-15 23:59 - 2017-03-04 15:27 - 00783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-03-15 23:59 - 2017-03-04 15:27 - 00449024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2017-03-15 23:59 - 2017-03-04 15:27 - 00299008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2017-03-15 23:59 - 2017-03-04 15:06 - 00483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2017-03-15 23:58 - 2017-03-04 16:56 - 00794416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2017-03-15 23:58 - 2017-03-04 16:54 - 02482280 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-03-15 23:58 - 2017-03-04 16:54 - 02186896 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2017-03-15 23:58 - 2017-03-04 16:54 - 00646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-03-15 23:58 - 2017-03-04 16:54 - 00108384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2017-03-15 23:58 - 2017-03-04 16:53 - 02512304 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-03-15 23:58 - 2017-03-04 16:52 - 07786336 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-03-15 23:58 - 2017-03-04 16:52 - 02213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-03-15 23:58 - 2017-03-04 16:48 - 01181024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-03-15 23:58 - 2017-03-04 16:48 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-03-15 23:58 - 2017-03-04 16:47 - 00409952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-03-15 23:58 - 2017-03-04 16:45 - 01000280 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2017-03-15 23:58 - 2017-03-04 16:45 - 00063328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2017-03-15 23:58 - 2017-03-04 16:40 - 02828384 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-03-15 23:58 - 2017-03-04 16:40 - 02189664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-03-15 23:58 - 2017-03-04 16:40 - 00360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-03-15 23:58 - 2017-03-04 16:39 - 07220696 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-03-15 23:58 - 2017-03-04 16:39 - 02750384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-03-15 23:58 - 2017-03-04 16:39 - 01860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-03-15 23:58 - 2017-03-04 16:39 - 01293152 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2017-03-15 23:58 - 2017-03-04 16:39 - 01157000 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-03-15 23:58 - 2017-03-04 16:39 - 00658784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-03-15 23:58 - 2017-03-04 16:39 - 00635864 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-03-15 23:58 - 2017-03-04 16:39 - 00396168 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2017-03-15 23:58 - 2017-03-04 16:36 - 01706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-03-15 23:58 - 2017-03-04 16:34 - 08169536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-03-15 23:58 - 2017-03-04 16:34 - 01063472 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 22223968 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 04260576 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 01989072 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 01848072 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 01723560 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2017-03-15 23:58 - 2017-03-04 16:33 - 01702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 01473048 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 01454512 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 01301112 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 01071736 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 01062480 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 00811416 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 00596040 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 00443232 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2017-03-15 23:58 - 2017-03-04 16:33 - 00382272 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2017-03-15 23:58 - 2017-03-04 16:31 - 00137936 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2017-03-15 23:58 - 2017-03-04 16:27 - 02536288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-03-15 23:58 - 2017-03-04 16:27 - 00387872 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-03-15 23:58 - 2017-03-04 16:09 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-03-15 23:58 - 2017-03-04 16:06 - 22565376 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-03-15 23:58 - 2017-03-04 16:06 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-03-15 23:58 - 2017-03-04 16:06 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2017-03-15 23:58 - 2017-03-04 16:06 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\DuCsps.dll
2017-03-15 23:58 - 2017-03-04 16:06 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2017-03-15 23:58 - 2017-03-04 16:05 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2017-03-15 23:58 - 2017-03-04 16:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-03-15 23:58 - 2017-03-04 16:04 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-03-15 23:58 - 2017-03-04 16:04 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-03-15 23:58 - 2017-03-04 16:04 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-03-15 23:58 - 2017-03-04 16:04 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-03-15 23:58 - 2017-03-04 16:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2017-03-15 23:58 - 2017-03-04 16:03 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2017-03-15 23:58 - 2017-03-04 16:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.UI.GameBar.dll
2017-03-15 23:58 - 2017-03-04 16:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2017-03-15 23:58 - 2017-03-04 16:02 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll
2017-03-15 23:58 - 2017-03-04 16:02 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2017-03-15 23:58 - 2017-03-04 16:02 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\MCCSEngineShared.dll
2017-03-15 23:58 - 2017-03-04 16:02 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-15 23:58 - 2017-03-04 16:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-15 23:58 - 2017-03-04 16:01 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2017-03-15 23:58 - 2017-03-04 16:01 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2017-03-15 23:58 - 2017-03-04 16:01 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2017-03-15 23:58 - 2017-03-04 16:00 - 00535552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-03-15 23:58 - 2017-03-04 16:00 - 00418304 _____ C:\Windows\system32\Windows.Perception.Stub.dll
2017-03-15 23:58 - 2017-03-04 16:00 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-03-15 23:58 - 2017-03-04 16:00 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-15 23:58 - 2017-03-04 16:00 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2017-03-15 23:58 - 2017-03-04 16:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2017-03-15 23:58 - 2017-03-04 15:59 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2017-03-15 23:58 - 2017-03-04 15:59 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-03-15 23:58 - 2017-03-04 15:59 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\cemapi.dll
2017-03-15 23:58 - 2017-03-04 15:59 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll
2017-03-15 23:58 - 2017-03-04 15:59 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2017-03-15 23:58 - 2017-03-04 15:59 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSaveExt.dll
2017-03-15 23:58 - 2017-03-04 15:59 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2017-03-15 23:58 - 2017-03-04 15:58 - 01507840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2017-03-15 23:58 - 2017-03-04 15:58 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2017-03-15 23:58 - 2017-03-04 15:58 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-03-15 23:58 - 2017-03-04 15:58 - 00462848 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-03-15 23:58 - 2017-03-04 15:58 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-15 23:58 - 2017-03-04 15:58 - 00264192 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll
2017-03-15 23:58 - 2017-03-04 15:58 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-03-15 23:58 - 2017-03-04 15:57 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00460288 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00358912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-15 23:58 - 2017-03-04 15:57 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2017-03-15 23:58 - 2017-03-04 15:56 - 00631296 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2017-03-15 23:58 - 2017-03-04 15:56 - 00561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-03-15 23:58 - 2017-03-04 15:56 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-03-15 23:58 - 2017-03-04 15:56 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2017-03-15 23:58 - 2017-03-04 15:56 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2017-03-15 23:58 - 2017-03-04 15:56 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\DavSyncProvider.dll
2017-03-15 23:58 - 2017-03-04 15:56 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2017-03-15 23:58 - 2017-03-04 15:56 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll
2017-03-15 23:58 - 2017-03-04 15:55 - 01388544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2017-03-15 23:58 - 2017-03-04 15:55 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2017-03-15 23:58 - 2017-03-04 15:55 - 00579584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-15 23:58 - 2017-03-04 15:55 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-03-15 23:58 - 2017-03-04 15:55 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-15 23:58 - 2017-03-04 15:55 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-03-15 23:58 - 2017-03-04 15:55 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2017-03-15 23:58 - 2017-03-04 15:55 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-03-15 23:58 - 2017-03-04 15:55 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2017-03-15 23:58 - 2017-03-04 15:54 - 01293312 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2017-03-15 23:58 - 2017-03-04 15:54 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-03-15 23:58 - 2017-03-04 15:54 - 00671744 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2017-03-15 23:58 - 2017-03-04 15:53 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2017-03-15 23:58 - 2017-03-04 15:53 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2017-03-15 23:58 - 2017-03-04 15:53 - 00963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2017-03-15 23:58 - 2017-03-04 15:53 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2017-03-15 23:58 - 2017-03-04 15:53 - 00820224 _____ (Microsoft Corporation) C:\Windows\system32\PrintRenderAPIHost.DLL
2017-03-15 23:58 - 2017-03-04 15:53 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2017-03-15 23:58 - 2017-03-04 15:53 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2017-03-15 23:58 - 2017-03-04 15:53 - 00330752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2017-03-15 23:58 - 2017-03-04 15:52 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-03-15 23:58 - 2017-03-04 15:51 - 06285824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-03-15 23:58 - 2017-03-04 15:51 - 01937920 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2017-03-15 23:58 - 2017-03-04 15:51 - 00809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Search.dll
2017-03-15 23:58 - 2017-03-04 15:51 - 00779776 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2017-03-15 23:58 - 2017-03-04 15:51 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-03-15 23:58 - 2017-03-04 15:50 - 00611328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2017-03-15 23:58 - 2017-03-04 15:49 - 23676416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-03-15 23:58 - 2017-03-04 15:49 - 03777536 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2017-03-15 23:58 - 2017-03-04 15:49 - 01639424 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2017-03-15 23:58 - 2017-03-04 15:49 - 01589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2017-03-15 23:58 - 2017-03-04 15:49 - 01403392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2017-03-15 23:58 - 2017-03-04 15:49 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2017-03-15 23:58 - 2017-03-04 15:49 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2017-03-15 23:58 - 2017-03-04 15:49 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-03-15 23:58 - 2017-03-04 15:48 - 17198592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-03-15 23:58 - 2017-03-04 15:48 - 01762816 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2017-03-15 23:58 - 2017-03-04 15:48 - 01189376 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2017-03-15 23:58 - 2017-03-04 15:48 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2017-03-15 23:58 - 2017-03-04 15:47 - 07812096 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2017-03-15 23:58 - 2017-03-04 15:47 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2017-03-15 23:58 - 2017-03-04 15:46 - 13441536 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-03-15 23:58 - 2017-03-04 15:46 - 01908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-03-15 23:58 - 2017-03-04 15:46 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2017-03-15 23:58 - 2017-03-04 15:46 - 00846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2017-03-15 23:58 - 2017-03-04 15:46 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2017-03-15 23:58 - 2017-03-04 15:46 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\wpninprc.dll
2017-03-15 23:58 - 2017-03-04 15:45 - 18362368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-03-15 23:58 - 2017-03-04 15:45 - 01837056 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2017-03-15 23:58 - 2017-03-04 15:45 - 01078784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2017-03-15 23:58 - 2017-03-04 15:43 - 19411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-03-15 23:58 - 2017-03-04 15:43 - 01366016 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2017-03-15 23:58 - 2017-03-04 15:43 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2017-03-15 23:58 - 2017-03-04 15:43 - 00982528 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-03-15 23:58 - 2017-03-04 15:43 - 00858112 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2017-03-15 23:58 - 2017-03-04 15:43 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll
2017-03-15 23:58 - 2017-03-04 15:42 - 13085184 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-03-15 23:58 - 2017-03-04 15:42 - 07654912 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2017-03-15 23:58 - 2017-03-04 15:42 - 00947712 _____ (Microsoft Corporation) C:\Windows\system32\MSVP9DEC.dll
2017-03-15 23:58 - 2017-03-04 15:42 - 00805888 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2017-03-15 23:58 - 2017-03-04 15:41 - 03441664 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2017-03-15 23:58 - 2017-03-04 15:41 - 02953216 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2017-03-15 23:58 - 2017-03-04 15:41 - 01891328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 02852864 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 02208768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 01917440 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2017-03-15 23:58 - 2017-03-04 15:40 - 01536000 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 01399296 _____ (Microsoft Corporation) C:\Windows\system32\Pimstore.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 01282048 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2017-03-15 23:58 - 2017-03-04 15:40 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2017-03-15 23:58 - 2017-03-04 15:39 - 08125952 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-03-15 23:58 - 2017-03-04 15:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2017-03-15 23:58 - 2017-03-04 15:39 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2017-03-15 23:58 - 2017-03-04 15:39 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2017-03-15 23:58 - 2017-03-04 15:39 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2017-03-15 23:58 - 2017-03-04 15:38 - 12349952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-03-15 23:58 - 2017-03-04 15:38 - 08076288 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-03-15 23:58 - 2017-03-04 15:38 - 02800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2017-03-15 23:58 - 2017-03-04 15:38 - 01981440 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-03-15 23:58 - 2017-03-04 15:38 - 01780224 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-03-15 23:58 - 2017-03-04 15:38 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-03-15 23:58 - 2017-03-04 15:38 - 00792576 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2017-03-15 23:58 - 2017-03-04 15:37 - 12178944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 02895872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 02691072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 02370048 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 01840640 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 01512448 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 01348608 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 00875520 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2017-03-15 23:58 - 2017-03-04 15:37 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-03-15 23:58 - 2017-03-04 15:36 - 04746752 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-03-15 23:58 - 2017-03-04 15:36 - 02820096 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2017-03-15 23:58 - 2017-03-04 15:36 - 02475008 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-03-15 23:58 - 2017-03-04 15:36 - 02287104 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-03-15 23:58 - 2017-03-04 15:36 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2017-03-15 23:58 - 2017-03-04 15:36 - 01131008 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-03-15 23:58 - 2017-03-04 15:36 - 01013760 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2017-03-15 23:58 - 2017-03-04 15:36 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2017-03-15 23:58 - 2017-03-04 15:35 - 01328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2017-03-15 23:58 - 2017-03-04 15:35 - 00924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-15 23:58 - 2017-03-04 15:34 - 01826816 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-03-15 23:58 - 2017-03-04 15:34 - 00998912 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-03-15 23:58 - 2017-03-04 15:34 - 00531456 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-03-15 23:58 - 2017-03-04 15:34 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2017-03-15 23:58 - 2017-03-04 15:34 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2017-03-15 23:58 - 2017-03-04 15:33 - 06044672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-03-15 23:58 - 2017-03-04 15:33 - 03666432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-03-15 23:58 - 2017-03-04 15:33 - 00119808 ____R (Microsoft Corporation) C:\Windows\system32\SecureAssessmentHandlers.dll
2017-03-15 23:58 - 2017-03-04 15:32 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.SecureAssessment.dll
2017-03-15 23:58 - 2017-03-04 15:31 - 01493504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2017-03-15 23:58 - 2017-02-22 11:47 - 00448285 _____ C:\Windows\system32\ApnDatabase.xml
2017-03-15 23:57 - 2017-03-04 17:27 - 00192352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2017-03-15 23:57 - 2017-03-04 17:05 - 01617760 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-03-15 23:57 - 2017-03-04 17:05 - 01294688 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-03-15 23:57 - 2017-03-04 17:05 - 00655200 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-03-15 23:57 - 2017-03-04 17:05 - 00565088 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-03-15 23:57 - 2017-03-04 17:05 - 00343904 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-03-15 23:57 - 2017-03-04 17:05 - 00315232 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2017-03-15 23:57 - 2017-03-04 17:05 - 00242528 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-03-15 23:57 - 2017-03-04 17:05 - 00086368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-03-15 23:57 - 2017-03-04 17:05 - 00038240 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2017-03-15 23:57 - 2017-03-04 16:57 - 02170720 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2017-03-15 23:57 - 2017-03-04 16:57 - 00603488 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2017-03-15 23:57 - 2017-03-04 16:55 - 01117024 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2017-03-15 23:57 - 2017-03-04 16:54 - 01051112 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-03-15 23:57 - 2017-03-04 16:54 - 00894096 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-03-15 23:57 - 2017-03-04 16:52 - 01354312 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-03-15 23:57 - 2017-03-04 16:52 - 01172984 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2017-03-15 23:57 - 2017-03-04 16:51 - 02255712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-03-15 23:57 - 2017-03-04 16:49 - 02681200 _____ C:\Windows\system32\CoreUIComponents.dll
2017-03-15 23:57 - 2017-03-04 16:48 - 00219040 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2017-03-15 23:57 - 2017-03-04 16:45 - 00404320 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2017-03-15 23:57 - 2017-03-04 16:41 - 00328008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2017-03-15 23:57 - 2017-03-04 16:39 - 00681312 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2017-03-15 23:57 - 2017-03-04 16:39 - 00578392 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2017-03-15 23:57 - 2017-03-04 16:39 - 00402272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-03-15 23:57 - 2017-03-04 16:38 - 00450400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-03-15 23:57 - 2017-03-04 16:38 - 00223584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-03-15 23:57 - 2017-03-04 16:37 - 02446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-03-15 23:57 - 2017-03-04 16:37 - 00947552 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2017-03-15 23:57 - 2017-03-04 16:37 - 00811872 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.exe
2017-03-15 23:57 - 2017-03-04 16:37 - 00682808 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-03-15 23:57 - 2017-03-04 16:37 - 00432992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-03-15 23:57 - 2017-03-04 16:33 - 04674360 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-03-15 23:57 - 2017-03-04 16:33 - 01694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-03-15 23:57 - 2017-03-04 16:33 - 01600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-03-15 23:57 - 2017-03-04 16:33 - 00755648 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2017-03-15 23:57 - 2017-03-04 16:33 - 00523712 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2017-03-15 23:57 - 2017-03-04 16:33 - 00424616 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2017-03-15 23:57 - 2017-03-04 16:33 - 00241496 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-03-15 23:57 - 2017-03-04 16:33 - 00160096 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2017-03-15 23:57 - 2017-03-04 16:29 - 01570208 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-03-15 23:57 - 2017-03-04 16:28 - 01416224 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-03-15 23:57 - 2017-03-04 16:12 - 07216640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-03-15 23:57 - 2017-03-04 16:07 - 01631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-03-15 23:57 - 2017-03-04 16:06 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys
2017-03-15 23:57 - 2017-03-04 16:05 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ddrawex.dll
2017-03-15 23:57 - 2017-03-04 16:04 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\dggpext.dll
2017-03-15 23:57 - 2017-03-04 16:03 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2017-03-15 23:57 - 2017-03-04 16:03 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2017-03-15 23:57 - 2017-03-04 16:03 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
2017-03-15 23:57 - 2017-03-04 16:01 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_WorkAccess.dll
2017-03-15 23:57 - 2017-03-04 16:01 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2017-03-15 23:57 - 2017-03-04 16:01 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2017-03-15 23:57 - 2017-03-04 16:00 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2017-03-15 23:57 - 2017-03-04 16:00 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2017-03-15 23:57 - 2017-03-04 16:00 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2017-03-15 23:57 - 2017-03-04 16:00 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-03-15 23:57 - 2017-03-04 16:00 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2017-03-15 23:57 - 2017-03-04 16:00 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
2017-03-15 23:57 - 2017-03-04 15:59 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2017-03-15 23:57 - 2017-03-04 15:59 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2017-03-15 23:57 - 2017-03-04 15:59 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-15 23:57 - 2017-03-04 15:59 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2017-03-15 23:57 - 2017-03-04 15:59 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\BrowserSettingSync.dll
2017-03-15 23:57 - 2017-03-04 15:58 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2017-03-15 23:57 - 2017-03-04 15:58 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2017-03-15 23:57 - 2017-03-04 15:58 - 00568320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2017-03-15 23:57 - 2017-03-04 15:58 - 00394752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2017-03-15 23:57 - 2017-03-04 15:58 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-15 23:57 - 2017-03-04 15:58 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll
2017-03-15 23:57 - 2017-03-04 15:57 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2017-03-15 23:57 - 2017-03-04 15:57 - 00311296 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-03-15 23:57 - 2017-03-04 15:56 - 00949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2017-03-15 23:57 - 2017-03-04 15:56 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2017-03-15 23:57 - 2017-03-04 15:56 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\ddraw.dll
2017-03-15 23:57 - 2017-03-04 15:56 - 00431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2017-03-15 23:57 - 2017-03-04 15:56 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2017-03-15 23:57 - 2017-03-04 15:56 - 00264704 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-03-15 23:57 - 2017-03-04 15:56 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\indexeddbserver.dll
2017-03-15 23:57 - 2017-03-04 15:55 - 01060352 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2017-03-15 23:57 - 2017-03-04 15:55 - 01016320 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll
2017-03-15 23:57 - 2017-03-04 15:55 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2017-03-15 23:57 - 2017-03-04 15:55 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-03-15 23:57 - 2017-03-04 15:54 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll
2017-03-15 23:57 - 2017-03-04 15:54 - 00495104 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2017-03-15 23:57 - 2017-03-04 15:53 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2017-03-15 23:57 - 2017-03-04 15:53 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-03-15 23:57 - 2017-03-04 15:53 - 00541696 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2017-03-15 23:57 - 2017-03-04 15:53 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2017-03-15 23:57 - 2017-03-04 15:52 - 00822784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2017-03-15 23:57 - 2017-03-04 15:51 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-03-15 23:57 - 2017-03-04 15:50 - 01913856 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2017-03-15 23:57 - 2017-03-04 15:50 - 01280512 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2017-03-15 23:57 - 2017-03-04 15:50 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-15 23:57 - 2017-03-04 15:50 - 00650752 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2017-03-15 23:57 - 2017-03-04 15:49 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2017-03-15 23:57 - 2017-03-04 15:49 - 00635904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-03-15 23:57 - 2017-03-04 15:49 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\Tabbtn.dll
2017-03-15 23:57 - 2017-03-04 15:48 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\indexeddbserver.dll
2017-03-15 23:57 - 2017-03-04 15:47 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2017-03-15 23:57 - 2017-03-04 15:47 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2017-03-15 23:57 - 2017-03-04 15:47 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-03-15 23:57 - 2017-03-04 15:47 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2017-03-15 23:57 - 2017-03-04 15:47 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2017-03-15 23:57 - 2017-03-04 15:46 - 03289088 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-03-15 23:57 - 2017-03-04 15:46 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll
2017-03-15 23:57 - 2017-03-04 15:46 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2017-03-15 23:57 - 2017-03-04 15:45 - 09130496 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-03-15 23:57 - 2017-03-04 15:45 - 02860032 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2017-03-15 23:57 - 2017-03-04 15:45 - 01345024 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll
2017-03-15 23:57 - 2017-03-04 15:44 - 04749312 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-03-15 23:57 - 2017-03-04 15:44 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2017-03-15 23:57 - 2017-03-04 15:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2017-03-15 23:57 - 2017-03-04 15:44 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2017-03-15 23:57 - 2017-03-04 15:43 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2017-03-15 23:57 - 2017-03-04 15:43 - 00937472 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-03-15 23:57 - 2017-03-04 15:43 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2017-03-15 23:57 - 2017-03-04 15:43 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2017-03-15 23:57 - 2017-03-04 15:43 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2017-03-15 23:57 - 2017-03-04 15:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\CameraCaptureUI.dll
2017-03-15 23:57 - 2017-03-04 15:43 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2017-03-15 23:57 - 2017-03-04 15:42 - 01040896 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2017-03-15 23:57 - 2017-03-04 15:42 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2017-03-15 23:57 - 2017-03-04 15:41 - 04474368 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-03-15 23:57 - 2017-03-04 15:41 - 02611200 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2017-03-15 23:57 - 2017-03-04 15:41 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-03-15 23:57 - 2017-03-04 15:41 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2017-03-15 23:57 - 2017-03-04 15:41 - 01643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-03-15 23:57 - 2017-03-04 15:41 - 00975872 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2017-03-15 23:57 - 2017-03-04 15:41 - 00821248 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2017-03-15 23:57 - 2017-03-04 15:41 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2017-03-15 23:57 - 2017-03-04 15:41 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2017-03-15 23:57 - 2017-03-04 15:40 - 02095616 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-03-15 23:57 - 2017-03-04 15:40 - 01275392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2017-03-15 23:57 - 2017-03-04 15:40 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2017-03-15 23:57 - 2017-03-04 15:40 - 00960000 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2017-03-15 23:57 - 2017-03-04 15:40 - 00913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-03-15 23:57 - 2017-03-04 15:40 - 00770560 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2017-03-15 23:57 - 2017-03-04 15:40 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2017-03-15 23:57 - 2017-03-04 15:39 - 01633792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-03-15 23:57 - 2017-03-04 15:38 - 00540160 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2017-03-15 23:57 - 2017-03-04 15:37 - 02914816 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-03-15 23:57 - 2017-03-04 15:37 - 01513472 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-03-15 23:57 - 2017-03-04 15:37 - 01064448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-03-15 23:57 - 2017-03-04 15:37 - 00935936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll
2017-03-15 23:57 - 2017-03-04 15:37 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2017-03-15 23:57 - 2017-03-04 15:37 - 00707584 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-03-15 23:57 - 2017-03-04 15:36 - 05384192 _____ (Microsoft) C:\Windows\system32\dbgeng.dll
2017-03-15 23:57 - 2017-03-04 15:36 - 04708864 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-03-15 23:57 - 2017-03-04 15:36 - 04060672 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2017-03-15 23:57 - 2017-03-04 15:36 - 03614720 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-03-15 23:57 - 2017-03-04 15:36 - 03202048 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2017-03-15 23:57 - 2017-03-04 15:36 - 02317824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-03-15 23:57 - 2017-03-04 15:36 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2017-03-15 23:57 - 2017-03-04 15:35 - 01726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-03-15 23:57 - 2017-03-04 15:35 - 01121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-03-15 23:57 - 2017-03-04 15:33 - 01817088 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2017-03-15 23:57 - 2017-03-04 15:32 - 00510464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2017-03-15 23:57 - 2017-03-04 15:31 - 03478528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2017-03-15 23:57 - 2017-03-04 15:30 - 02026496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-03-15 23:57 - 2016-07-16 11:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\CspCellularSettings.dll
2017-03-15 23:57 - 2016-07-16 11:58 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAPNCsp.dll
2017-03-15 23:57 - 2016-07-16 11:56 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\CfgSPCellular.dll
2017-03-15 23:56 - 2017-03-04 17:05 - 00590952 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2017-03-15 23:56 - 2017-03-04 17:05 - 00378720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-03-15 23:56 - 2017-03-04 17:05 - 00142176 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-03-15 23:56 - 2017-03-04 16:54 - 00354264 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2017-03-15 23:56 - 2017-03-04 16:50 - 00379744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2017-03-15 23:56 - 2017-03-04 16:50 - 00128352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2017-03-15 23:56 - 2017-03-04 16:48 - 00764392 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2017-03-15 23:56 - 2017-03-04 16:43 - 00635456 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2017-03-15 23:56 - 2017-03-04 16:41 - 00266544 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2017-03-15 23:56 - 2017-03-04 16:39 - 00178520 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostUser.dll
2017-03-15 23:56 - 2017-03-04 16:38 - 00624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-03-15 23:56 - 2017-03-04 16:38 - 00509280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-03-15 23:56 - 2017-03-04 16:38 - 00342456 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-03-15 23:56 - 2017-03-04 16:37 - 02913144 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2017-03-15 23:56 - 2017-03-04 16:37 - 01267512 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2017-03-15 23:56 - 2017-03-04 16:37 - 01100128 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2017-03-15 23:56 - 2017-03-04 16:37 - 00989016 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2017-03-15 23:56 - 2017-03-04 16:37 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2017-03-15 23:56 - 2017-03-04 16:37 - 00110944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvsocket.sys
2017-03-15 23:56 - 2017-03-04 16:37 - 00080224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys
2017-03-15 23:56 - 2017-03-04 16:33 - 00038768 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2017-03-15 23:56 - 2017-03-04 16:31 - 00201568 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2017-03-15 23:56 - 2017-03-04 16:31 - 00128648 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2017-03-15 23:56 - 2017-03-04 16:28 - 00628552 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2017-03-15 23:56 - 2017-03-04 16:28 - 00322912 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2017-03-15 23:56 - 2017-03-04 16:27 - 00372432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2017-03-15 23:56 - 2017-03-04 16:07 - 00025088 _____ C:\Windows\system32\GamePanelExternalHook.dll
2017-03-15 23:56 - 2017-03-04 16:06 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2017-03-15 23:56 - 2017-03-04 16:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-03-15 23:56 - 2017-03-04 16:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2017-03-15 23:56 - 2017-03-04 16:05 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2017-03-15 23:56 - 2017-03-04 16:04 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2017-03-15 23:56 - 2017-03-04 16:04 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll
2017-03-15 23:56 - 2017-03-04 16:04 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmclr.sys
2017-03-15 23:56 - 2017-03-04 16:03 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\Family.SyncEngine.dll
2017-03-15 23:56 - 2017-03-04 16:03 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll
2017-03-15 23:56 - 2017-03-04 16:03 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothDesktopHandlers.dll
2017-03-15 23:56 - 2017-03-04 16:03 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\XInputUap.dll
2017-03-15 23:56 - 2017-03-04 16:02 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2017-03-15 23:56 - 2017-03-04 16:02 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2017-03-15 23:56 - 2017-03-04 16:02 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2017-03-15 23:56 - 2017-03-04 16:02 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-15 23:56 - 2017-03-04 16:02 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2017-03-15 23:56 - 2017-03-04 16:01 - 00567296 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2017-03-15 23:56 - 2017-03-04 16:01 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2017-03-15 23:56 - 2017-03-04 16:00 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2017-03-15 23:56 - 2017-03-04 16:00 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-03-15 23:56 - 2017-03-04 16:00 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll
2017-03-15 23:56 - 2017-03-04 16:00 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Flights.dll
2017-03-15 23:56 - 2017-03-04 16:00 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2017-03-15 23:56 - 2017-03-04 16:00 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2017-03-15 23:56 - 2017-03-04 15:59 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-15 23:56 - 2017-03-04 15:59 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2017-03-15 23:56 - 2017-03-04 15:58 - 00947712 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2017-03-15 23:56 - 2017-03-04 15:58 - 00651264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2017-03-15 23:56 - 2017-03-04 15:58 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2017-03-15 23:56 - 2017-03-04 15:58 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\icsvcext.dll
2017-03-15 23:56 - 2017-03-04 15:58 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2017-03-15 23:56 - 2017-03-04 15:58 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2017-03-15 23:56 - 2017-03-04 15:58 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2017-03-15 23:56 - 2017-03-04 15:58 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-03-15 23:56 - 2017-03-04 15:57 - 00852480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2017-03-15 23:56 - 2017-03-04 15:57 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2017-03-15 23:56 - 2017-03-04 15:57 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-03-15 23:56 - 2017-03-04 15:57 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-15 23:56 - 2017-03-04 15:57 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2017-03-15 23:56 - 2017-03-04 15:57 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-03-15 23:56 - 2017-03-04 15:56 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2017-03-15 23:56 - 2017-03-04 15:56 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2017-03-15 23:56 - 2017-03-04 15:56 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2017-03-15 23:56 - 2017-03-04 15:56 - 00450048 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2017-03-15 23:56 - 2017-03-04 15:56 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2017-03-15 23:56 - 2017-03-04 15:56 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2017-03-15 23:56 - 2017-03-04 15:56 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2017-03-15 23:56 - 2017-03-04 15:55 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2017-03-15 23:56 - 2017-03-04 15:54 - 01092096 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationFrame.dll
2017-03-15 23:56 - 2017-03-04 15:54 - 00956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-03-15 23:56 - 2017-03-04 15:54 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2017-03-15 23:56 - 2017-03-04 15:54 - 00560128 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2017-03-15 23:56 - 2017-03-04 15:54 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
2017-03-15 23:56 - 2017-03-04 15:54 - 00329728 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2017-03-15 23:56 - 2017-03-04 15:53 - 03753984 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2017-03-15 23:56 - 2017-03-04 15:53 - 00896512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2017-03-15 23:56 - 2017-03-04 15:53 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-03-15 23:56 - 2017-03-04 15:53 - 00496128 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-15 23:56 - 2017-03-04 15:52 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-03-15 23:56 - 2017-03-04 15:52 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2017-03-15 23:56 - 2017-03-04 15:51 - 00776192 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2017-03-15 23:56 - 2017-03-04 15:51 - 00347648 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2017-03-15 23:56 - 2017-03-04 15:50 - 01361408 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2017-03-15 23:56 - 2017-03-04 15:50 - 00893952 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2017-03-15 23:56 - 2017-03-04 15:50 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2017-03-15 23:56 - 2017-03-04 15:50 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2017-03-15 23:56 - 2017-03-04 15:49 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2017-03-15 23:56 - 2017-03-04 15:49 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2017-03-15 23:56 - 2017-03-04 15:48 - 01227264 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2017-03-15 23:56 - 2017-03-04 15:48 - 00320512 _____ (Microsoft Corporation) C:\Windows\regedit.exe
2017-03-15 23:56 - 2017-03-04 15:47 - 01082368 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2017-03-15 23:56 - 2017-03-04 15:46 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2017-03-15 23:56 - 2017-03-04 15:46 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2017-03-15 23:56 - 2017-03-04 15:45 - 01443328 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2017-03-15 23:56 - 2017-03-04 15:44 - 01562112 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2017-03-15 23:56 - 2017-03-04 15:44 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2017-03-15 23:56 - 2017-03-04 15:44 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2017-03-15 23:56 - 2017-03-04 15:44 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\SpaceAgent.exe
2017-03-15 23:56 - 2017-03-04 15:43 - 05114368 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2017-03-15 23:56 - 2017-03-04 15:43 - 00947200 _____ (Microsoft Corporation) C:\Windows\system32\wsp_sr.dll
2017-03-15 23:56 - 2017-03-04 15:43 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2017-03-15 23:56 - 2017-03-04 15:42 - 01692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-03-15 23:56 - 2017-03-04 15:42 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2017-03-15 23:56 - 2017-03-04 15:41 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\SensorDataService.exe
2017-03-15 23:56 - 2017-03-04 15:41 - 00818176 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-03-15 23:56 - 2017-03-04 15:40 - 06664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-03-15 23:56 - 2017-03-04 15:40 - 01586176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2017-03-15 23:56 - 2017-03-04 15:40 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2017-03-15 23:56 - 2017-03-04 15:39 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2017-03-15 23:56 - 2017-03-04 15:38 - 01714688 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2017-03-15 23:56 - 2017-03-04 15:38 - 00629248 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2017-03-15 23:56 - 2017-03-04 15:37 - 02512384 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2017-03-15 23:56 - 2017-03-04 15:37 - 01490944 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-03-15 23:56 - 2017-03-04 15:37 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2017-03-15 23:56 - 2017-03-04 15:37 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2017-03-15 23:56 - 2017-03-04 15:36 - 00881664 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2017-03-15 23:56 - 2017-03-04 15:35 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2017-03-15 23:56 - 2017-03-04 15:34 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\spaceman.exe
2017-03-15 23:55 - 2016-05-30 04:08 - 08886976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSetup.exe
2017-03-15 14:26 - 2017-03-15 20:34 - 00000000 ____D C:\Users\maste\Downloads\Office Christmas Party (2016) [YTS.AG]
2017-03-15 09:45 - 2017-03-15 09:45 - 00000000 ____D C:\Users\maste\AppData\Local\TeamViewer
2017-03-15 09:38 - 2017-03-15 13:08 - 00000000 ____D C:\Users\maste\AppData\Roaming\TeamViewer
2017-03-15 09:38 - 2017-03-15 09:38 - 00001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-03-15 09:38 - 2017-03-15 09:38 - 00000000 ____D C:\Program Files (x86)\TeamViewer

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-13 12:00 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\AppReadiness
2017-04-13 11:51 - 2016-10-04 23:04 - 00000000 ____D C:\Windows\system32\MRT
2017-04-13 11:50 - 2016-10-05 15:53 - 00000000 ____D C:\Users\maste\AppData\Roaming\Skype
2017-04-13 11:49 - 2016-10-04 23:04 - 148601744 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-04-13 11:49 - 2016-07-16 21:06 - 00000000 ____D C:\Windows\CbsTemp
2017-04-13 11:39 - 2016-10-04 23:13 - 00000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2017-04-13 11:09 - 2017-01-24 11:26 - 00376832 ___SH C:\Users\maste\Downloads\Thumbs.db
2017-04-13 10:47 - 2017-01-08 19:58 - 00000000 ____D C:\Users\maste\AppData\Roaming\.minecraft
2017-04-13 10:24 - 2017-01-06 23:35 - 00000000 ____D C:\Program Files (x86)\Steam
2017-04-13 10:23 - 2016-07-16 21:17 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-13 10:21 - 2016-10-04 14:55 - 00000000 ____D C:\Users\maste
2017-04-13 10:18 - 2017-01-07 12:54 - 00000000 ___RD C:\Users\maste\Dropbox
2017-04-13 10:18 - 2017-01-06 23:16 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-13 10:18 - 2016-10-04 15:00 - 00000000 ___RD C:\Users\maste\OneDrive
2017-04-13 10:17 - 2017-01-22 12:20 - 00009728 ___SH C:\Users\maste\Desktop\Thumbs.db
2017-04-13 10:16 - 2016-10-04 15:06 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-04-13 10:09 - 2017-02-08 09:39 - 00004268 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-04-13 00:23 - 2016-10-05 05:46 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-04-13 00:21 - 2017-01-07 00:45 - 00000000 ____D C:\Users\maste\AppData\Local\Ubisoft Game Launcher
2017-04-12 23:51 - 2017-01-07 00:59 - 00000000 ____D C:\Users\maste\AppData\Roaming\KeePass
2017-04-12 21:03 - 2017-01-08 19:58 - 00004146 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B1EF45FC-F51C-4345-A365-8965ABEEFF4A}
2017-04-12 20:41 - 2017-01-06 23:51 - 00003270 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task v2
2017-04-12 20:41 - 2016-10-04 15:00 - 00002398 _____ C:\Users\maste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-12 18:50 - 2017-01-18 21:20 - 00000000 ____D C:\Users\maste\Downloads\Torrents
2017-04-12 13:17 - 2017-01-07 18:51 - 00000000 ____D C:\Users\maste\AppData\Roaming\Curse Client
2017-04-12 13:17 - 2017-01-07 08:13 - 00000000 ____D C:\Users\maste\AppData\Local\CrashDumps
2017-04-12 13:17 - 2016-07-16 21:15 - 00000000 ____D C:\Windows\INF
2017-04-12 09:42 - 2017-01-07 01:00 - 00000000 ____D C:\Users\maste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-04-11 20:36 - 2016-10-04 15:13 - 00003416 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-11 20:36 - 2016-10-04 15:13 - 00003292 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-08 08:15 - 2017-01-07 09:26 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-04-07 23:49 - 2016-10-04 14:56 - 01459882 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-07 23:46 - 2017-01-06 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-04-07 23:46 - 2017-01-06 23:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-04-07 23:46 - 2017-01-06 23:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-04-07 23:46 - 2017-01-06 23:16 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-04-07 23:21 - 2016-12-05 08:37 - 00000000 ____D C:\Users\maste\Downloads\For mum
2017-04-07 20:31 - 2017-01-22 11:47 - 00000000 ____D C:\Users\maste\AppData\Roaming\deluge
2017-04-06 21:19 - 2016-10-04 15:13 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-05 23:23 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\LiveKernelReports
2017-04-04 22:51 - 2017-01-07 00:43 - 00000000 ____D C:\ProgramData\Origin
2017-04-04 22:49 - 2017-01-07 08:12 - 00000000 ____D C:\Users\maste\AppData\Roaming\Origin
2017-04-03 01:42 - 2016-09-23 22:17 - 01600560 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-04-03 01:42 - 2016-09-23 21:51 - 00218040 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-04-02 04:22 - 2016-07-16 21:19 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-04-02 04:22 - 2016-07-16 21:19 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-01 13:53 - 2017-01-07 00:06 - 00000000 ___RD C:\Users\maste\Desktop\Junk
2017-04-01 13:51 - 2017-01-06 23:18 - 00000000 ____D C:\Users\maste\AppData\Roaming\discord
2017-04-01 13:47 - 2016-10-05 05:46 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-04-01 13:47 - 2016-10-04 15:06 - 00026192 ____N (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2017-04-01 12:57 - 2017-02-16 16:25 - 28592184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-04-01 12:57 - 2017-01-06 23:41 - 04085712 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-04-01 12:57 - 2017-01-06 23:41 - 03602296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-04-01 12:57 - 2017-01-06 23:41 - 00045061 _____ C:\Windows\system32\nvinfo.pb
2017-04-01 11:40 - 2017-01-06 23:16 - 06437312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-04-01 11:40 - 2017-01-06 23:16 - 02481208 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-04-01 11:40 - 2017-01-06 23:16 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-04-01 11:40 - 2017-01-06 23:16 - 00549944 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-04-01 11:40 - 2017-01-06 23:16 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-04-01 11:40 - 2017-01-06 23:16 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-04-01 11:40 - 2017-01-06 23:16 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-04-01 11:39 - 2017-01-06 23:23 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-04-01 10:11 - 2017-01-10 09:03 - 00076840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2017-04-01 09:27 - 2017-01-06 23:45 - 00004002 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1483712114
2017-04-01 09:27 - 2017-01-06 23:45 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-04-01 09:26 - 2017-01-06 23:44 - 00032600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-04-01 09:26 - 2017-01-06 23:41 - 01005048 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-04-01 09:26 - 2017-01-06 23:41 - 00556784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-04-01 09:26 - 2017-01-06 23:41 - 00339696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-04-01 09:26 - 2017-01-06 23:41 - 00164064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-04-01 09:26 - 2017-01-06 23:41 - 00127112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-04-01 09:26 - 2017-01-06 23:41 - 00101152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-04-01 09:26 - 2017-01-06 23:41 - 00075704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-04-01 09:26 - 2017-01-06 23:41 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-03-31 19:45 - 2017-01-06 23:16 - 07851747 _____ C:\Windows\system32\nvcoproc.bin
2017-03-31 19:14 - 2016-07-16 15:34 - 00524288 _____ C:\Windows\system32\config\BBI
2017-03-31 19:10 - 2016-10-04 16:58 - 00000000 ____D C:\Program Files (x86)\GIGABYTE
2017-03-31 19:05 - 2016-10-04 23:08 - 00196286 _____ C:\Windows\SysWOW64\bios.ini
2017-03-30 03:46 - 2017-02-08 09:39 - 00334088 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-03-30 03:46 - 2017-02-08 09:39 - 00307736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-03-30 03:46 - 2017-02-08 09:39 - 00189768 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-03-30 03:46 - 2017-02-08 09:39 - 00048528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-03-26 14:44 - 2017-03-11 22:01 - 00000000 ____D C:\Users\maste\Downloads\Rust Mods
2017-03-26 14:00 - 2017-01-06 23:32 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-03-26 13:57 - 2017-01-06 23:32 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2017-03-26 13:29 - 2016-10-04 15:07 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-24 07:00 - 2016-10-04 15:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-03-23 22:35 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\system32\NDF
2017-03-23 19:48 - 2016-10-04 15:06 - 00000000 ____D C:\Intel
2017-03-23 19:47 - 2017-01-11 13:23 - 00000000 ____D C:\Users\TEMP
2017-03-23 19:47 - 2016-10-04 15:08 - 00000000 ____D C:\ProgramData\Intel
2017-03-23 19:47 - 2016-10-04 15:06 - 00000000 ____D C:\Program Files (x86)\Intel
2017-03-23 19:46 - 2016-10-04 15:06 - 00000000 ____D C:\Program Files\Intel
2017-03-22 12:45 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\rescache
2017-03-19 15:51 - 2016-10-04 14:58 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-19 15:50 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\system32\appraiser
2017-03-19 15:35 - 2016-10-05 05:46 - 00194224 _____ C:\Windows\system32\FNTCACHE.DAT
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ___SD C:\Windows\SysWOW64\F12
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ___SD C:\Windows\system32\F12
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ___RD C:\Windows\PrintDialog
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ___RD C:\Program Files\Windows Defender
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\SysWOW64\setup
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\system32\setup
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\system32\oobe
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\ShellExperiences
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ____D C:\Windows\bcastdvr
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-19 15:32 - 2016-07-16 21:17 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-19 01:03 - 2017-01-06 23:41 - 00547904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.148985126434304
2017-03-19 01:03 - 2017-01-06 23:41 - 00337592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.148985126500006
2017-03-18 21:19 - 2017-02-16 14:14 - 00557096 _____ C:\Windows\system32\Drivers\EasyAntiCheat.sys
2017-03-18 20:24 - 2017-01-08 23:57 - 00000000 ____D C:\Users\maste\Documents\My Games
2017-03-17 10:31 - 2017-02-16 16:25 - 28254264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\SET1949.tmp
2017-03-17 10:31 - 2017-01-06 23:41 - 04078008 _____ (NVIDIA Corporation) C:\Windows\system32\SETF4B0.tmp
2017-03-17 10:31 - 2017-01-06 23:41 - 03597456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\SET954.tmp
2017-03-16 09:13 - 2017-01-06 23:55 - 00000000 ____D C:\ProgramData\Skype
2017-03-15 20:34 - 2017-03-01 21:42 - 00000000 ____D C:\Users\maste\Downloads\24.Legacy.S01E05.WEB-DL.XviD-FUM[ettv]
2017-03-15 20:34 - 2017-03-01 21:39 - 00000000 ____D C:\Users\maste\Downloads\24.Legacy.S01E04.WEB-DL.XviD-FUM[ettv]
2017-03-15 20:34 - 2017-03-01 21:16 - 00000000 ____D C:\Users\maste\Downloads\24.Legacy.S01E03.WEB-DL.XviD-FUM[ettv]
2017-03-15 20:34 - 2017-03-01 21:16 - 00000000 ____D C:\Users\maste\Downloads\24.Legacy.S01E02.WEB-DL.XviD-FUM[ettv]
2017-03-15 09:34 - 2016-10-04 14:57 - 00000000 ____D C:\Users\maste\AppData\Local\Packages
2017-03-14 20:14 - 2017-01-16 09:10 - 00000000 ____D C:\Users\maste\Documents\Klei

==================== Files in the root of some directories =======

2017-04-12 19:05 - 2017-04-12 19:05 - 0000218 _____ () C:\Users\maste\AppData\Local\recently-used.xbel
2017-01-06 23:23 - 2017-01-10 09:03 - 0008639 _____ () C:\ProgramData\NvTelemetryContainer.log
2017-01-06 23:23 - 2017-01-07 08:02 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-04-09 13:56

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by maste (13-04-2017 12:04:21)
Running from C:\Users\maste\Downloads
Windows 10 Pro Version 1607 (X64) (2016-10-04 05:23:30)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1083469602-1432568064-362528207-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1083469602-1432568064-362528207-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1083469602-1432568064-362528207-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-1083469602-1432568064-362528207-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1083469602-1432568064-362528207-1007 - Limited - Enabled)
maste (S-1-5-21-1083469602-1432568064-362528207-1001 - Administrator - Enabled) => C:\Users\maste

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS B16.1205.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
@BIOS B16.1205.1 (x32 Version: 3.00.0000 - GIGABYTE) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.7.197 - Adobe Systems, Inc.)
Ambient LED (HKLM-x32\...\InstallShield_{BEF97B38-D1B8-45B4-A60A-AF5C1556CC72}) (Version: 1.00.1605.2501 - GIGABYTE)
Ambient LED (x32 Version: 1.00.1605.2501 - GIGABYTE) Hidden
Ansel (Version: 381.65 - NVIDIA Corporation) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 1.00.1701.0301 - GIGABYTE)
APP Center (x32 Version: 1.00.1701.0301 - GIGABYTE) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{DB18F1C0-846F-46F5-A074-5B97C8AF5C8E}) (Version: 10.3.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
ARK: Survival Evolved (HKLM\...\Steam App 346110) (Version: - Studio Wildcard)
Assassin's Creed II (HKLM-x32\...\Uplay Install 4) (Version: - Ubisoft)
AutoGreen (HKLM-x32\...\InstallShield_{CFB76B97-0C1C-4E1A-999A-DE62FA5FEB9A}) (Version: 1.0 - GIGABYTE)
AutoGreen (x32 Version: 1.0 - GIGABYTE) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.3.2291 - AVAST Software)
Bandicam (HKLM-x32\...\Bandicam) (Version: 3.3.0.1175 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Beat Hazard (HKLM\...\Steam App 49600) (Version: - Cold Beam Games)
BIOS Setup (HKLM-x32\...\InstallShield_{9D48202D-C767-40E7-8A4E-C14BD7328168}) (Version: 1.00.0000 - GIGABYTE)
BIOS Setup (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Blizzard App (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Burnout Paradise: The Ultimate Box (HKLM\...\Steam App 24740) (Version: - Criterion Games)
Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.1.0.0 - Electronic Arts)
BUSB (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.16.1020.1 - GIGABYTE)
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
Click Install if prompted (x32 Version: 1.0.0.0 - ExpressVpn) Hidden
Cloud Station (Server) (HKLM-x32\...\InstallShield_{5D132D9D-2A99-48CF-9DCC-775DF6F31384}) (Version: 1.00.1701.1201 - GIGABYTE)
Cloud Station (Server) (x32 Version: 1.00.1701.1201 - GIGABYTE) Hidden
CloudStation (HKLM-x32\...\InstallShield_{6D8DA122-A40A-421B-9D95-FE4C806BCDBE}) (Version: 1.00.0021 - GIGABYTE)
CloudStation (x32 Version: 1.00.0021 - GIGABYTE) Hidden
Color Temperature (HKLM-x32\...\InstallShield_{68BFE28B-3F55-4E00-90A4-5179B91A3BD0}) (Version: 16.05.0601 - GIGABYTE)
Color Temperature (x32 Version: 16.05.0601 - GIGABYTE) Hidden
Conan Exiles (HKLM\...\Steam App 440900) (Version: - Funcom)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
Deluge 1.3.13 (HKLM-x32\...\Deluge) (Version: - )
Discord (HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
Dropbox (HKLM-x32\...\Dropbox) (Version: 23.4.18 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Dying Light (HKLM\...\Steam App 239140) (Version: - Techland)
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.16.1117 - GIGABYTE)
EasyTune (x32 Version: 1.16.1117 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.16.0614 - GIGABYTE)
EasyTuneEngineService (x32 Version: 1.16.0614 - GIGABYTE) Hidden
Elite Dangerous Launcher version 0.4.5912.0 (HKLM-x32\...\{696F8871-C91D-4CB1-825D-36BE18065575}_is1) (Version: 0.4.5912.0 - Frontier Developments)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.18 - Echobit, LLC)
ExpressVPN (HKLM-x32\...\{91c374e1-8110-4c28-8157-4b46f94c3396}) (Version: 6.0.9.1394 - ExpressVPN)
ExpressVPN (x32 Version: 6.0.9.1394 - ExpressVPN) Hidden
EZRAID (HKLM-x32\...\InstallShield_{8F307CB5-FE1C-4BF3-8747-305D14161916}) (Version: 1.00.0000 - GIGABYTE)
EZRAID (x32 Version: 1.00.0000 - GIGABYTE) Hidden
FaceRig (HKLM\...\Steam App 274920) (Version: - Holotech Studios)
FaceRig Virtual Video driver version 1.0.1.1000 (HKLM-x32\...\{7D6A1A0F-F57E-4C6B-9331-86CBC7D5C787}_is1) (Version: 1.0.1.1000 - Adoriasoft LLC)
Fallout 4 (HKLM\...\Steam App 377160) (Version: - Bethesda Game Studios)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft)
Far Cry Primal (HKLM-x32\...\Uplay Install 2010) (Version: - Ubisoft)
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.16.1017 - GIGABYTE)
Fast Boot (x32 Version: 1.16.1017 - GIGABYTE) Hidden
Fragmented (HKLM\...\Steam App 441790) (Version: - Above and Beyond Technologies)
GigabyteFirmwareUpdateUtility (HKLM-x32\...\InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.00.0000 - GIGABYTE)
GigabyteFirmwareUpdateUtility (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Go! Go! Nippon! ~My First Trip to Japan~ (HKLM\...\Steam App 251870) (Version: - OVERDRIVE)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.33.3 - Google Inc.) Hidden
Homefront: The Revolution (HKLM\...\Steam App 223100) (Version: - Dambuster Studios)
Hotspot Shield 6.5.4 (HKLM-x32\...\{8af0863c-fcd7-4044-b70e-2d266348828b}) (Version: 6.5.4.10376 - AnchorFree Inc.)
Hotspot Shield 6.5.4 (x32 Version: 6.5.4 - AnchorFree Inc.) Hidden
Hotspot Shield 6.5.4 (x32 Version: 6.5.4.10376 - AnchorFree Inc.) Hidden
Idol Hands (HKLM\...\Steam App 345750) (Version: - Pocket Games)
ILLUSION HoneySelect (HKLM-x32\...\{1F709DAC-507B-47DA-B04F-367EF5AA20B4}) (Version: 1.00.0000 - ILLUSION)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4501 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{FB766DC2-1CD7-4267-8275-E4B608BCE8C4}) (Version: 18.1.1525.1421 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{475ea806-cb2a-455b-bb1b-9f99342b2fe2}) (Version: 19.40.0 - Intel Corporation)
iTunes (HKLM\...\{164600BE-9CEC-44E6-9B38-2B12D5FE2342}) (Version: 12.6.0.100 - Apple Inc.)
Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Just Cause 2 (HKLM\...\Steam App 8190) (Version: - Avalanche Studios)
Kane & Lynch 2: Dog Days (HKLM\...\Steam App 28000) (Version: - IO Interactive)
KeePass Password Safe 2.35 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.35 - Dominik Reichl)
Killer Bandwidth Control Filter Driver (Version: 1.1.57.1346 - Rivet Networks) Hidden
Killer E240x Drivers (Version: 1.1.57.1346 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.57.1346 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{009DF489-4590-4579-BAB2-0136BB829E4A}) (Version: 1.1.57.1346 - Rivet Networks)
Lichdom: Battlemage (HKLM\...\Steam App 261760) (Version: - Xaviant)
LOOT version 0.10.3 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.10.3 - LOOT Team)
Lords Of The Fallen (HKLM\...\Steam App 265300) (Version: - CI Games)
Mad Max (HKLM\...\Steam App 234140) (Version: - Avalanche Studios)
Microsoft OneDrive (HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Miner Wars 2081 (HKLM\...\Steam App 223430) (Version: - Keen Software House)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.13 - Black Tree Gaming)
No Man's Sky (HKLM\...\Steam App 275850) (Version: - Hello Games)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 381.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation)
NVIDIA Graphics Driver 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.65 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.5.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.0 - OBS Project)
ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B15.0709.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.4.6.33873 - Electronic Arts, Inc.)
Osiris: New Dawn (HKLM\...\Steam App 402710) (Version: - Fenix Fire Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.103.44.0 - Overwolf Ltd.)
Oxygen Not Included (HKLM\...\Steam App 457140) (Version: - Klei Entertainment)
Path of Exile (HKLM\...\Steam App 238960) (Version: - Grinding Gear Games)
Planetary Annihilation: TITANS (HKLM\...\Steam App 386070) (Version: - Uber Entertainment)
Plantronics® RIG 500 Software for Dolby® Headphone (HKLM-x32\...\{2A01907E-2CD8-4870-B820-DEB03266960C}) (Version: 2.12.01 - Plantronics)
PlatformPowerManagement (HKLM-x32\...\InstallShield_{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.16.0331 - GIGABYTE)
PlatformPowerManagement (x32 Version: 1.16.0331 - GIGABYTE) Hidden
Portal Knights (HKLM\...\Steam App 374040) (Version: - Keen Games)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.26 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.17.302 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
Rust (HKLM\...\Steam App 252490) (Version: - Facepunch Studios)
Rustangelo (HKLM\...\Steam App 527440) (Version: - JaviteSoft)
SafeZone Stable 3.55.2393.596 (x32 Version: 3.55.2393.596 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.16.0525 - GIGABYTE)
SIV (x32 Version: 1.16.0525 - GIGABYTE) Hidden
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Sleeping Dogs™ (HKLM\...\Steam App 202170) (Version: - United Front Games)
Smart Backup B16.0516.1 (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 1.00.0003 - GIGABYTE)
Smart TimeLock B16.0519.1 (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE)
Smart TimeLock B16.0519.1 (x32 Version: 1.00.0001 - GIGABYTE) Hidden
SmartKeyboard (HKLM-x32\...\InstallShield_{75B74C36-A9C6-4912-B4BB-C461AA36D01E}) (Version: 1.00.0000 - GIGABYTE)
SmartKeyboard (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Sound Blaster X-Fi MB3 (HKLM-x32\...\{3689CE39-3173-4952-B7AF-F1A9D6F9A288}) (Version: 1.00.06 - Creative Technology Limited)
STAR WARS™ Jedi Knight: Jedi Academy™ (HKLM\...\Steam App 6020) (Version: - Raven Software)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Subnautica (HKLM\...\Steam App 264710) (Version: - Unknown Worlds Entertainment)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
Telegram Desktop version 1.0.29 (HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.0.29 - Telegram Messenger LLP)
Terraria (HKLM\...\Steam App 105600) (Version: - Re-Logic)
The Amazing Spider-Man (HKLM\...\Steam App 212580) (Version: - Beenox)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
The Elder Scrolls V: Skyrim Special Edition (HKLM\...\Steam App 489830) (Version: - Bethesda Game Studios)
The Forest (HKLM\...\Steam App 242760) (Version: - Endnight Games Ltd)
The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version: - CD PROJEKT RED)
Undead Overlord (HKLM\...\Steam App 291370) (Version: - JumpCore Productions)
Undertale (HKLM\...\Steam App 391540) (Version: - tobyfox)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WebM Project Directshow Filters (HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\webmdshow) (Version: - )
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1988A1DF-EE1D-4427-8643-2417EFFA6C34} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-07] (Dropbox, Inc.)
Task: {1C1FCA51-FACB-4C9C-8511-BF0055250DBC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-04] (Google Inc.)
Task: {33C8DEC5-7E9E-4E33-A164-BCB12425AC8E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
Task: {3D1085E3-B042-4B16-B03B-3FC84D25E8D2} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-03-22] (Overwolf LTD)
Task: {4E913827-E69C-4E07-AAD6-194296FB037F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-27] (AVAST Software)
Task: {508ACC42-CFB0-4B76-84CC-AB9E4DAE3244} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-02-24] (NVIDIA Corporation)
Task: {53917B85-71F2-449A-9FEA-C9A1DC5B006A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-24] (NVIDIA Corporation)
Task: {69878E00-CC9E-479D-B11C-FFDA0791F561} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-24] (NVIDIA Corporation)
Task: {845F0B3C-AAF3-4E1D-B3BE-C1F68D558EBD} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-24] (NVIDIA Corporation)
Task: {8B0988B9-69E6-4774-8F08-67FF44D2105A} - System32\Tasks\{17B35073-4F96-4EFF-A8F6-189010C68CA3} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&amp;ver=7.2.0.103&amp;LastError=404
Task: {90A04755-B558-403A-9268-20A1B975E4A3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-02-24] (NVIDIA Corporation)
Task: {9CA79A24-9BD7-41BA-9858-717557E33BD9} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-24] (NVIDIA Corporation)
Task: {AC3F5A59-7565-435E-BADE-6A3AA90FB0A5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-24] (NVIDIA Corporation)
Task: {B6031C4F-0090-494F-8FBE-71D881AD642B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-04] (Piriform Ltd)
Task: {D3174A31-6523-452B-AA04-670BD4169FC9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-04-01] (AVAST Software)
Task: {D3629607-39B5-4643-BF8A-03FA8FCBB49B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-04] (Google Inc.)
Task: {D7FB2EC3-6B16-49B3-9FA8-92CC18CF19A4} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-07] (Dropbox, Inc.)
Task: {E74F2489-8154-4B44-8E8D-333D24B4102D} - System32\Tasks\SafeZone scheduled Autoupdate 1483712114 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\maste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl

==================== Loaded Modules (Whitelisted) ==============

2017-01-06 23:23 - 2017-02-24 04:05 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2017-01-06 23:23 - 2017-02-24 04:05 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-02-06 15:07 - 2017-02-06 15:07 - 00331264 _____ () C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
2015-06-25 08:45 - 2015-06-25 08:45 - 00017920 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
2016-11-17 00:28 - 2016-11-17 00:28 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-03-16 15:08 - 2017-03-16 15:08 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-09-25 06:50 - 2016-09-25 06:51 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2017-02-06 15:08 - 2017-02-06 15:08 - 09053312 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
2016-07-16 21:12 - 2016-07-16 21:12 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2017-03-15 23:57 - 2017-03-04 16:49 - 02681200 _____ () C:\Windows\System32\CoreUIComponents.dll
2017-03-15 23:57 - 2017-03-04 16:49 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2017-04-01 09:26 - 2017-04-01 09:26 - 00522512 _____ () C:\Program Files\AVAST Software\Avast\x64\gaming_spy.dll
2017-03-15 23:57 - 2017-03-04 16:49 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2017-03-08 12:12 - 2017-03-08 12:12 - 00230064 _____ () C:\Wolfies\Programs\Notepad++\NppShell_06.dll
2016-10-04 23:03 - 2016-09-07 14:26 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 23:56 - 2017-03-04 16:01 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 23:57 - 2017-03-04 15:42 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 23:57 - 2017-03-04 15:35 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 23:57 - 2017-03-04 15:35 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-15 23:57 - 2017-03-04 15:35 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-03-15 23:57 - 2017-03-04 15:35 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-15 23:58 - 2017-03-04 15:38 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-01-03 14:53 - 2017-01-03 14:53 - 01850312 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
2016-10-04 15:04 - 2015-05-30 10:27 - 00089600 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
2016-10-04 15:04 - 2015-05-30 10:26 - 00366080 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2017-04-11 09:32 - 2017-04-11 09:32 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-04-11 09:32 - 2017-04-11 09:32 - 00189952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-04-11 09:32 - 2017-04-11 09:32 - 42507264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-04-11 09:32 - 2017-04-11 09:32 - 02334184 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\skypert.dll
2017-02-06 13:58 - 2015-10-19 11:50 - 03321632 ____N () C:\Program Files\Plantronics\HD1\optimus3D_x64.exe
2017-03-22 17:14 - 2017-03-22 17:14 - 00092472 _____ () C:\Program Files\iTunes\zlib1.dll
2017-03-22 17:14 - 2017-03-22 17:14 - 01354040 _____ () C:\Program Files\iTunes\libxml2.dll
2017-01-19 12:52 - 2017-01-19 12:52 - 00298448 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2017-04-13 10:49 - 2017-04-13 10:49 - 00317440 _____ () C:\Users\maste\AppData\Local\Temp\e051-2c1f-6f04-a28f\lwjgl64.dll
2017-04-13 10:49 - 2017-04-13 10:49 - 00382464 _____ () C:\Users\maste\AppData\Local\Temp\e051-2c1f-6f04-a28f\OpenAL64.dll
2017-04-13 10:23 - 2017-04-13 10:23 - 01710080 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8104.42387.0_x64__8wekyb3d8bbwe\HxMail.exe
2017-04-08 08:26 - 2017-04-08 08:27 - 13358272 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8104.42387.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
2017-03-21 10:16 - 2017-03-21 10:16 - 00166520 _____ () C:\Program Files (x86)\Hotspot Shield\bin\CrashRpt1403.dll
2017-02-06 15:09 - 2017-02-06 15:09 - 00444544 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.FilterManager.dll
2015-02-17 00:47 - 2015-02-17 00:47 - 00105472 _____ () C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\ycc.dll
2017-01-07 00:57 - 2017-04-04 22:47 - 02493440 _____ () C:\Wolfies\Programs\Origin\libGLESv2.dll
2017-01-06 23:23 - 2017-02-24 04:05 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-01-06 23:23 - 2017-02-24 04:05 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2017-01-06 23:23 - 2017-02-24 04:05 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-04-01 09:26 - 2017-04-01 09:26 - 00454424 _____ () C:\Program Files\AVAST Software\Avast\gaming_spy.dll
2016-08-09 18:49 - 2016-08-09 18:49 - 01804800 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2015-02-16 09:47 - 2015-02-16 09:47 - 00105472 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ycc.dll
2017-04-01 09:26 - 2017-04-01 09:26 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-01-06 23:39 - 2017-01-06 23:39 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-04-01 09:26 - 2017-04-01 09:26 - 00176480 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-04-01 09:26 - 2017-04-01 09:26 - 00293936 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-04-01 09:26 - 2017-04-01 09:26 - 00653520 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-01-12 08:35 - 2017-01-04 13:28 - 01958912 _____ () C:\ProgramData\maste\Discord\app-0.0.297\ffmpeg.dll
2017-01-12 08:35 - 2017-01-12 08:35 - 01082880 _____ () \\?\C:\Users\maste\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node
2017-01-12 08:35 - 2017-01-12 08:35 - 03750400 _____ () \\?\C:\Users\maste\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll
2017-01-12 08:35 - 2017-01-12 08:35 - 00914432 _____ () \\?\C:\Users\maste\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node
2017-01-12 08:35 - 2017-01-12 08:35 - 01127424 _____ () \\?\C:\Users\maste\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node
2017-01-06 23:38 - 2017-03-10 09:43 - 00674592 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-01-06 23:37 - 2016-09-01 10:32 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-01-06 23:37 - 2017-03-23 10:22 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
2017-01-06 23:37 - 2016-09-01 10:32 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-01-06 23:37 - 2016-09-01 10:32 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-01-06 23:37 - 2016-01-27 17:19 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2017-01-06 23:37 - 2016-01-27 17:19 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2017-01-06 23:37 - 2016-01-27 17:19 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2017-01-06 23:37 - 2016-01-27 17:19 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2017-01-06 23:37 - 2016-01-27 17:19 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2017-01-06 23:38 - 2017-03-31 08:16 - 00848672 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-01-06 23:37 - 2016-07-05 07:47 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-01-06 23:23 - 2017-02-24 04:04 - 65708992 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-01-12 08:35 - 2017-01-04 13:28 - 02278912 _____ () C:\ProgramData\maste\Discord\app-0.0.297\libglesv2.dll
2017-01-12 08:35 - 2017-01-04 13:28 - 00096768 _____ () C:\ProgramData\maste\Discord\app-0.0.297\libegl.dll
2017-01-30 11:52 - 2017-01-30 11:52 - 01926632 ____R () C:\Program Files (x86)\Skype\Phone\roottools.dll
2017-01-06 23:23 - 2017-02-24 00:00 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2017-01-06 23:23 - 2017-02-24 00:00 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2017-01-06 23:23 - 2017-02-24 00:00 - 02443320 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2017-01-06 23:23 - 2017-02-24 00:00 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2017-01-06 23:23 - 2017-02-24 00:00 - 00543288 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2017-01-06 23:23 - 2017-02-24 00:00 - 00468536 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2017-01-16 21:10 - 2017-01-16 21:10 - 00143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2017-04-08 08:14 - 2017-04-07 02:35 - 00870720 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-03-25 07:23 - 2017-03-21 03:40 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-03-25 07:23 - 2017-03-21 03:40 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-03-25 07:23 - 2017-03-21 03:40 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-03-25 07:23 - 2017-04-07 02:37 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-03-25 07:23 - 2017-03-21 03:41 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-03-25 07:23 - 2017-03-21 03:40 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 01729360 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-04-08 08:14 - 2017-03-21 03:40 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-04-08 08:14 - 2017-03-21 03:41 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-04-08 08:14 - 2017-03-21 03:40 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-03-25 07:23 - 2017-03-21 03:43 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-03-25 07:23 - 2017-04-07 02:37 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00060736 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-04-08 08:14 - 2017-03-21 03:40 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-04-08 08:14 - 2017-03-21 03:43 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-03-25 07:23 - 2017-04-07 02:37 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-03-25 07:23 - 2017-04-07 02:37 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-03-25 07:23 - 2017-03-21 03:42 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-03-25 07:23 - 2017-04-07 02:38 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-03-25 07:23 - 2017-03-21 03:41 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-03-25 07:23 - 2017-04-07 02:38 - 00053072 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-03-25 07:23 - 2017-04-07 02:38 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-03-25 07:23 - 2017-04-07 02:37 - 00069968 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2017-03-25 07:23 - 2017-04-07 02:37 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-03-25 07:23 - 2017-04-07 02:38 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-03-25 07:23 - 2017-04-07 02:38 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-03-25 07:23 - 2017-03-21 03:43 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00103232 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2017-03-25 07:23 - 2017-04-07 02:38 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-04-08 08:14 - 2017-03-21 03:38 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-04-08 08:14 - 2017-04-07 02:37 - 00033112 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-04-08 08:14 - 2017-03-23 03:17 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-04-08 08:14 - 2017-04-07 02:37 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-03-25 07:23 - 2017-04-07 02:37 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-04-08 08:14 - 2017-03-21 03:47 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-04-08 08:14 - 2017-03-21 03:47 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-04-08 08:14 - 2017-04-07 02:37 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-03-25 07:23 - 2017-04-07 02:38 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-04-08 08:14 - 2017-04-07 02:37 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-04-13 10:17 - 2017-04-13 10:17 - 00148992 _____ () \\?\C:\Users\maste\AppData\Local\Temp\1B06.tmp.node
2017-01-12 08:35 - 2017-01-12 08:35 - 02658304 _____ () \\?\C:\Users\maste\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node
2017-01-12 08:36 - 2017-03-23 09:02 - 02665976 _____ () \\?\C:\Users\maste\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node
2017-03-22 05:33 - 2017-03-22 05:33 - 67310648 _____ () C:\Program Files (x86)\Overwolf\0.103.44.0\libcef.DLL
2017-01-07 01:02 - 2016-10-08 16:43 - 50656768 _____ () C:\Users\maste\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2017-01-07 01:02 - 2016-10-08 16:43 - 01874944 _____ () C:\Users\maste\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2017-01-07 01:02 - 2016-10-08 16:43 - 00075264 _____ () C:\Users\maste\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2017-01-06 23:40 - 2017-01-31 07:11 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-01-06 23:38 - 2017-03-23 10:22 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
2017-04-06 21:19 - 2017-03-29 11:34 - 02187096 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libglesv2.dll
2017-04-06 21:19 - 2017-03-29 11:34 - 00086360 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libegl.dll
2017-04-13 10:47 - 2017-04-13 10:47 - 06042624 _____ () C:\Wolfies\Games\minecraft\game\launcher.dll
2017-04-13 10:47 - 2017-04-13 10:47 - 63805440 _____ () C:\Wolfies\Games\minecraft\game\libcef.dll
2017-04-13 10:47 - 2017-04-13 10:47 - 01872896 _____ () C:\Wolfies\Games\minecraft\game\libglesv2.dll
2017-04-13 10:47 - 2017-04-13 10:47 - 00078848 _____ () C:\Wolfies\Games\minecraft\game\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 21:17 - 2016-07-16 21:15 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1083469602-1432568064-362528207-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\maste\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{0FD4E60E-EB08-4B9C-A3F0-8AE508829EE2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
FirewallRules: [{265BC7D5-81AA-4447-8BA6-ADA61E52C40C}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe
FirewallRules: [{92DC8FEC-291C-4B73-94AC-35B89D33C825}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{DB33FEBE-6B19-40CC-875B-3CACD40E3CBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{58B34522-3073-4CE0-83E1-AD45AFA4FCC2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{8C6368C3-EA72-4D5A-8745-2C67D9B4CCC9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A5DDDBEF-6E33-4E8F-8675-1E9D802B88FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D78D188A-3B32-406A-8DC2-FE38B453F7CA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A8EFA457-1D1A-4638-83DF-00C071D5B468}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{26DBA379-76C6-4F63-AC8B-E83AA0279226}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{49A04918-B51E-4141-A2D4-721B3456E66D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B0411AC5-1865-4D05-B322-FF59D7CD9688}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{9B1F21F0-E7C5-49C6-A5FB-53BEF7519DDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undead Overlord\undeadoverlord.exe
FirewallRules: [{627A59F5-38C2-497F-B7B7-D2E4BF4C3D4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undead Overlord\undeadoverlord.exe
FirewallRules: [{630F4DEB-93F1-43D5-8D9E-A0471E0F8E21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{8FAA1167-8581-4D96-AC4A-AA804DC41B61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{F7E6A52F-E82E-4ECA-B781-EE4C5B4BEEB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{693B4D33-3342-483C-B136-00DEF81AE476}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{0D9FB8ED-5AAC-489E-B0ED-4C09998FEE54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{FF051D8C-8F0C-447C-8CB6-658FB6E64208}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{CB99B249-FA4E-4AC3-B66E-B2FFF4047EC7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{CD1F1308-5C8C-4F6F-A8F3-869131BA01FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{05FAB51C-F5AF-4A6C-BCA3-17661B8070E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{36D587EC-A57A-4431-A2AD-599679F467C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{4D737EA1-9DA2-454B-BD6A-AF2FFBC8B870}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{33D519B6-1432-4E1B-90A0-5C14338F7052}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{8801894A-1B1E-4B1C-A02F-9386D726DD0A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DF917F45-9F31-4361-BEA2-95A4A90D7331}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{39CC130E-4FB9-4704-B3E2-B86F14EBF6D2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{813C5C8F-6E17-4CA7-88EC-85243891C1F0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{60D521D5-6087-4910-9772-654FC008A4C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mad Max\MadMax.exe
FirewallRules: [{086433F4-3499-44DF-A29C-214A4C68678B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mad Max\MadMax.exe
FirewallRules: [{4F87F6FF-23EB-43EC-AD05-1060208359D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [{7C102389-6F05-4FE8-A2BC-F901255B4B88}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [{128BD9CE-BBC9-4A01-B42D-9013D750988C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{E974568C-BC83-4DD4-9E60-1777ABD2FD71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{DA022FE2-3574-4F8C-AC48-A1E194BD5669}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lichdom Battlemage\Bin64\LichdomBattlemage.exe
FirewallRules: [{3F892FFE-3F5E-4C31-B20A-E69F1528B79A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lichdom Battlemage\Bin64\LichdomBattlemage.exe
FirewallRules: [TCP Query User{5EECE4EA-EA98-458B-A513-80A0DFDECB56}C:\wolfies\games\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\wolfies\games\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{7E84A010-9426-4599-AFF0-A224A4596F80}C:\wolfies\games\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\wolfies\games\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{2B2EBFBF-12D7-4D9B-8448-CC09820689D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{F855D956-523C-446E-A935-816F1CA36C41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{68B4BE87-D7DD-44FD-B629-6B69B0DFB3A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe
FirewallRules: [{31D2D71F-FB2B-4F35-B358-98C17B67ED89}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe
FirewallRules: [TCP Query User{331F556C-CAB8-40D2-B16C-2FA1A97A284C}C:\wolfies\games\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\wolfies\games\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{966FC17E-1B9C-4867-B075-1428B0A24143}C:\wolfies\games\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\wolfies\games\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{D700E474-F33A-47EA-A363-EC271E31EBBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{A9DAA000-D1A0-4D44-B9DB-C5FDEB49B9A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{83A220F0-7A06-4B4C-876B-6798231F1DEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{EA0DF199-A916-47FB-9972-F4A6B103DFD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [TCP Query User{973E7C56-69C6-4E43-896C-2FE2C5D5E494}C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe
FirewallRules: [UDP Query User{7143874F-6D7C-4304-B72A-6E4D7A4EFAEF}C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe
FirewallRules: [{A85B4FD4-4590-4731-AF82-7365468F44E5}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{31D4F550-CE25-4FF8-8299-6480F4D12478}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{A3A2197F-7CB4-4087-950E-AABEA2043D10}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe
FirewallRules: [{FC3E56DE-90CE-457C-A10A-6B7F18BA23A7}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{C7DC6CD1-97FA-4DBB-83A9-C1AC8AB53B51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheSolusProject\Solus\Binaries\Win64\Solus-Win64-Shipping.exe
FirewallRules: [{81AC89A6-BE1F-4E52-8EA7-EB471076BC00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheSolusProject\Solus\Binaries\Win64\Solus-Win64-Shipping.exe
FirewallRules: [{0B4B0841-0D88-4050-ABB7-2D83CB8D91C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Osiris\OsirisNewDawn.exe
FirewallRules: [{2CBBDAB5-7E33-4E7A-B56E-C1BCF94E5A18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Osiris\OsirisNewDawn.exe
FirewallRules: [{F1CE4D92-7D63-4152-87B1-9ECAB1852C79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{07483546-9400-42C3-9D39-61CD7D167683}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{8E60C5E4-9EC4-40FD-BE58-5C7DB350D37C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{559C6C6A-EC88-48C8-A0AF-FD45D8A737E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{994D79FD-C7F2-4D32-8747-3D8D8D6BCA97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{09075FD1-3293-444B-8149-055B313A53BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{8297E759-BCF1-4C7B-8E55-22C9476D5104}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{F1BDA789-6844-44FE-882D-3028E76C7B4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{AD00D685-52F6-474C-B0C9-FC51719DC4AA}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
FirewallRules: [{8C3F030E-6813-4D89-93BD-E04DFEF66173}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe
FirewallRules: [{85B732F7-85C2-40C4-B79E-DC1B705B9F35}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{5F6B6C34-B627-42A9-8FB5-3178DEC8514B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [TCP Query User{FD30654C-EF05-498A-9E3F-DA1A8E92FD3A}C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe
FirewallRules: [UDP Query User{4B3AC824-4FB6-418F-9F7B-76C3BB012FE4}C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe
FirewallRules: [{7B9C7C71-9C35-499D-A159-BA492102B72E}] => (Allow) C:\Wolfies\Programs\Trust.Zone VPN Client\trustzone.exe
FirewallRules: [{ADFA8B54-25CF-4364-B91C-415477123004}] => (Allow) C:\Wolfies\Programs\Trust.Zone VPN Client\tzclient.exe
FirewallRules: [{FF372684-0198-47BE-AC57-3552E493259E}] => (Allow) C:\Wolfies\Programs\Trust.Zone VPN Client\trustzone_x64.exe
FirewallRules: [{41BCC217-E43E-4D25-BEB5-8659F6DF0D27}] => (Allow) C:\Wolfies\Programs\Trust.Zone VPN Client\tzclient_x64.exe
FirewallRules: [TCP Query User{A27E7BB2-BADA-4DC5-8183-D7F9C71A83F6}C:\wolfies\programs\deluge\deluge.exe] => (Allow) C:\wolfies\programs\deluge\deluge.exe
FirewallRules: [UDP Query User{89FE450F-86CF-40D5-B824-BC811A386C5E}C:\wolfies\programs\deluge\deluge.exe] => (Allow) C:\wolfies\programs\deluge\deluge.exe
FirewallRules: [{30C5E4DC-2870-4369-9D1B-A614607C0EC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{CB77E6B5-7AA2-4BA2-A565-B818CDD5CF1D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [TCP Query User{603D18FB-6E86-4BB0-BC0E-C6EA849FD3D1}C:\wolfies\programs\deluge\deluge.exe] => (Allow) C:\wolfies\programs\deluge\deluge.exe
FirewallRules: [UDP Query User{ED84916C-0021-4097-88A1-25F5026A3301}C:\wolfies\programs\deluge\deluge.exe] => (Allow) C:\wolfies\programs\deluge\deluge.exe
FirewallRules: [{8FC4C17D-7DA5-4922-89E5-6E4FD920CF24}] => (Block) C:\wolfies\programs\deluge\deluge.exe
FirewallRules: [{1C159156-0309-492F-BE5B-7A9873BAC405}] => (Block) C:\wolfies\programs\deluge\deluge.exe
FirewallRules: [{4FC128B2-F9AD-4FC8-8C54-189B6BC6D665}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{97E11CDD-9ADA-44E6-80A6-DBF3A582ABF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{CAD8D64B-6A3A-4DCF-9CA3-CD258238B8A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{20C83272-20FD-4DDD-B9DE-EDFC92F63A70}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{3AE2CE43-C951-472F-AE19-43FC6EE8B079}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\HomeCloud\HCLOUD.exe
FirewallRules: [{D6742E5B-E2EE-4C98-B2DF-20D964A606C1}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
FirewallRules: [{05F4442A-4B47-4FA9-A48A-2ADDF819E3BA}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteControl\grckm.exe
FirewallRules: [{54C1FE56-68BD-4781-9047-4A3698C6BAC0}] => (Allow) LPort=1980
FirewallRules: [{C96A0B01-785F-4AD6-B04E-96CA400EA087}] => (Allow) LPort=1900
FirewallRules: [{A9B5857C-93B0-4490-BA2A-A835EE8CA530}] => (Allow) LPort=1900
FirewallRules: [{03B083B9-0CE9-46ED-90E5-48D14A0F8AF2}] => (Allow) LPort=8336
FirewallRules: [{6E29F8BC-E2BD-4930-BAB6-5E1354059C7F}] => (Allow) C:\Wolfies\Programs\Ubisoft Game Launcher\games\Far Cry Primal\bin\FCPrimal.exe
FirewallRules: [{DC5BB7F3-38F1-4380-8674-67B4248B8373}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{C9E45DA6-46F4-403E-84B3-3068D45F0008}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{82B407C5-8940-403A-898F-0574FC1E4A45}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{E34A6055-E3B2-492E-9A41-839631D72098}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [TCP Query User{210592CE-DE60-4779-A5FC-35687A43A25A}C:\users\maste\downloads\rust_server\server\rustds\rustdedicated.exe] => (Allow) C:\users\maste\downloads\rust_server\server\rustds\rustdedicated.exe
FirewallRules: [UDP Query User{D76D3C30-510E-4994-A1C8-3596789ACA58}C:\users\maste\downloads\rust_server\server\rustds\rustdedicated.exe] => (Allow) C:\users\maste\downloads\rust_server\server\rustds\rustdedicated.exe
FirewallRules: [{52BFE1EF-B94B-4A7B-8429-4F688CF9958B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{4BFEC8EA-C285-4807-A32C-90C1D49463DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [TCP Query User{3BB0921D-6747-46A4-A994-FF2D2F758CBD}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{B3F02354-52DD-46CC-827C-902F784D162C}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [{3ABBE94E-EA35-4801-AF88-98C0C075E6E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Amazing Spider-Man\ASMLauncher.exe
FirewallRules: [{B9AC8069-D569-4B77-AB91-D66610691014}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Amazing Spider-Man\ASMLauncher.exe
FirewallRules: [TCP Query User{6029EE28-F6C3-41FC-AC03-40ADA4B1FDCE}C:\program files (x86)\steam\steamapps\common\lichdom battlemage\bin64\lichdombattlemage.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lichdom battlemage\bin64\lichdombattlemage.exe
FirewallRules: [UDP Query User{12EEC9EE-C0C7-4417-8265-134124F50B0A}C:\program files (x86)\steam\steamapps\common\lichdom battlemage\bin64\lichdombattlemage.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lichdom battlemage\bin64\lichdombattlemage.exe
FirewallRules: [{3D1BA0C9-D620-44AE-AB12-B336CFDC2E30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe
FirewallRules: [{A9D39A6F-0676-4AF3-AA87-724AB3A25668}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe
FirewallRules: [{2CF47193-4FD2-492A-83F9-F56D94752540}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe
FirewallRules: [{E250B1EC-AE31-4352-9A65-8E9DFD528C38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe
FirewallRules: [{0C09DC47-7469-4D03-A082-4C885C9A0367}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{97D96C26-13BC-4AF6-8207-379DA556EFCA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{62A1A24D-9666-446E-8551-45D6F779FBB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Homefront_The_Revolution\Bin64\Homefront2_Release.exe
FirewallRules: [{6A7848F5-8AC5-4ADF-9B3A-163419BD65CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Homefront_The_Revolution\Bin64\Homefront2_Release.exe
FirewallRules: [{6A67FBFA-08DE-4716-8479-2F93C3F388CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rustangelo\Rustangelo.exe
FirewallRules: [{8EB4B16E-939D-41D0-AD55-F14CB956E317}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rustangelo\Rustangelo.exe
FirewallRules: [{98E25EE8-67A6-4AAE-B328-FB47AB8666E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fragmented\Fragmented.exe
FirewallRules: [{65FAF0C9-6A73-49C9-A2E5-9D4FC72D4FD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fragmented\Fragmented.exe
FirewallRules: [TCP Query User{A889ADC8-D4DF-423B-A066-33ED61247572}C:\program files (x86)\steam\steamapps\common\fragmented\fragmented\binaries\win64\fragmented.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\fragmented\fragmented\binaries\win64\fragmented.exe
FirewallRules: [UDP Query User{02F0F559-2739-4142-A14C-7971C463945F}C:\program files (x86)\steam\steamapps\common\fragmented\fragmented\binaries\win64\fragmented.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\fragmented\fragmented\binaries\win64\fragmented.exe
FirewallRules: [{378FB8BC-EED5-4ECE-AF7C-97865BE8D085}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OxygenNotIncluded\OxygenNotIncluded.exe
FirewallRules: [{525FB74D-E0C0-4645-94DF-0A777293AFDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OxygenNotIncluded\OxygenNotIncluded.exe
FirewallRules: [{7402B36E-1059-4693-94CF-712BA1DB45F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal Knights\portal_knights_x64.exe
FirewallRules: [{4D1AFF6C-6B3B-4C1B-817E-5F113A3DA3F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal Knights\portal_knights_x64.exe
FirewallRules: [{D7B30B98-D3A5-4773-9BB0-E572D3E547D0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{FA436861-8DAC-45FF-98E7-DE71A1E0F5DE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1C5D8D48-512E-4AE0-9965-A4639AED2A71}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{99DF0091-8509-48D8-9D51-2DA8B8A083EC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{DF8B759A-7706-42EE-82FB-0888200A4D83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Idol Hands\IdolHands.exe
FirewallRules: [{E3EBB8D4-3D88-4A2D-B166-CBC844825818}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Idol Hands\IdolHands.exe
FirewallRules: [{1EA1DE68-F7CC-4A35-8AAC-20C4B4AAC580}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
FirewallRules: [{E1329FE5-993E-4005-876F-8343E6688FDB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
FirewallRules: [{B7106016-D819-45E6-AF2E-5E9DD2FB7DE0}] => (Allow) C:\Wolfies\Programs\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{0A79F02B-5E97-4DCF-9885-E1C6659AA758}] => (Allow) C:\Wolfies\Programs\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{59CF8C6B-E275-4B1E-BAE7-1EF93D0D39C6}] => (Allow) C:\Wolfies\Programs\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{4B696DEE-BDEF-449F-BDB9-0EC41FE87CF2}] => (Allow) C:\Wolfies\Programs\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [TCP Query User{C5FD59D6-A7EC-4812-A64B-5785497F29E2}C:\wolfies\programs\ubisoft game launcher\games\far cry 4\bin\farcry4.exe] => (Allow) C:\wolfies\programs\ubisoft game launcher\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{54254CBD-1F68-4A04-8C81-AF19F5BC3C06}C:\wolfies\programs\ubisoft game launcher\games\far cry 4\bin\farcry4.exe] => (Allow) C:\wolfies\programs\ubisoft game launcher\games\far cry 4\bin\farcry4.exe
FirewallRules: [{EFACF267-D51E-4E68-BB54-3B58DA7ABDDB}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{E07C9733-259E-40FD-B0D9-2DB5877A8AB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Beat Hazard\BeatHazard.exe
FirewallRules: [{C5FF3040-182C-46EE-B4D8-A767C61FFE14}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Beat Hazard\BeatHazard.exe
FirewallRules: [{0F857D76-6164-4C8B-9282-F351196ECA48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Beat Hazard\runme.exe
FirewallRules: [{3D0533DE-80E8-4C7C-AEB1-7C27CD1A9B53}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Beat Hazard\runme.exe
FirewallRules: [{72DACC51-8D36-4D61-ABEC-AE5885B5BF95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jedi Academy\GameData\jasp.exe
FirewallRules: [{4AD92BB3-CE58-4071-8C3E-F421FD03BDF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jedi Academy\GameData\jasp.exe
FirewallRules: [{9BD208D8-789D-422F-B95E-D38F372660E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jedi Academy\GameData\jamp.exe
FirewallRules: [{24B67718-03BE-4587-A0EA-331641487AE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jedi Academy\GameData\jamp.exe
FirewallRules: [{CAEE9D21-2E2D-4FC5-8C12-82457E8B36DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FaceRig\Bin\Launcher.exe
FirewallRules: [{E4D4EBAC-E833-4E73-83A1-442A4FD0FD3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FaceRig\Bin\Launcher.exe
FirewallRules: [{CC0DDE48-F8B0-4E0A-B438-8EA98792B9E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FaceRig\Bin\FaceRig.exe
FirewallRules: [{06C9D187-62EE-447C-9A1A-812AB64A39C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FaceRig\Bin\FaceRig.exe
FirewallRules: [{BA40C5CF-8953-43B3-BC47-D68E00E8F188}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{ED17F0EC-296F-4C76-BE71-F91A73C8E634}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{6FC96A6E-C893-462D-BA8F-01DEC7426147}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{A0CA4193-1E09-494E-BDBC-679EA3E1F875}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
FirewallRules: [{7DDCF880-BB70-47D2-8FFE-8F5FFB6CEAD6}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
FirewallRules: [{6E1B4E86-D48F-41F7-9EB9-A6A929661FDC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F5DD1827-ACF3-49DC-95AD-1EA82D693EDF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{D0230228-CB6D-4352-8F7C-25C501AE9053}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{DF697CBD-5D81-479C-8F00-23F1FD90F063}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{BE5B9F27-253D-4E08-B25C-CCFA19EA2831}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{AA96E9B3-EB56-42B3-B206-688F4527187F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{ACD60DC5-CF7B-45C9-9087-512251BFBF25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GoGoNippon\GoGoNippon\BGI.exe
FirewallRules: [{8017F413-C03D-4DCE-8FD0-09142FD61F00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GoGoNippon\GoGoNippon\BGI.exe
FirewallRules: [{AA504E69-E596-44A4-ACFD-673023024FB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kane & Lynch 2 - Dog Days\kl2.exe
FirewallRules: [{DF939A4E-C74F-452B-8688-702AE6837E10}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kane & Lynch 2 - Dog Days\kl2.exe
FirewallRules: [{88DA0233-8104-4688-9682-CD2F75AF3482}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x64\PA.exe
FirewallRules: [{2450030F-ACC4-4121-B2FE-0A59E4C9E1B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x64\PA.exe
FirewallRules: [{EAC3B0BA-5265-4DE8-9FAC-1C2C4E5779B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x86\PA.exe
FirewallRules: [{BF89D78E-CD20-4361-94E3-C06B3D508152}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x86\PA.exe
FirewallRules: [{B90B57DB-6047-4628-873D-770346E13803}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x86\crashupload.exe
FirewallRules: [{4A531639-0544-43B8-ACBF-1EA35EBB88CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x86\crashupload.exe
FirewallRules: [{AACF08AF-3770-4F94-A9E3-052C4A43FBFC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x86\host\CoherentUI_Host.exe
FirewallRules: [{818A378C-2018-4F76-B792-E7A9EF9092FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x86\host\CoherentUI_Host.exe
FirewallRules: [{89F9F58C-F99A-4943-AA00-AA64E6C35FD0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x64\crashupload.exe
FirewallRules: [{250C6E60-8844-4DB0-9717-D0018A98A88E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x64\crashupload.exe
FirewallRules: [{8FC3C28C-367B-40C5-8B0A-19C4C8A9863E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x64\host\CoherentUI_Host.exe
FirewallRules: [{42628CC8-15FA-4E26-A1F6-DAA3410716AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x64\host\CoherentUI_Host.exe
FirewallRules: [{9CF432EF-213F-473C-8386-3CCB4697C5AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x64\server.exe
FirewallRules: [{204A2E48-D3E1-46D5-80C1-0ED83F081132}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation Titans\bin_x64\server.exe

==================== Restore Points =========================

01-04-2017 16:04:34 Scheduled Checkpoint
10-04-2017 10:09:40 Scheduled Checkpoint
12-04-2017 09:27:03 Installed Microsoft Visual C++ 2005 Redistributable

==================== Faulty Device Manager Devices =============

Name: Evolve Virtual Ethernet Adapter
Description: Evolve Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Echobit LLC
Service: EvolveVirtualAdapter
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: ExpressVPN Tap Adapter
Description: ExpressVPN Tap Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ExpressVPN
Service: tapexpressvpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: H100i v2
Description: H100i v2
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/13/2017 11:51:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: MRT.exe, version: 5.47.13703.0, time stamp: 0x58dec9f9
Faulting module name: combase.dll, version: 10.0.14393.953, time stamp: 0x58ba5954
Exception code: 0xc0000005
Fault offset: 0x00000000000b071c
Faulting process id: 0x30b4
Faulting application start time: 0x01d2b3fc72c65d50
Faulting application path: C:\Windows\system32\MRT.exe
Faulting module path: C:\Windows\System32\combase.dll
Report Id: a8a607c5-b649-470b-92ad-d1ca59bd8774
Faulting package full name:
Faulting package-relative application ID:

Error: (04/13/2017 10:16:56 AM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: EEVEE)
Description: 7.488: EFS service failed to provision a user for EDP. Error code: 0x80070005.

Error: (04/13/2017 12:29:00 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 350828

Error: (04/13/2017 12:29:00 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 350828

Error: (04/13/2017 12:29:00 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/13/2017 12:28:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 349531

Error: (04/13/2017 12:28:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 349531

Error: (04/13/2017 12:28:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/13/2017 12:28:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 348390

Error: (04/13/2017 12:28:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 348390


System errors:
=============
Error: (04/13/2017 10:18:07 AM) (Source: DCOM) (EventID: 10016) (User: EEVEE)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
and APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
to the user EEVEE\maste SID (S-1-5-21-1083469602-1432568064-362528207-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.

Error: (04/13/2017 10:16:57 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (04/13/2017 10:16:57 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (04/13/2017 10:16:56 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (04/13/2017 12:23:02 AM) (Source: DCOM) (EventID: 10010) (User: EEVEE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (04/13/2017 12:23:02 AM) (Source: DCOM) (EventID: 10010) (User: EEVEE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (04/13/2017 12:23:02 AM) (Source: DCOM) (EventID: 10010) (User: EEVEE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (04/13/2017 12:23:02 AM) (Source: DCOM) (EventID: 10010) (User: EEVEE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (04/13/2017 12:23:02 AM) (Source: DCOM) (EventID: 10010) (User: EEVEE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (04/13/2017 12:22:56 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


CodeIntegrity:
===================================
Date: 2017-04-12 17:47:34.298
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2017-04-12 17:47:19.404
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2017-04-10 16:54:56.450
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Overwolf\0.103.44.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.

Date: 2017-04-10 16:54:56.441
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Overwolf\0.103.44.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.

Date: 2017-04-10 16:54:24.648
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2017-04-10 16:54:17.634
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Overwolf\0.103.44.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.

Date: 2017-04-10 16:54:17.545
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2017-04-10 16:54:17.436
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Overwolf\0.103.44.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.

Date: 2017-04-10 09:16:03.228
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Overwolf\0.103.44.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.

Date: 2017-04-10 09:16:03.220
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Overwolf\0.103.44.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz
Percentage of memory in use: 48%
Total physical RAM: 16333.05 MB
Available physical RAM: 8430.13 MB
Total Virtual: 26680.03 MB
Available Virtual: 15422.34 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:2793.96 GB) (Free:1788.04 GB) NTFS
Drive d: (Seagate Expansion Drive) (Fixed) (Total:931.51 GB) (Free:591.39 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 48642EDF)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
 

Attachments

I need the addition.txt as well...

Lets clear some junk before we proceed...'


Clean up temp files and reduce startup load with CCleaner.


Note: This tool will clean your browsing history as well.
  • Download CCleaner from here.
  • After install Click Options.
  • Go to monitoring.
  • Uncheck All Monitoring items.
  • Go to advanced -- Click close program after cleaning.
  • Go to settings -- click run ccleaner when the computer starts.
  • Now that you have ccleaner installed and set-up:
  • Open the program.
  • Go to Tools
  • Go to Startup
  • Now double click each item. To Disable.
  • Leave only your antivirus enabled.
  • Then disable All items in your scheduled task as well.
  • Unless they are related to windows defender.Or your antivirus.
  • Reboot the machine.





ZHP Scan.

Please download Zhp Cleaner to your desktop. Right Click the icon and select run as administrator.






2. Once you have started the program, you will need to click the scanner button.

EgsT69u.png


The program will close all open browsers!
3. Once the scan is completed, the you will want to click the Repair button.



At the end of the process you may be asked to reboot your machine. After you reboot a report will open on your desktop.

Copy and paste the report here in your next reply.


Rogue Killer Scan.

Download RogueKiller -- (Portable) -- from one of the following links and save it to your Desktop:

Link 1
Link 2

  • Close all other the running programs
  • Disable ALL Antivirus -- Antimalware -- Applications.
  • Right Click Rogue Killer and Run as Administrator.
  • Click the Start Scan button.
  • Allow the scan to run -- it can take ten minutes or more.
  • Once the scan is complete check All items for removal.
  • upload_2017-2-23_10-55-54-png.1658

  • After All items are checked then press Remove Selected.
  • Wait until the Status box shows Deleting Finished.
  • Click on open report -- then open txt
  • Copy the content of the report and paste it here in your next reply.

JRT Scan.


Please download Junkware Removal Tool and save it on your desktop.


  • Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log is saved to your desktop and will automatically open.
  • Please post the JRT log.
Adware Cleaner Scan.

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
 
  • Like
Reactions: MR.Wolfie
After the above, lets tackle the main issue.....

Only after the above scans, lets tackle the main issue....]


ZHP Diag Scan


Download ZHP Diag to your desktop.


1. Right Click Run as Admin.
2. Click the Scanner button.

upload_2017-2-23_3-32-26-png.1647



When complete please push the report button.
A notepad will open... copy and paste the report in your next reply.
 
  • Like
Reactions: MR.Wolfie
RogueKiller V12.10.4.0 (x64) [Apr 10 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.14393) 64 bits version
Started in : Normal mode
User : maste [Administrator]
Started from : C:\Users\maste\Downloads\Cleaning\RogueKillerX64.exe
Mode : Delete -- Date : 04/13/2017 12:58:19 (Duration : 01:27:00)

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 6 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-1083469602-1432568064-362528207-1001\Software\Microsoft\Windows\CurrentVersion\Run | Discord : C:\ProgramData\maste\Discord\app-0.0.297\Discord.exe [7] -> Deleted
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-1083469602-1432568064-362528207-1001\Software\Microsoft\Windows\CurrentVersion\Run | Discord : C:\ProgramData\maste\Discord\app-0.0.297\Discord.exe [7] -> ERROR [2]
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 192.168.1.1 0.0.0.0 ([-][]) -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{16a6161c-f829-41f6-9486-be026f076226} | DhcpNameServer : 10.157.0.1 ([]) -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8a84d0c0-c686-4d0d-a847-4310ccc0f768} | DhcpNameServer : 192.168.1.1 0.0.0.0 ([-][]) -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{d952ef50-838f-4589-81ae-c463424c2cda} | DhcpNameServer : 192.168.1.1 0.0.0.0 ([-][]) -> Replaced ()

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 4 ¤¤¤
[PUP.Gen0][Chrome:Addon] Default : SwagButton [gngocbkfmikdgphklgmmehbjjlfgdemm] -> Deleted
[PUM.HomePage][Chrome:Config] Default [SecurePrefs] : homepage [http://feed.snapdo.com/?p=mKO_AwFzX...XLxmgnG2ybkBKgUj51oEwgGAdsSMNJWTnvL3ZJ7CixrNQ,,] -> Deleted
[PUM.HomePage][Chrome:Config] Default [SecurePrefs] : session.startup_urls [http://www.facebook.com/|https://www.google.com.au/|http://www.youtube.com/] -> Deleted
[PUM.SearchPage][Chrome:Config] Default [SecurePrefs] : default_search_provider_data.template_url_data.keyword [google.com.au_] -> Deleted

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST3000DM001-1ER166 +++++
--- User ---
[MBR] c04a40d3a6a527a8f4dbc5de124b09e2
[BSP] 9e3b3c473b1db0daa516427cdae6e1cc : Windows Vista/7/8 MBR Code
Partition table:
0 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 450 MB
1 - [MAN-MOUNT] EFI system partition | Offset (sectors): 923648 | Size: 99 MB
2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1126400 | Size: 16 MB
3 - Basic data partition | Offset (sectors): 1159168 | Size: 2861012 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Seagate Expansion USB Device +++++
--- User ---
[MBR] ba93c6ea7d554ccdaa01c9c4fe825731
[BSP] e646f7dbf3560034969d5b347cd592e6 : Empty|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
Error reading LL2 MBR! ([32] The request is not supported. )

RogueKiller V12.10.4.0 (x64) [Apr 10 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.14393) 64 bits version
Started in : Normal mode
User : maste [Administrator]
Started from : C:\Users\maste\Downloads\Cleaning\RogueKillerX64.exe
Mode : Delete -- Date : 04/13/2017 12:58:19 (Duration : 01:27:00)

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 6 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-1083469602-1432568064-362528207-1001\Software\Microsoft\Windows\CurrentVersion\Run | Discord : C:\ProgramData\maste\Discord\app-0.0.297\Discord.exe [7] -> Deleted
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-1083469602-1432568064-362528207-1001\Software\Microsoft\Windows\CurrentVersion\Run | Discord : C:\ProgramData\maste\Discord\app-0.0.297\Discord.exe [7] -> ERROR [2]
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 192.168.1.1 0.0.0.0 ([-][]) -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{16a6161c-f829-41f6-9486-be026f076226} | DhcpNameServer : 10.157.0.1 ([]) -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8a84d0c0-c686-4d0d-a847-4310ccc0f768} | DhcpNameServer : 192.168.1.1 0.0.0.0 ([-][]) -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{d952ef50-838f-4589-81ae-c463424c2cda} | DhcpNameServer : 192.168.1.1 0.0.0.0 ([-][]) -> Replaced ()

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 4 ¤¤¤
[PUP.Gen0][Chrome:Addon] Default : SwagButton [gngocbkfmikdgphklgmmehbjjlfgdemm] -> Deleted
[PUM.HomePage][Chrome:Config] Default [SecurePrefs] : homepage [http://feed.snapdo.com/?p=mKO_AwFzX...XLxmgnG2ybkBKgUj51oEwgGAdsSMNJWTnvL3ZJ7CixrNQ,,] -> Deleted
[PUM.HomePage][Chrome:Config] Default [SecurePrefs] : session.startup_urls [http://www.facebook.com/|https://www.google.com.au/|http://www.youtube.com/] -> Deleted
[PUM.SearchPage][Chrome:Config] Default [SecurePrefs] : default_search_provider_data.template_url_data.keyword [google.com.au_] -> Deleted

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST3000DM001-1ER166 +++++
--- User ---
[MBR] c04a40d3a6a527a8f4dbc5de124b09e2
[BSP] 9e3b3c473b1db0daa516427cdae6e1cc : Windows Vista/7/8 MBR Code
Partition table:
0 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 450 MB
1 - [MAN-MOUNT] EFI system partition | Offset (sectors): 923648 | Size: 99 MB
2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1126400 | Size: 16 MB
3 - Basic data partition | Offset (sectors): 1159168 | Size: 2861012 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Seagate Expansion USB Device +++++
--- User ---
[MBR] ba93c6ea7d554ccdaa01c9c4fe825731
[BSP] e646f7dbf3560034969d5b347cd592e6 : Empty|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
Error reading LL2 MBR! ([32] The request is not supported. )

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows 10 Pro x64
Ran by maste (Administrator) on Thu 13/04/2017 at 14:36:06.86
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 3

Successfully deleted: C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngocbkfmikdgphklgmmehbjjlfgdemm (Folder)
Successfully deleted: C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gngocbkfmikdgphklgmmehbjjlfgdemm_0.localstorage-journal (File)
Successfully deleted: C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gngocbkfmikdgphklgmmehbjjlfgdemm_0.localstorage (File)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 13/04/2017 at 14:44:27.34
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

# AdwCleaner v6.045 - Logfile created 13/04/2017 at 15:11:14
# Updated on 28/03/2017 by Malwarebytes
# Database : 2017-04-12.1 [Server]
# Operating System : Windows 10 Pro (X64)
# Username : maste - EEVEE
# Running from : C:\Users\maste\Downloads\adwcleaner_6.045.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Folders ] *****

[-] Folder deleted: C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngocbkfmikdgphklgmmehbjjlfgdemm


***** [ Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****



***** [ Web browsers ] *****

[-] [C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: aol.com
[-] [C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: ask.com
[-] [C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: feed.sonic-search.com
[-] [C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: animeshow.tv
[-] [C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: gngocbkfmikdgphklgmmehbjjlfgdemm


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1463 Bytes] - [13/04/2017 15:11:14]
C:\AdwCleaner\AdwCleaner[S0].txt - [1752 Bytes] - [13/04/2017 15:10:23]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1609 Bytes] ##########

now i will move onto the last fix you said ^_^ thank you all for al your help
 
Step 1: Update programs....

Use Patch My PC to update all your old applications.

Step 2: Upload to VT

Upload Files to VirusTotal

  • Please go to VirusTotal.
  • Click the Choose File button.
  • Navigate to >>>>>>>> C:\$AV_ASW
  • or simply copy and paste it.
  • Click the Scan it! button.
  • You might see a message saying File already analysed, if you do click Reanalyse.
  • Wait for all the scans to finish then copy and paste the web address from your broswer's address bar.
    Example of web address :
    VirusTotalresultslink.jpg
  • Include the link in your next reply.

Perform the virus total scans on all of the following files as well.


Code: 
C:\Windows\unins000.dat
C:\Windows\unins000.exe

FRST Fix.

Click Here To Download Fixlist.


Download attached fixlist.txt file and save it to the Desktop. NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work. NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system Run FRST/FRST64 and press the Fix button just once and wait. If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run. When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

Eliminate restrictive settings with this tool.
  • Temporarily disable your antivirus --- Your antivirus may flag this tool as malware, it is safe to run I assure you.
  • Download SupRestric.exe save to your desktop.
  • Close all running programs.
  • Double click the file to launch it.
  • Windows: 7/8/10 Vista and run as administrator
  • Click Yes at any prompt.
  • The analysis takes only a few moments.
  • The report is on the desktop ( CTR.txt )
  • Copy paste report in next reply.
  • A reboot is needed to complete the repairs.
HijackThis.



1- Please Click HERE to download HijackThis. -- Unzip to your desktop.
2- Right click run as admin.
3- Click on the Main Menu button if not already there.
4- Select Do a system scan and save a logfile.
5- Copy paste the log here.
 

Attachments

  • Like
Reactions: MR.Wolfie
Report Restriction Control Pierre13 (CTR version 2.5.0.0) of 14 \ 04 \ 2017 at 10:21:25
Mast PC
Microsoft Windows 10 Pro (64-bit) [10.0.14393]

Repair error 2203 performed.

Control presence restrictions

[TROJ_POWELIKS.B] feature_browser_emulation key deleted.
[BKDR_BLACKEN.A] key Check_Associations deleted.
Authorization installation Java (x86) deleted.
Authorization installation Java (x64) deleted.
Restriction Display Recent documents deleted.
Restriction Display Documents deleted.
Restriction Synchronization Background Information Streams and Web Slices Removed.
Restriction discovery of RSS feeds and Web Slices deleted.
Restriction UpperFilters Bluetooth deleted.
Numeric keypad active.
User Restriction for Windows Installer Removed.
Windows Update Configuration Reverted.
Windows Update Search Reverted.
Windows Firewall service enabled.
Windows Firewall settings restored by default and enabled.

240 controlled restrictions.

14 Restricted Restriction (s).
Reboot the PC to take the repair (s) into account.


The report is on the desktop (C: \ Users \ maste \ Desktop \ CTR.txt)

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by maste (14-04-2017 10:12:38) Run:1
Running from C:\Users\maste\Desktop
Loaded Profiles: maste (Available Profiles: defaultuser0 & maste)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CloseProcesses:
CreateRestorePoint:
Emptytemp:
RemoveProxy:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-04] (Piriform Ltd)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{16a6161c-f829-41f6-9486-be026f076226}: [DhcpNameServer] 10.157.0.1
Tcpip\..\Interfaces\{8a84d0c0-c686-4d0d-a847-4310ccc0f768}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{d952ef50-838f-4589-81ae-c463424c2cda}: [DhcpNameServer] 192.168.1.1 0.0.0.0
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2016-07-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-22] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-01-06] (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-22] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-22] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-01-06] (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-22] (Oracle Corporation)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2016-07-16] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-01-06] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-01-06] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-01-06]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
CHR HomePage: Default -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqncPExR2N28ytodD9Xa1vXSdfqtMaAXG3CqUIVeAopGqIgBPc-JowK8w_sEXzHCvZ4CD1momms2-h2kI8pGF0NlCKrU2O1Jw7RU9U0AptRbjZXLxmgnG2ybkBKgUj51oEwgGAdsSMNJWTnvL3ZJ7CixrNQ,,
CHR StartupUrls: Default -> "hxxp://www.facebook.com/","hxxps://www.google.com.au/","hxxp://www.youtube.com/"
CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2017-04-10]
CHR Extension: (Avast SafePrice) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-03-14]
CHR Extension: (AdBlock) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-13]
CHR Extension: (SwagButton) - C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngocbkfmikdgphklgmmehbjjlfgdemm [2017-04-10]
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
C:\Users\maste\AppData\Local\76561198022499344
C:\Windows\1C4551A64743409391E41477CD655043.TMP
C:\Windows\System32\Tasks\Overwolf Updater Task
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
Task: {33C8DEC5-7E9E-4E33-A164-BCB12425AC8E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
Task: {3D1085E3-B042-4B16-B03B-3FC84D25E8D2} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-03-22] (Overwolf LTD)
Task: {8B0988B9-69E6-4774-8F08-67FF44D2105A} - System32\Tasks\{17B35073-4F96-4EFF-A8F6-189010C68CA3} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&amp;ver=7.2.0.103&amp;LastError=404
ShortcutWithArgument: C:\Users\maste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl
C:\Windows\system32\Drivers\etc\hosts
Hosts:
C:\Windows\system32\MRT.exe
Shortcut: C:\Users\maste\Desktop\Junk\Guild Wars 2.lnk -> C:\Wolfies\Games\Guild Wars 2\Gw2-64.exe (No File)
Shortcut: C:\Users\maste\Desktop\Junk\Rustangelo.lnk -> C:\Users\maste\AppData\Roaming\Microsoft\Installer\{9BF0999E-EF7B-4655-B212-4963C33D91D6}\_C6A71A6EC9D866DBA62F06.exe (No File)
Shortcut: C:\Users\maste\Desktop\Junk\Skype.lnk -> C:\Windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe (No File)
Shortcut: C:\Users\maste\Desktop\Junk\Trust.Zone VPN Client.lnk -> C:\Wolfies\Programs\Trust.Zone VPN Client\trustzone_x64.exe (No File)
CMD: bitsadmin /reset /allusers
CMD: ipconfig /flushdns
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
EmptyTemp:
reboot:
end




*****************

Processes closed successfully.
Restore point was successfully created.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


========= End of RemoveProxy: =========

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-1083469602-1432568064-362528207-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value not found.
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer => value removed successfully
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{16a6161c-f829-41f6-9486-be026f076226}\\DhcpNameServer => value removed successfully
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8a84d0c0-c686-4d0d-a847-4310ccc0f768}\\DhcpNameServer => value removed successfully
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{d952ef50-838f-4589-81ae-c463424c2cda}\\DhcpNameServer => value removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511} => key removed successfully
HKCR\CLSID\{45d30484-7ded-43d9-957a-d2fd1f046511} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => key removed successfully
HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key removed successfully
HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key removed successfully
HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => key removed successfully
HKCR\Wow6432Node\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key removed successfully
HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key removed successfully
HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{1d09c093-f71e-43c3-b948-19316cbd695e} => value removed successfully
HKCR\CLSID\{1d09c093-f71e-43c3-b948-19316cbd695e} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => key not found.
HKLM\Software\Mozilla\Firefox\Extensions\\sp@avast.com => value removed successfully

"C:\Program Files\AVAST Software\Avast\SafePrice\FF" folder move:

Could not move "C:\Program Files\AVAST Software\Avast\SafePrice\FF" => Scheduled to move on reboot.

HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\sp@avast.com => value removed successfully
Chrome HomePage => not found.
Chrome StartupUrls => not found.
C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche => moved successfully
C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => moved successfully
C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom => moved successfully
C:\Users\maste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngocbkfmikdgphklgmmehbjjlfgdemm => not found
HKLM\System\CurrentControlSet\Services\ibtsiva => key removed successfully
ibtsiva => service removed successfully
HKLM\System\CurrentControlSet\Services\dbx => key removed successfully
dbx => service removed successfully
C:\Users\maste\AppData\Local\76561198022499344 => moved successfully
C:\Windows\1C4551A64743409391E41477CD655043.TMP => moved successfully
C:\Windows\System32\Tasks\Overwolf Updater Task => moved successfully
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{33C8DEC5-7E9E-4E33-A164-BCB12425AC8E} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{33C8DEC5-7E9E-4E33-A164-BCB12425AC8E} => key removed successfully
C:\Windows\System32\Tasks\Apple\AppleSoftwareUpdate => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Apple\AppleSoftwareUpdate => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3D1085E3-B042-4B16-B03B-3FC84D25E8D2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D1085E3-B042-4B16-B03B-3FC84D25E8D2} => key removed successfully
C:\Windows\System32\Tasks\Overwolf Updater Task => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Overwolf Updater Task => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8B0988B9-69E6-4774-8F08-67FF44D2105A} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8B0988B9-69E6-4774-8F08-67FF44D2105A} => key removed successfully
C:\Windows\System32\Tasks\{17B35073-4F96-4EFF-A8F6-189010C68CA3} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{17B35073-4F96-4EFF-A8F6-189010C68CA3} => key removed successfully
C:\Users\maste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Hangouts.lnk => Shortcut argument removed successfully.
C:\Windows\system32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
C:\Windows\system32\MRT.exe => moved successfully
C:\Users\maste\Desktop\Junk\Guild Wars 2.lnk => moved successfully
C:\Users\maste\Desktop\Junk\Rustangelo.lnk => moved successfully
C:\Users\maste\Desktop\Junk\Skype.lnk => moved successfully
C:\Users\maste\Desktop\Junk\Trust.Zone VPN Client.lnk => moved successfully

========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

0 out of 0 jobs canceled.

========= End of CMD: =========


========= ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========


========= netsh advfirewall reset =========

Ok.


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Ok.


========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 14992217 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 78248071 B
Java, Flash, Steam htmlcache => 359402591 B
Windows/system/drivers => 14819324 B
Edge => 3316 B
Chrome => 21311673 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 1642 B
NetworkService => 0 B
defaultuser0 => 587916 B
maste => 333491627 B

RecycleBin => 7295 B
EmptyTemp: => 784.8 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 14-04-2017 10:15:55)

"C:\Program Files\AVAST Software\Avast\SafePrice\FF" => Could not move

==== End of Fixlog 10:15:57 ====

Logfile of HiJackThis Fork (Alpha) by Alex Dragokas v.2.6.4.17

Platform: x64 Windows 10 (Pro), 10.0.14393 (ReleaseId: 1607), Service Pack: 0
Time: 14.04.2017 - 10:28
Language: OS: English (0x409). Display: English (0x409). Non-Unicode: English (0x409)
Elevated: Yes
Ran by: maste (group: Administrator) on EEVEE

Chrome: 57.0.2987.133
Edge: 11.0.14393.1066
Internet Explorer: 11.0.14393.953

Boot mode: Normal

Running processes:
Number | Path
1 C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
1 C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
1 C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
1 C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
1 C:\Program Files (x86)\GIGABYTE\CloudStation_Server\HomeCloud\HCLOUD.exe
1 C:\Program Files (x86)\GIGABYTE\CloudStation_Server\RemoteControl\grckm.exe
1 C:\Program Files (x86)\GIGABYTE\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
1 C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
1 C:\Program Files (x86)\GIGABYTE\Smart TimeLock\AlarmClock.exe
1 C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe
10 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2 C:\Program Files (x86)\Google\Drive\googledrivesync.exe
1 C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler.exe
1 C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler64.exe
1 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
1 C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
1 C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
1 C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
1 C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
1 C:\Program Files\AVAST Software\Avast\AvastSvc.exe
1 C:\Program Files\AVAST Software\Avast\AvastUI.exe
1 C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
1 C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser_autoupdate.exe
1 C:\Program Files\AVAST Software\SZBrowser\launcher.exe
1 C:\Program Files\Bonjour\mDNSResponder.exe
1 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1 C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
1 C:\Program Files\Gigabyte\Smart Backup\RPMDaemon.exe
1 C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
1 C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
1 C:\Program Files\Intel\WiFi\bin\EvtEng.exe
1 C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
1 C:\Program Files\Killer Networking\Network Manager\KillerService.exe
2 C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
1 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
1 C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
1 C:\Program Files\Windows Media Player\wmpnetwk.exe
1 C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8017.5925.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
1 C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8104.42387.0_x64__8wekyb3d8bbwe\HxTsr.exe
1 C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
1 C:\Users\maste\Desktop\HiJackThis.exe
1 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
1 C:\Windows\SysWOW64\backgroundTaskHost.exe
1 C:\Windows\System32\DbxSvc.exe
1 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchFilterHost.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\SettingSyncHost.exe
1 C:\Windows\System32\VSSVC.exe
1 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\System32\audiodg.exe
6 C:\Windows\System32\backgroundTaskHost.exe
2 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\dasHost.exe
1 C:\Windows\System32\dwm.exe
1 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\igfxCUIService.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
20 C:\Windows\System32\svchost.exe
1 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\wbem\WMIADAP.exe
2 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wbem\unsecapp.exe
1 C:\Windows\System32\wermgr.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\System32\wlanext.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 C:\Windows\explorer.exe
1 C:\Wolfies\Programs\Origin\OriginWebHelperService.exe

R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURL = http://api.bing.com/qsml.aspx?query={searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie:rowHeight}&sectionHeight={ie:sectionHeight}&FORM=IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURLFallback = http://api.bing.com/qsml.aspx?query={searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie:rowHeight}&sectionHeight={ie:sectionHeight}&FORM=IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
O4 - HKCU\..\Run: [CCleaner] C:\Program Files\CCleaner\CCleaner64.exe /AUTO
O4 - HKCU\..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart
O4 - HKCU\..\StartupApproved\Run: [DAEMON Tools Lite Automount] (2017/04/13)C:\Wolfies\Programs\DAEMON Tools Lite\DTAgent.exe -autorun
O4 - HKCU\..\StartupApproved\Run: [OneDrive] (2017/04/13)C:\Users\maste\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background
O4 - HKCU\..\StartupApproved\Run: [Overwolf] (2017/04/13)C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent
O4 - HKCU\..\StartupApproved\Run: [Skype] (2017/04/13)C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun
O4 - HKCU\..\StartupApproved\Run: [Steam] (2017/04/13)C:\Program Files (x86)\Steam\steam.exe -silent
O4 - HKLM\..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvLaunch.exe /gui
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\RunOnce: [RPMKickstart] C:\Program Files\Gigabyte\Smart Backup\RPMKickstartEx.exe
O4 - HKLM\..\StartupApproved\Run32: [Dropbox] (2017/04/13)C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup
O4 - HKLM\..\StartupApproved\Run32: [KeePass 2 PreLoad] (2017/04/13)C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe --preload
O4 - HKLM\..\StartupApproved\Run32: [Razer Synapse] (2017/04/13)C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
O4 - HKLM\..\StartupApproved\Run32: [Sound Blaster X-Fi MB 3] (2017/04/13)C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB3\Sound Blaster X-Fi MB3\SBXFIMB3.exe /r
O4 - HKLM\..\StartupApproved\Run32: [UpdReg] (2017/04/13)C:\Windows\UpdReg.EXE
O4 - HKLM\..\StartupApproved\Run: [GamecomSound] (2017/04/13)C:\Program Files\Plantronics\HD1\optimus3D_x64.exe /h /d
O4 - HKLM\..\StartupApproved\Run: [MBCfg64] (2017/04/13)C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
O4 - HKLM\..\StartupApproved\Run: [RTHDVCPL] (2017/04/13)C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\StartupApproved\Run: [ShadowPlay] (2017/04/13)C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\StartupApproved\Run: [iTunesHelper] (2017/04/13)C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\StartupApproved\StartupFolder: Killer Network Manager.lnk -> C:\Program Files (x86)\Killer Networking\Network Manager\NetworkManager.exe -minimize (2017/04/13)
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4-32 - HKLM\..\RunOnce: [DualBiosRescue] C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe
O4-32 - HKLM\..\RunOnce: [EasyTune] C:\Program Files (x86)\GIGABYTE\EasyTune\etro.exe
O4-32 - HKLM\..\RunOnce: [PreRun] C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe
O4-32 - HKLM\..\RunOnce: [SIV] C:\Program Files (x86)\GIGABYTE\SIV\sivro.exe
O17 - DHCP DNS - 1: 192.168.1.1
O22 - Task (Disabled): CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task (Disabled): DropboxUpdateTaskMachineCore - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
O22 - Task (Disabled): DropboxUpdateTaskMachineUA - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
O22 - Task (Disabled): GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task (Disabled): GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task (Ready): Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
O22 - Task (Ready): NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
O22 - Task (Ready): NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task (Ready): NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task (Ready): NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
O22 - Task (Ready): NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
O22 - Task (Ready): NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
O22 - Task (Ready): \AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
O22 - Task (Ready): \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\compattelrunner.exe
O22 - Task (Ready): \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\Windows\system32\compattelrunner.exe -maintenance
O22 - Task (Ready): \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Logon - C:\Windows\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger Logon
O22 - Task (Ready): \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\OnIdle - C:\Windows\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger OnIdle
O22 - Task (Ready): \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\OutOfIdle - C:\Windows\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger OutOfIdle
O22 - Task (Ready): \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\RunCampaignManager2 - C:\Windows\system32\UNP\UNPCampaignManager.exe
O22 - Task (Ready): \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Time - C:\Windows\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger Time
O22 - Task (Ready): \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Unlock - C:\Windows\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger Unlock
O22 - Task (Ready): \Microsoft\Windows\UNP\RunCampaignManager - C:\Windows\System32\UNP\UNPCampaignManager.exe
O22 - Task (Running): NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
O22 - Task (Running): SafeZone scheduled Autoupdate 1483712114 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
O23 - Service R2: Apple Mobile Device Service - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service R2: Avast Antivirus - (avast! Antivirus) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: Creative Audio Service - (CTAudSvcService) - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service R2: DbxSvc - C:\Windows\system32\DbxSvc.exe
O23 - Service R2: GIGABYTE Adjust - (gadjservice) - C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
O23 - Service R2: Gservice - C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
O23 - Service R2: Hotspot Shield Service - (hshld) - C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\Windows\system32\igfxCUIService.exe
O23 - Service R2: Intel(R) PROSet/Wireless Event Log - (EvtEng) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service R2: Intel(R) PROSet/Wireless Registry Service - (RegSrvc) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service R2: Intel(R) PROSet/Wireless Zero Configuration Service - (ZeroConfigService) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
O23 - Service R2: Intel(R) Rapid Storage Technology - (IAStorDataMgrSvc) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service R2: Killer Service V2 - C:\Program Files\Killer Networking\Network Manager\KillerService.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service R2: NVIDIA Telemetry Container - (NvTelemetryContainer) - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service R2: Origin Web Helper Service - C:\Wolfies\Programs\Origin\OriginWebHelperService.exe
O23 - Service R2: Razer Game Scanner - (Razer Game Scanner Service) - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service R2: RzSurroundVADStreamingService - C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
O23 - Service R2: Smart TimeLock Service - (Smart TimeLock) - C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe
O23 - Service R2: TeamViewer 12 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R3: aswbIDSAgent - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service S2: Dropbox Update Service (dbupdate) - (dbupdate) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service S2: Google Update Service (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service S3: AppleChargerSrv - C:\Windows\system32\AppleChargerSrv.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: Creative ALchemy AL6 Licensing Service - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service S3: Creative Audio Engine Licensing Service - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service S3: Disc Soft Lite Bus Service - C:\Wolfies\Programs\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service S3: Dropbox Update Service (dbupdatem) - (dbupdatem) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service S3: EasyAntiCheat - C:\Windows\SysWow64\EasyAntiCheat.exe
O23 - Service S3: Evolve Service - (EvoSvc) - C:\Program Files\Echobit\Evolve\EvoSvc.exe
O23 - Service S3: Google Software Updater - (gusvc) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service S3: Google Update Service (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service S3: Hardware Monitor Record service - (HwmRecordService) - C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe
O23 - Service S3: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\Windows\system32\IntelCpHDCPSvc.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS - (ICCS) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service S3: Origin Client Service - C:\Wolfies\Programs\Origin\OriginClientService.exe
O23 - Service S3: Overwolf Updater Windows SCM - (OverwolfUpdater) - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service S3: Windows Defender Network Inspection Service - (WdNisSvc) - C:\Program Files\Windows Defender\NisSrv.exe
O23 - Service S3: Windows Defender Service - (WinDefend) - C:\Program Files\Windows Defender\MsMpEng.exe
O23 - Service S3: Wireless PAN DHCP Server - (MyWiFiDHCPDNS) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service S3: iPod Service - C:\Program Files\iPod\bin\iPodService.exe

--
End of file - Time spent: 19 sec. - 38112 bytes, CRC32: FFFFFFFF. Sign: 仂�
 
: Hijack This Fix.

Start HijackThis , Right Click Run as Admin.
Close all other open programs prior to running this tool!!
Click System Scan Only.
Then check mark the items listed below.

R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURL = http://api.bing.com/qsml.aspx?query={searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie:rowHeight}&sectionHeight={ie:sectionHeight}&FORM=IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURLFallback = http://api.bing.com/qsml.aspx?query={searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie:rowHeight}&sectionHeight={ie:sectionHeight}&FORM=IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
O4 - HKCU\..\StartupApproved\Run: [DAEMON Tools Lite Automount] (2017/04/13)C:\Wolfies\Programs\DAEMON Tools Lite\DTAgent.exe -autorun
O4 - HKCU\..\StartupApproved\Run: [OneDrive] (2017/04/13)C:\Users\maste\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background
O4 - HKCU\..\StartupApproved\Run: [Overwolf] (2017/04/13)C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent
O4 - HKCU\..\StartupApproved\Run: [Skype] (2017/04/13)C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun
O4 - HKCU\..\StartupApproved\Run: [Steam] (2017/04/13)C:\Program Files (x86)\Steam\steam.exe -silent
O4 - HKLM\..\RunOnce: [RPMKickstart] C:\Program Files\Gigabyte\Smart Backup\RPMKickstartEx.exe
O4 - HKLM\..\StartupApproved\Run32: [Dropbox] (2017/04/13)C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup
O4 - HKLM\..\StartupApproved\Run32: [KeePass 2 PreLoad] (2017/04/13)C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe --preload
O4 - HKLM\..\StartupApproved\Run32: [Sound Blaster X-Fi MB 3] (2017/04/13)C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB3\Sound Blaster X-Fi MB3\SBXFIMB3.exe /r
O4 - HKLM\..\StartupApproved\Run32: [UpdReg] (2017/04/13)C:\Windows\UpdReg.EXE
O4 - HKLM\..\StartupApproved\Run: [GamecomSound] (2017/04/13)C:\Program Files\Plantronics\HD1\optimus3D_x64.exe /h /d
O4 - HKLM\..\StartupApproved\Run: [ShadowPlay] (2017/04/13)C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\StartupApproved\Run: [iTunesHelper] (2017/04/13)C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\StartupApproved\StartupFolder: Killer Network Manager.lnk -> C:\Program Files (x86)\Killer Networking\Network Manager\NetworkManager.exe -minimize (2017/04/13)
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4-32 - HKLM\..\RunOnce: [DualBiosRescue] C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe
O4-32 - HKLM\..\RunOnce: [EasyTune] C:\Program Files (x86)\GIGABYTE\EasyTune\etro.exe
O4-32 - HKLM\..\RunOnce: [PreRun] C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe
O4-32 - HKLM\..\RunOnce: [SIV] C:\Program Files (x86)\GIGABYTE\SIV\sivro.exe
O22 - Task (Ready): \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\compattelrunner.exe
O22 - Task (Ready): \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\Windows\system32\compattelrunner.exe -maintenance



Now click on fix checked.
After the fix is complete, then reboot your machine.

After the machine reboots, please tell me what issues remain,.
 
  • Like
Reactions: MR.Wolfie
Glad to have helped!! Please tell a friend ...... or two about us.
smile.png


Optimize your internet connection.

Click here for instructions.

suggest the following in place of adblock.
Alternate DNS Server. Ad Blocking DNS.
Ublock Origin.
Anti Ad Block Killer.


Also, keep your browsing private with these tools:

Self Destructing Cookies.
Self Destructing Cookies Chrome.




Some items to keep you safe on the internet.


VooDoo Shield. control of what is running on your machine
Qualys BrowserCheck To update plugins.
Web Of Trust To Avoid Shady Websites.
Unchecky To Avoid Bundled Software.
Privazer To Clean up your mahcine.



Now Lets Clean up the tools we used and remove old restore points.



Download DelFix by "Xplode" to your Desktop.
Right Click the tool and Run as Admin ( Xp Users Double Click)
Put a check mark next the items below:


Remove disinfection tools
Create registry backup
Purge System Restore



Now click on "Run" button.
allow the program to complete its work.
all the tools we used will be removed.
Tool will create and open a log report (DelFix.txt)
Note: The report can be located at the following location C:\DelFix.txt
 
Status
Not open for further replies.
Top Bottom