Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unknown Virus or Walware Totally Crippling PC


  • This topic is locked This topic is locked
9 replies to this topic

#1 Opmpro

Opmpro

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:54 PM

Posted 19 July 2017 - 08:21 PM

I have think I have a serious issue with my computer and it's all my fault. I built a brand new PC with all new hard drives and it has been working perfectly. Until I did the stupidest thing ever. I plugged in the hard drives from my old PC into the new one because there were photos I needed to get off a raid config and I didn't know of any other way to get them. Now my PC has been taking ownership of system folders, running processes that I don't know, and my internet speeds have slowed by half. I have run Malware Bytes, Windows Defender, and Kaspersky and I have followed all of the instructions in the self help guide. The computer will not allow me access to my admin account or functions. I cannot run many exe files and I am worried I am going to lose all my data. Please help me. 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-07-2017
Ran by Non-Admin (19-07-2017 21:03:47)
Running from F:\
Windows 10 Pro Version 1703 (X64) (2017-05-14 08:00:56)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================
3DD16DA236F44AD59302 (S-1-5-21-2691424144-4102199767-1168573955-1012 - Limited - Enabled)
Administrator (S-1-5-21-2691424144-4102199767-1168573955-500 - Administrator - Disabled)
B514F3A7F19C4E398961 (S-1-5-21-2691424144-4102199767-1168573955-1013 - Limited - Enabled)
DefaultAccount (S-1-5-21-2691424144-4102199767-1168573955-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2691424144-4102199767-1168573955-1000 - Limited - Disabled)
Dennis (S-1-5-21-2691424144-4102199767-1168573955-1001 - Administrator - Enabled) => C:\Users\Dennis
Guest (S-1-5-21-2691424144-4102199767-1168573955-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2691424144-4102199767-1168573955-1007 - Limited - Enabled)
jalbe (S-1-5-21-2691424144-4102199767-1168573955-1004 - Limited - Enabled) => C:\Users\jalbe
Non-Admin (S-1-5-21-2691424144-4102199767-1168573955-1005 - Limited - Enabled) => C:\Users\Non-Admin
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Kaspersky Anti-Virus for ASUS (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Emsisoft Anti-Malware (Enabled - Up to date) {701CB209-EBBC-AADC-11E6-DE73E7AF4C9D}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {CB7D53ED-CD86-A552-2B56-E5019C280620}
AS: Kaspersky Anti-Virus for ASUS (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
3DMark (HKLM\...\{55B50DFB-C31F-4D90-9B7F-75233BE6DCC6}) (Version: 2.3.3693.0 - Futuremark) Hidden
3DMark (HKLM-x32\...\{39f8dcb1-5f2e-4057-980e-f463756a0465}) (Version: 2.3.3693.0 - Futuremark)
7-Zip 17.00 beta (x64) (HKLM\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.5.1 - Adobe Systems Incorporated)
Adobe Master Collection CC 2015 (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C3}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop (HKLM\...\{9B08B2EC-C82E-4D24-A3E0-57646E2CE480}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated)
Aeon (HKLM-x32\...\Aeon) (Version: 3.9.1 - SoundSpectrum)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 1.01.56 - ASUSTeK Computer Inc.)
Amazon Drive (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\Amazon Drive) (Version: 4.0.16 - Amazon.com, Inc.)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.76 - NVIDIA Corporation) Hidden
ApoDispatchConfigurator (HKLM\...\{4FEB3307-A0EF-4385-9C8F-4B4C1503311C}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Application Verifier x64 External Package (HKLM\...\{0115F5D3-35C7-5EF3-0C93-87C92E678D76}) (Version: 10.1.14393.33 - Microsoft) Hidden
Ashampoo Movie Studio Pro 2 (HKLM-x32\...\{91B33C97-A5B8-503E-AFB5-F144AAEA35F8}_is1) (Version: 2.0.12 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.05.02 - ASUSTeK Computer Inc.)
ASUS GPU TweakII (HKLM-x32\...\{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.4.7.3 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.4.7.3 - ASUSTek COMPUTER INC.)
ASUS MultiFrame (HKLM-x32\...\{FB4D076A-DEFD-4EAF-AD63-70D5A3BC262A}) (Version: 1.1.1 - ASUS)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.030 - ASUSTek Computer Inc.)
Asus Sonic Radar 3 (HKLM-x32\...\{d385a418-0a04-44f8-9284-522ed67a2926}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc)
Asus Sonic Studio 3 (HKLM-x32\...\{acef060a-19fa-4c87-b145-524e6faf08c4}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc)
ASUS® Intel® Extreme Tuning Utility (HKLM-x32\...\{1780bc18-5931-4073-8f78-f0efa789c524}) (Version: 6.2.0.202 - Intel Corporation)
ASUS® Intel® Extreme Tuning Utility (HKLM-x32\...\{BE8C01E6-DA46-4FDD-9F2F-8721A2FE5B82}) (Version: 6.2.0.202 - Intel Corporation) Hidden
Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.04.43 - ASUSTeK Computer Inc.)
AURA RGB Lighting Control for Graphic card & ROG-XG-STATION-2 (HKLM-x32\...\{AD025C19-8F13-4D1E-9DE1-5F10D3BA1CCC}) (Version: 0.0.5.4 - ASUSTek COMPUTER INC.) Hidden
AURA RGB Lighting Control for Graphic card & ROG-XG-STATION-2 (HKLM-x32\...\InstallShield_{AD025C19-8F13-4D1E-9DE1-5F10D3BA1CCC}) (Version: 0.0.5.4 - ASUSTek COMPUTER INC.)
AutoEQ Plugin Version 0.0.0.9 (HKLM-x32\...\AutoEQ Plugin for JRMC_is1) (Version:  - Paul Sinnema)
Avid DX 64 Bit Driver (HKLM\...\{EF394EA2-D3DE-413A-AE20-3D0763EA5C55}) (Version: 7.0.3.886 - Avid Technology, Inc.)
Avid Pro Tools (HKLM\...\{440A8FC5-DF1F-49F2-8936-227247138A34}) (Version: 12.3.1.260 - Avid Technology, Inc.)
Batman Arkham Knight (HKLM-x32\...\{0F4673C2-B7F4-4771-96FD-1AB79B1C1923}_is1) (Version:  - Rocksteady Studios)
Belarc Advisor 8.5c (HKLM-x32\...\Belarc Advisor) (Version: 8.5.3.0 - Belarc Inc.)
BitTorrent (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\BitTorrent) (Version: 6.0.0 - )
CCleaner (HKLM\...\CCleaner) (Version: 5.31 - Piriform)
CD Recovery Toolbox Free 2.2 (HKLM-x32\...\CD Recovery Toolbox Free_is1) (Version:  - Recovery Toolbox, Inc.)
Chroma Clock version 1.0.3 (HKLM-x32\...\{05C726E4-E592-4078-B0CF-41E65FE313DD}_is1) (Version: 1.0.3 - Tim Gebauer)
CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.)
Corsair LINK 4 (HKLM-x32\...\{11733AAE-32BB-406C-B0F3-E298FBDBF5FB}) (Version: 4.8.0.82 - Corsair Components, Inc.) Hidden
Corsair LINK 4 (HKLM-x32\...\{546918e6-4e12-4d60-914f-fe32e851b8cf}) (Version: 4.8.0.82 - Corsair Components, Inc.)
Corsair Utility Engine (HKLM-x32\...\{A9114889-E4D2-4112-B461-22179C0E122C}) (Version: 2.14.67 - Corsair)
Counter-Strike: Condition Zero (HKLM\...\Steam App 80) (Version:  - Valve)
Counter-Strike: Condition Zero Deleted Scenes (HKLM\...\Steam App 100) (Version:  - Valve)
CPUID HWMonitor 1.31 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CPUID ROG CPU-Z 1.77 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.77 - CPUID, Inc.)
Dead Rising 4 Deluxe Edition MULTi13 - ElAmigos version 1.0 u1 (HKLM-x32\...\{5B433DE9-B203-4254-8D8E-341B66EB51E5}_is1) (Version: 1.0 u1 - Capcom)
Deus Ex - Mankind Divided version 1.11.616.0 (HKLM-x32\...\{D1D2C292-7BC9-4177-BC48-746E5397A512}_is1) (Version: 1.11.616.0 - Square Enix)
DeviceRoutingConfigurator (HKLM\...\{AC306567-A1B7-4208-8FED-97CF535050BC}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden
DiRT 4 (HKLM\...\ZGlydDQ_is1) (Version: 1 - )
Dishonored 2 (HKLM\...\Dishonored 2_is1) (Version: 1.0 - )
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version:  - EaseUS)
Emsisoft Anti-Malware (HKLM\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 2017.4 - Emsisoft Ltd.)
F1 2016 (HKLM\...\F1 2016_is1) (Version: 1.0 - )
FaceGen Modeller Demo (HKLM\...\{E59D290F-0FCD-43F0-A336-3A6B303634BB}) (Version: 3.14.0.0 - Singular Inversions Inc.)
FastStone Image Viewer 6.2 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.2 - FastStone Soft)
File Transfer (HKLM-x32\...\{924FB30F-AA59-453D-A921-39810BDD29C1}) (Version:  - )
FL Studio 12.0.2 (HKLM\...\FL Studio 12_is1) (Version:  - )
FL Studio ASIO (HKLM\...\FL Studio ASIO) (Version:  - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version:  - )
Foxit Advanced PDF Editor 3 (HKLM-x32\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.1.0.0 - Foxit Corporation)
Futuremark SystemInfo (HKLM-x32\...\{6583B359-134F-480D-9B31-9B94EFFAFE40}) (Version: 5.0.609.0 - Futuremark)
GetEven (HKLM-x32\...\GetEven_is1) (Version:  - )
G-Force (HKLM-x32\...\G-Force) (Version: 5.6.2 - SoundSpectrum)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HP Officejet 6700 Basic Device Software (HKLM\...\{A1CFA587-90D4-4DE6-B200-68CC0F92252F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1030 - Intel Corporation)
Intel® Network Connections 21.1.27.0 (HKLM\...\PROSetDX) (Version: 21.1.27.0 - Intel)
Intellisense Lang Pack Mobile Extension SDK 10.0.14393.0 (HKLM-x32\...\{26D23C60-AC47-46E5-8EDF-D19F41CAB666}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
IrfanView 4.44 (64-bit) (HKLM\...\IrfanView64) (Version: 4.44 - Irfan Skiljan)
IsoBuster 3.1 (HKLM-x32\...\IsoBuster_is1) (Version: 3.1 - Smart Projects)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
JRiver Media Center 22 (HKLM-x32\...\Media Center 22) (Version: 22 - JRiver, Inc.)
Kaspersky Anti-Virus for ASUS (HKLM-x32\...\{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab) Hidden
Kaspersky Anti-Virus for ASUS (HKLM-x32\...\InstallWIX_{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab)
KeyBot II (HKLM-x32\...\{56496BBC-DA67-4DC7-9B90-398982CA641D}) (Version: V1.01.02 - ASUSTeK Computer Inc.)
Kits Configuration Installer (HKLM-x32\...\{76825BA0-C536-C284-BAA1-9DB7A2D30D54}) (Version: 10.1.14393.33 - Microsoft) Hidden
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Mass Effect™: Andromeda (HKLM-x32\...\{72BBCA87-9350-48BC-9E2F-6DBC1E80C993}) (Version: 1.0.0.5 - Electronic Arts)
MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
Microsoft .NET Framework 4.6.2 SDK (HKLM-x32\...\{39BEF607-44E6-472B-90C1-BD62AA2B7A3F}) (Version: 4.6.01586 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (HKLM-x32\...\{C07B4BC7-A37D-46A8-B2A3-620CC569D149}) (Version: 4.6.01586 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
mIRC (HKLM-x32\...\mIRC) (Version: 7.49 - mIRC Co. Ltd.)
Morphyre (HKLM-x32\...\Morphyre) (Version:  - )
MPC-HC 1.7.11 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.11 - MPC-HC Team)
MSI Development Tools (HKLM-x32\...\{D4A10A5F-9300-3FF6-0906-71EBBDD68FDB}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
MSI Kombustor 3.5.2.1 (64-bit) (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version:  - MSI Co., LTD)
NahimicSettingsConfigurator (HKLM\...\{0CA6B676-1CB4-49D4-BD7E-CD41A5828130}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.4.28.00 - NETGEAR Inc.)
Noise Reduction Plug-In 2.0 (HKLM-x32\...\{36DF4580-D1B3-11E3-A23E-F04DA23A5C58}) (Version: 2.0.628 - Sony)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 384.76 - NVIDIA Corporation)
NVIDIA 3DTV Play Activation Utility (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DTV) (Version: 358.40 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation)
NVIDIA Graphics Driver 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 384.76 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.6.1.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Obduction (HKLM-x32\...\Obduction_is1) (Version:  - )
Oculus (HKLM\...\Oculus) (Version: <3 - Oculus VR, LLC)
Oculus Rift DK2 Sensor Driver (HKLM\...\{F786EF4E-73FE-4700-AC19-FFC0B2298F20}) (Version: 1.0.0.0 - Oculus VR, LLC) Hidden
Oculus Rift Monitor Driver (HKLM\...\{E932D5B4-547A-4959-B642-3816836283E3}) (Version: 1.0.1.0 - Oculus VR, LLC) Hidden
Oculus Rift Sensor Driver (HKLM\...\{E724ED40-8962-4987-901D-57AC8C9E41CD}) (Version: 1.0.20.0 - Oculus VR, LLC) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OTB V1.1.0 (HKLM-x32\...\OTB_is1) (Version:  - FNet Company)
OutfitSwapper2 (HKLM-x32\...\{B45224B0-00EC-4F69-9B93-16A36595A691}) (Version: 2.0.0 - OysterMug Productions)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
OysterMug's Voiceset Creator (HKLM-x32\...\{28FA5099-D70E-4D2C-B414-409270BE3D15}) (Version: 3.0 - OysterMug Productions)
Pavtube Video Converter Trial Ver 4.9.0.0 (HKLM-x32\...\{B4EE51E6-2C80-4B04-BDE0-ED4E87BEFECD}_is1) (Version:  - )
ProductDaemonSetup (HKLM\...\{36606417-B1C4-42C2-B5C1-67972DA63DAB}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RamCache II (HKLM-x32\...\RamCache II) (Version: 1.01.04 - ASUSTeKcomputer Inc)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.3.6 - Razer Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 8.2.12.485 - Razer Inc.)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.26 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.17.413 - Razer Inc.)
Really Slick Screensavers 0.2 (HKLM-x32\...\ReallySlickScreensavers) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7997 - Realtek Semiconductor Corp.)
ROG RAMDisk (HKLM-x32\...\{DE8C1883-4F14-40DF-8C8C-376157ADF5A3}) (Version: 2.02.06 - ASUSTeK Computer Inc.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.0.0.790 - Samsung Electronics)
SDK Debuggers (HKLM-x32\...\{F894B529-9F16-1890-3474-0AA0AEAC6D67}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden
Smart File Advisor 1.1.1 (HKLM-x32\...\Smart File Advisor_is1) (Version: 1.1.1 - Filefacts.net) <==== ATTENTION
Sniper Elite 4 (HKLM\...\Sniper Elite 4_is1) (Version: 1.0 - )
Sniper Elite 4 Dedicated Server (HKLM\...\Sniper Elite 4 Dedicated Server_is1) (Version: 1.0 - )
SonicMapperConfigurator (HKLM\...\{107DC151-D0CB-440D-85E8-ABBB04B31329}) (Version: 3.1.3.38194 - ASUSTeKcomputer.Inc) Hidden
SonicRadar3Setup (HKLM\...\{D1DF09DE-0347-42E7-9127-E66A85121C6D}) (Version: 3.1.3.38194 - ASUSTeKcomputer.Inc) Hidden
SonicStudio3Setup (HKLM\...\{2FFEC736-656D-41D7-A4D2-AD3CCF3EC272}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc) Hidden
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.6.1 - Sophos Limited)
Sound Forge Pro 11.0 (HKLM-x32\...\{FE1A7F80-1348-11E4-8C79-F04DA23A5C58}) (Version: 11.0.293 - Sony)
South Park The Stick of Truth - Update 1 version 1.0.1353 (HKLM-x32\...\{83736891-79AE-49BA-96F5-55DD6F2186AC}_is1) (Version: 1.0.1353 - Ubisoft)
South Park The Stick of Truth (HKLM-x32\...\South Park The Stick of Truth_is1) (Version:  - Ubisoft)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steam 360 Video Player (HKLM\...\Steam App 613220) (Version:  - Valve)
Sugar Bytes TransVST 1.0 (HKLM\...\TransVST_is1) (Version: 1.0 - Sugar Bytes)
The Klub 17 (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\Klub-7) (Version: 7.5.0 - Team WRK17)
The Lab (HKLM\...\Steam App 450390) (Version:  - Valve)
TheWaveVR (HKLM\...\Steam App 453000) (Version:  - TheWaveVR)
thriXXX-LauncherBeta (HKLM-x32\...\thriXXX-LauncherBeta) (Version:  - thriXXX Software GmbH)
Titanfall 2 (HKLM-x32\...\Titanfall 2_is1) (Version:  - )
TriDef 3D 7.4 (HKLM-x32\...\essentials-bundle) (Version: 7.4 - Dynamic Digital Depth Australia Pty Ltd)
TriDef 3D Oculus Rift Add-on 1.0b8 (HKLM-x32\...\oculus-rift-bundle) (Version: 1.0b8 - Dynamic Digital Depth Australia Pty Ltd)
TriDef 3D Photo Transformer 2.0 (HKLM-x32\...\photo-transformer-bundle) (Version: 2.0 - Dynamic Digital Depth Australia Pty Ltd)
TriDef SmartCam 2.1.6 (HKLM-x32\...\webcam-pkg) (Version: 2.1.6 - Dynamic Digital Depth Australia Pty Ltd)
Universal CRT Extension SDK (HKLM-x32\...\{F6483AD1-9703-F95E-B07B-6BB7A3DA7B71}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{96FB0EE4-8F7E-595E-B5CF-BFCC6BF26014}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{302A9B8D-5111-6C51-BB99-FF394C4A4255}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{2D359C7E-59C8-79A9-5157-FE9E189F5E8A}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{71436CD5-3E63-CEE9-FC00-5124A5C9A931}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{87F42CC0-5403-3698-87D9-3C2A04E476E1}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Update for Skype for Business 2016 (KB3115087) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C48D0508-2A21-42EA-8BC9-D387768F54F4}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB3115087) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C48D0508-2A21-42EA-8BC9-D387768F54F4}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB3115087) 64-Bit Edition (HKLM\...\{90160000-012B-0409-1000-0000000FF1CE}_Office16.PROPLUS_{C48D0508-2A21-42EA-8BC9-D387768F54F4}) (Version:  - Microsoft)
USBPcap 1.1.0.0-g794bf26-5 (HKLM\...\USBPcap) (Version: 1.1.0.0-g794bf26-5 - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VR Player (HKLM-x32\...\{31DDB528-67A7-415C-B218-B111B5FAF5DD}) (Version: 0.5.1 - StephaneLX)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WD Access (HKLM-x32\...\{046643f7-6206-46bb-8968-92c37fee39e0}) (Version: 1.4.5949.29996 - Western Digital Technologies, Inc.)
WD Access (HKLM-x32\...\{C0624809-D60D-4AFF-8AF3-9452125AF4C1}) (Version: 1.4.5949.29996 - Western Digital Technologies, Inc) Hidden
WD My Cloud (HKLM\...\{4B86F896-11DC-4711-BB60-81104832FA44}) (Version: 1.0.7.17 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{965D28B5-3C86-41FD-994E-D6376815C9B3}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.)
Whirligig (HKLM-x32\...\Whirligig) (Version: v2.2 - phileday)
WinAppDeploy (HKLM-x32\...\{1182888E-EDC9-05C5-33BD-B61DA5B1F916}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17387 - Microsoft Corporation)
Windows Driver Package - Corsair Components, Inc. (SIUSBXP) USB  (07/14/2010 3.3) (HKLM\...\480519419545219A13536B66D4C46317E0882315) (Version: 07/14/2010 3.3 - Corsair Components, Inc.)
Windows SDK AddOn (HKLM-x32\...\{45D392D2-5956-4646-9CA6-83CBF67507B6}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.14393.33 (HKLM-x32\...\{f23f94c5-8bba-4202-85ad-c83d4402cdc1}) (Version: 10.1.14393.33 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{01F53182-F1C8-8A72-5C86-B6612BDD4815}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{2AC000E5-E5E6-75B7-7FC2-9ECA8C57CA98}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{6DF5B5E1-A8A0-B617-AADB-31C3709A3C41}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{1AAB8359-4433-FF39-D420-0AD429993AD7}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{CB7AC790-0E8B-D6C9-CE1E-655793E7D541}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{87775501-5259-6A7C-51A6-71C832DB7ABA}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{CFD0294B-945D-62E4-7959-9B22A160496F}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{F75FD5E5-1F33-AE2B-715A-F829F8A8F51D}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Wireshark 2.2.6 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.2.6 - The Wireshark developer community, hxxps://www.wireshark.org)
Wondershare Data Recovery(Build 4.0.0.23) (HKLM-x32\...\Wondershare Data Recovery_is1) (Version: 4.0.0.23 - Wondershare Software Co.,Ltd.)
WPT Redistributables (HKLM-x32\...\{6704BD92-2F42-FE2F-AF4E-5C9D6666C75E}) (Version: 10.1.14393.33 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{3F61608E-AB68-04B1-82FF-95799F5D01CA}) (Version: 10.1.14393.33 - Microsoft) Hidden
Xilisoft Video Converter Ultimate (HKLM-x32\...\Xilisoft Video Converter Ultimate) (Version: 7.8.19.20170122 - Xilisoft)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers01: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers01: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers01: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
ContextMenuHandlers01: [WondershareVideoConverterFileOpreation] -> {FEB746CA-95C2-485F-B386-C30D4E56D22E} => C:\WINDOWS\SysWOW64\WSCM64.dll [2015-02-27] ()
ContextMenuHandlers02: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers02: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd)
ContextMenuHandlers02: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers03: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers03: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd)
ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers04: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers04: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-06-27] (NVIDIA Corporation)
ContextMenuHandlers06: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers06: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers06: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers06: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd)
ContextMenuHandlers06: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job =>
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============
2016-10-25 09:57 - 2016-10-25 09:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2017-06-26 00:05 - 2015-02-27 14:38 - 00721263 _____ () C:\WINDOWS\SysWOW64\WSCM64.dll
2017-03-18 16:58 - 2017-03-18 16:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 16:59 - 2017-03-18 22:30 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-06-23 02:20 - 2017-06-23 02:21 - 01199816 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8241.41275.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll
2017-06-23 02:20 - 2017-06-23 02:21 - 13207232 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8241.41275.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:qylgldjulgxlcefubdife`efnp`4euwqmbzifh [0]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\40726657.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SophosVirusRemovalTool => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\40726657.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SophosVirusRemovalTool => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-05-04 20:47 - 2017-05-04 20:47 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts

==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\Non-Admin\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\andrew.mcwhae-–-post-320.jpg
DNS Servers: 75.75.75.75 - 75.75.76.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
MpsSvc => Firewall Service is not running.
bfe => Firewall Service is not running.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "SynTPEnh"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "DigidesignMMERefresh"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "ASUS Ai Charger"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ASUS WiFi GO! FileTransfer Execute"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "DelaypluginInstall"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "OTB"
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\StartupApproved\Run: => "AdobeBridge"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [WFDPRINT-DAFWSD-In-Active] => (Block) %SystemRoot%\system32\dashost.exe
FirewallRules: [{4C03D1AC-2B82-431D-9BE6-63732B692A6B}] => (Block) %ProgramFiles%\Adobe\Adobe Lightroom\lightroom.exe
FirewallRules: [{AA8F62D7-51F8-49A1-B4F6-C3374BE01B92}] => (Block) %ProgramFiles%\Adobe\Adobe Lightroom\lightroom.exe
FirewallRules: [UDP Query User{573F234F-AB10-46A5-AC98-D1878B95309E}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{945868E1-17A6-4250-A719-6E54DDDCBB6A}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [{EEAED1F6-B695-4EE3-80C6-94593B9A496D}] => (Allow) C:\Games\Mass Effect\MassEffectAndromeda.exe
FirewallRules: [{C9F80640-CBCB-4049-BE77-DA8D45415CC9}] => (Allow) C:\Games\Mass Effect\MassEffectAndromeda.exe
FirewallRules: [{932076D3-979C-4AA5-AAA0-9196E1A8778A}] => (Allow) C:\Games\Mass Effect\MassEffectAndromedaTrial.exe
FirewallRules: [{AB987DCA-279A-41A8-85EF-1E7262EEB493}] => (Allow) C:\Games\Mass Effect\MassEffectAndromedaTrial.exe
FirewallRules: [{E31BD8A0-442B-44E8-A6EE-FD8A101DF81F}] => (Allow) E:\Programs\office\Office16\outlook.exe
FirewallRules: [{40795114-FC7C-4B14-9031-18249BEEE9BA}] => (Allow) E:\Programs\office\Office16\UcMapi.exe
FirewallRules: [{9ABE18E6-2A77-4B5E-9DA1-46D59D114AC2}] => (Allow) E:\Programs\office\Office16\UcMapi.exe
FirewallRules: [{7143C62E-D345-4B04-AEAC-0066CAD23A9C}] => (Allow) E:\Programs\office\Office16\lync.exe
FirewallRules: [{7F94CFA9-E435-4140-BF20-A2C4387624D2}] => (Allow) E:\Programs\office\Office16\lync.exe
FirewallRules: [{F9D58504-8B6C-409A-821E-E3EBBB3EBC52}] => (Block) %ProgramFiles% (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
FirewallRules: [{E75E95F2-5651-4AFB-8FDC-CC4DE3226948}] => (Block) %ProgramFiles% (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
FirewallRules: [{E06F3D00-8AD0-483A-84D2-C9E794840DDE}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2017\Photoshop.exe
FirewallRules: [{374C0924-CDB3-4786-88D2-3085C0C8BBEC}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2017\Photoshop.exe
FirewallRules: [{FFF16FA8-B289-46C9-A43B-0D8CD906E6A8}] => (Block) %SystemDrive%\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{1BF76F8E-CD8C-4279-B222-FA17E7212757}] => (Block) %SystemDrive%\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{113D60CE-3E85-4130-8B9C-645CE443E1C7}] => (Block) C:\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{EEFE6D8E-4064-4E44-B5DA-55EDA228B7BA}] => (Block) C:\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{606C0F57-4800-44A5-9003-87C793F81D2F}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{589C63BE-8918-4366-B471-DD4EAD0B8109}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
FirewallRules: [{433DC5B1-2477-435A-AC82-114FD0F25FCA}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\DeviceSetup.exe
FirewallRules: [{312FD8E1-2DA4-4987-AE1B-9FD4E8D3CD71}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\SendAFax.exe
FirewallRules: [{85A73CDB-6EE5-4361-8CF9-6C925456FCE5}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\DigitalWizards.exe
FirewallRules: [{7DB27125-9CC7-4CA7-AF14-B22B4FF00E7F}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\FaxApplications.exe
FirewallRules: [{9829F62C-1135-4DD1-869B-4B9D5273BEE6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0FC03C10-F2A0-4928-847C-4DD4CCBE7D54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{559798E5-3EBA-491F-9005-A60BBD2C08CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B2C2D328-D156-40D6-BF2A-46BE53868C50}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B1710CDF-87D8-4F5F-95F8-7CB11ABD6429}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D11063BF-56BA-4928-9CE3-37F3756A20F8}] => (Block) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe
FirewallRules: [{28CBD004-2FF5-4C73-BA93-75B1FB825EA9}] => (Block) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe
FirewallRules: [UDP Query User{08811AAA-0056-4B9F-BA26-CE49D86DBCF4}C:\program files (x86)\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe
FirewallRules: [TCP Query User{7F672D06-2973-45B0-AD52-58FD2F20FACC}C:\program files (x86)\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe
FirewallRules: [TCP Query User{D7414420-7066-4E84-A6FB-BE4BCBFA1188}C:\games\fallout 4\fallout4.exe] => (Block) C:\games\fallout 4\fallout4.exe
FirewallRules: [UDP Query User{A2FDFD66-222C-4D4C-893F-9FF43AA7A1BD}C:\games\fallout 4\fallout4.exe] => (Block) C:\games\fallout 4\fallout4.exe
FirewallRules: [{EACEF1CF-B773-4ED4-9B45-6E16209E5D52}] => (Allow) C:\Program Files (x86)\BitTorrent_DNA\dna.exe
FirewallRules: [{A7B55421-3E15-4F5E-A1D7-5311F5112442}] => (Allow) C:\Program Files (x86)\BitTorrent_DNA\dna.exe
FirewallRules: [{0EF6B29F-20D3-40ED-91F0-1D07734B9987}] => (Allow) C:\Program Files (x86)\BitTorrent\bittorrent.exe
FirewallRules: [{89F35812-3E26-4E72-8A48-1479598D53D3}] => (Allow) C:\Program Files (x86)\BitTorrent\bittorrent.exe
FirewallRules: [{C8888F27-0FA0-4CC7-969D-941CE2A65447}] => (Allow) C:\Program Files (x86)\BitTorrent_DNA\dna.exe
FirewallRules: [{7099EB56-D64C-485E-BC81-F4EB759845B7}] => (Allow) C:\Program Files (x86)\BitTorrent_DNA\dna.exe
FirewallRules: [{F873D6EE-E4A6-4B0F-BD12-3A4C7F292553}] => (Allow) C:\Program Files (x86)\BitTorrent\bittorrent.exe
FirewallRules: [{CD588A17-700F-46F0-8A18-35B09C210A57}] => (Allow) C:\Program Files (x86)\BitTorrent\bittorrent.exe
FirewallRules: [TCP Query User{992A75CF-7CA9-44A9-8FDA-4BD7195B8CCC}C:\users\non-admin\program files (x86)\bittorrent\bittorrent.exe] => (Allow) C:\users\non-admin\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [UDP Query User{04912DD8-EF17-4215-9231-1B2715F4402A}C:\users\non-admin\program files (x86)\bittorrent\bittorrent.exe] => (Allow) C:\users\non-admin\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [{89A37D35-43FD-451D-9E77-1AE5C21C0D75}] => (Block) %SystemDrive%\Games\Prey\Binaries\Danielle\x64\Release\Prey.exe
FirewallRules: [{4E42AC5E-9A7F-4792-B262-5FFC2EA8D840}] => (Block) %SystemDrive%\Games\Prey\Binaries\Danielle\x64\Release\Prey.exe
FirewallRules: [{FA8FAE1C-D918-4C10-B0F0-55A57D4331AD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{68E4E9E3-3DF5-4717-8A8E-40B6E456486A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C4C66097-315E-483D-90C1-7C00D305797E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{78FF2EBA-9EA4-4A85-9FE8-EB9019BC54DD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{496B130B-253E-4FDE-8112-475B5DD77C77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{41647216-F8F9-419D-A116-CD3E3EC8DC0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{68D4BCB6-BF9D-4E05-9A8A-2A6CB97F0E76}C:\games\fallout 4\fallout4.exe] => (Block) C:\games\fallout 4\fallout4.exe
FirewallRules: [UDP Query User{CE4CF534-2F95-49BC-8A9B-64F5278B808D}C:\games\fallout 4\fallout4.exe] => (Block) C:\games\fallout 4\fallout4.exe
FirewallRules: [TCP Query User{504ADE04-975B-44A6-86C6-91656195528F}C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe] => (Block) C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe
FirewallRules: [UDP Query User{23B981A3-0989-4059-BF47-D04346583E6A}C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe] => (Block) C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe
FirewallRules: [{645E40A0-EE46-435E-BBE0-B484CB21BC2B}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{ABC6562A-4F4B-44F7-9684-4CEFDCE91D57}] => (Allow) C:\Program Files\Avid\Pro Tools\ProTools.exe
FirewallRules: [TCP Query User{7B5BEB6D-853D-427F-8FB9-0AD606DDF06B}C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe] => (Block) C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe
FirewallRules: [UDP Query User{F43FAA4E-F9DD-489E-BE49-800FC0083432}C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe] => (Block) C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe
FirewallRules: [TCP Query User{20F93272-5688-4EC9-9478-B15837DC8106}C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe] => (Block) C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe
FirewallRules: [UDP Query User{9AD81F98-235D-4890-BED2-B5C8BBFF8A7C}C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe] => (Block) C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe
FirewallRules: [{EA0B13B7-DC7F-4497-BEB5-D77B1CFC6584}] => (Block) %ProgramFiles% (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
FirewallRules: [{39180FBD-1308-4AF5-A3BA-F6415B9EC409}] => (Block) %ProgramFiles%\Adobe\Adobe Lightroom\lightroom.exe
FirewallRules: [{246D39EA-C509-4210-9F5E-7BF969B8B07A}] => (Block) %SystemDrive%\Games\Prey\Binaries\Danielle\x64\Release\Prey.exe
FirewallRules: [{A910F74B-3B74-49A2-A90C-FD1F3C2D0F70}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{6FAD21F5-5969-4BF5-BB99-74A8046012C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1E9604FB-4749-4997-A9F0-F37F5F4A3A16}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5A989924-7165-4928-8324-B5F34FAC59E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C324363A-6A0B-47A0-87B9-8F350EBDFF42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{2C463977-B31C-4A45-8A57-58D429983728}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\Forge110.exe
FirewallRules: [{04155A73-9547-44FC-9C3F-A2BF73951092}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\ApplicationRegistration.exe
FirewallRules: [{FB8792D5-B763-411D-9C06-0E571EE8ED71}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\Forge110.exe
FirewallRules: [{7FE28609-4767-4B4C-8DB7-15EEAEC9E59A}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\ApplicationRegistration.exe
FirewallRules: [{B5BE4275-7D5A-43AA-A69F-BA3B5F4A8971}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\ErrorReportClient.exe
FirewallRules: [{65DEF6F1-8269-4319-9E4D-FE48B5F8355E}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\ErrorReportClient.exe
FirewallRules: [TCP Query User{4758CEBD-ED1C-4E27-A15F-B4EB88CF1481}E:\programs\fl studio 12\fl64.exe] => (Block) E:\programs\fl studio 12\fl64.exe
FirewallRules: [UDP Query User{1938C37F-F01B-4EB3-AD69-B8497E38ACC4}E:\programs\fl studio 12\fl64.exe] => (Block) E:\programs\fl studio 12\fl64.exe
FirewallRules: [{551DC3AA-3291-4ACB-B1BB-74D0167174A7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{E592A17D-BC83-41A1-B119-6F2C1D1C1CF8}E:\games\f1 2016\f1_2016.exe] => (Block) E:\games\f1 2016\f1_2016.exe
FirewallRules: [UDP Query User{6D54C6E5-972B-40E0-AAAB-A035713C60C2}E:\games\f1 2016\f1_2016.exe] => (Block) E:\games\f1 2016\f1_2016.exe
FirewallRules: [{E8B56592-F2DC-4735-B058-FC8A2B672C1E}] => (Block) %ProgramFiles%\Adobe\Adobe Lightroom\lightroom.exe
FirewallRules: [TCP Query User{E2379AB1-0832-4D86-89F5-0DBFEE4A7F0B}E:\games\geteven\binaries\win64\geteven.exe] => (Block) E:\games\geteven\binaries\win64\geteven.exe
FirewallRules: [UDP Query User{6D067D62-F498-4534-9472-FA66A27E278E}E:\games\geteven\binaries\win64\geteven.exe] => (Block) E:\games\geteven\binaries\win64\geteven.exe
FirewallRules: [TCP Query User{1D88D968-B35F-43FC-96A3-8627EBDD06DB}C:\program files (x86)\j river\media center 22\media center 22.exe] => (Block) C:\program files (x86)\j river\media center 22\media center 22.exe
FirewallRules: [UDP Query User{DAFE6BB4-4225-40B1-BBFC-4C6E99182F08}C:\program files (x86)\j river\media center 22\media center 22.exe] => (Block) C:\program files (x86)\j river\media center 22\media center 22.exe
FirewallRules: [{B4574CAA-16E6-4936-9EBB-5536C728B3D0}] => (Block) %ProgramFiles%\EaseUS\EaseUS Data Recovery Wizard\DRW.exe
FirewallRules: [{4F2E73DC-596D-4B46-B584-94971A2827A7}] => (Block) %ProgramFiles%\EaseUS\EaseUS Data Recovery Wizard\DRWUI.exe
FirewallRules: [{56D63261-BE5F-475E-9D8B-E095CF242D0C}] => (Block) %ProgramFiles%\EaseUS\EaseUS Data Recovery Wizard\DRWUI.exe
FirewallRules: [TCP Query User{A840649E-9985-4327-93A6-F32A6C46CAC4}D:\games\sniper elite 4 dedicated server\bin\sniperelite4_dedicated.exe] => (Allow) D:\games\sniper elite 4 dedicated server\bin\sniperelite4_dedicated.exe
FirewallRules: [UDP Query User{27691143-4F72-4BA8-92CA-A391FF080D10}D:\games\sniper elite 4 dedicated server\bin\sniperelite4_dedicated.exe] => (Allow) D:\games\sniper elite 4 dedicated server\bin\sniperelite4_dedicated.exe
FirewallRules: [TCP Query User{9E7B37E2-5907-47D7-BC9B-1E8E0CB3377F}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{46105C73-2A3C-4E9F-B141-83D3014BA779}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{4D6A3F09-FD37-4AC7-B68E-2A2883EE10DA}] => (Block) %ProgramFiles%\Futuremark\3DMark\UpdaterUi.exe
FirewallRules: [{6B76DA5A-517C-4857-B7B7-B8D7C4520EE3}] => (Block) %ProgramFiles%\Futuremark\3DMark\UpdaterUi.exe
FirewallRules: [{468B874D-15D6-4A6D-AE31-1AB5952E8AA4}] => (Block) %ProgramFiles%\Futuremark\3DMark\3DMark.exe
FirewallRules: [{B4ADBB86-11BF-4AE5-A57D-D2B601AD0288}] => (Block) %ProgramFiles% (x86)\MediaMonkey\DBUpgrade.exe
FirewallRules: [{1E08EAB0-BCFC-4F83-BA91-EED7FC1CB2C6}] => (Block) %ProgramFiles% (x86)\MediaMonkey\MediaMonkey.exe
FirewallRules: [{D2C34987-4EC9-467C-B933-94A1B255131D}] => (Block) %ProgramFiles% (x86)\MediaMonkey\MediaMonkeyCOM.exe
FirewallRules: [{14A3E52F-B8EB-40AD-BF75-03D31F4EB777}] => (Block) %ProgramFiles% (x86)\MediaMonkey\MediaMonkeyCOM.exe
FirewallRules: [{1242DDFB-9D8B-431C-924F-AFDA1853D8E5}] => (Block) %ProgramFiles%\CCleaner\CCleaner64.exe
FirewallRules: [{32C869B5-275A-49F2-99BB-0B77B7765C19}] => (Block) %ProgramFiles%\CCleaner\CCleaner.exe
FirewallRules: [TCP Query User{8E21EB0F-0F11-4B39-9265-37C96D597769}C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe] => (Allow) C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe
FirewallRules: [UDP Query User{8923CC4E-C1AD-4FC9-9C66-200982410D80}C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe] => (Allow) C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe
FirewallRules: [{3D019CAD-0452-4AD5-B08F-C94FB2BF2F80}] => (Allow) LPort=1688
FirewallRules: [{2368BDD5-B01D-4CA7-86F7-FEE97A8A8FEA}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{5351BD9D-32CE-4AA3-AADB-1BEA99D3D310}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{95769E9F-0DD5-4F9E-89D6-7810ADEAE09C}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{730B084C-435A-4D23-BB99-FEFE0F852AB1}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{CBBD886F-19D1-4329-8391-50C046A98B85}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{3D5F36E5-70DD-4BAF-8B77-C764E43BD015}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{0E7B65E9-DD96-4D41-9C27-52D9D6BF8A96}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{9DF1639B-EB36-45B1-BB4A-518A656D7088}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E7071EA6-7CBE-4A4D-9BE2-163DD0BF0EEB}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
FirewallRules: [{28D74C75-A774-4203-82BE-6ECE115B4225}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
FirewallRules: [{E1CF3751-1F0E-477B-A84C-D25DEDAC5E69}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\DirectDisplayConfig.exe
FirewallRules: [{DBC71646-E4DC-4E05-826A-C24D05F32769}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\DirectDisplayConfig.exe
FirewallRules: [{444238CF-7980-482B-A91B-714885467112}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
FirewallRules: [{7AE1E324-C203-4709-BCE4-93B861A04B1A}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
FirewallRules: [{CB3746A3-1A82-4600-8A81-5FCB9463B839}] => (Allow) C:\Program Files\Oculus\Support\oculus-home\OculusVR.exe
FirewallRules: [{269CAE4F-36E3-46C6-870C-8E25EB27C07A}] => (Allow) C:\Program Files\Oculus\Support\oculus-home\OculusVR.exe
FirewallRules: [{40D7866D-EC2F-4EA2-A2E8-098C1472EFAD}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe
FirewallRules: [{D6A952AD-D4F8-4B7A-AFEA-BD57C062FB2B}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe
FirewallRules: [{3A9FE26D-B4BB-459C-9609-65EC69B8FEAF}] => (Allow) C:\Games\Oculus\Software\oculus-dead-and-buried\DeadAndBuried\DeadAndBuried.exe
FirewallRules: [{1141FD2F-44D7-4E66-98E0-6164BC39AC42}] => (Allow) C:\Games\Oculus\Software\oculus-dead-and-buried\DeadAndBuried\DeadAndBuried.exe
FirewallRules: [{FBE32387-9A39-4AD8-97FC-7D907077897C}] => (Allow) C:\Games\Oculus\Software\ccp-games-newcastle-eve-valkyrie\Image\UE4PrereqSetup_x64.exe
FirewallRules: [{45B5EC7C-AF33-49EB-88DC-F9D10F510F86}] => (Allow) C:\Games\Oculus\Software\ccp-games-newcastle-eve-valkyrie\Image\UE4PrereqSetup_x64.exe
FirewallRules: [{BCA0E7E4-F925-4BFD-8B17-B8ABCB2F7123}] => (Allow) C:\Games\Oculus\Software\ccp-games-newcastle-eve-valkyrie\Image\WindowsNoEditor\VkGame\Binaries\Win64\EVE-Valkyrie.exe
FirewallRules: [{90C96C33-B67B-4FF3-87A5-55267B64CC21}] => (Allow) C:\Games\Oculus\Software\ccp-games-newcastle-eve-valkyrie\Image\WindowsNoEditor\VkGame\Binaries\Win64\EVE-Valkyrie.exe
FirewallRules: [TCP Query User{CF9EC92A-A8C6-4436-AB26-A5E43D59C372}C:\users\dennis\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\dennis\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [UDP Query User{D0428225-653B-4504-B9BA-3100453337B2}C:\users\dennis\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\dennis\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [{1637D72F-058D-4F1C-8CE1-87DF4F171987}] => (Block) D:\Games\Obduction\Obduction.exe
FirewallRules: [{3637EFB0-ED79-4B51-9509-0C0897BB6596}] => (Block) D:\Games\Obduction\Obduction\Binaries\Win64\Obduction-Win64-Shipping.exe
FirewallRules: [TCP Query User{23920478-62CA-4081-A2C0-B17390818583}C:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) C:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe
FirewallRules: [UDP Query User{30CD05BA-BE33-44D6-8153-EFE7D52D5EBC}C:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) C:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe
FirewallRules: [{19CF08B7-B2D1-43EC-95B5-DD9811B45486}] => (Block) D:\Games\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{39A12DE6-7AF3-435E-AA41-0D3C323FE0AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe
FirewallRules: [{8F9EC8BF-7FB7-4855-9307-8DEC0A0B0A5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe
FirewallRules: [{2F8B1969-F215-4322-91B7-3BC369230E17}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steam360VideoPlayer\Steam360VideoPlayer.exe
FirewallRules: [{384B0C55-26A7-4437-96FA-040E85433EF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steam360VideoPlayer\Steam360VideoPlayer.exe
FirewallRules: [{67FFC89C-21A1-416C-901B-D1C67C7E69B5}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\Xilisoft Video Converter Ultimate Update.exe
FirewallRules: [{B65F1D98-D8DE-4855-B1C3-86D15BBD09D2}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\vc.exe
FirewallRules: [{1E4B79ED-75F7-474A-867C-90DB1A4A2075}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\vc_buy.exe
FirewallRules: [{F1FB5563-687B-4BC6-89ED-9729B33DC38C}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\vcloader.exe
FirewallRules: [{D0A6255D-525A-407C-BEC8-9EBF7A1B06E0}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\VideoConverterUltimate.exe
FirewallRules: [{C0CF34D2-E875-45C9-8CE0-94B1DBD44D62}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\DownLoader.exe
FirewallRules: [{03A01D6C-4BA1-4DA8-B16D-EDF47A711D73}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\BsSndRpt.exe
FirewallRules: [{39130240-8FD9-4C53-ABAA-C480740B8B5F}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\MediaLibServer.exe
FirewallRules: [{89CB83C7-DE41-4218-9BFE-86F2278086C1}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\OnlineDemand.exe
FirewallRules: [{05CC8E1E-8F1C-421D-9BC8-93F307CEF9DE}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\WAFSetup.exe
FirewallRules: [TCP Query User{AE914ED4-898C-4E97-A2AE-C264F486279B}C:\users\dennis\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\dennis\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [UDP Query User{3B6FB3A2-9E0F-433F-9C11-8A6261759DAB}C:\users\dennis\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\dennis\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [{29E63437-4AE0-4103-9EB4-9B42298E9468}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\imminfo.exe
FirewallRules: [{56259B76-06B5-4E1E-BB3E-A34B695C5F45}] => (Block) %ProgramFiles% (x86)\Wondershare\WAF\2.4.2.223\WsUpdInstaller.exe
FirewallRules: [{CB02D3E6-4DA2-4415-9E19-8B3D036CE5E9}] => (Block) %ProgramFiles% (x86)\Wondershare\WAF\2.4.2.223\WsUpdInstaller.exe
FirewallRules: [{889AAD89-D74C-44E1-898C-2581E7779557}] => (Block) %ProgramFiles% (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe
FirewallRules: [{A25E9653-E32A-4DF5-9CDD-DB2062C727E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe
FirewallRules: [{086F5C06-39C2-4D58-9ED7-B5D891DA043B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe
FirewallRules: [{59AB2633-94C7-44AA-A534-6E8DB0FAD4E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe
FirewallRules: [{E4B4300D-BF76-4DBA-8DFC-00278F888E51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe
FirewallRules: [{E3F26B4E-185B-4D7D-BA6C-B8FD5965713B}] => (Allow) C:\Games\Oculus\Software\playful-luckys-tale\LT.exe
FirewallRules: [{149BE5EE-1C43-4CB4-B92C-F8A4AD4062BF}] => (Allow) C:\Games\Oculus\Software\playful-luckys-tale\LT.exe
FirewallRules: [{9B534716-3D87-4F6C-A001-050C2C6A5F14}] => (Allow) C:\Games\Oculus\Software\oculus-oculus-medium-retail\bin\OculusMedium.exe
FirewallRules: [{BBC1031B-0DBD-4D3D-9CE7-66B42822107F}] => (Allow) C:\Games\Oculus\Software\oculus-oculus-medium-retail\bin\OculusMedium.exe
FirewallRules: [{F8070691-E38C-4664-B9E1-E4C637971809}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen.exe
FirewallRules: [{C9A64A6B-93CC-4F3E-AEA8-E04151ACB333}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen.exe
FirewallRules: [{5AAC0147-353D-46AD-8189-8A9C2A593620}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\chromedriver.exe
FirewallRules: [{4BCCCDC9-6D88-4B70-B3DE-53E04BA54BC1}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\chromedriver.exe
FirewallRules: [{9DBFDCE6-3442-43F8-AD77-208673F7E700}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\payload.exe
FirewallRules: [{CAEFE46B-098A-4B58-B787-4913F1E57235}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\payload.exe
FirewallRules: [{53B23FD8-3EE7-45DC-824C-C4A2DF062B27}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\nwjc.exe
FirewallRules: [{F1AFABD6-53ED-4F5D-85FE-567E21EB9947}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\nwjc.exe
FirewallRules: [{1018CA62-5C04-44C2-AB55-F14FFBBC07A3}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\BigScreen.exe
FirewallRules: [{0E26B1D1-1D28-4C06-A4B5-7CDC8F17857F}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\BigScreen.exe
FirewallRules: [{F496069F-32A7-4A16-AC87-E2C5417D096D}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\CoherentUI_Host\windows\CoherentUI_Host.exe
FirewallRules: [{CA1F46CC-8837-4CDD-B533-639FBA2FA826}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\CoherentUI_Host\windows\CoherentUI_Host.exe
FirewallRules: [{0333FCDC-2155-4485-BC65-E6250E553FBC}] => (Allow) C:\Games\Oculus\Software\ready-at-dawn-r14-multiplayer\bin\win7\BsSndRpt64.exe
FirewallRules: [{A2806E5C-FE90-4B68-A3D7-855150AACC55}] => (Allow) C:\Games\Oculus\Software\ready-at-dawn-r14-multiplayer\bin\win7\BsSndRpt64.exe
FirewallRules: [{BF93122F-CD25-4AAE-9DDE-384ACAC0974C}] => (Allow) C:\Games\Oculus\Software\ready-at-dawn-r14-multiplayer\bin\win7\EchoArena.exe
FirewallRules: [{24B8264F-FC19-4F60-8DB4-91048CA2BAB6}] => (Allow) C:\Games\Oculus\Software\ready-at-dawn-r14-multiplayer\bin\win7\EchoArena.exe
FirewallRules: [{7CE8D557-2720-48B5-B051-AC7FEFEF89BF}] => (Block) D:\Games\Titanfall 2\Titanfall2.exe
FirewallRules: [TCP Query User{0271BBB4-EC6D-486E-8912-CB068D7D2DCB}E:\programs\office\office16\lync.exe] => (Allow) E:\programs\office\office16\lync.exe
FirewallRules: [UDP Query User{4DAEAFB4-2625-41E7-8C03-B80C59A65154}E:\programs\office\office16\lync.exe] => (Allow) E:\programs\office\office16\lync.exe
FirewallRules: [{9E87A772-691A-4F90-8C28-1FB471A3ACAA}] => (Allow) E:\SteamLibrary\steamapps\common\The Lab\TheLab\win64\TheLab.exe
FirewallRules: [{663C0B0C-DE37-43A5-878F-8A4882E08921}] => (Allow) E:\SteamLibrary\steamapps\common\The Lab\TheLab\win64\TheLab.exe
FirewallRules: [{8034A2F3-1FC8-4155-86C8-8E871E3EE942}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\File Transfer Server.exe
FirewallRules: [{56CD921A-F6F3-449F-B275-9E10F9CCE707}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\File Transfer Server.exe
FirewallRules: [{AB2A3550-E5DD-4367-B058-34AC0560D681}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\ASUSDMS.exe
FirewallRules: [{191294C9-2B3C-43EF-9C1E-80108D057E14}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\ASUSDMS.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\BitTorrent\bittorrent.exe] => Enabled:BitTorrent
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\TriDef\TriDef\TriDefMediaPlayer\TriDefMediaPlayer.exe] => Enabled:TriDef 3D Media Player
==================== Restore Points =========================
ATTENTION: System Restore is disabled
Check "winmgmt" service or repair WMI.

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================
Application errors:
==================
Error: (07/19/2017 08:59:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OVRLibrarian.exe, version: 1.16.0.0, time stamp: 0x594c6302
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x77515ae0
Faulting process id: 0xb78
Faulting application start time: 0x01d300f37ada3c90
Faulting application path: C:\Program Files\Oculus\Support\oculus-librarian\OVRLibrarian.exe
Faulting module path: unknown
Report Id: 27f7de8f-2a6a-460e-8062-c8bdc59ae48f
Faulting package full name:
Faulting package-relative application ID:
Error: (07/19/2017 08:54:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OVRLibrarian.exe, version: 1.16.0.0, time stamp: 0x594c6302
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x77515ae0
Faulting process id: 0x18f0
Faulting application start time: 0x01d300f2c84fbfd7
Faulting application path: C:\Program Files\Oculus\Support\oculus-librarian\OVRLibrarian.exe
Faulting module path: unknown
Report Id: 4c883e8a-6909-4964-81f0-06d81bd913fe
Faulting package full name:
Faulting package-relative application ID:
Error: (07/19/2017 08:49:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OVRLibrarian.exe, version: 1.16.0.0, time stamp: 0x594c6302
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x77515ae0
Faulting process id: 0x2244
Faulting application start time: 0x01d300f21547b397
Faulting application path: C:\Program Files\Oculus\Support\oculus-librarian\OVRLibrarian.exe
Faulting module path: unknown
Report Id: 800cb817-c3ef-49f8-8576-78a98147450d
Faulting package full name:
Faulting package-relative application ID:
Error: (07/19/2017 08:44:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OVRLibrarian.exe, version: 1.16.0.0, time stamp: 0x594c6302
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x77515ae0
Faulting process id: 0x2ab0
Faulting application start time: 0x01d300f1626c3a51
Faulting application path: C:\Program Files\Oculus\Support\oculus-librarian\OVRLibrarian.exe
Faulting module path: unknown
Report Id: e8e8bb74-da32-4815-b9cc-07b323b51d4a
Faulting package full name:
Faulting package-relative application ID:
Error: (07/19/2017 08:39:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OVRLibrarian.exe, version: 1.16.0.0, time stamp: 0x594c6302
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x77515ae0
Faulting process id: 0x3720
Faulting application start time: 0x01d300f0af9706ec
Faulting application path: C:\Program Files\Oculus\Support\oculus-librarian\OVRLibrarian.exe
Faulting module path: unknown
Report Id: 465825ff-7e78-486c-ab04-026989a53612
Faulting package full name:
Faulting package-relative application ID:
Error: (07/19/2017 08:34:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OVRLibrarian.exe, version: 1.16.0.0, time stamp: 0x594c6302
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x77515ae0
Faulting process id: 0x214c
Faulting application start time: 0x01d300effcfd74d9
Faulting application path: C:\Program Files\Oculus\Support\oculus-librarian\OVRLibrarian.exe
Faulting module path: unknown
Report Id: 191f5892-8b83-49e3-ac74-c71389b87c0e
Faulting package full name:
Faulting package-relative application ID:
Error: (07/19/2017 08:29:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OVRLibrarian.exe, version: 1.16.0.0, time stamp: 0x594c6302
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x77515ae0
Faulting process id: 0xbf0
Faulting application start time: 0x01d300ef4d3318c5
Faulting application path: C:\Program Files\Oculus\Support\oculus-librarian\OVRLibrarian.exe
Faulting module path: unknown
Report Id: 185ff5f1-b45a-4d63-ba7c-ee6e9f652d89
Faulting package full name:
Faulting package-relative application ID:
Error: (07/19/2017 08:26:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: XtuService.exe, version: 6.2.0.202, time stamp: 0x57f37b46
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x77515ae0
Faulting process id: 0x21cc
Faulting application start time: 0x01d300eed813591b
Faulting application path: C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe
Faulting module path: unknown
Report Id: 63fa06ab-6667-4b78-902b-97721ecc033c
Faulting package full name:
Faulting package-relative application ID:
Error: (07/19/2017 08:26:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NvTmRep.exe, version: 25.6.0.0, time stamp: 0x59352d6a
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x2fd8
Faulting application start time: 0x01d300eed23acea2
Faulting application path: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
Faulting module path: unknown
Report Id: 48f8371d-ebee-44db-b4f0-261eb8829028
Faulting package full name:
Faulting package-relative application ID:
Error: (07/19/2017 08:26:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: lrio.exe, version: 2.1.26.50141, time stamp: 0x564fa37c
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x34e0
Faulting application start time: 0x01d300eed23a67f2
Faulting application path: C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe
Faulting module path: unknown
Report Id: 3c7c8912-3031-4507-bb44-77e25a9d2879
Faulting package full name:
Faulting package-relative application ID:

System errors:
=============
Error: (07/19/2017 08:59:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/19/2017 08:54:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/19/2017 08:49:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/19/2017 08:44:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/19/2017 08:39:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/19/2017 08:34:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/19/2017 08:29:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/19/2017 08:26:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel® Extreme Tuning Utility Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Error: (07/19/2017 08:26:58 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the XTU3SERVICE service to connect.
Error: (07/19/2017 08:26:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.

==================== Memory info ===========================
Processor: Intel® Core™ i7-7700K CPU @ 4.20GHz
Percentage of memory in use: 32%
Total physical RAM: 16314.49 MB
Available physical RAM: 10970.78 MB
Total Virtual: 20922.49 MB
Available Virtual: 15144.48 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:476.45 GB) (Free:144.81 GB) NTFS
Drive d: (Media) (Fixed) (Total:1863.01 GB) (Free:774.98 GB) NTFS
Drive e: (Data) (Fixed) (Total:1863.02 GB) (Free:14.83 GB) NTFS
Drive f: () (Removable) (Total:3.74 GB) (Free:3.74 GB) FAT32
==================== MBR & Partition Table ==================
==================== End of Addition.txt ============================


BC AdBot (Login to Remove)

 


#2 Opmpro

Opmpro
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:54 PM

Posted 22 July 2017 - 05:30 PM

I know it takes five days before I get a reply but I am wondering if I use the computer can any further harm come to it because it's running? Should I pay someone to look at it? I am really worried about it. If anyone could advise me, I have a lot of money in this computer.  



#3 nasdaq

nasdaq

  • Malware Response Team
  • 39,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:54 PM

Posted 23 July 2017 - 07:40 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Lets start by repairing these services.

Please Download Tweaking.com - Windows Repair from Here
  • Install and then run the program
  • Execute the instructions on Step 1 Important
  • Click Next on Step 2 Optional, do the Pre Scan skip Step 3 and 4 Optional for now.
  • On Step 5 Backup System Restore Do a Registry backup. When you have completed this click Next
  • Click Repairs - Open Repairs in the bottom right corner
  • Uncheck the All repair button then select just the item(s) listed below

  • 01 - Repair Registry Permissions
    03 - Reset Service permissions
    04 - Register System Files
    05 - Repair WMI
    10 - Remove Policies Set By Infections
    13 - Repair Winsock & DNS Cache
    14 - Removed Temp Files
    15 - Repair Proxy Settings
    17 - Repair Windows Updates
    19 - Repair Volume Shadow Copy Service
    21 - Repair MSI (Windows Installer)
    26 - Restore Important Windows Services
    27 - Set Windows Service to Default Startup
  • Click the Start button and let the process run to completion. Copy any error messages into Notepad, Save it on your Desktop. ( Reboot if asked to do so)
  • Please copy and paste the Contents of this file on your next reply.
===

Restart the computer normally.
===

Press the windows key Press the Windows key + r on your keyboard at the same time. This will open the RUN BOX.+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.
 
start


CreateRestorePoint:
EmptyTemp:
CloseProcesses:

ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
ContextMenuHandlers02: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers03: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers06: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
MpsSvc => Firewall Service is not running.
bfe => Firewall Service is not running.
FirewallRules: [{2368BDD5-B01D-4CA7-86F7-FEE97A8A8FEA}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{5351BD9D-32CE-4AA3-AADB-1BEA99D3D310}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
C:\Program Files\KMSpico

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.

Include the FRST.txt log created by the Farbar tool.

How is the computer running now?

#4 Opmpro

Opmpro
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:54 PM

Posted 26 July 2017 - 11:58 PM

Hey Nasdaq I am so greatful for your help. I am going to try all of this tonight although it is late and I will let you know as soon as it is finished. You are the man/woman for taking the time out to give me a hand. Really needed the help.



#5 Opmpro

Opmpro
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:54 PM

Posted 27 July 2017 - 12:54 AM

So I tried to run the software but it will not install. I have lost all admin rights and the password has changed for my admin account. I have also tried to run FRST again for you but it is also throwing an error but giving me a list but it might not be complete. I am trying to attach it to this post now. Please advise me on the steps to take now. I hope I can get this to post for you. The error was somethuing like the FRSTmod could not be launched.

#6 Opmpro

Opmpro
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:54 PM

Posted 27 July 2017 - 12:59 AM

 
 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-07-2017
Ran by Dennis (27-07-2017 01:47:59)
Running from K:\
Windows 10 Pro Version 1703 (X64) (2017-05-14 08:00:56)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================
3DD16DA236F44AD59302 (S-1-5-21-2691424144-4102199767-1168573955-1012 - Limited - Enabled)
Administrator (S-1-5-21-2691424144-4102199767-1168573955-500 - Administrator - Disabled)
B514F3A7F19C4E398961 (S-1-5-21-2691424144-4102199767-1168573955-1013 - Limited - Enabled)
DefaultAccount (S-1-5-21-2691424144-4102199767-1168573955-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2691424144-4102199767-1168573955-1000 - Limited - Disabled)
Dennis (S-1-5-21-2691424144-4102199767-1168573955-1001 - Administrator - Enabled) => C:\Users\Dennis
Guest (S-1-5-21-2691424144-4102199767-1168573955-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2691424144-4102199767-1168573955-1007 - Limited - Enabled)
jalbe (S-1-5-21-2691424144-4102199767-1168573955-1004 - Limited - Enabled) => C:\Users\jalbe
Non-Admin (S-1-5-21-2691424144-4102199767-1168573955-1005 - Limited - Enabled) => C:\Users\Non-Admin
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Kaspersky Anti-Virus for ASUS (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Emsisoft Anti-Malware (Enabled - Out of date) {701CB209-EBBC-AADC-11E6-DE73E7AF4C9D}
AS: Emsisoft Anti-Malware (Enabled - Out of date) {CB7D53ED-CD86-A552-2B56-E5019C280620}
AS: Kaspersky Anti-Virus for ASUS (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
3DMark (HKLM\...\{55B50DFB-C31F-4D90-9B7F-75233BE6DCC6}) (Version: 2.3.3693.0 - Futuremark) Hidden
3DMark (HKLM-x32\...\{39f8dcb1-5f2e-4057-980e-f463756a0465}) (Version: 2.3.3693.0 - Futuremark)
7-Zip 17.00 beta (x64) (HKLM\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.5.1 - Adobe Systems Incorporated)
Adobe Master Collection CC 2015 (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C3}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop (HKLM\...\{9B08B2EC-C82E-4D24-A3E0-57646E2CE480}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated)
Aeon (HKLM-x32\...\Aeon) (Version: 3.9.1 - SoundSpectrum)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 1.01.56 - ASUSTeK Computer Inc.)
Amazon Drive (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\Amazon Drive) (Version: 4.0.16 - Amazon.com, Inc.)
Amazon Music (HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Amazon Amazon Music) (Version: 5.6.0.1081 - Amazon Services LLC)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.76 - NVIDIA Corporation) Hidden
ApoDispatchConfigurator (HKLM\...\{4FEB3307-A0EF-4385-9C8F-4B4C1503311C}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Application Verifier x64 External Package (HKLM\...\{0115F5D3-35C7-5EF3-0C93-87C92E678D76}) (Version: 10.1.14393.33 - Microsoft) Hidden
Ashampoo Movie Studio Pro 2 (HKLM-x32\...\{91B33C97-A5B8-503E-AFB5-F144AAEA35F8}_is1) (Version: 2.0.12 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.05.02 - ASUSTeK Computer Inc.)
ASUS GPU TweakII (HKLM-x32\...\{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.4.7.3 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.4.7.3 - ASUSTek COMPUTER INC.)
ASUS MultiFrame (HKLM-x32\...\{FB4D076A-DEFD-4EAF-AD63-70D5A3BC262A}) (Version: 1.1.1 - ASUS)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.030 - ASUSTek Computer Inc.)
Asus Sonic Radar 3 (HKLM-x32\...\{d385a418-0a04-44f8-9284-522ed67a2926}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc)
Asus Sonic Studio 3 (HKLM-x32\...\{acef060a-19fa-4c87-b145-524e6faf08c4}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc)
ASUS® Intel® Extreme Tuning Utility (HKLM-x32\...\{1780bc18-5931-4073-8f78-f0efa789c524}) (Version: 6.2.0.202 - Intel Corporation)
ASUS® Intel® Extreme Tuning Utility (HKLM-x32\...\{BE8C01E6-DA46-4FDD-9F2F-8721A2FE5B82}) (Version: 6.2.0.202 - Intel Corporation) Hidden
Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.04.43 - ASUSTeK Computer Inc.)
AURA RGB Lighting Control for Graphic card & ROG-XG-STATION-2 (HKLM-x32\...\{AD025C19-8F13-4D1E-9DE1-5F10D3BA1CCC}) (Version: 0.0.5.4 - ASUSTek COMPUTER INC.) Hidden
AURA RGB Lighting Control for Graphic card & ROG-XG-STATION-2 (HKLM-x32\...\InstallShield_{AD025C19-8F13-4D1E-9DE1-5F10D3BA1CCC}) (Version: 0.0.5.4 - ASUSTek COMPUTER INC.)
AutoEQ Plugin Version 0.0.0.9 (HKLM-x32\...\AutoEQ Plugin for JRMC_is1) (Version:  - Paul Sinnema)
Avid DX 64 Bit Driver (HKLM\...\{EF394EA2-D3DE-413A-AE20-3D0763EA5C55}) (Version: 7.0.3.886 - Avid Technology, Inc.)
Avid Pro Tools (HKLM\...\{440A8FC5-DF1F-49F2-8936-227247138A34}) (Version: 12.3.1.260 - Avid Technology, Inc.)
Batman Arkham Knight (HKLM-x32\...\{0F4673C2-B7F4-4771-96FD-1AB79B1C1923}_is1) (Version:  - Rocksteady Studios)
Belarc Advisor 8.5c (HKLM-x32\...\Belarc Advisor) (Version: 8.5.3.0 - Belarc Inc.)
BitTorrent (HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
BitTorrent (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\BitTorrent) (Version: 6.0.0 - )
BitTorrent DNA (HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\BitTorrent DNA) (Version: 2.0.0 - )
CCleaner (HKLM\...\CCleaner) (Version: 5.31 - Piriform)
CD Recovery Toolbox Free 2.2 (HKLM-x32\...\CD Recovery Toolbox Free_is1) (Version:  - Recovery Toolbox, Inc.)
Chroma Clock version 1.0.3 (HKLM-x32\...\{05C726E4-E592-4078-B0CF-41E65FE313DD}_is1) (Version: 1.0.3 - Tim Gebauer)
CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.)
Corsair LINK 4 (HKLM-x32\...\{11733AAE-32BB-406C-B0F3-E298FBDBF5FB}) (Version: 4.8.0.82 - Corsair Components, Inc.) Hidden
Corsair LINK 4 (HKLM-x32\...\{546918e6-4e12-4d60-914f-fe32e851b8cf}) (Version: 4.8.0.82 - Corsair Components, Inc.)
Corsair Utility Engine (HKLM-x32\...\{A9114889-E4D2-4112-B461-22179C0E122C}) (Version: 2.14.67 - Corsair)
Counter-Strike: Condition Zero (HKLM\...\Steam App 80) (Version:  - Valve)
Counter-Strike: Condition Zero Deleted Scenes (HKLM\...\Steam App 100) (Version:  - Valve)
CPUID HWMonitor 1.31 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CPUID ROG CPU-Z 1.77 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.77 - CPUID, Inc.)
Dead Rising 4 Deluxe Edition MULTi13 - ElAmigos version 1.0 u1 (HKLM-x32\...\{5B433DE9-B203-4254-8D8E-341B66EB51E5}_is1) (Version: 1.0 u1 - Capcom)
Deus Ex - Mankind Divided version 1.11.616.0 (HKLM-x32\...\{D1D2C292-7BC9-4177-BC48-746E5397A512}_is1) (Version: 1.11.616.0 - Square Enix)
DeviceRoutingConfigurator (HKLM\...\{AC306567-A1B7-4208-8FED-97CF535050BC}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden
DiRT 4 (HKLM\...\ZGlydDQ_is1) (Version: 1 - )
Dishonored 2 (HKLM\...\Dishonored 2_is1) (Version: 1.0 - )
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version:  - EaseUS)
Emsisoft Anti-Malware (HKLM\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 2017.4 - Emsisoft Ltd.)
F1 2016 (HKLM\...\F1 2016_is1) (Version: 1.0 - )
FaceGen Modeller Demo (HKLM\...\{E59D290F-0FCD-43F0-A336-3A6B303634BB}) (Version: 3.14.0.0 - Singular Inversions Inc.)
FastStone Image Viewer 6.2 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.2 - FastStone Soft)
File Transfer (HKLM-x32\...\{924FB30F-AA59-453D-A921-39810BDD29C1}) (Version:  - )
FL Studio 12.0.2 (HKLM\...\FL Studio 12_is1) (Version:  - )
FL Studio ASIO (HKLM\...\FL Studio ASIO) (Version:  - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version:  - )
Foxit Advanced PDF Editor 3 (HKLM-x32\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.1.0.0 - Foxit Corporation)
Futuremark SystemInfo (HKLM-x32\...\{6583B359-134F-480D-9B31-9B94EFFAFE40}) (Version: 5.0.609.0 - Futuremark)
GetEven (HKLM-x32\...\GetEven_is1) (Version:  - )
G-Force (HKLM-x32\...\G-Force) (Version: 5.6.2 - SoundSpectrum)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HP Officejet 6700 Basic Device Software (HKLM\...\{A1CFA587-90D4-4DE6-B200-68CC0F92252F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1030 - Intel Corporation)
Intel® Network Connections 21.1.27.0 (HKLM\...\PROSetDX) (Version: 21.1.27.0 - Intel)
Intellisense Lang Pack Mobile Extension SDK 10.0.14393.0 (HKLM-x32\...\{26D23C60-AC47-46E5-8EDF-D19F41CAB666}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
IrfanView 4.44 (64-bit) (HKLM\...\IrfanView64) (Version: 4.44 - Irfan Skiljan)
IsoBuster 3.1 (HKLM-x32\...\IsoBuster_is1) (Version: 3.1 - Smart Projects)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
JRiver Media Center 22 (HKLM-x32\...\Media Center 22) (Version: 22 - JRiver, Inc.)
Kaspersky Anti-Virus for ASUS (HKLM-x32\...\{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab) Hidden
Kaspersky Anti-Virus for ASUS (HKLM-x32\...\InstallWIX_{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab)
KeyBot II (HKLM-x32\...\{56496BBC-DA67-4DC7-9B90-398982CA641D}) (Version: V1.01.02 - ASUSTeK Computer Inc.)
Kits Configuration Installer (HKLM-x32\...\{76825BA0-C536-C284-BAA1-9DB7A2D30D54}) (Version: 10.1.14393.33 - Microsoft) Hidden
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Mass Effect™: Andromeda (HKLM-x32\...\{72BBCA87-9350-48BC-9E2F-6DBC1E80C993}) (Version: 1.0.0.5 - Electronic Arts)
MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
Microsoft .NET Framework 4.6.2 SDK (HKLM-x32\...\{39BEF607-44E6-472B-90C1-BD62AA2B7A3F}) (Version: 4.6.01586 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (HKLM-x32\...\{C07B4BC7-A37D-46A8-B2A3-620CC569D149}) (Version: 4.6.01586 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
mIRC (HKLM-x32\...\mIRC) (Version: 7.49 - mIRC Co. Ltd.)
Morphyre (HKLM-x32\...\Morphyre) (Version:  - )
MPC-HC 1.7.11 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.11 - MPC-HC Team)
MSI Development Tools (HKLM-x32\...\{D4A10A5F-9300-3FF6-0906-71EBBDD68FDB}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
MSI Kombustor 3.5.2.1 (64-bit) (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version:  - MSI Co., LTD)
NahimicSettingsConfigurator (HKLM\...\{0CA6B676-1CB4-49D4-BD7E-CD41A5828130}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.4.28.00 - NETGEAR Inc.)
Noise Reduction Plug-In 2.0 (HKLM-x32\...\{36DF4580-D1B3-11E3-A23E-F04DA23A5C58}) (Version: 2.0.628 - Sony)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 384.76 - NVIDIA Corporation)
NVIDIA 3DTV Play Activation Utility (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DTV) (Version: 358.40 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation)
NVIDIA Graphics Driver 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 384.76 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.6.1.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Obduction (HKLM-x32\...\Obduction_is1) (Version:  - )
Oculus (HKLM\...\Oculus) (Version: <3 - Oculus VR, LLC)
Oculus Rift DK2 Sensor Driver (HKLM\...\{F786EF4E-73FE-4700-AC19-FFC0B2298F20}) (Version: 1.0.0.0 - Oculus VR, LLC) Hidden
Oculus Rift Monitor Driver (HKLM\...\{E932D5B4-547A-4959-B642-3816836283E3}) (Version: 1.0.1.0 - Oculus VR, LLC) Hidden
Oculus Rift Sensor Driver (HKLM\...\{E724ED40-8962-4987-901D-57AC8C9E41CD}) (Version: 1.0.20.0 - Oculus VR, LLC) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OTB V1.1.0 (HKLM-x32\...\OTB_is1) (Version:  - FNet Company)
OutfitSwapper2 (HKLM-x32\...\{B45224B0-00EC-4F69-9B93-16A36595A691}) (Version: 2.0.0 - OysterMug Productions)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
OysterMug's Voiceset Creator (HKLM-x32\...\{28FA5099-D70E-4D2C-B414-409270BE3D15}) (Version: 3.0 - OysterMug Productions)
Pavtube Video Converter Trial Ver 4.9.0.0 (HKLM-x32\...\{B4EE51E6-2C80-4B04-BDE0-ED4E87BEFECD}_is1) (Version:  - )
ProductDaemonSetup (HKLM\...\{36606417-B1C4-42C2-B5C1-67972DA63DAB}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RamCache II (HKLM-x32\...\RamCache II) (Version: 1.01.04 - ASUSTeKcomputer Inc)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.3.6 - Razer Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 8.2.12.485 - Razer Inc.)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.26 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.17.413 - Razer Inc.)
Really Slick Screensavers 0.2 (HKLM-x32\...\ReallySlickScreensavers) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7997 - Realtek Semiconductor Corp.)
ROG RAMDisk (HKLM-x32\...\{DE8C1883-4F14-40DF-8C8C-376157ADF5A3}) (Version: 2.02.06 - ASUSTeK Computer Inc.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.0.0.790 - Samsung Electronics)
SDK Debuggers (HKLM-x32\...\{F894B529-9F16-1890-3474-0AA0AEAC6D67}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden
Smart File Advisor 1.1.1 (HKLM-x32\...\Smart File Advisor_is1) (Version: 1.1.1 - Filefacts.net) <==== ATTENTION
Sniper Elite 4 (HKLM\...\Sniper Elite 4_is1) (Version: 1.0 - )
Sniper Elite 4 Dedicated Server (HKLM\...\Sniper Elite 4 Dedicated Server_is1) (Version: 1.0 - )
SonicMapperConfigurator (HKLM\...\{107DC151-D0CB-440D-85E8-ABBB04B31329}) (Version: 3.1.3.38194 - ASUSTeKcomputer.Inc) Hidden
SonicRadar3Setup (HKLM\...\{D1DF09DE-0347-42E7-9127-E66A85121C6D}) (Version: 3.1.3.38194 - ASUSTeKcomputer.Inc) Hidden
SonicStudio3Setup (HKLM\...\{2FFEC736-656D-41D7-A4D2-AD3CCF3EC272}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc) Hidden
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.6.1 - Sophos Limited)
Sound Forge Pro 11.0 (HKLM-x32\...\{FE1A7F80-1348-11E4-8C79-F04DA23A5C58}) (Version: 11.0.293 - Sony)
South Park The Stick of Truth - Update 1 version 1.0.1353 (HKLM-x32\...\{83736891-79AE-49BA-96F5-55DD6F2186AC}_is1) (Version: 1.0.1353 - Ubisoft)
South Park The Stick of Truth (HKLM-x32\...\South Park The Stick of Truth_is1) (Version:  - Ubisoft)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steam 360 Video Player (HKLM\...\Steam App 613220) (Version:  - Valve)
Sugar Bytes TransVST 1.0 (HKLM\...\TransVST_is1) (Version: 1.0 - Sugar Bytes)
The Klub 17 (HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Klub-7) (Version: 7.5.0 - Team WRK17)
The Klub 17 (HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\Klub-7) (Version: 7.5.0 - Team WRK17)
The Lab (HKLM\...\Steam App 450390) (Version:  - Valve)
TheWaveVR (HKLM\...\Steam App 453000) (Version:  - TheWaveVR)
thriXXX-LauncherBeta (HKLM-x32\...\thriXXX-LauncherBeta) (Version:  - thriXXX Software GmbH)
Titanfall 2 (HKLM-x32\...\Titanfall 2_is1) (Version:  - )
TriDef 3D 7.4 (HKLM-x32\...\essentials-bundle) (Version: 7.4 - Dynamic Digital Depth Australia Pty Ltd)
TriDef 3D Oculus Rift Add-on 1.0b8 (HKLM-x32\...\oculus-rift-bundle) (Version: 1.0b8 - Dynamic Digital Depth Australia Pty Ltd)
TriDef 3D Photo Transformer 2.0 (HKLM-x32\...\photo-transformer-bundle) (Version: 2.0 - Dynamic Digital Depth Australia Pty Ltd)
TriDef SmartCam 2.1.6 (HKLM-x32\...\webcam-pkg) (Version: 2.1.6 - Dynamic Digital Depth Australia Pty Ltd)
Universal CRT Extension SDK (HKLM-x32\...\{F6483AD1-9703-F95E-B07B-6BB7A3DA7B71}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{96FB0EE4-8F7E-595E-B5CF-BFCC6BF26014}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{302A9B8D-5111-6C51-BB99-FF394C4A4255}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{2D359C7E-59C8-79A9-5157-FE9E189F5E8A}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{71436CD5-3E63-CEE9-FC00-5124A5C9A931}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{87F42CC0-5403-3698-87D9-3C2A04E476E1}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Update for Skype for Business 2016 (KB3115087) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C48D0508-2A21-42EA-8BC9-D387768F54F4}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB3115087) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C48D0508-2A21-42EA-8BC9-D387768F54F4}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB3115087) 64-Bit Edition (HKLM\...\{90160000-012B-0409-1000-0000000FF1CE}_Office16.PROPLUS_{C48D0508-2A21-42EA-8BC9-D387768F54F4}) (Version:  - Microsoft)
USBPcap 1.1.0.0-g794bf26-5 (HKLM\...\USBPcap) (Version: 1.1.0.0-g794bf26-5 - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VR Player (HKLM-x32\...\{31DDB528-67A7-415C-B218-B111B5FAF5DD}) (Version: 0.5.1 - StephaneLX)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WD Access (HKLM-x32\...\{046643f7-6206-46bb-8968-92c37fee39e0}) (Version: 1.4.5949.29996 - Western Digital Technologies, Inc.)
WD Access (HKLM-x32\...\{C0624809-D60D-4AFF-8AF3-9452125AF4C1}) (Version: 1.4.5949.29996 - Western Digital Technologies, Inc) Hidden
WD My Cloud (HKLM\...\{4B86F896-11DC-4711-BB60-81104832FA44}) (Version: 1.0.7.17 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{965D28B5-3C86-41FD-994E-D6376815C9B3}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.)
Whirligig (HKLM-x32\...\Whirligig) (Version: v2.2 - phileday)
WinAppDeploy (HKLM-x32\...\{1182888E-EDC9-05C5-33BD-B61DA5B1F916}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Windows 10 Manager (HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Windows 10 Manager 2.1.0) (Version: 2.1.0 - Yamicsoft)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17387 - Microsoft Corporation)
Windows Driver Package - Corsair Components, Inc. (SIUSBXP) USB  (07/14/2010 3.3) (HKLM\...\480519419545219A13536B66D4C46317E0882315) (Version: 07/14/2010 3.3 - Corsair Components, Inc.)
Windows SDK AddOn (HKLM-x32\...\{45D392D2-5956-4646-9CA6-83CBF67507B6}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.14393.33 (HKLM-x32\...\{f23f94c5-8bba-4202-85ad-c83d4402cdc1}) (Version: 10.1.14393.33 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{01F53182-F1C8-8A72-5C86-B6612BDD4815}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{2AC000E5-E5E6-75B7-7FC2-9ECA8C57CA98}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{6DF5B5E1-A8A0-B617-AADB-31C3709A3C41}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{1AAB8359-4433-FF39-D420-0AD429993AD7}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{CB7AC790-0E8B-D6C9-CE1E-655793E7D541}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{87775501-5259-6A7C-51A6-71C832DB7ABA}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{CFD0294B-945D-62E4-7959-9B22A160496F}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{F75FD5E5-1F33-AE2B-715A-F829F8A8F51D}) (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Wireshark 2.2.6 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.2.6 - The Wireshark developer community, hxxps://www.wireshark.org)
Wondershare Data Recovery(Build 4.0.0.23) (HKLM-x32\...\Wondershare Data Recovery_is1) (Version: 4.0.0.23 - Wondershare Software Co.,Ltd.)
WPT Redistributables (HKLM-x32\...\{6704BD92-2F42-FE2F-AF4E-5C9D6666C75E}) (Version: 10.1.14393.33 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{3F61608E-AB68-04B1-82FF-95799F5D01CA}) (Version: 10.1.14393.33 - Microsoft) Hidden
Xilisoft Video Converter Ultimate (HKLM-x32\...\Xilisoft Video Converter Ultimate) (Version: 7.8.19.20170122 - Xilisoft)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers01: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers01: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers01: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
ContextMenuHandlers01: [WondershareVideoConverterFileOpreation] -> {FEB746CA-95C2-485F-B386-C30D4E56D22E} => C:\WINDOWS\SysWOW64\WSCM64.dll [2015-02-27] ()
ContextMenuHandlers02: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers02: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd)
ContextMenuHandlers02: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers03: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers03: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd)
ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers04: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers04: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-06-27] (NVIDIA Corporation)
ContextMenuHandlers06: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers06: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers06: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers06: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd)
ContextMenuHandlers06: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {08C1F66C-5C7A-4CF1-8E54-E0CA2E6DA3CC} - System32\Tasks\Monitor => C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe [2017-06-19] (TODO: <Company name>)
Task: {0B2E9150-41EC-4B50-A5CF-AE596113F39B} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [2016-10-07] ()
Task: {0C7C6ECD-8C62-4FAF-9447-CF1FAFE04985} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-13] (Piriform Ltd)
Task: {102A103D-91BE-468F-91B5-AAB0474074C7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation)
Task: {1598652C-BC07-4980-94C0-B5411434CF87} - System32\Tasks\ASUS\RamDisk => C:\Program Files (x86)\ASUS\ROG RAMDisk\loadImage.exe [2014-02-17] ()
Task: {1BB3636C-6389-40D9-B7A4-449EECF9924E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation)
Task: {24BBBDA4-EE91-4544-ADDA-2FB2836568FA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => E:\Programs\office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {2EB56387-1238-42A7-83CA-DFB16A41AE3D} - System32\Tasks\AURA => C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe [2017-03-01] (ASUSTek COMPUTER INC.)
Task: {3DB804FE-3BEE-489F-A5F7-FCC46CD4971F} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-07-26] (Intel® Corporation)
Task: {40E56AEC-9024-496E-8025-F5FEB9D09DE2} - System32\Tasks\ASUS\AsRogAuraGpuDllServer => C:\Program Files (x86)\ASUS\AURA\AsRogAuraGpuDllServer.exe [2017-06-12] ()
Task: {4DC425FE-8911-4C62-93F0-0162AEEC2B12} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation)
Task: {4EF8CCE7-82B9-48B0-857F-BC91FDDE2EDD} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {51CCB186-031E-45B1-AD7B-EE47D5F8DCE3} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2016-09-20] ()
Task: {52B7E12B-5E81-4001-BA71-4EE34FFB8077} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation)
Task: {52BE69B2-D607-4AF2-90EE-B95727606092} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] ()
Task: {64F59342-21C4-4897-841F-2B7DCD97E04E} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2016-10-14] (ASUSTeK Computer Inc.)
Task: {703FE668-9BE5-47DC-AFBB-98E7D8B5EA10} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-21] (NVIDIA Corporation)
Task: {74CFA64D-F538-4A6D-982D-7A8DFB078895} - System32\Tasks\ASUS\KeyBot II Execute => C:\Program Files (x86)\ASUS\KeyBot II\KeyBotII.exe [2015-11-06] ()
Task: {7D5288DB-62EF-459A-B246-ACB0D7AC9381} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => E:\Programs\office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {8EDE2318-8596-41AF-BD0D-2A04C8B30448} - System32\Tasks\SS3Svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3Svc32.exe [2016-12-15] (ASUSTeK COMPUTER INC.)
Task: {9A2536DC-4A6F-41E0-9FFC-5A2AAE188741} - System32\Tasks\Start CorsairLink4 => E:\installed_programs\link4\CorsairLink4.exe [2017-06-23] (Corsair Components, Inc.)
Task: {A7FAA243-ACEB-4BED-898E-7C30BE61C6FE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-21] (NVIDIA Corporation)
Task: {C0371E89-A666-468C-A9A8-D6DCA9E6E796} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [2016-11-23] (Samsung Electronics Co. Ltd.)
Task: {D86D6D44-D31F-41E9-9489-B12A3A7D95A7} - System32\Tasks\SS3Svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3Svc64.exe [2016-12-15] (ASUSTeK COMPUTER INC.)
Task: {E0099A16-11AA-44CF-9878-B6C559B9EA81} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-21] (NVIDIA Corporation)
Task: {E667875D-68AF-4B9F-900C-DA48665CE754} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-21] (NVIDIA Corporation)
Task: {EC7A2A04-BBF3-4B33-A86E-C930E799FEFA} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-11-20] (Intel Corporation)
Task: {ECDC68E7-EAB8-4511-B42C-4E0677E84DB4} - System32\Tasks\ASUS\ASUS File Transfer Server Launcher => C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\File Transfer Server Launcher.exe [2016-09-21] (TODO: <Company name>)
Task: {F96E500B-0D14-419D-8C40-3315EC11FE15} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [2016-09-18] (TODO: <Company name>)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============
2017-05-14 03:48 - 2017-06-27 17:03 - 00133568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-03-18 16:57 - 2017-03-18 16:57 - 00377344 _____ () c:\windows\system32\SSDM.dll
2017-05-04 19:34 - 2016-07-27 05:51 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2017-05-04 19:50 - 2017-06-21 03:07 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-09-24 18:20 - 2016-09-24 18:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-08-15 22:52 - 2016-08-15 22:52 - 00282168 ____R () C:\Program Files\Intel\NCS2\Agent\AdapterAgnt.DLL
2016-10-25 09:57 - 2016-10-25 09:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2017-06-26 00:05 - 2015-02-27 14:38 - 00721263 _____ () C:\WINDOWS\SysWOW64\WSCM64.dll
2017-03-18 16:59 - 2017-03-18 22:30 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-18 16:58 - 2017-03-18 16:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-07-12 02:52 - 2017-07-07 03:15 - 04124576 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:qylgldjulgxlcefubdife`efnp`4euwqmbzifh [0]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\40726657.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SophosVirusRemovalTool => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\40726657.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SophosVirusRemovalTool => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-05-04 20:47 - 2017-05-04 20:47 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts

==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\Control Panel\Desktop\\Wallpaper -> D:\Pictures\Wallpapers\Andrew.mcwhae-–-Post-320.jpg
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\Non-Admin\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\andrew.mcwhae-–-post-320.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
MpsSvc => Firewall Service is not running.
bfe => Firewall Service is not running.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "SynTPEnh"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "DigidesignMMERefresh"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "ASUS Ai Charger"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ASUS WiFi GO! FileTransfer Execute"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "DelaypluginInstall"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "OTB"
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\StartupApproved\Run: => "AdobeBridge"
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\StartupApproved\Run: => "AdobeBridge"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [WFDPRINT-DAFWSD-In-Active] => (Block) %SystemRoot%\system32\dashost.exe
FirewallRules: [{4C03D1AC-2B82-431D-9BE6-63732B692A6B}] => (Block) %ProgramFiles%\Adobe\Adobe Lightroom\lightroom.exe
FirewallRules: [{AA8F62D7-51F8-49A1-B4F6-C3374BE01B92}] => (Block) %ProgramFiles%\Adobe\Adobe Lightroom\lightroom.exe
FirewallRules: [UDP Query User{573F234F-AB10-46A5-AC98-D1878B95309E}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{945868E1-17A6-4250-A719-6E54DDDCBB6A}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [{EEAED1F6-B695-4EE3-80C6-94593B9A496D}] => (Allow) C:\Games\Mass Effect\MassEffectAndromeda.exe
FirewallRules: [{C9F80640-CBCB-4049-BE77-DA8D45415CC9}] => (Allow) C:\Games\Mass Effect\MassEffectAndromeda.exe
FirewallRules: [{932076D3-979C-4AA5-AAA0-9196E1A8778A}] => (Allow) C:\Games\Mass Effect\MassEffectAndromedaTrial.exe
FirewallRules: [{AB987DCA-279A-41A8-85EF-1E7262EEB493}] => (Allow) C:\Games\Mass Effect\MassEffectAndromedaTrial.exe
FirewallRules: [{E31BD8A0-442B-44E8-A6EE-FD8A101DF81F}] => (Allow) E:\Programs\office\Office16\outlook.exe
FirewallRules: [{40795114-FC7C-4B14-9031-18249BEEE9BA}] => (Allow) E:\Programs\office\Office16\UcMapi.exe
FirewallRules: [{9ABE18E6-2A77-4B5E-9DA1-46D59D114AC2}] => (Allow) E:\Programs\office\Office16\UcMapi.exe
FirewallRules: [{7143C62E-D345-4B04-AEAC-0066CAD23A9C}] => (Allow) E:\Programs\office\Office16\lync.exe
FirewallRules: [{7F94CFA9-E435-4140-BF20-A2C4387624D2}] => (Allow) E:\Programs\office\Office16\lync.exe
FirewallRules: [{F9D58504-8B6C-409A-821E-E3EBBB3EBC52}] => (Block) %ProgramFiles% (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
FirewallRules: [{E75E95F2-5651-4AFB-8FDC-CC4DE3226948}] => (Block) %ProgramFiles% (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
FirewallRules: [{E06F3D00-8AD0-483A-84D2-C9E794840DDE}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2017\Photoshop.exe
FirewallRules: [{374C0924-CDB3-4786-88D2-3085C0C8BBEC}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2017\Photoshop.exe
FirewallRules: [{FFF16FA8-B289-46C9-A43B-0D8CD906E6A8}] => (Block) %SystemDrive%\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{1BF76F8E-CD8C-4279-B222-FA17E7212757}] => (Block) %SystemDrive%\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{113D60CE-3E85-4130-8B9C-645CE443E1C7}] => (Block) C:\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{EEFE6D8E-4064-4E44-B5DA-55EDA228B7BA}] => (Block) C:\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{606C0F57-4800-44A5-9003-87C793F81D2F}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{589C63BE-8918-4366-B471-DD4EAD0B8109}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
FirewallRules: [{433DC5B1-2477-435A-AC82-114FD0F25FCA}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\DeviceSetup.exe
FirewallRules: [{312FD8E1-2DA4-4987-AE1B-9FD4E8D3CD71}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\SendAFax.exe
FirewallRules: [{85A73CDB-6EE5-4361-8CF9-6C925456FCE5}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\DigitalWizards.exe
FirewallRules: [{7DB27125-9CC7-4CA7-AF14-B22B4FF00E7F}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\FaxApplications.exe
FirewallRules: [{9829F62C-1135-4DD1-869B-4B9D5273BEE6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0FC03C10-F2A0-4928-847C-4DD4CCBE7D54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{559798E5-3EBA-491F-9005-A60BBD2C08CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B2C2D328-D156-40D6-BF2A-46BE53868C50}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B1710CDF-87D8-4F5F-95F8-7CB11ABD6429}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D11063BF-56BA-4928-9CE3-37F3756A20F8}] => (Block) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe
FirewallRules: [{28CBD004-2FF5-4C73-BA93-75B1FB825EA9}] => (Block) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe
FirewallRules: [UDP Query User{08811AAA-0056-4B9F-BA26-CE49D86DBCF4}C:\program files (x86)\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe
FirewallRules: [TCP Query User{7F672D06-2973-45B0-AD52-58FD2F20FACC}C:\program files (x86)\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe
FirewallRules: [TCP Query User{D7414420-7066-4E84-A6FB-BE4BCBFA1188}C:\games\fallout 4\fallout4.exe] => (Block) C:\games\fallout 4\fallout4.exe
FirewallRules: [UDP Query User{A2FDFD66-222C-4D4C-893F-9FF43AA7A1BD}C:\games\fallout 4\fallout4.exe] => (Block) C:\games\fallout 4\fallout4.exe
FirewallRules: [{EACEF1CF-B773-4ED4-9B45-6E16209E5D52}] => (Allow) C:\Program Files (x86)\BitTorrent_DNA\dna.exe
FirewallRules: [{A7B55421-3E15-4F5E-A1D7-5311F5112442}] => (Allow) C:\Program Files (x86)\BitTorrent_DNA\dna.exe
FirewallRules: [{0EF6B29F-20D3-40ED-91F0-1D07734B9987}] => (Allow) C:\Program Files (x86)\BitTorrent\bittorrent.exe
FirewallRules: [{89F35812-3E26-4E72-8A48-1479598D53D3}] => (Allow) C:\Program Files (x86)\BitTorrent\bittorrent.exe
FirewallRules: [{C8888F27-0FA0-4CC7-969D-941CE2A65447}] => (Allow) C:\Program Files (x86)\BitTorrent_DNA\dna.exe
FirewallRules: [{7099EB56-D64C-485E-BC81-F4EB759845B7}] => (Allow) C:\Program Files (x86)\BitTorrent_DNA\dna.exe
FirewallRules: [{F873D6EE-E4A6-4B0F-BD12-3A4C7F292553}] => (Allow) C:\Program Files (x86)\BitTorrent\bittorrent.exe
FirewallRules: [{CD588A17-700F-46F0-8A18-35B09C210A57}] => (Allow) C:\Program Files (x86)\BitTorrent\bittorrent.exe
FirewallRules: [TCP Query User{992A75CF-7CA9-44A9-8FDA-4BD7195B8CCC}C:\users\non-admin\program files (x86)\bittorrent\bittorrent.exe] => (Allow) C:\users\non-admin\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [UDP Query User{04912DD8-EF17-4215-9231-1B2715F4402A}C:\users\non-admin\program files (x86)\bittorrent\bittorrent.exe] => (Allow) C:\users\non-admin\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [{89A37D35-43FD-451D-9E77-1AE5C21C0D75}] => (Block) %SystemDrive%\Games\Prey\Binaries\Danielle\x64\Release\Prey.exe
FirewallRules: [{4E42AC5E-9A7F-4792-B262-5FFC2EA8D840}] => (Block) %SystemDrive%\Games\Prey\Binaries\Danielle\x64\Release\Prey.exe
FirewallRules: [{FA8FAE1C-D918-4C10-B0F0-55A57D4331AD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{68E4E9E3-3DF5-4717-8A8E-40B6E456486A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C4C66097-315E-483D-90C1-7C00D305797E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{78FF2EBA-9EA4-4A85-9FE8-EB9019BC54DD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{496B130B-253E-4FDE-8112-475B5DD77C77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{41647216-F8F9-419D-A116-CD3E3EC8DC0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{68D4BCB6-BF9D-4E05-9A8A-2A6CB97F0E76}C:\games\fallout 4\fallout4.exe] => (Block) C:\games\fallout 4\fallout4.exe
FirewallRules: [UDP Query User{CE4CF534-2F95-49BC-8A9B-64F5278B808D}C:\games\fallout 4\fallout4.exe] => (Block) C:\games\fallout 4\fallout4.exe
FirewallRules: [TCP Query User{504ADE04-975B-44A6-86C6-91656195528F}C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe] => (Block) C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe
FirewallRules: [UDP Query User{23B981A3-0989-4059-BF47-D04346583E6A}C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe] => (Block) C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe
FirewallRules: [{645E40A0-EE46-435E-BBE0-B484CB21BC2B}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{ABC6562A-4F4B-44F7-9684-4CEFDCE91D57}] => (Allow) C:\Program Files\Avid\Pro Tools\ProTools.exe
FirewallRules: [TCP Query User{7B5BEB6D-853D-427F-8FB9-0AD606DDF06B}C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe] => (Block) C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe
FirewallRules: [UDP Query User{F43FAA4E-F9DD-489E-BE49-800FC0083432}C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe] => (Block) C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe
FirewallRules: [TCP Query User{20F93272-5688-4EC9-9478-B15837DC8106}C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe] => (Block) C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe
FirewallRules: [UDP Query User{9AD81F98-235D-4890-BED2-B5C8BBFF8A7C}C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe] => (Block) C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe
FirewallRules: [{EA0B13B7-DC7F-4497-BEB5-D77B1CFC6584}] => (Block) %ProgramFiles% (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
FirewallRules: [{39180FBD-1308-4AF5-A3BA-F6415B9EC409}] => (Block) %ProgramFiles%\Adobe\Adobe Lightroom\lightroom.exe
FirewallRules: [{246D39EA-C509-4210-9F5E-7BF969B8B07A}] => (Block) %SystemDrive%\Games\Prey\Binaries\Danielle\x64\Release\Prey.exe
FirewallRules: [{A910F74B-3B74-49A2-A90C-FD1F3C2D0F70}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{6FAD21F5-5969-4BF5-BB99-74A8046012C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1E9604FB-4749-4997-A9F0-F37F5F4A3A16}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5A989924-7165-4928-8324-B5F34FAC59E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C324363A-6A0B-47A0-87B9-8F350EBDFF42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{2C463977-B31C-4A45-8A57-58D429983728}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\Forge110.exe
FirewallRules: [{04155A73-9547-44FC-9C3F-A2BF73951092}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\ApplicationRegistration.exe
FirewallRules: [{FB8792D5-B763-411D-9C06-0E571EE8ED71}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\Forge110.exe
FirewallRules: [{7FE28609-4767-4B4C-8DB7-15EEAEC9E59A}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\ApplicationRegistration.exe
FirewallRules: [{B5BE4275-7D5A-43AA-A69F-BA3B5F4A8971}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\ErrorReportClient.exe
FirewallRules: [{65DEF6F1-8269-4319-9E4D-FE48B5F8355E}] => (Block) %ProgramFiles% (x86)\Sony\Sound Forge Pro 11.0\ErrorReportClient.exe
FirewallRules: [TCP Query User{4758CEBD-ED1C-4E27-A15F-B4EB88CF1481}E:\programs\fl studio 12\fl64.exe] => (Block) E:\programs\fl studio 12\fl64.exe
FirewallRules: [UDP Query User{1938C37F-F01B-4EB3-AD69-B8497E38ACC4}E:\programs\fl studio 12\fl64.exe] => (Block) E:\programs\fl studio 12\fl64.exe
FirewallRules: [{551DC3AA-3291-4ACB-B1BB-74D0167174A7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{E592A17D-BC83-41A1-B119-6F2C1D1C1CF8}E:\games\f1 2016\f1_2016.exe] => (Block) E:\games\f1 2016\f1_2016.exe
FirewallRules: [UDP Query User{6D54C6E5-972B-40E0-AAAB-A035713C60C2}E:\games\f1 2016\f1_2016.exe] => (Block) E:\games\f1 2016\f1_2016.exe
FirewallRules: [{E8B56592-F2DC-4735-B058-FC8A2B672C1E}] => (Block) %ProgramFiles%\Adobe\Adobe Lightroom\lightroom.exe
FirewallRules: [TCP Query User{E2379AB1-0832-4D86-89F5-0DBFEE4A7F0B}E:\games\geteven\binaries\win64\geteven.exe] => (Block) E:\games\geteven\binaries\win64\geteven.exe
FirewallRules: [UDP Query User{6D067D62-F498-4534-9472-FA66A27E278E}E:\games\geteven\binaries\win64\geteven.exe] => (Block) E:\games\geteven\binaries\win64\geteven.exe
FirewallRules: [TCP Query User{1D88D968-B35F-43FC-96A3-8627EBDD06DB}C:\program files (x86)\j river\media center 22\media center 22.exe] => (Block) C:\program files (x86)\j river\media center 22\media center 22.exe
FirewallRules: [UDP Query User{DAFE6BB4-4225-40B1-BBFC-4C6E99182F08}C:\program files (x86)\j river\media center 22\media center 22.exe] => (Block) C:\program files (x86)\j river\media center 22\media center 22.exe
FirewallRules: [{B4574CAA-16E6-4936-9EBB-5536C728B3D0}] => (Block) %ProgramFiles%\EaseUS\EaseUS Data Recovery Wizard\DRW.exe
FirewallRules: [{4F2E73DC-596D-4B46-B584-94971A2827A7}] => (Block) %ProgramFiles%\EaseUS\EaseUS Data Recovery Wizard\DRWUI.exe
FirewallRules: [{56D63261-BE5F-475E-9D8B-E095CF242D0C}] => (Block) %ProgramFiles%\EaseUS\EaseUS Data Recovery Wizard\DRWUI.exe
FirewallRules: [TCP Query User{A840649E-9985-4327-93A6-F32A6C46CAC4}D:\games\sniper elite 4 dedicated server\bin\sniperelite4_dedicated.exe] => (Allow) D:\games\sniper elite 4 dedicated server\bin\sniperelite4_dedicated.exe
FirewallRules: [UDP Query User{27691143-4F72-4BA8-92CA-A391FF080D10}D:\games\sniper elite 4 dedicated server\bin\sniperelite4_dedicated.exe] => (Allow) D:\games\sniper elite 4 dedicated server\bin\sniperelite4_dedicated.exe
FirewallRules: [TCP Query User{9E7B37E2-5907-47D7-BC9B-1E8E0CB3377F}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{46105C73-2A3C-4E9F-B141-83D3014BA779}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{4D6A3F09-FD37-4AC7-B68E-2A2883EE10DA}] => (Block) %ProgramFiles%\Futuremark\3DMark\UpdaterUi.exe
FirewallRules: [{6B76DA5A-517C-4857-B7B7-B8D7C4520EE3}] => (Block) %ProgramFiles%\Futuremark\3DMark\UpdaterUi.exe
FirewallRules: [{468B874D-15D6-4A6D-AE31-1AB5952E8AA4}] => (Block) %ProgramFiles%\Futuremark\3DMark\3DMark.exe
FirewallRules: [{B4ADBB86-11BF-4AE5-A57D-D2B601AD0288}] => (Block) %ProgramFiles% (x86)\MediaMonkey\DBUpgrade.exe
FirewallRules: [{1E08EAB0-BCFC-4F83-BA91-EED7FC1CB2C6}] => (Block) %ProgramFiles% (x86)\MediaMonkey\MediaMonkey.exe
FirewallRules: [{D2C34987-4EC9-467C-B933-94A1B255131D}] => (Block) %ProgramFiles% (x86)\MediaMonkey\MediaMonkeyCOM.exe
FirewallRules: [{14A3E52F-B8EB-40AD-BF75-03D31F4EB777}] => (Block) %ProgramFiles% (x86)\MediaMonkey\MediaMonkeyCOM.exe
FirewallRules: [{1242DDFB-9D8B-431C-924F-AFDA1853D8E5}] => (Block) %ProgramFiles%\CCleaner\CCleaner64.exe
FirewallRules: [{32C869B5-275A-49F2-99BB-0B77B7765C19}] => (Block) %ProgramFiles%\CCleaner\CCleaner.exe
FirewallRules: [TCP Query User{8E21EB0F-0F11-4B39-9265-37C96D597769}C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe] => (Allow) C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe
FirewallRules: [UDP Query User{8923CC4E-C1AD-4FC9-9C66-200982410D80}C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe] => (Allow) C:\users\dennis\program files (x86)\bittorrent_dna\dna.exe
FirewallRules: [{3D019CAD-0452-4AD5-B08F-C94FB2BF2F80}] => (Allow) LPort=1688
FirewallRules: [{2368BDD5-B01D-4CA7-86F7-FEE97A8A8FEA}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{5351BD9D-32CE-4AA3-AADB-1BEA99D3D310}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{95769E9F-0DD5-4F9E-89D6-7810ADEAE09C}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{730B084C-435A-4D23-BB99-FEFE0F852AB1}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{CBBD886F-19D1-4329-8391-50C046A98B85}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{3D5F36E5-70DD-4BAF-8B77-C764E43BD015}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{0E7B65E9-DD96-4D41-9C27-52D9D6BF8A96}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{9DF1639B-EB36-45B1-BB4A-518A656D7088}] => (Allow) C:\Users\Dennis\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E7071EA6-7CBE-4A4D-9BE2-163DD0BF0EEB}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
FirewallRules: [{28D74C75-A774-4203-82BE-6ECE115B4225}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
FirewallRules: [{E1CF3751-1F0E-477B-A84C-D25DEDAC5E69}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\DirectDisplayConfig.exe
FirewallRules: [{DBC71646-E4DC-4E05-826A-C24D05F32769}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\DirectDisplayConfig.exe
FirewallRules: [{444238CF-7980-482B-A91B-714885467112}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
FirewallRules: [{7AE1E324-C203-4709-BCE4-93B861A04B1A}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
FirewallRules: [{CB3746A3-1A82-4600-8A81-5FCB9463B839}] => (Allow) C:\Program Files\Oculus\Support\oculus-home\OculusVR.exe
FirewallRules: [{269CAE4F-36E3-46C6-870C-8E25EB27C07A}] => (Allow) C:\Program Files\Oculus\Support\oculus-home\OculusVR.exe
FirewallRules: [{40D7866D-EC2F-4EA2-A2E8-098C1472EFAD}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe
FirewallRules: [{D6A952AD-D4F8-4B7A-AFEA-BD57C062FB2B}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe
FirewallRules: [{3A9FE26D-B4BB-459C-9609-65EC69B8FEAF}] => (Allow) C:\Games\Oculus\Software\oculus-dead-and-buried\DeadAndBuried\DeadAndBuried.exe
FirewallRules: [{1141FD2F-44D7-4E66-98E0-6164BC39AC42}] => (Allow) C:\Games\Oculus\Software\oculus-dead-and-buried\DeadAndBuried\DeadAndBuried.exe
FirewallRules: [{FBE32387-9A39-4AD8-97FC-7D907077897C}] => (Allow) C:\Games\Oculus\Software\ccp-games-newcastle-eve-valkyrie\Image\UE4PrereqSetup_x64.exe
FirewallRules: [{45B5EC7C-AF33-49EB-88DC-F9D10F510F86}] => (Allow) C:\Games\Oculus\Software\ccp-games-newcastle-eve-valkyrie\Image\UE4PrereqSetup_x64.exe
FirewallRules: [{BCA0E7E4-F925-4BFD-8B17-B8ABCB2F7123}] => (Allow) C:\Games\Oculus\Software\ccp-games-newcastle-eve-valkyrie\Image\WindowsNoEditor\VkGame\Binaries\Win64\EVE-Valkyrie.exe
FirewallRules: [{90C96C33-B67B-4FF3-87A5-55267B64CC21}] => (Allow) C:\Games\Oculus\Software\ccp-games-newcastle-eve-valkyrie\Image\WindowsNoEditor\VkGame\Binaries\Win64\EVE-Valkyrie.exe
FirewallRules: [TCP Query User{CF9EC92A-A8C6-4436-AB26-A5E43D59C372}C:\users\dennis\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\dennis\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [UDP Query User{D0428225-653B-4504-B9BA-3100453337B2}C:\users\dennis\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\dennis\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [{1637D72F-058D-4F1C-8CE1-87DF4F171987}] => (Block) D:\Games\Obduction\Obduction.exe
FirewallRules: [{3637EFB0-ED79-4B51-9509-0C0897BB6596}] => (Block) D:\Games\Obduction\Obduction\Binaries\Win64\Obduction-Win64-Shipping.exe
FirewallRules: [TCP Query User{23920478-62CA-4081-A2C0-B17390818583}C:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) C:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe
FirewallRules: [UDP Query User{30CD05BA-BE33-44D6-8153-EFE7D52D5EBC}C:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) C:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe
FirewallRules: [{19CF08B7-B2D1-43EC-95B5-DD9811B45486}] => (Block) D:\Games\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{39A12DE6-7AF3-435E-AA41-0D3C323FE0AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe
FirewallRules: [{8F9EC8BF-7FB7-4855-9307-8DEC0A0B0A5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe
FirewallRules: [{2F8B1969-F215-4322-91B7-3BC369230E17}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steam360VideoPlayer\Steam360VideoPlayer.exe
FirewallRules: [{384B0C55-26A7-4437-96FA-040E85433EF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steam360VideoPlayer\Steam360VideoPlayer.exe
FirewallRules: [{67FFC89C-21A1-416C-901B-D1C67C7E69B5}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\Xilisoft Video Converter Ultimate Update.exe
FirewallRules: [{B65F1D98-D8DE-4855-B1C3-86D15BBD09D2}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\vc.exe
FirewallRules: [{1E4B79ED-75F7-474A-867C-90DB1A4A2075}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\vc_buy.exe
FirewallRules: [{F1FB5563-687B-4BC6-89ED-9729B33DC38C}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\vcloader.exe
FirewallRules: [{D0A6255D-525A-407C-BEC8-9EBF7A1B06E0}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\VideoConverterUltimate.exe
FirewallRules: [{C0CF34D2-E875-45C9-8CE0-94B1DBD44D62}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\DownLoader.exe
FirewallRules: [{03A01D6C-4BA1-4DA8-B16D-EDF47A711D73}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\BsSndRpt.exe
FirewallRules: [{39130240-8FD9-4C53-ABAA-C480740B8B5F}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\MediaLibServer.exe
FirewallRules: [{89CB83C7-DE41-4218-9BFE-86F2278086C1}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\OnlineDemand.exe
FirewallRules: [{05CC8E1E-8F1C-421D-9BC8-93F307CEF9DE}] => (Block) %ProgramFiles% (x86)\Wondershare\Video Converter Ultimate\WAFSetup.exe
FirewallRules: [TCP Query User{AE914ED4-898C-4E97-A2AE-C264F486279B}C:\users\dennis\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\dennis\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [UDP Query User{3B6FB3A2-9E0F-433F-9C11-8A6261759DAB}C:\users\dennis\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\dennis\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [{29E63437-4AE0-4103-9EB4-9B42298E9468}] => (Block) %ProgramFiles% (x86)\Xilisoft\Video Converter Ultimate\imminfo.exe
FirewallRules: [{56259B76-06B5-4E1E-BB3E-A34B695C5F45}] => (Block) %ProgramFiles% (x86)\Wondershare\WAF\2.4.2.223\WsUpdInstaller.exe
FirewallRules: [{CB02D3E6-4DA2-4415-9E19-8B3D036CE5E9}] => (Block) %ProgramFiles% (x86)\Wondershare\WAF\2.4.2.223\WsUpdInstaller.exe
FirewallRules: [{889AAD89-D74C-44E1-898C-2581E7779557}] => (Block) %ProgramFiles% (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe
FirewallRules: [{A25E9653-E32A-4DF5-9CDD-DB2062C727E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe
FirewallRules: [{086F5C06-39C2-4D58-9ED7-B5D891DA043B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe
FirewallRules: [{59AB2633-94C7-44AA-A534-6E8DB0FAD4E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe
FirewallRules: [{E4B4300D-BF76-4DBA-8DFC-00278F888E51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe
FirewallRules: [{E3F26B4E-185B-4D7D-BA6C-B8FD5965713B}] => (Allow) C:\Games\Oculus\Software\playful-luckys-tale\LT.exe
FirewallRules: [{149BE5EE-1C43-4CB4-B92C-F8A4AD4062BF}] => (Allow) C:\Games\Oculus\Software\playful-luckys-tale\LT.exe
FirewallRules: [{9B534716-3D87-4F6C-A001-050C2C6A5F14}] => (Allow) C:\Games\Oculus\Software\oculus-oculus-medium-retail\bin\OculusMedium.exe
FirewallRules: [{BBC1031B-0DBD-4D3D-9CE7-66B42822107F}] => (Allow) C:\Games\Oculus\Software\oculus-oculus-medium-retail\bin\OculusMedium.exe
FirewallRules: [{F8070691-E38C-4664-B9E1-E4C637971809}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen.exe
FirewallRules: [{C9A64A6B-93CC-4F3E-AEA8-E04151ACB333}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen.exe
FirewallRules: [{5AAC0147-353D-46AD-8189-8A9C2A593620}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\chromedriver.exe
FirewallRules: [{4BCCCDC9-6D88-4B70-B3DE-53E04BA54BC1}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\chromedriver.exe
FirewallRules: [{9DBFDCE6-3442-43F8-AD77-208673F7E700}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\payload.exe
FirewallRules: [{CAEFE46B-098A-4B58-B787-4913F1E57235}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\payload.exe
FirewallRules: [{53B23FD8-3EE7-45DC-824C-C4A2DF062B27}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\nwjc.exe
FirewallRules: [{F1AFABD6-53ED-4F5D-85FE-567E21EB9947}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\nwjc.exe
FirewallRules: [{1018CA62-5C04-44C2-AB55-F14FFBBC07A3}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\BigScreen.exe
FirewallRules: [{0E26B1D1-1D28-4C06-A4B5-7CDC8F17857F}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\Helper\win64\BigScreen.exe
FirewallRules: [{F496069F-32A7-4A16-AC87-E2C5417D096D}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\CoherentUI_Host\windows\CoherentUI_Host.exe
FirewallRules: [{CA1F46CC-8837-4CDD-B533-639FBA2FA826}] => (Allow) C:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\CoherentUI_Host\windows\CoherentUI_Host.exe
FirewallRules: [{0333FCDC-2155-4485-BC65-E6250E553FBC}] => (Allow) C:\Games\Oculus\Software\ready-at-dawn-r14-multiplayer\bin\win7\BsSndRpt64.exe
FirewallRules: [{A2806E5C-FE90-4B68-A3D7-855150AACC55}] => (Allow) C:\Games\Oculus\Software\ready-at-dawn-r14-multiplayer\bin\win7\BsSndRpt64.exe
FirewallRules: [{BF93122F-CD25-4AAE-9DDE-384ACAC0974C}] => (Allow) C:\Games\Oculus\Software\ready-at-dawn-r14-multiplayer\bin\win7\EchoArena.exe
FirewallRules: [{24B8264F-FC19-4F60-8DB4-91048CA2BAB6}] => (Allow) C:\Games\Oculus\Software\ready-at-dawn-r14-multiplayer\bin\win7\EchoArena.exe
FirewallRules: [{7CE8D557-2720-48B5-B051-AC7FEFEF89BF}] => (Block) D:\Games\Titanfall 2\Titanfall2.exe
FirewallRules: [TCP Query User{0271BBB4-EC6D-486E-8912-CB068D7D2DCB}E:\programs\office\office16\lync.exe] => (Allow) E:\programs\office\office16\lync.exe
FirewallRules: [UDP Query User{4DAEAFB4-2625-41E7-8C03-B80C59A65154}E:\programs\office\office16\lync.exe] => (Allow) E:\programs\office\office16\lync.exe
FirewallRules: [{9E87A772-691A-4F90-8C28-1FB471A3ACAA}] => (Allow) E:\SteamLibrary\steamapps\common\The Lab\TheLab\win64\TheLab.exe
FirewallRules: [{663C0B0C-DE37-43A5-878F-8A4882E08921}] => (Allow) E:\SteamLibrary\steamapps\common\The Lab\TheLab\win64\TheLab.exe
FirewallRules: [{8034A2F3-1FC8-4155-86C8-8E871E3EE942}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\File Transfer Server.exe
FirewallRules: [{56CD921A-F6F3-449F-B275-9E10F9CCE707}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\File Transfer Server.exe
FirewallRules: [{AB2A3550-E5DD-4367-B058-34AC0560D681}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\ASUSDMS.exe
FirewallRules: [{191294C9-2B3C-43EF-9C1E-80108D057E14}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\ASUSDMS.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\BitTorrent\bittorrent.exe] => Enabled:BitTorrent
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\TriDef\TriDef\TriDefMediaPlayer\TriDefMediaPlayer.exe] => Enabled:TriDef 3D Media Player
==================== Restore Points =========================
15-07-2017 15:59:24 Installed Microsoft Solution - B4164D8C-3813-495A-BBBC-BA51D122A226
17-07-2017 04:48:04 Windows Software Development Kit - Windows 10.0.14393.33
18-07-2017 01:09:13 Restore Operation
Check "winmgmt" service or repair WMI.

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================
Application errors:
==================
Error: (07/27/2017 01:48:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mod_frst.exe, version: 3.3.14.2, time stamp: 0x596cf41e
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x4020
Faulting application start time: 0x01d3069bf3d6cc09
Faulting application path: C:\WINDOWS\mod_frst.exe
Faulting module path: unknown
Report Id: e8f9be2b-e522-429d-8d98-2cb137636c7a
Faulting package full name:
Faulting package-relative application ID:
Error: (07/27/2017 01:44:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: tweaking.com_windows_repair_aio_setup.exe, version: 4.0.0.0, time stamp: 0x54d92d2c
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x4784
Faulting application start time: 0x01d3069b6254ef5e
Faulting application path: E:\Dennis\desktop\tweaking.com_windows_repair_aio_setup.exe
Faulting module path: unknown
Report Id: c92117a4-bb37-419b-a1e0-79694c625fcb
Faulting package full name:
Faulting package-relative application ID:
Error: (07/27/2017 01:43:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: nvcontainer.exe, version: 1.5.2208.6100, time stamp: 0x590db430
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x3fd0
Faulting application start time: 0x01d3069b5795ab0c
Faulting application path: C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
Faulting module path: unknown
Report Id: 77130072-8b9f-4bf1-9eb8-8814880a905f
Faulting package full name:
Faulting package-relative application ID:
Error: (07/27/2017 01:43:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: nvcontainer.exe, version: 1.5.2208.6100, time stamp: 0x590db430
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x1d98
Faulting application start time: 0x01d3069b57933a09
Faulting application path: C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
Faulting module path: unknown
Report Id: 0e089533-2fa4-46c7-a232-818c392098c8
Faulting package full name:
Faulting package-relative application ID:
Error: (07/27/2017 01:43:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: nvcontainer.exe, version: 1.5.2208.6100, time stamp: 0x590db430
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x481c
Faulting application start time: 0x01d3069b55d97ace
Faulting application path: C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
Faulting module path: unknown
Report Id: 6be0ed49-ac01-434b-8d33-0f4a49774834
Faulting package full name:
Faulting package-relative application ID:
Error: (07/27/2017 01:43:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: nvcontainer.exe, version: 1.5.2208.6100, time stamp: 0x590db430
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x10f4
Faulting application start time: 0x01d3069b55dc6859
Faulting application path: C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
Faulting module path: unknown
Report Id: 8be3c686-ca6b-46f4-b538-a1764e29d000
Faulting package full name:
Faulting package-relative application ID:
Error: (07/27/2017 01:43:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OVRLibrarian.exe, version: 1.16.0.0, time stamp: 0x594c6302
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x73e35ae0
Faulting process id: 0x3224
Faulting application start time: 0x01d3069b4e182397
Faulting application path: C:\Program Files\Oculus\Support\oculus-librarian\OVRLibrarian.exe
Faulting module path: unknown
Report Id: e8b895a0-2ce7-4095-a73f-c38ee00fa7d4
Faulting package full name:
Faulting package-relative application ID:
Error: (07/27/2017 01:43:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: nvcontainer.exe, version: 1.5.2208.6100, time stamp: 0x590db430
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x268c
Faulting application start time: 0x01d3069b4bd78ac7
Faulting application path: C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
Faulting module path: unknown
Report Id: c7012095-91b7-4941-b7e1-e82aacd898cb
Faulting package full name:
Faulting package-relative application ID:
Error: (07/27/2017 01:43:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: nvcontainer.exe, version: 1.5.2208.6100, time stamp: 0x590db430
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x4580
Faulting application start time: 0x01d3069b4bd56650
Faulting application path: C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
Faulting module path: unknown
Report Id: fce15a42-b97a-4c8b-9e57-d3ae2c0ae33f
Faulting package full name:
Faulting package-relative application ID:
Error: (07/27/2017 01:43:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: nvcontainer.exe, version: 1.5.2208.6100, time stamp: 0x590db430
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00092fce
Faulting process id: 0x38e4
Faulting application start time: 0x01d3069b497d0f6e
Faulting application path: C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
Faulting module path: unknown
Report Id: c8e1c516-9ea4-4c80-a701-b98840cec7ab
Faulting package full name:
Faulting package-relative application ID:

System errors:
=============
Error: (07/27/2017 01:48:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/27/2017 01:45:44 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WSearch service.
Error: (07/27/2017 01:44:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/27/2017 01:43:59 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/27/2017 01:43:59 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/27/2017 01:43:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/27/2017 01:43:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/27/2017 01:43:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/27/2017 01:43:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error:
A privilege that the service requires to function properly does not exist in the service account configuration.
You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.
Error: (07/27/2017 01:43:55 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

==================== Memory info ===========================
Processor: Intel® Core™ i7-7700K CPU @ 4.20GHz
Percentage of memory in use: 52%
Total physical RAM: 16314.49 MB
Available physical RAM: 7817.7 MB
Total Virtual: 20666.49 MB
Available Virtual: 10829.36 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:476.45 GB) (Free:68.95 GB) NTFS
Drive d: (Media) (Fixed) (Total:1863.01 GB) (Free:774.98 GB) NTFS
Drive e: (Data) (Fixed) (Total:1863.02 GB) (Free:14.82 GB) NTFS
Drive k: () (Removable) (Total:3.74 GB) (Free:3.74 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 476.9 GB) (Disk ID: 6965F02C)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=476.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 751742EF)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 475B07E4)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (Size: 3.8 GB) (Disk ID: 0033862F)
Partition 1: (Active) - (Size=3.7 GB) - (Type=0C)
==================== End of Addition.txt ============================


#7 Opmpro

Opmpro
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:54 PM

Posted 27 July 2017 - 01:01 AM

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-07-2017
Ran by Dennis (administrator) on SLI-KILLER (27-07-2017 01:47:13)
Running from K:\
Loaded Profiles: Dennis & Non-Admin (Available Profiles: Dennis & jalbe & Non-Admin & OVRLibraryService)
Platform: Windows 10 Pro Version 1703 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.31\aaHMSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\AURA\AsRogAuraService.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe
(Avid Technology, Inc.) C:\Program Files\Avid\Pro Tools\MMERefresh.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\avp.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Oculus VR) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(DDD Group Plc.) C:\Program Files (x86)\TriDef\SmartCam\TriDefSmartCamService64.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2guard.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\WDAppManager.exe
(Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2start.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\avpui.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2guard.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\WDAppManager.exe
(Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2start.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Oculus VR) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\avp.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-25] (Logitech, Inc.)
HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools\MMERefresh.exe [84992 2015-11-19] (Avid Technology, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9183232 2017-07-01] (Realtek Semiconductor)
HKLM\...\Run: [Sonic Studio 3] => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3svc32.exe [1210368 2016-12-15] (ASUSTeK COMPUTER INC.)
HKLM\...\Run: [emsisoft anti-malware] => c:\program files\emsisoft anti-malware\a2guard.exe [8699768 2017-06-29] (Emsisoft Ltd)
HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [21384 2016-04-15] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-02-12] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2017-04-13] (Razer Inc.)
HKLM-x32\...\Run: [ASUS WiFi GO! FileTransfer Execute] => C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\WiFile\WiFileTransfer.exe [1391408 2016-06-30] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [555832 2014-03-05] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [Corsair Utility Engine] => C:\Program Files (x86)\Corsair\Corsair Utility Engine\CUE.exe [18299088 2017-05-26] (Corsair Components, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM-x32\...\Run: [Smart File Advisor] => C:\Program Files (x86)\Smart File Advisor\sfa.exe [280824 2011-04-04] (Filefacts.net)
HKLM-x32\...\Run: [RamCache II ] => C:\Program Files (x86)\RamCache II\RamCache.exe [4351080 2017-07-04] (ASUSTeKcomputer Inc)
HKLM-x32\...\Run: [OTB] => C:\Program Files (x86)\OTB\OTB.exe [544768 2007-08-15] ()
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [HP Officejet 6700 (NET)] => C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [NETGEARGenie] => C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [611584 2016-03-09] (NETGEAR Inc.)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [CorsairLink4] => E:\installed_programs\link4\CorsairLink4.exe [26998992 2017-06-23] (Corsair Components, Inc.)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [BitTorrent DNA] => C:\Users\Dennis\Program Files (x86)\BitTorrent_DNA\dna.exe [286016 2017-05-28] ()
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3062560 2017-07-17] (Valve Corporation)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9803992 2017-06-13] (Piriform Ltd)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [Amazon Music] => C:\Users\Dennis\AppData\Local\Amazon Music\Amazon Music Helper.exe [3700200 2017-06-27] (Amazon Services LLC)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [Lync] => E:\Programs\office\Office16\lync.exe [26885832 2016-05-27] (Microsoft Corporation)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [148992 2017-03-18] (Microsoft Corporation)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\Run: [CorsairLink4] => E:\installed_programs\link4\CorsairLink4.exe [26998992 2017-06-23] (Corsair Components, Inc.)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\Run: [GoogleChromeAutoLaunch_67615CBF69F5CF1B8D8C0A3F25417792] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\Run: [Amazon Drive] => C:\Users\Non-Admin\AppData\Local\Amazon Drive\AmazonDrive.exe [4879024 2017-06-20] (Amazon.com Inc.)
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\MountPoints2: {71e23907-4291-11e7-86c0-9e0a0bebe3ec} - "H:\WD SmartWare.exe" autoplay=true
GroupPolicyScripts: Restriction <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76 75.75.76.76
Tcpip\..\Interfaces\{a02d2d31-dd8a-4d49-b34f-54c6b3d28041}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b8df9f69-85f7-4ec7-8e98-b04574ec7f4f}: [DhcpNameServer] 75.75.75.75 75.75.76.76 75.75.76.76
Internet Explorer:
==================
BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\IEExt\ie_plugin.dll [2017-07-14] (AO Kaspersky Lab)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> E:\Programs\office\Office16\OCHelper.dll [2016-05-27] (Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-25] (Logitech, Inc.)
BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\IEExt\ie_plugin.dll [2017-07-14] (AO Kaspersky Lab)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-07-04] (Oracle Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-25] (Logitech, Inc.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-07-04] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\IEExt\ie_plugin.dll [2017-07-14] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\IEExt\ie_plugin.dll [2017-07-14] (AO Kaspersky Lab)
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2016-01-04] (Belarc, Inc.)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - E:\Programs\office\Office16\MSOSB.DLL [2016-05-20] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-05-20] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - E:\Programs\office\Office16\MSOSB.DLL [2016-05-20] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-05-20] (Microsoft Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2017-05-30] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\FFExt\light_plugin_firefox\addon.xpi [2017-07-14]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> E:\Programs\office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @bittorrent.com/BitTorrentDNA -> C:\Program Files (x86)\BitTorrent_DNA\npbtdna.dll [2017-05-26] (BitTorrent, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2017-05-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-07-04] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-05-27] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-06-27] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-06-27] (NVIDIA Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-05-27] (Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default [2017-07-17]
CHR Extension: (Google Translate) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-05-04]
CHR Extension: (Google Slides) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-04]
CHR Extension: (Google Docs) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-04]
CHR Extension: (Google Drive) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-04]
CHR Extension: (Republic For Chrome ROG Edition) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\baddhngpffecbmlmdpnfldobhaaaifde [2017-07-17]
CHR Extension: (Turn Off the Lights) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2017-07-10]
CHR Extension: (Ummy Video Downloader) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhhelmhcogammbbifmgccfmcphkgleke [2017-05-08]
CHR Extension: (YouTube) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-04]
CHR Extension: (Flickr Right Click) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgkdecjiajillolhbegcmmbphniicmjl [2017-05-04]
CHR Extension: (MyBeatz.org - Online Video Converter) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgknieepabgfdjmodnibneolhikkpihn [2017-05-08]
CHR Extension: (Image Downloader) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2017-05-08]
CHR Extension: (Search by Image (by Google)) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2017-05-04]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2017-05-04]
CHR Extension: (gMusic) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\dodjcoaheahmkpebgeofiajipaiplecc [2017-07-10]
CHR Extension: (One-click Downloader) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\efjodfcplkcccafghgnbnpgedgakohog [2017-05-08]
CHR Extension: (Video Downloader professional) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2017-05-04]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2017-05-04]
CHR Extension: (Picture Downloader Professional) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\eodejnpnekkneapkicljnillpeodnlak [2017-05-04]
CHR Extension: (Google Play Music) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2017-07-13]
CHR Extension: (Google Sheets) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-04]
CHR Extension: (Highlight to Search) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\floipahigmmkfhkoapmnijnlnboniglg [2017-05-04]
CHR Extension: (Bulk Download Images(ZIG)) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfjhimhkjmipphnaminnnnjpnlneeplk [2017-07-10]
CHR Extension: (Google Docs Offline) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-04]
CHR Extension: (AdBlock) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-07-10]
CHR Extension: (Save to Google Drive) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2017-05-04]
CHR Extension: (Avast Online Security) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-07-10]
CHR Extension: (Google Photos) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcglmfcclpfgljeaiahehebeoaiicbko [2017-05-04]
CHR Extension: (Oogle) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnldbiikfjheppkbnjbnkgimnfejifpf [2017-05-04]
CHR Extension: (Badge) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\hobgfokkfmmdehpedkjgkhjcnejfoodf [2017-05-04]
CHR Extension: (Google Play Music) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2017-05-04]
CHR Extension: (Google Hangouts) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2017-05-04]
CHR Extension: (Audio EQ) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfafdlnjaliaghpjdajmlcnnblkgcefh [2017-07-10]
CHR Extension: (Kaspersky Protection) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpeeaghdjmhlakojjcgfdhgcejdaefmi [2017-07-14]
CHR Extension: (Google Hangouts) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2017-05-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-04]
CHR Extension: (Hover Zoom) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2017-05-04]
CHR Extension: (Speedtest by Ookla) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2017-07-10]
CHR Extension: (Gmail) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-04]
CHR Extension: (Chrome Media Router) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-13]
CHR Profile: C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-07-14]
CHR Extension: (Google Slides) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-13]
CHR Extension: (Google Music Equalizer) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aggkolaaidiocgnfhponnmdmhkamogmb [2017-07-13]
CHR Extension: (Google Docs) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-13]
CHR Extension: (Google Drive) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-13]
CHR Extension: (YouTube) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-13]
CHR Extension: (Search by Image (by Google)) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2017-05-13]
CHR Extension: (Infinity New Tab) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dbfmnekepjoapopniengjbcpnbljalfg [2017-07-04]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2017-05-30]
CHR Extension: (Google Sheets) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-13]
CHR Extension: (Google Docs Offline) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-14]
CHR Extension: (Save to Google Drive) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2017-05-13]
CHR Extension: (Google Voice (by Google)) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kcnhkahnjcbndmmehfkdnkjomaanaooo [2017-05-13]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2017-05-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-13]
CHR Extension: (Amazon Assistant for Chrome) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2017-07-09]
CHR Extension: (Gmail) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-13]
CHR Extension: (Chrome Media Router) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-12]
CHR Extension: (Equalizer) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pnbbfmfcemmgekginckbkcndkdiiancm [2017-07-13]
CHR Profile: C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\System Profile [2017-07-10]
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [8845224 2017-06-29] (Emsisoft Ltd)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe [411456 2017-06-25] (ASUSTeK Computer Inc.)
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.31\aaHMSvc.exe [975832 2017-01-25] (ASUSTeK Computer Inc.)
R2 AsRogAuraService; C:\Program Files (x86)\ASUS\AURA\AsRogAuraService.exe [1162200 2017-06-12] (ASUSTek Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2016-07-27] () [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe [2394072 2016-09-20] (ASUSTeK Computer Inc.)
R2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab)
S3 CLink4Service; E:\installed_programs\link4\CorsairLink4.Service.exe [32464 2017-06-23] (Corsair Components, Inc.)
R2 DigiRefresh; C:\Program Files\Avid\Pro Tools\MMERefresh.exe [84992 2015-11-19] (Avid Technology, Inc.) [File not signed]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [190464 2015-11-19] (Avid Technology, Inc.) [File not signed]
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [395024 2016-12-27] (EasyAntiCheat Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2017-03-09] (Futuremark)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel® Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2016-07-28] (Microsoft Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [177440 2016-09-14] (Intel Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus for ASUS 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 Media Center 22 Service; C:\Program Files (x86)\J River\Media Center 22\JRService.exe [402120 2017-05-17] (JRiver, Inc.)
S3 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [232192 2016-03-09] (NETGEAR)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-27] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-06-21] (NVIDIA Corporation)
S3 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [135464 2017-06-23] (Oculus VR, LLC)
R2 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [475600 2017-06-23] (Oculus VR)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [401024 2017-07-02] (Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [179840 2017-06-20] (Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [147792 2017-06-15] (Razer Inc)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-24] ()
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [183680 2017-04-13] (Razer Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [252176 2017-06-21] (Razer Inc.)
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-11-03] (Razer Inc)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-18] (Microsoft Corporation)
S3 SophosVirusRemovalTool; C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe [163680 2017-06-15] (Sophos Limited)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [139264 2016-07-27] (Microsoft Corporation) [File not signed]
R2 TriDefSmartCamService; c:\program files (x86)\tridef\smartcam\tridefsmartcamservice64.exe [12779488 2017-07-12] (DDD Group Plc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [302968 2015-02-12] (Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [472800 2017-03-21] (Wondershare)
S2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe [18232 2016-10-04] (Intel® Corporation)
S2 Crypkey License; crypserv.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R2 ASInsHelp; C:\WINDOWS\SysWow64\drivers\AsInsHelp64.sys [11832 2016-06-30] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-08] ()
R2 AsRamDisk; C:\WINDOWS\system32\DRIVERS\asramdisk.sys [111416 2014-05-07] (Asus)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
S3 AWEAlloc; C:\WINDOWS\system32\DRIVERS\awealloc.sys [21304 2014-02-17] (Olof Lagerkvist)
R0 cm_km; C:\WINDOWS\System32\drivers\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45016 2017-05-16] (Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21976 2017-05-16] (Corsair)
S3 cpuz143; C:\Users\Dennis\AppData\Local\Temp\cpuz143_x64.sys [48960 2017-07-17] (CPUID) <==== ATTENTION
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dtproscsibus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [30352 2017-05-04] (Disc Soft Ltd)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [543184 2016-07-26] (Intel Corporation)
R1 epp; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys [124552 2016-11-23] (Emsisoft Ltd)
S1 FNetDevi; C:\Program Files (x86)\OTB\FNetDevi.sys [19572 2007-02-28] (FNet Co., Ltd.) [File not signed]
R0 FNETHYRAMAS; C:\WINDOWS\System32\drivers\FNETHYRAMAS.SYS [53848 2017-07-04] (FNet Co., Ltd.)
R1 FNETURPX; C:\WINDOWS\System32\drivers\FNETURPX.SYS [16648 2017-07-04] (FNet Co., Ltd.)
S3 GLCKIO; C:\Program Files (x86)\ASUS\AURA\690b33e1-0462-4e84-9bea-c7552b45432a.sys [14976 2017-07-13] ()
S3 GPUIO; C:\Program Files (x86)\ASUS\GPU TweakII\690b33e1-0462-4e84-9bea-c7552b45432a.sys [27120 2017-07-14] ()
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2017-05-17] (Highresolution Enterprises [www.highrez.co.uk])
R2 iocbios2; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37064 2016-08-24] (Intel Corporation)
S3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-05-08] (ASUSTeK Computer Inc.)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [79752 2015-12-01] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78200 2015-12-02] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [186352 2017-07-14] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [244720 2017-04-26] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1001968 2017-07-14] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [51288 2016-07-28] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [87984 2017-07-14] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [116448 2017-07-14] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [194440 2015-12-03] (AO Kaspersky Lab)
S3 LcUvcUpper; C:\WINDOWS\system32\DRIVERS\LcUvcUpper.sys [37912 2015-09-21] (Microsoft Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253856 2017-07-27] (Malwarebytes)
S3 mt7612US; C:\WINDOWS\System32\drivers\mt7612US.sys [377864 2015-12-09] (MediaTek Inc.)
R1 NetworkX; C:\WINDOWS\system32\ckldrv.sys [28664 2008-03-17] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2386fda73b467ac8\nvlddmkm.sys [15625336 2017-06-28] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-06-21] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-06-09] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-06-27] (NVIDIA Corporation)
S3 OCULUSVRHEADSET; C:\WINDOWS\system32\DRIVERS\OCULUS119B.sys [1887232 2017-04-07] (OCULUS)
R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32024 2017-04-07] (Benjamin Höglinger-Stelzer)
S3 OCUSBVID; C:\WINDOWS\System32\drivers\ocusbvid111.sys [69176 2016-08-26] (Oculus VR, LLC)
R3 Qcamain10x64; C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2344448 2017-03-18] (Qualcomm Atheros, Inc.)
S3 rzbtendpt; C:\WINDOWS\System32\drivers\rzbtendpt.sys [51912 2015-08-13] (Razer Inc)
S3 rzdaendpt; C:\WINDOWS\System32\drivers\rzdaendpt.sys [43720 2015-08-13] (Razer Inc)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [52240 2016-10-30] (Razer Inc)
S3 rzhnet; C:\WINDOWS\System32\Drivers\rzhnet.sys [29912 2015-08-13] (Razer Inc)
R3 rzjstk; C:\WINDOWS\System32\drivers\rzjstk.sys [36376 2016-10-30] (Razer Inc)
R3 rzkeypadendpt; C:\WINDOWS\System32\drivers\rzkeypadendpt.sys [45592 2016-10-30] (Razer Inc)
R3 rzmpos; C:\WINDOWS\System32\drivers\rzmpos.sys [48144 2016-10-30] (Razer Inc)
S3 rzp1endpt; C:\WINDOWS\System32\drivers\rzp1endpt.sys [52424 2015-08-13] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-16] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-10-08] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows ® Win 7 DDK provider)
S3 rzvkeyboard; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [44232 2015-08-13] (Razer Inc)
S3 rzvmouse; C:\WINDOWS\System32\drivers\rzvmouse.sys [42712 2015-08-13] (Razer Inc)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
U5 SynTP; C:\Windows\System32\Drivers\SynTP.sys [615632 2015-08-13] (Synaptics Incorporated)
R3 TriDefSmartCam; C:\WINDOWS\system32\DRIVERS\TriDefSmartCam.sys [48304 2017-02-20] (DDD Group Plc.)
R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [51104 2016-08-02] (USBPcap)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-07-27 01:45 - 2017-07-27 01:45 - 00001175 _____ C:\Users\Non-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware Guard.lnk
2017-07-27 01:43 - 2017-07-27 00:53 - 38029976 _____ (Tweaking.com) C:\tweaking.com_windows_repair_aio_setup.exe
2017-07-23 04:05 - 2017-07-23 04:05 - 1406544407 _____ C:\WINDOWS\MEMORY.DMP
2017-07-23 04:05 - 2017-07-23 04:05 - 03169044 _____ C:\WINDOWS\Minidump\072317-8171-01.dmp
2017-07-18 20:52 - 2017-07-18 20:52 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\CrashReportClient
2017-07-18 20:30 - 2017-07-18 20:30 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\RoboRecall
2017-07-18 20:08 - 2017-07-18 20:08 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\CCP Games
2017-07-18 20:07 - 2017-07-18 20:07 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\VkGame
2017-07-18 20:02 - 2017-07-18 20:02 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\TouchNUX
2017-07-18 19:49 - 2017-07-18 19:57 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\OculusClient
2017-07-18 19:49 - 2017-07-18 19:49 - 00000000 ____D C:\Users\Non-Admin\AppData\LocalLow\Oculus
2017-07-18 16:00 - 2017-07-27 01:44 - 00000000 ____D C:\WINDOWSTEMP
2017-07-18 16:00 - 2017-07-18 16:02 - 00000000 ____D C:\WINDOWSwindows
2017-07-18 02:05 - 2017-07-27 01:22 - 01195510 _____ C:\WINDOWS\ntbtlog.txt
2017-07-18 01:30 - 2017-07-18 01:30 - 00000000 ____D C:\WINDOWS\System32\Tasks\Event Viewer Tasks
2017-07-18 00:51 - 2017-07-27 01:43 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Oculus
2017-07-18 00:51 - 2017-07-18 20:02 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Oculus
2017-07-17 23:12 - 2017-07-17 23:12 - 00000000 ____D C:\ProgramData\dbg
2017-07-17 22:55 - 2017-07-17 22:55 - 00000000 ___HD C:\$Windows.~WS
2017-07-17 22:55 - 2017-07-17 22:55 - 00000000 ____D C:\$WINDOWS.~BT
2017-07-17 21:53 - 2017-07-17 21:53 - 00001819 _____ C:\WINDOWS\system32\DefaultLog.txt
2017-07-17 18:46 - 2017-07-17 22:37 - 00001175 _____ C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware Guard.lnk
2017-07-17 17:45 - 2017-07-27 01:45 - 00000000 ____D C:\Program Files\Emsisoft Anti-Malware
2017-07-17 17:45 - 2017-07-18 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2017-07-17 17:45 - 2017-07-18 01:22 - 00000000 ____D C:\ProgramData\Emsisoft
2017-07-17 17:45 - 2017-07-17 17:45 - 00000937 _____ C:\Users\Public\desktop\Emsisoft Anti-Malware.lnk
2017-07-17 17:34 - 2017-07-17 17:34 - 00001912 _____ C:\Users\Public\desktop\Malwarebytes.lnk
2017-07-17 16:50 - 2017-07-17 16:50 - 00000279 _____ C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recycle Bin.lnk
2017-07-17 16:29 - 2017-07-17 16:29 - 00000000 ____D C:\Users\Dennis\AppData\Local\Microsoft_Corporation
2017-07-17 16:04 - 2017-07-17 16:06 - 01149272 _____ C:\TDSSKiller.3.1.0.15_17.07.2017_16.04.59_log.txt
2017-07-17 16:02 - 2017-07-17 16:03 - 00007978 _____ C:\TDSSKiller.3.1.0.15_17.07.2017_16.02.51_log.txt
2017-07-17 15:54 - 2017-07-18 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2017-07-17 15:54 - 2017-07-17 15:54 - 00002775 _____ C:\Users\Public\desktop\Sophos Virus Removal Tool.lnk
2017-07-17 15:54 - 2017-07-17 15:54 - 00000000 ____D C:\ProgramData\Sophos
2017-07-17 15:54 - 2017-07-17 15:54 - 00000000 ____D C:\Program Files (x86)\Sophos
2017-07-17 15:35 - 2017-07-17 23:10 - 00000000 ____D C:\WINDOWS\Panther
2017-07-17 15:35 - 2017-07-17 16:32 - 00000000 ____D C:\NPE
2017-07-17 15:32 - 2017-07-18 01:22 - 00000000 ____D C:\ProgramData\Norton
2017-07-17 15:32 - 2017-07-17 15:46 - 00000000 ____D C:\Users\Dennis\AppData\Local\NPE
2017-07-17 13:47 - 2017-07-18 01:22 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\mIRC
2017-07-17 13:32 - 2017-07-17 13:32 - 00000000 ____D C:\Program Files (x86)\ipt browser
2017-07-17 08:58 - 2017-07-17 08:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-07-17 05:26 - 2017-07-17 05:26 - 00000000 ____D C:\SymCache
2017-07-17 05:25 - 2017-07-17 07:59 - 00000000 ____D C:\Users\Dennis\AppData\Local\Windows Performance Analyzer
2017-07-17 04:56 - 2017-07-17 04:56 - 00000000 ____D C:\ProgramData\WindowsPerformanceRecorder
2017-07-17 04:50 - 2017-07-17 04:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2017-07-17 04:49 - 2017-07-18 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2017-07-17 04:49 - 2017-07-18 01:22 - 00000000 ____D C:\Program Files\Application Verifier
2017-07-17 04:49 - 2017-07-18 01:22 - 00000000 ____D C:\Program Files (x86)\Application Verifier
2017-07-17 04:49 - 2017-07-17 04:50 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2017-07-17 04:49 - 2017-07-17 04:49 - 00000000 ____D C:\ProgramData\Windows App Certification Kit
2017-07-17 04:49 - 2017-07-17 04:49 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2017-07-17 03:57 - 2017-07-17 03:57 - 00000000 ____D C:\ProgramData\TriDef SmartCam
2017-07-17 03:43 - 2017-07-18 01:22 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-07-17 03:43 - 2017-07-17 03:43 - 00001323 _____ C:\Users\Public\desktop\CL-Eye Test.lnk
2017-07-17 03:43 - 2017-07-17 03:43 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2017-07-17 03:43 - 2017-07-17 03:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CL-Eye Driver
2017-07-17 03:43 - 2017-07-17 03:43 - 00000000 ____D C:\Program Files (x86)\Code Laboratories
2017-07-16 08:24 - 2017-07-16 08:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoEQ Plugin
2017-07-16 07:12 - 2017-07-16 07:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Titanfall 2
2017-07-16 05:18 - 2017-07-16 05:18 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\Little Star Media, Inc_
2017-07-16 05:13 - 2017-07-16 05:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2017-07-16 05:13 - 2017-07-16 05:13 - 00000000 ____D C:\Program Files (x86)\LAV Filters
2017-07-16 03:30 - 2017-07-16 03:30 - 00000000 ____D C:\Users\Dennis\AppData\Local\rad
2017-07-16 02:43 - 2017-07-17 14:56 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\BitTorrent
2017-07-16 02:17 - 2017-07-16 02:17 - 00000000 ____D C:\ProgramData\Google
2017-07-16 02:06 - 2017-07-16 02:06 - 00000000 ____D C:\Users\Dennis\AppData\Local\Fears
2017-07-16 02:05 - 2017-07-16 02:05 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\Oculus VR
2017-07-16 00:42 - 2017-07-16 00:42 - 00000000 ____D C:\Users\Dennis\AppData\Local\Crashpad
2017-07-16 00:42 - 2017-07-16 00:42 - 00000000 ____D C:\Users\Dennis\AppData\Local\Bigscreen
2017-07-16 00:41 - 2017-07-16 00:41 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\Bigscreen, Inc_
2017-07-15 23:27 - 2017-07-15 23:27 - 00000000 ____D C:\Users\Dennis\AppData\Local\VrPlayer
2017-07-15 23:25 - 2017-07-16 00:07 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\thriXXX
2017-07-15 23:25 - 2017-07-15 23:25 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\thriXXX
2017-07-15 23:25 - 2017-07-15 23:25 - 00000000 ____D C:\ProgramData\thriXXX
2017-07-15 23:25 - 2017-07-15 23:25 - 00000000 ____D C:\Program Files (x86)\thriXXX
2017-07-15 19:42 - 2017-07-15 20:25 - 00002459 _____ C:\Users\Public\desktop\TriDef 3D.lnk
2017-07-15 19:42 - 2017-07-15 19:42 - 00000000 ____D C:\ProgramData\TriDef 3D
2017-07-15 19:41 - 2017-07-17 03:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TriDef
2017-07-15 19:41 - 2017-07-17 03:57 - 00000000 ____D C:\Program Files (x86)\TriDef
2017-07-15 19:41 - 2017-07-15 19:52 - 00000000 ____D C:\ProgramData\DDD
2017-07-15 17:06 - 2017-07-15 17:06 - 00000000 ____D C:\Users\Dennis\AppData\Local\Intel Telemetry
2017-07-15 17:06 - 2017-07-15 17:06 - 00000000 ____D C:\ProgramData\Intel Telemetry
2017-07-15 16:48 - 2017-07-15 16:48 - 00002255 _____ C:\Users\Public\desktop\Xilisoft Video Converter Ultimate.lnk
2017-07-15 16:48 - 2017-07-15 16:48 - 00000000 ____D C:\ProgramData\Xilisoft
2017-07-15 16:48 - 2017-07-15 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
2017-07-15 16:01 - 2011-05-23 14:33 - 00892928 _____ (Free Software Foundation) C:\WINDOWS\SysWOW64\iconv.dll
2017-07-15 16:01 - 2011-05-23 14:33 - 00675840 _____ () C:\WINDOWS\SysWOW64\ac3filter.ax
2017-07-15 16:01 - 2011-05-23 14:33 - 00496640 _____ C:\WINDOWS\SysWOW64\xvid.ax
2017-07-15 15:59 - 2017-07-15 15:59 - 00000000 ____D C:\MATS
2017-07-15 15:33 - 2017-07-15 15:33 - 00002209 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2017-07-15 15:33 - 2017-07-15 15:33 - 00002197 _____ C:\Users\Public\desktop\Belarc Advisor.lnk
2017-07-15 15:33 - 2017-07-15 15:33 - 00000000 ____D C:\Program Files (x86)\Belarc
2017-07-15 13:56 - 2017-07-15 13:56 - 00000000 ____D C:\Users\Dennis\AppData\Local\openvr
2017-07-14 19:07 - 2017-07-14 19:07 - 00001087 _____ C:\Users\Public\desktop\Batman Arkham Knight.lnk
2017-07-14 19:07 - 2017-07-14 19:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batman Arkham Knight
2017-07-14 12:19 - 2017-07-18 01:22 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-07-14 11:48 - 2017-07-14 11:48 - 00000000 ____D C:\Users\Dennis\AppData\Local\VRFunhouse
2017-07-14 11:48 - 2017-07-14 11:48 - 00000000 ____D C:\Users\Dennis\AppData\Local\CrashReportClient
2017-07-14 11:36 - 2017-07-14 11:36 - 00000000 ____D C:\Users\Dennis\AppData\Local\Obduction
2017-07-14 11:24 - 2017-07-14 11:24 - 00000000 ____D C:\Users\Dennis\AppData\Local\CCP Games
2017-07-14 11:21 - 2017-07-14 11:21 - 00000000 ____D C:\Users\Dennis\AppData\Local\VkGame
2017-07-14 11:19 - 2017-07-14 11:19 - 00002597 _____ C:\Users\Public\desktop\VR Player.lnk
2017-07-14 11:19 - 2017-07-14 11:19 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\VrPlayer
2017-07-14 11:19 - 2017-07-14 11:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VR Player
2017-07-14 11:19 - 2017-07-14 11:19 - 00000000 ____D C:\Program Files (x86)\VR Player
2017-07-14 10:44 - 2017-07-14 10:44 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Whirligig
2017-07-14 10:44 - 2017-07-14 10:44 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Whirligig
2017-07-14 10:44 - 2017-07-14 10:44 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\phileday
2017-07-14 10:44 - 2017-07-14 10:44 - 00000000 ____D C:\Program Files\Whirligig
2017-07-14 09:55 - 2017-07-27 01:45 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-07-14 09:55 - 2017-07-14 10:10 - 00186352 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2017-07-14 09:55 - 2017-07-14 10:09 - 01001968 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2017-07-14 09:55 - 2017-07-14 10:05 - 00002219 _____ C:\Users\Public\desktop\Kaspersky Anti-Virus for ASUS.lnk
2017-07-14 09:55 - 2017-07-14 09:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus for ASUS
2017-07-14 09:55 - 2017-07-14 09:55 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2017-07-14 09:55 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2017-07-14 08:03 - 2017-07-14 08:03 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\Deo VR
2017-07-14 07:57 - 2017-07-14 07:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Obduction
2017-07-14 07:48 - 2017-07-14 07:48 - 00203238 _____ C:\Users\Dennis\InstalledPrograms.txt
2017-07-14 06:09 - 2017-07-14 06:09 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Xilisoft
2017-07-14 04:44 - 2017-07-14 04:44 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music
2017-07-14 04:44 - 2017-07-14 04:44 - 00000000 ____D C:\Users\Dennis\AppData\Local\Amazon Music
2017-07-14 03:47 - 2017-07-14 03:47 - 00000000 ____D C:\Users\Dennis\AppData\Local\RoboRecall
2017-07-14 01:39 - 2017-07-14 01:39 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2017-07-14 00:56 - 2017-07-14 00:56 - 00002685 _____ C:\Users\Public\desktop\ASUS® Intel® Extreme Tuning Utility.lnk
2017-07-14 00:56 - 2017-07-14 00:56 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel
2017-07-14 00:56 - 2017-07-14 00:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-07-14 00:56 - 2017-07-14 00:56 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2017-07-14 00:56 - 2017-07-14 00:56 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2017-07-14 00:56 - 2017-07-14 00:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2017-07-14 00:56 - 2017-07-14 00:56 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2017-07-14 00:24 - 2017-07-14 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corsair LINK 4
2017-07-14 00:23 - 2017-07-14 00:23 - 00000000 ____D C:\Program Files\DIFX
2017-07-13 18:16 - 2017-07-13 18:16 - 00000785 _____ C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2017-07-12 23:51 - 2017-07-12 23:51 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\SLR
2017-07-12 23:50 - 2017-07-12 23:51 - 00000000 ____D C:\Users\Dennis\AppData\Local\SLR VR Application
2017-07-12 23:50 - 2017-07-12 23:50 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SLR VR Application
2017-07-12 23:14 - 2017-07-16 02:06 - 00000000 ____D C:\Users\Dennis\AppData\Local\UnrealEngine
2017-07-12 23:14 - 2017-07-12 23:14 - 00000000 ____D C:\Users\Dennis\AppData\Local\TouchNUX
2017-07-12 22:50 - 2017-07-12 22:50 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\Oculus
2017-07-12 22:38 - 2017-07-12 22:46 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\OculusClient
2017-07-12 22:36 - 2017-07-16 03:29 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Oculus
2017-07-12 22:36 - 2017-07-12 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Oculus
2017-07-12 22:36 - 2017-07-12 22:36 - 00000000 ____D C:\Program Files\Oculus VR Runtime Drivers
2017-07-12 22:36 - 2017-04-07 21:06 - 01887232 _____ (OCULUS) C:\WINDOWS\system32\Drivers\OCULUS119B.sys
2017-07-12 22:36 - 2017-04-07 21:06 - 00032024 _____ (Benjamin Höglinger-Stelzer) C:\WINDOWS\system32\Drivers\Oculus_ViGEmBus.sys
2017-07-12 22:33 - 2017-07-18 01:22 - 00000000 ____D C:\Users\OVRLibraryService\AppData\Local\TileDataLayer
2017-07-12 22:33 - 2017-07-18 01:22 - 00000000 ____D C:\Users\OVRLibraryService
2017-07-12 22:33 - 2017-07-12 23:26 - 00000000 ____D C:\Program Files\Oculus
2017-07-12 22:33 - 2017-07-12 22:33 - 00000020 ___SH C:\Users\OVRLibraryService\ntuser.ini
2017-07-12 22:07 - 2017-07-14 03:39 - 00003070 _____ C:\WINDOWS\System32\Tasks\Monitor
2017-07-12 22:06 - 2017-07-27 01:43 - 00000000 ____D C:\Users\Dennis\AppData\Local\Oculus
2017-07-12 15:58 - 2017-07-12 15:58 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\dvdcss
2017-07-12 15:46 - 2017-07-12 15:46 - 00002986 _____ C:\WINDOWS\System32\Tasks\AURA
2017-07-12 08:48 - 2017-07-12 08:48 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\CipciuGames
2017-07-12 08:37 - 2017-07-12 08:37 - 00000000 ____D C:\Users\Dennis\AppData\Local\Apps\2.0
2017-07-12 08:18 - 2017-07-12 08:18 - 00000000 ____D C:\Users\Dennis\AppData\Local\KADOKAWA
2017-07-12 04:42 - 2017-07-12 04:42 - 00000000 ____D C:\Users\Dennis\AppData\Local\Tempzxpsign8939bacb86eaffff
2017-07-12 04:36 - 2017-07-12 04:36 - 00000000 ____D C:\Users\Dennis\AppData\Local\Tempzxpsign986d42830c8be573
2017-07-12 04:36 - 2017-07-12 04:36 - 00000000 ____D C:\Users\Dennis\AppData\Local\Tempzxpsign94b42bcc933b2bd6
2017-07-12 02:52 - 2017-07-07 10:00 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2017-07-12 02:52 - 2017-07-07 03:27 - 01147288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-07-12 02:52 - 2017-07-07 03:27 - 01024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-07-12 02:52 - 2017-07-07 03:27 - 00965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-07-12 02:52 - 2017-07-07 03:27 - 00821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-07-12 02:52 - 2017-07-07 03:27 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-07-12 02:52 - 2017-07-07 03:26 - 01065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-07-12 02:52 - 2017-07-07 03:25 - 00899824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-07-12 02:52 - 2017-07-07 03:24 - 00117664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-07-12 02:52 - 2017-07-07 03:23 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-07-12 02:52 - 2017-07-07 03:22 - 08318880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-07-12 02:52 - 2017-07-07 03:22 - 01186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-07-12 02:52 - 2017-07-07 03:22 - 00119384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-07-12 02:52 - 2017-07-07 03:21 - 32688336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2017-07-12 02:52 - 2017-07-07 03:21 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-12 02:52 - 2017-07-07 03:20 - 02021680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-07-12 02:52 - 2017-07-07 03:20 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-07-12 02:52 - 2017-07-07 03:20 - 00519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-07-12 02:52 - 2017-07-07 03:20 - 00382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-07-12 02:52 - 2017-07-07 03:17 - 01017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-07-12 02:52 - 2017-07-07 03:15 - 02444696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-07-12 02:52 - 2017-07-07 03:14 - 07325584 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-07-12 02:52 - 2017-07-07 03:14 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-07-12 02:52 - 2017-07-07 03:14 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-07-12 02:52 - 2017-07-07 03:14 - 01171032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2017-07-12 02:52 - 2017-07-07 03:13 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-07-12 02:52 - 2017-07-07 03:13 - 00554392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-07-12 02:52 - 2017-07-07 03:13 - 00336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-07-12 02:52 - 2017-07-07 03:13 - 00147800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2017-07-12 02:52 - 2017-07-07 03:12 - 00411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-07-12 02:52 - 2017-07-07 03:12 - 00318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-07-12 02:52 - 2017-07-07 03:12 - 00228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-07-12 02:52 - 2017-07-07 03:11 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-07-12 02:52 - 2017-07-07 03:11 - 00094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-07-12 02:52 - 2017-07-07 03:10 - 21353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-07-12 02:52 - 2017-07-07 03:10 - 01670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-07-12 02:52 - 2017-07-07 03:10 - 01337848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-07-12 02:52 - 2017-07-07 03:10 - 01325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-07-12 02:52 - 2017-07-07 03:10 - 00372128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-07-12 02:52 - 2017-07-07 03:10 - 00254168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-07-12 02:52 - 2017-07-07 03:09 - 00041376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 02229152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 01854880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 01693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 01458584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 01100704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 00992672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 00848280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 00846752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-07-12 02:52 - 2017-07-07 03:08 - 00844704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 00774560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 00699808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 00672672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 00506776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2017-07-12 02:52 - 2017-07-07 03:08 - 00399264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-07-12 02:52 - 2017-07-07 03:07 - 01106848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-07-12 02:52 - 2017-07-07 03:07 - 00058488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-07-12 02:52 - 2017-07-07 02:57 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-07-12 02:52 - 2017-07-07 02:57 - 00125344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2017-07-12 02:52 - 2017-07-07 02:40 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-07-12 02:52 - 2017-07-07 02:39 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-07-12 02:52 - 2017-07-07 02:39 - 00096128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-07-12 02:52 - 2017-07-07 02:37 - 31652264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2017-07-12 02:52 - 2017-07-07 02:37 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-07-12 02:52 - 2017-07-07 02:37 - 01339352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2017-07-12 02:52 - 2017-07-07 02:31 - 05820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-07-12 02:52 - 2017-07-07 02:31 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-07-12 02:52 - 2017-07-07 02:31 - 00129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-07-12 02:52 - 2017-07-07 02:30 - 02165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-07-12 02:52 - 2017-07-07 02:30 - 00949920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2017-07-12 02:52 - 2017-07-07 02:30 - 00750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-07-12 02:52 - 2017-07-07 02:29 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-07-12 02:52 - 2017-07-07 02:29 - 00123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2017-07-12 02:52 - 2017-07-07 02:27 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-07-12 02:52 - 2017-07-07 02:27 - 03670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-07-12 02:52 - 2017-07-07 02:27 - 01640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-07-12 02:52 - 2017-07-07 02:27 - 01050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-07-12 02:52 - 2017-07-07 02:27 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2017-07-12 02:52 - 2017-07-07 02:27 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2017-07-12 02:52 - 2017-07-07 02:27 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2017-07-12 02:52 - 2017-07-07 02:27 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2017-07-12 02:52 - 2017-07-07 02:27 - 00360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-07-12 02:52 - 2017-07-07 02:26 - 20373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-07-12 02:52 - 2017-07-07 02:26 - 17364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-12 02:52 - 2017-07-07 02:26 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-07-12 02:52 - 2017-07-07 02:26 - 01195240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-07-12 02:52 - 2017-07-07 02:26 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-07-12 02:52 - 2017-07-07 02:25 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-07-12 02:52 - 2017-07-07 02:25 - 00035232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll
2017-07-12 02:52 - 2017-07-07 02:24 - 01517472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-07-12 02:52 - 2017-07-07 02:24 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-07-12 02:52 - 2017-07-07 02:23 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-07-12 02:52 - 2017-07-07 02:23 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-07-12 02:52 - 2017-07-07 02:23 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-07-12 02:52 - 2017-07-07 02:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-07-12 02:52 - 2017-07-07 02:23 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll
2017-07-12 02:52 - 2017-07-07 02:22 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-07-12 02:52 - 2017-07-07 02:22 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-07-12 02:52 - 2017-07-07 02:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-07-12 02:52 - 2017-07-07 02:21 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2017-07-12 02:52 - 2017-07-07 02:21 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-07-12 02:52 - 2017-07-07 02:20 - 23681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-07-12 02:52 - 2017-07-07 02:20 - 08331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-07-12 02:52 - 2017-07-07 02:20 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2017-07-12 02:52 - 2017-07-07 02:19 - 07149056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-07-12 02:52 - 2017-07-07 02:19 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-07-12 02:52 - 2017-07-07 02:19 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-07-12 02:52 - 2017-07-07 02:19 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-07-12 02:52 - 2017-07-07 02:19 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2017-07-12 02:52 - 2017-07-07 02:18 - 07336448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-12 02:52 - 2017-07-07 02:18 - 00563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-07-12 02:52 - 2017-07-07 02:18 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2017-07-12 02:52 - 2017-07-07 02:18 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-07-12 02:52 - 2017-07-07 02:18 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2017-07-12 02:52 - 2017-07-07 02:17 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-12 02:52 - 2017-07-07 02:17 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-07-12 02:52 - 2017-07-07 02:17 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-07-12 02:52 - 2017-07-07 02:17 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-07-12 02:52 - 2017-07-07 02:17 - 00536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-07-12 02:52 - 2017-07-07 02:17 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-07-12 02:52 - 2017-07-07 02:17 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-07-12 02:52 - 2017-07-07 02:16 - 12786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-07-12 02:52 - 2017-07-07 02:16 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-12 02:52 - 2017-07-07 02:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-07-12 02:52 - 2017-07-07 02:15 - 08238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-07-12 02:52 - 2017-07-07 02:15 - 00922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-07-12 02:52 - 2017-07-07 02:14 - 08211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-07-12 02:52 - 2017-07-07 02:14 - 03784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-07-12 02:52 - 2017-07-07 02:14 - 02956800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-07-12 02:52 - 2017-07-07 02:14 - 01802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-07-12 02:52 - 2017-07-07 02:14 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-07-12 02:52 - 2017-07-07 02:14 - 00790016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-07-12 02:52 - 2017-07-07 02:14 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2017-07-12 02:52 - 2017-07-07 02:14 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-07-12 02:52 - 2017-07-07 02:13 - 13839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-07-12 02:52 - 2017-07-07 02:13 - 05892096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-07-12 02:52 - 2017-07-07 02:13 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 04730880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 02055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-07-12 02:52 - 2017-07-07 02:12 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 01420800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 01305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-07-12 02:52 - 2017-07-07 02:12 - 00706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-07-12 02:52 - 2017-07-07 02:11 - 03139584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-07-12 02:52 - 2017-07-07 02:11 - 02829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-07-12 02:52 - 2017-07-07 02:11 - 02649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-07-12 02:52 - 2017-07-07 02:11 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-07-12 02:52 - 2017-07-07 02:11 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-07-12 02:52 - 2017-07-07 02:11 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-07-12 02:52 - 2017-07-07 02:11 - 00986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-07-12 02:52 - 2017-07-07 02:11 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-07-12 02:52 - 2017-07-07 02:10 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-07-12 02:52 - 2017-07-07 02:10 - 04707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-12 02:52 - 2017-07-07 02:10 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-07-12 02:52 - 2017-07-07 02:10 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-07-12 02:52 - 2017-07-07 02:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll
2017-07-12 02:52 - 2017-07-07 02:09 - 20504576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-07-12 02:52 - 2017-07-07 02:09 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-07-12 02:52 - 2017-07-07 02:07 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-07-12 02:52 - 2017-07-07 02:07 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2017-07-12 02:52 - 2017-07-07 02:07 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-07-12 02:52 - 2017-07-07 02:07 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2017-07-12 02:52 - 2017-07-07 02:06 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2017-07-12 02:52 - 2017-07-07 02:06 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2017-07-12 02:52 - 2017-07-07 02:06 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2017-07-12 02:52 - 2017-07-07 02:05 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-07-12 02:52 - 2017-07-07 02:05 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-07-12 02:52 - 2017-07-07 02:05 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-07-12 02:52 - 2017-07-07 02:05 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-07-12 02:52 - 2017-07-07 02:05 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-07-12 02:52 - 2017-07-07 02:05 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2017-07-12 02:52 - 2017-07-07 02:05 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-07-12 02:52 - 2017-07-07 02:04 - 05961216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-07-12 02:52 - 2017-07-07 02:04 - 01703424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-07-12 02:52 - 2017-07-07 02:04 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2017-07-12 02:52 - 2017-07-07 02:04 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-07-12 02:52 - 2017-07-07 02:04 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-07-12 02:52 - 2017-07-07 02:04 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-07-12 02:52 - 2017-07-07 02:04 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-07-12 02:52 - 2017-07-07 02:04 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2017-07-12 02:52 - 2017-07-07 02:03 - 06123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-07-12 02:52 - 2017-07-07 02:03 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-07-12 02:52 - 2017-07-07 02:03 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-07-12 02:52 - 2017-07-07 02:02 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-07-12 02:52 - 2017-07-07 02:02 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-07-12 02:52 - 2017-07-07 02:01 - 06287360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-07-12 02:52 - 2017-07-07 02:01 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-07-12 02:52 - 2017-07-07 02:00 - 07596544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-07-12 02:52 - 2017-07-07 02:00 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-07-12 02:52 - 2017-07-07 02:00 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2017-07-12 02:52 - 2017-07-07 02:00 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-07-12 02:52 - 2017-07-07 02:00 - 01565184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-07-12 02:52 - 2017-07-07 02:00 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-07-12 02:52 - 2017-07-07 01:59 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-07-12 02:52 - 2017-07-07 01:59 - 03656704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-07-12 02:52 - 2017-07-07 01:59 - 01494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-07-12 02:52 - 2017-07-07 01:59 - 01355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-07-12 02:52 - 2017-07-07 01:59 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-07-12 02:52 - 2017-07-07 01:58 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-07-12 02:52 - 2017-07-07 01:58 - 02782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-07-12 02:52 - 2017-07-07 01:58 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-07-12 02:52 - 2017-07-07 01:58 - 01237504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-07-12 02:52 - 2017-07-07 01:55 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2017-07-12 02:52 - 2017-07-07 01:55 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2017-07-12 02:52 - 2017-07-07 01:53 - 01301504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2017-07-12 02:52 - 2017-07-07 01:53 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2017-07-12 02:52 - 2017-07-01 18:52 - 00031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-07-12 02:52 - 2017-06-20 02:18 - 01564576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-07-12 02:52 - 2017-06-20 02:18 - 00096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-07-12 02:52 - 2017-06-20 02:17 - 00629152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-07-12 02:52 - 2017-06-20 02:17 - 00544160 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-07-12 02:52 - 2017-06-20 02:17 - 00334240 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-07-12 02:52 - 2017-06-20 02:17 - 00136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-07-12 02:52 - 2017-06-20 02:17 - 00034720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-07-12 02:52 - 2017-06-20 02:16 - 01214880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-07-12 02:52 - 2017-06-20 02:16 - 00335776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-07-12 02:52 - 2017-06-20 02:15 - 00233376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-07-12 02:52 - 2017-06-20 02:11 - 01395152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-07-12 02:52 - 2017-06-20 02:11 - 00411992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2017-07-12 02:52 - 2017-06-20 02:10 - 02327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-07-12 02:52 - 2017-06-20 02:10 - 01930320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-07-12 02:52 - 2017-06-20 02:08 - 01242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-07-12 02:52 - 2017-06-20 02:06 - 00279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-07-12 02:52 - 2017-06-20 02:05 - 01057832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-07-12 02:52 - 2017-06-20 02:04 - 04847424 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-07-12 02:52 - 2017-06-20 02:04 - 00472728 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-07-12 02:52 - 2017-06-20 02:03 - 00820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-07-12 02:52 - 2017-06-20 02:03 - 00179608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-07-12 02:52 - 2017-06-20 02:03 - 00102312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialUIBroker.exe
2017-07-12 02:52 - 2017-06-20 02:02 - 02645688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-07-12 02:52 - 2017-06-20 02:02 - 01055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-07-12 02:52 - 2017-06-20 02:02 - 00426912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-07-12 02:52 - 2017-06-20 02:00 - 00558920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-07-12 02:52 - 2017-06-20 02:00 - 00255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-07-12 02:52 - 2017-06-20 02:00 - 00142752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-07-12 02:52 - 2017-06-20 01:59 - 06554928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-07-12 02:52 - 2017-06-20 01:59 - 01220072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-07-12 02:52 - 2017-06-20 01:59 - 01054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-07-12 02:52 - 2017-06-20 01:59 - 00583304 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2017-07-12 02:52 - 2017-06-20 01:59 - 00467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-07-12 02:52 - 2017-06-20 01:58 - 00833160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-07-12 02:52 - 2017-06-20 01:58 - 00406072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-07-12 02:52 - 2017-06-20 01:58 - 00203168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-07-12 02:52 - 2017-06-20 01:57 - 02681760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-07-12 02:52 - 2017-06-20 01:57 - 00204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-07-12 02:52 - 2017-06-20 01:34 - 00192416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-07-12 02:52 - 2017-06-20 01:16 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2017-07-12 02:52 - 2017-06-20 01:16 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-07-12 02:52 - 2017-06-20 01:15 - 01620368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-07-12 02:52 - 2017-06-20 01:15 - 00455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2017-07-12 02:52 - 2017-06-20 01:14 - 01150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-07-12 02:52 - 2017-06-20 01:14 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2017-07-12 02:52 - 2017-06-20 01:13 - 00787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2017-07-12 02:52 - 2017-06-20 01:13 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2017-07-12 02:52 - 2017-06-20 01:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2017-07-12 02:52 - 2017-06-20 01:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll
2017-07-12 02:52 - 2017-06-20 01:13 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2017-07-12 02:52 - 2017-06-20 01:12 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-07-12 02:52 - 2017-06-20 01:12 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2017-07-12 02:52 - 2017-06-20 01:12 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-07-12 02:52 - 2017-06-20 01:12 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-07-12 02:52 - 2017-06-20 01:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-07-12 02:52 - 2017-06-20 01:12 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2017-07-12 02:52 - 2017-06-20 01:11 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-07-12 02:52 - 2017-06-20 01:11 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-07-12 02:52 - 2017-06-20 01:10 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-07-12 02:52 - 2017-06-20 01:10 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-07-12 02:52 - 2017-06-20 01:10 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-07-12 02:52 - 2017-06-20 01:10 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-07-12 02:52 - 2017-06-20 01:10 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2017-07-12 02:52 - 2017-06-20 01:10 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00406032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2017-07-12 02:52 - 2017-06-20 01:09 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2017-07-12 02:52 - 2017-06-20 01:09 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2017-07-12 02:52 - 2017-06-20 01:08 - 04469840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-07-12 02:52 - 2017-06-20 01:08 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2017-07-12 02:52 - 2017-06-20 01:08 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-07-12 02:52 - 2017-06-20 01:08 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-07-12 02:52 - 2017-06-20 01:08 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-07-12 02:52 - 2017-06-20 01:08 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2017-07-12 02:52 - 2017-06-20 01:08 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-07-12 02:52 - 2017-06-20 01:08 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-07-12 02:52 - 2017-06-20 01:08 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-07-12 02:52 - 2017-06-20 01:07 - 02475136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-07-12 02:52 - 2017-06-20 01:07 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-07-12 02:52 - 2017-06-20 01:07 - 00916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-07-12 02:52 - 2017-06-20 01:07 - 00823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2017-07-12 02:52 - 2017-06-20 01:07 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-07-12 02:52 - 2017-06-20 01:07 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2017-07-12 02:52 - 2017-06-20 01:07 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-07-12 02:52 - 2017-06-20 01:07 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2017-07-12 02:52 - 2017-06-20 01:07 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-07-12 02:52 - 2017-06-20 01:07 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-07-12 02:52 - 2017-06-20 01:07 - 00346016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2017-07-12 02:52 - 2017-06-20 01:07 - 00138656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00847872 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00754592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00278944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-07-12 02:52 - 2017-06-20 01:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2017-07-12 02:52 - 2017-06-20 01:05 - 04447744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-07-12 02:52 - 2017-06-20 01:05 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2017-07-12 02:52 - 2017-06-20 01:05 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-07-12 02:52 - 2017-06-20 01:05 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-07-12 02:52 - 2017-06-20 01:05 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2017-07-12 02:52 - 2017-06-20 01:05 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-07-12 02:52 - 2017-06-20 01:05 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-07-12 02:52 - 2017-06-20 01:05 - 00438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-07-12 02:52 - 2017-06-20 01:05 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-07-12 02:52 - 2017-06-20 01:05 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-07-12 02:52 - 2017-06-20 01:05 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-07-12 02:52 - 2017-06-20 01:05 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-07-12 02:52 - 2017-06-20 01:05 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 01818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 01425920 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-07-12 02:52 - 2017-06-20 01:04 - 01178528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 01077496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 00181656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2017-07-12 02:52 - 2017-06-20 01:04 - 00049656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll
2017-07-12 02:52 - 2017-06-20 01:03 - 05806048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-07-12 02:52 - 2017-06-20 01:03 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-07-12 02:52 - 2017-06-20 01:03 - 01396224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-07-12 02:52 - 2017-06-20 01:03 - 00864240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-07-12 02:52 - 2017-06-20 01:03 - 00443728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2017-07-12 02:52 - 2017-06-20 01:02 - 03377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-07-12 02:52 - 2017-06-20 01:02 - 03204096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-07-12 02:52 - 2017-06-20 01:02 - 02804736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-07-12 02:52 - 2017-06-20 01:02 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-07-12 02:52 - 2017-06-20 01:02 - 01121928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-07-12 02:52 - 2017-06-20 01:02 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-07-12 02:52 - 2017-06-20 01:02 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-07-12 02:52 - 2017-06-20 01:02 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2017-07-12 02:52 - 2017-06-20 01:01 - 04536320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-07-12 02:52 - 2017-06-20 01:01 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-12 02:52 - 2017-06-20 01:01 - 03803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-07-12 02:52 - 2017-06-20 01:01 - 03332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-07-12 02:52 - 2017-06-20 01:01 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-07-12 02:52 - 2017-06-20 01:01 - 01076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-07-12 02:52 - 2017-06-20 01:01 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-07-12 02:52 - 2017-06-20 01:01 - 00397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-07-12 02:52 - 2017-06-20 01:01 - 00176032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-07-12 02:52 - 2017-06-20 01:00 - 03057664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-07-12 02:52 - 2017-06-20 01:00 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-07-12 02:52 - 2017-06-20 01:00 - 02171392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-07-12 02:52 - 2017-06-20 00:59 - 02938880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-07-12 02:52 - 2017-06-20 00:59 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-07-12 02:52 - 2017-06-20 00:59 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-07-12 02:52 - 2017-06-20 00:58 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-07-12 02:52 - 2017-06-20 00:57 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-07-12 02:52 - 2017-06-20 00:57 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2017-07-12 02:52 - 2017-06-20 00:56 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-07-12 02:52 - 2017-06-20 00:56 - 00600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-07-12 02:52 - 2017-06-20 00:56 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdmaud.drv
2017-07-12 02:52 - 2017-06-20 00:54 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-07-12 02:52 - 2017-06-20 00:49 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2017-07-12 02:52 - 2017-06-20 00:49 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2017-07-12 02:52 - 2017-06-20 00:46 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2017-07-12 02:52 - 2017-06-20 00:45 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2017-07-12 02:52 - 2017-06-20 00:45 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-07-12 02:52 - 2017-06-20 00:43 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-07-12 02:52 - 2017-06-20 00:43 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2017-07-12 02:52 - 2017-06-20 00:43 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2017-07-12 02:52 - 2017-06-20 00:43 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-07-12 02:52 - 2017-06-20 00:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-07-12 02:52 - 2017-06-20 00:43 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-07-12 02:52 - 2017-06-20 00:43 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2017-07-12 02:52 - 2017-06-20 00:42 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2017-07-12 02:52 - 2017-06-20 00:42 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2017-07-12 02:52 - 2017-06-20 00:42 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-07-12 02:52 - 2017-06-20 00:42 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-07-12 02:52 - 2017-06-20 00:42 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-07-12 02:52 - 2017-06-20 00:42 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2017-07-12 02:52 - 2017-06-20 00:41 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-07-12 02:52 - 2017-06-20 00:41 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2017-07-12 02:52 - 2017-06-20 00:41 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2017-07-12 02:52 - 2017-06-20 00:41 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2017-07-12 02:52 - 2017-06-20 00:41 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2017-07-12 02:52 - 2017-06-20 00:40 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-07-12 02:52 - 2017-06-20 00:40 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-07-12 02:52 - 2017-06-20 00:40 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-07-12 02:52 - 2017-06-20 00:40 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-07-12 02:52 - 2017-06-20 00:40 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2017-07-12 02:52 - 2017-06-20 00:40 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2017-07-12 02:52 - 2017-06-20 00:39 - 02814464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2017-07-12 02:52 - 2017-06-20 00:39 - 02671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-07-12 02:52 - 2017-06-20 00:39 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2017-07-12 02:52 - 2017-06-20 00:39 - 00646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2017-07-12 02:52 - 2017-06-20 00:39 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2017-07-12 02:52 - 2017-06-20 00:39 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-07-12 02:52 - 2017-06-20 00:38 - 01451008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-07-12 02:52 - 2017-06-20 00:38 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-07-12 02:52 - 2017-06-20 00:38 - 01171968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2017-07-12 02:52 - 2017-06-20 00:38 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-07-12 02:52 - 2017-06-20 00:38 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2017-07-12 02:52 - 2017-06-20 00:38 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-07-12 02:52 - 2017-06-20 00:37 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-07-12 02:52 - 2017-06-20 00:36 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-07-12 02:52 - 2017-06-20 00:35 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2017-07-12 02:52 - 2017-06-20 00:35 - 02132480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-07-12 02:52 - 2017-06-20 00:35 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-07-12 02:52 - 2017-06-20 00:34 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-07-12 02:52 - 2017-06-20 00:34 - 02750464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-07-12 02:52 - 2017-06-20 00:34 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-07-12 02:52 - 2017-06-20 00:34 - 01492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-07-12 02:52 - 2017-06-20 00:34 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-07-12 02:52 - 2017-06-20 00:31 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-07-12 02:52 - 2017-06-20 00:30 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdmaud.drv
2017-07-12 02:52 - 2017-06-20 00:30 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2017-07-12 02:52 - 2017-06-20 00:30 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-07-12 02:52 - 2017-06-20 00:28 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2017-07-11 18:55 - 2017-07-18 02:34 - 00000000 ____D C:\Temp
2017-07-11 18:31 - 2017-07-11 18:31 - 00000000 ____D C:\Users\Dennis\AppData\LocalLow\Temp
2017-07-11 05:35 - 2017-07-11 05:35 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Media Center 22
2017-07-11 03:48 - 2017-07-11 03:50 - 00000000 ____D C:\Program Files\CCleaner
2017-07-11 03:48 - 2017-07-11 03:48 - 00002862 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-07-11 03:48 - 2017-07-11 03:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-07-10 23:54 - 2017-07-10 23:54 - 00000000 ____D C:\Users\Dennis\AppData\Local\MediaMonkey
2017-07-10 23:51 - 2017-07-14 18:56 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\MediaMonkey
2017-07-10 23:51 - 2017-07-11 00:38 - 00000000 ____D C:\Program Files (x86)\MediaMonkey
2017-07-10 23:51 - 2017-07-10 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey
2017-07-10 23:51 - 2017-07-10 23:51 - 00000000 ____D C:\ProgramData\MediaMonkey
2017-07-10 23:04 - 2017-07-27 01:43 - 00000000 _____ C:\WINDOWS\system32\RzSurroundVADAudioDeviceManager_log.txt
2017-07-10 23:04 - 2017-07-10 23:04 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.62.0
2017-07-10 23:03 - 2017-07-10 23:03 - 00000000 _____ C:\WINDOWS\SysWOW64\RzSurroundVADAudioDeviceManager_log.txt
2017-07-10 22:53 - 2017-07-11 00:42 - 00000000 ____D C:\Users\Dennis\AppData\Local\AdvancedChromaConfigurato
2017-07-10 22:39 - 2017-07-10 22:42 - 00000000 ____D C:\Program Files (x86)\Chroma Clock
2017-07-10 22:39 - 2017-07-10 22:39 - 00001135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chroma Clock.lnk
2017-07-10 21:22 - 2017-07-10 21:22 - 00000000 ____D C:\Users\Dennis\AppData\Local\RzStats
2017-07-10 04:31 - 2017-07-10 04:31 - 00000000 ____D C:\Users\Dennis\AppData\Local\Apple Computer
2017-07-10 02:36 - 2017-07-10 02:36 - 00000000 ____D C:\Users\Dennis\AppData\Local\Wondershare
2017-07-10 01:04 - 2017-07-10 01:04 - 00000000 ____D C:\Users\Dennis\AppData\Local\Tempzxpsign2b96783d32c09545
2017-07-10 01:02 - 2017-07-10 01:02 - 00000000 ____D C:\Users\Dennis\AppData\Local\Tempzxpsignc6408fb1cf5629a3
2017-07-10 01:02 - 2017-07-10 01:02 - 00000000 ____D C:\Users\Dennis\AppData\Local\Tempzxpsign9b6e247d7f285186
2017-07-09 23:13 - 2017-07-18 01:22 - 00000000 ____D C:\ProgramData\FNetOTB
2017-07-09 23:13 - 2017-07-09 23:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FNet
2017-07-09 23:13 - 2017-07-09 23:13 - 00000000 ____D C:\Program Files (x86)\OTB
2017-07-05 00:04 - 2017-07-05 00:04 - 00000000 ____D C:\Program Files\Futuremark
2017-07-04 23:49 - 2017-07-04 23:49 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\AsRamdisk
2017-07-04 23:48 - 2014-05-07 14:23 - 00111416 _____ (Asus) C:\WINDOWS\system32\Drivers\asramdisk.sys
2017-07-04 23:48 - 2014-02-17 16:46 - 00021304 _____ (Olof Lagerkvist) C:\WINDOWS\system32\Drivers\awealloc.sys
2017-07-04 23:46 - 2017-07-04 23:46 - 00000000 ____D C:\ProgramData\FNET
2017-07-04 23:45 - 2017-07-04 23:45 - 00053848 _____ (FNet Co., Ltd.) C:\WINDOWS\system32\Drivers\FNETHYRAMAS.SYS
2017-07-04 23:45 - 2017-07-04 23:45 - 00016648 _____ (FNet Co., Ltd.) C:\WINDOWS\system32\Drivers\FNETURPX.SYS
2017-07-04 23:45 - 2017-07-04 23:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RamCache II
2017-07-04 23:45 - 2017-07-04 23:45 - 00000000 ____D C:\Program Files (x86)\RamCache II
2017-07-04 22:35 - 2017-07-04 23:52 - 00000000 ____D C:\Users\Non-Admin\.oracle_jre_usage
2017-07-04 22:35 - 2017-07-04 22:35 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Futuremark
2017-07-04 22:33 - 2017-07-04 22:33 - 00000000 ____D C:\Users\Dennis\AppData\Local\Futuremark
2017-07-04 22:31 - 2017-07-04 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2017-07-04 22:31 - 2017-07-04 22:31 - 00000000 ____D C:\Users\Dennis\.oracle_jre_usage
2017-07-04 22:31 - 2017-07-04 22:31 - 00000000 ____D C:\ProgramData\Futuremark
2017-07-04 22:31 - 2017-07-04 22:31 - 00000000 ____D C:\Program Files (x86)\Futuremark
2017-07-04 22:24 - 2017-07-04 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3
2017-07-04 22:24 - 2017-07-04 22:24 - 00000000 ____D C:\Program Files\MSI Kombustor 3
2017-07-04 22:06 - 2017-07-04 22:10 - 00000000 ____D C:\Users\Non-Admin\Heaven
2017-07-04 22:06 - 2017-07-04 22:06 - 00728064 _____ C:\Users\Non-Admin\AppData\Local\file__0.localstorage
2017-07-04 22:05 - 2017-07-04 22:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2017-07-04 22:05 - 2017-07-04 22:05 - 00000000 ____D C:\Program Files (x86)\Unigine
2017-07-04 17:03 - 2017-07-04 17:03 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\J River
2017-07-04 16:33 - 2017-07-04 16:33 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Eidos Montreal
2017-07-04 16:31 - 2017-07-04 16:31 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Eidos Montreal
2017-07-04 14:01 - 2017-07-04 14:01 - 00000874 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deus Ex - Mankind Divided.lnk
2017-07-04 13:47 - 2017-07-04 16:30 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\mIRC
2017-07-04 13:47 - 2017-07-04 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mIRC
2017-07-04 13:47 - 2017-07-04 13:47 - 00000000 ____D C:\Program Files (x86)\mIRC
2017-07-04 13:07 - 2017-07-04 13:07 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Tempzxpsigndf00f444080c6cd5
2017-07-04 13:06 - 2017-07-04 13:06 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Tempzxpsign6b6ceb706a174e33
2017-07-04 10:25 - 2017-07-04 10:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 4 Dedicated Server
2017-07-04 10:13 - 2017-07-04 10:13 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Image-Line
2017-07-04 09:26 - 2017-07-04 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IsoBuster
2017-07-04 09:26 - 2017-07-04 09:26 - 00000000 ____D C:\Program Files (x86)\Smart Projects
2017-07-04 09:20 - 2017-07-04 09:20 - 00000000 ____D C:\Program Files (x86)\Smart File Advisor
2017-07-04 08:52 - 2017-07-04 08:52 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\CD Recovery Toolbox Free
2017-07-04 08:46 - 2017-07-04 08:46 - 00000000 ____D C:\ProgramData\CrypKey
2017-07-04 08:44 - 2017-07-04 08:44 - 00000076 _____ C:\WINDOWS\Crypkey.ini
2017-07-04 08:44 - 2017-07-04 08:44 - 00000000 ____D C:\Log
2017-07-04 08:44 - 2008-03-17 13:12 - 00028664 _____ C:\WINDOWS\system32\Ckldrv.sys
2017-07-04 08:44 - 1999-06-18 16:49 - 00165888 _____ (Kenonic Controls) C:\WINDOWS\Ckconfig.exe
2017-07-04 08:44 - 1996-05-03 12:21 - 00027648 ____R C:\WINDOWS\Setup_ck.exe
2017-07-04 08:44 - 1996-05-03 10:36 - 00018432 _____ C:\WINDOWS\Setup_ck.dll
2017-07-04 08:44 - 1995-07-04 13:33 - 00011776 _____ C:\WINDOWS\Ckrfresh.exe
2017-07-04 08:34 - 2017-07-04 08:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD Recovery Toolbox Free
2017-07-04 08:34 - 2017-07-04 08:34 - 00000000 ____D C:\Program Files (x86)\CD Recovery Toolbox Free
2017-07-04 08:24 - 2017-07-04 08:26 - 00000000 ____D C:\Program Files (x86)\Tenorshare Any Data Recovery Pro
2017-07-04 08:24 - 2017-07-04 08:24 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Tenorshare
2017-07-04 08:24 - 2017-07-04 08:24 - 00000000 ____D C:\TsTemp
2017-07-04 08:06 - 2017-07-04 08:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard
2017-07-04 08:06 - 2017-07-04 08:06 - 00000000 ____D C:\Program Files\EaseUS
2017-07-04 07:51 - 2017-07-04 07:51 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Wondershare Video Converter Ultimate
2017-07-04 07:10 - 2017-07-04 07:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aeon
2017-07-04 03:19 - 2017-07-10 22:52 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\SoundSpectrum
2017-07-04 03:19 - 2017-07-10 22:52 - 00000000 ____D C:\Users\Dennis\AppData\Local\SoundSpectrum
2017-07-04 03:08 - 2017-07-04 03:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JRiver Media Center 22
2017-07-04 03:07 - 2017-07-16 08:24 - 00000000 ____D C:\Program Files (x86)\J River
2017-07-04 03:07 - 2017-05-17 12:59 - 00562376 ____N (JRiver, Inc.) C:\WINDOWS\SysWOW64\MC22.exe
2017-07-04 03:07 - 2017-05-17 12:59 - 00562376 ____N (JRiver, Inc.) C:\WINDOWS\system32\MC22.exe
2017-07-04 03:07 - 2017-05-04 09:06 - 00585728 ____N (Audible Inc.) C:\WINDOWS\SysWOW64\AReadyLB.dll
2017-07-04 03:07 - 2017-05-04 09:06 - 00585728 ____N (Audible Inc.) C:\WINDOWS\system32\AReadyLB.dll
2017-07-04 03:07 - 2017-05-04 09:06 - 00229376 ____N (Audible Inc.) C:\WINDOWS\SysWOW64\AudDevicePlugin.dll
2017-07-04 03:07 - 2017-05-04 09:06 - 00229376 ____N (Audible Inc.) C:\WINDOWS\system32\AudDevicePlugin.dll
2017-07-04 02:59 - 2017-07-11 04:59 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\J River
2017-07-04 02:59 - 2017-07-11 02:22 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\HDtracks Downloader
2017-07-04 02:59 - 2017-07-04 02:59 - 00000076 _____ C:\WINDOWS\SysWOW64\net32gdilib.dll
2017-07-04 02:59 - 2014-11-04 18:03 - 00548664 ____N (JRiver, Inc.) C:\WINDOWS\SysWOW64\Media Core Launcher.exe
2017-07-04 02:59 - 2014-11-04 18:03 - 00548664 ____N (JRiver, Inc.) C:\WINDOWS\system32\Media Core Launcher.exe
2017-07-04 02:48 - 2017-07-04 02:48 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Publish Providers
2017-07-04 00:06 - 2017-07-04 00:11 - 00000000 ____D C:\ProgramData\Oracle
2017-07-04 00:06 - 2017-07-04 00:06 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Sun
2017-07-04 00:06 - 2017-07-04 00:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-07-03 23:59 - 2017-07-03 23:59 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Foxit Software
2017-07-03 23:58 - 2017-07-03 23:58 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_LcUvcUpper_01011.Wdf
2017-07-03 23:58 - 2017-07-03 23:58 - 00000000 ____D C:\Program Files\Microsoft LifeCam
2017-07-03 23:58 - 2017-07-03 23:58 - 00000000 ____D C:\Program Files (x86)\Microsoft LifeCam
2017-07-03 04:37 - 2017-07-12 15:43 - 00000022 _____ C:\WINDOWS\GPU-Z.INI
2017-07-03 04:35 - 2017-07-03 04:35 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2017-07-03 04:35 - 2017-07-03 04:35 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
2017-07-01 23:42 - 2017-07-01 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-07-01 23:42 - 2017-07-01 23:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonic Suite 3
2017-07-01 23:42 - 2017-07-01 23:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonic Studio 3
2017-07-01 23:42 - 2017-07-01 23:42 - 00000000 ____D C:\Program Files\Realtek
2017-07-01 23:42 - 2017-07-01 23:42 - 00000000 ____D C:\Program Files\ASUSTeKcomputer.Inc
2017-07-01 23:41 - 2017-07-01 23:36 - 72520704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-07-01 23:41 - 2017-07-01 23:36 - 23547544 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRenderAVX64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 23447352 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRender64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 17398616 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioCapture64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 15202032 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE3.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 14057248 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 13122576 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 12988336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 10532040 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 07555174 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-07-01 23:41 - 2017-07-01 23:36 - 07172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 07096184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 06264632 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 06198136 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2017-07-01 23:41 - 2017-07-01 23:36 - 05793520 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 05593608 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 05499904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-07-01 23:41 - 2017-07-01 23:36 - 05346992 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 03299816 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 03295064 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 03283240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 03204096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 03201376 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 03014144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-07-01 23:41 - 2017-07-01 23:36 - 02995000 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 02993720 _____ (Audyssey Labs) C:\WINDOWS\system32\AudysseyEfx.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 02828432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 02825096 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 02706856 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 02444688 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 02201088 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 02190976 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 02110584 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 02050168 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01959600 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01921016 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2017-07-01 23:41 - 2017-07-01 23:36 - 01780616 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01615656 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01529136 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01508928 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01422920 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01382232 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01360512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01337632 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01334376 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01213656 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01186816 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01166152 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01133584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01003856 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 01003328 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00999848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00984912 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00965024 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00962120 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00931616 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00923736 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00873456 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00865912 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00859216 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00850408 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00721800 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00708304 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00689880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00678176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00677664 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00618176 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00601136 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00588032 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00574752 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00571376 _____ (Intel Corporation) C:\WINDOWS\system32\tbb_waves.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00514520 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00500552 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00499152 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00447712 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00445392 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00441264 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00438688 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CAF64APO2.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00428224 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00416504 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00387304 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00381400 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00378384 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00366112 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00362048 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00360344 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00341144 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00341144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00330552 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00327448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00310416 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00258856 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00253896 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00253856 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00252872 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00231912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00221960 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00214824 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00209528 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00203840 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00190928 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00190928 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00179592 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00158688 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00154360 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00134192 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00118592 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00118584 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00112488 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Caf64api.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00105304 _____ C:\WINDOWS\system32\audioLibVc.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00090912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00088312 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00084608 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00083624 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00075536 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-07-01 23:41 - 2017-07-01 23:36 - 00005604 _____ C:\WINDOWS\system32\cxapo.lncs
2017-07-01 23:41 - 2017-07-01 23:36 - 00000736 _____ C:\WINDOWS\system32\cxapo.prop
2017-07-01 04:33 - 2017-06-27 16:27 - 00135616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-07-01 04:33 - 2017-03-10 17:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-07-01 04:33 - 2017-03-10 17:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-07-01 04:33 - 2017-03-10 17:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-07-01 04:33 - 2017-03-10 17:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-07-01 04:32 - 2017-07-01 04:32 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-07-01 04:31 - 2017-06-27 18:39 - 40239736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 35838912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 35314296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 28953536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 13559376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 12337296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 12132272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 11501776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 10381664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 09982456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 04163008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 03595384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438476.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 01597888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438476.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 01276992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 01067128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 01004664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00996760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00995224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00972736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00924096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00781728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00689808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00618744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00617416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00584128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00578056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-07-01 04:31 - 2017-06-27 18:39 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-07-01 04:31 - 2017-06-27 18:39 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-06-30 22:34 - 2017-06-30 22:34 - 00000000 ____D C:\ProgramData\F1 2016
2017-06-30 22:34 - 2017-06-30 22:34 - 00000000 ____D C:\ProgramData\Codemasters
2017-06-30 22:21 - 2017-06-30 22:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetEven
2017-06-30 21:43 - 2017-06-30 21:43 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Tempzxpsign83e8c27a23f7802a
2017-06-30 21:41 - 2017-06-30 21:41 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Tempzxpsignd5fd41ca0451a402
2017-06-30 13:17 - 2017-06-30 13:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\F1 2016
2017-06-29 20:20 - 2017-06-29 20:20 - 00000764 _____ C:\Users\Non-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2017-06-27 13:51 - 2017-06-27 13:51 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Klub 17
2017-06-27 12:10 - 2017-06-27 12:10 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2017-06-27 10:51 - 2017-06-27 10:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Rising 4
2017-06-27 10:29 - 2017-06-27 10:34 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\SniperElite4
2017-06-27 10:22 - 2017-06-27 10:22 - 00000000 ____D C:\ProgramData\Sniper Elite 4
2017-06-27 09:57 - 2017-06-27 09:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 4
2017-06-27 04:58 - 2017-06-27 04:58 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2017-06-27 04:58 - 2017-06-27 04:58 - 00000000 ____D C:\Program Files (x86)\DSPRobotics
2017-06-27 04:58 - 2017-06-27 04:58 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2017-06-27 04:57 - 2017-06-27 04:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2017-06-27 04:57 - 2017-06-27 04:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fruity Loops Studio
2017-06-27 04:57 - 2017-06-27 04:57 - 00000000 ____D C:\Program Files\Steinberg
2017-06-27 04:57 - 2017-06-27 04:57 - 00000000 ____D C:\Program Files\Image-Line
2017-06-27 04:57 - 2017-06-27 04:57 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2017-06-27 04:57 - 2017-06-27 04:57 - 00000000 ____D C:\Program Files (x86)\Vstplugins
2017-06-27 04:56 - 2015-03-11 11:47 - 01554944 _____ (HMS hxxp://hp.vector.co.jp/authors/VA012897/) C:\WINDOWS\SysWOW64\vorbis.acm
2017-06-27 04:56 - 2015-03-11 11:47 - 01470976 _____ (HMS hxxp://hp.vector.co.jp/authors/VA012897/) C:\WINDOWS\system32\vorbis.acm
2017-06-27 04:55 - 2017-06-27 04:57 - 00000000 ____D C:\Program Files (x86)\Image-Line
2017-06-27 04:17 - 2017-06-27 04:17 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Sony Creative Software Inc
2017-06-27 03:46 - 2017-06-27 03:46 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Publish Providers
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-07-27 01:47 - 2017-05-22 10:09 - 00000000 ____D C:\FRST
2017-07-27 01:44 - 2017-05-05 02:34 - 00000000 ____D C:\Users\Dennis\AppData\Local\CrashDumps
2017-07-27 01:43 - 2017-05-08 00:07 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\CrashDumps
2017-07-27 01:39 - 2017-05-14 03:48 - 00000000 ____D C:\ProgramData\NVIDIA
2017-07-27 01:36 - 2017-05-14 03:57 - 03233290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-27 01:36 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-27 01:34 - 2017-05-14 03:54 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{7E056D14-3095-4B06-A344-CFF3709C8649}
2017-07-27 01:30 - 2017-05-14 03:48 - 05077912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-07-27 01:30 - 2017-05-14 03:20 - 00253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-07-27 01:28 - 2017-03-18 07:40 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-07-27 01:27 - 2017-05-22 05:48 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Amazon Cloud Drive
2017-07-27 01:18 - 2017-05-14 03:48 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-07-26 23:42 - 2017-05-14 03:49 - 00000000 ____D C:\Users\Non-Admin
2017-07-26 23:09 - 2017-06-23 20:09 - 00004166 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{FC851E64-E83F-425A-A7AF-E5CF3855CA90}
2017-07-23 04:05 - 2017-05-14 05:05 - 00000000 ____D C:\WINDOWS\Minidump
2017-07-23 04:05 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-07-19 20:28 - 2017-05-04 19:03 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Comms
2017-07-19 01:41 - 2017-03-18 17:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-19 01:37 - 2017-05-08 03:07 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\vlc
2017-07-18 20:30 - 2017-06-12 22:05 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\UnrealEngine
2017-07-18 19:45 - 2017-05-14 03:49 - 00000000 ____D C:\Users\Dennis
2017-07-18 02:54 - 2017-05-14 03:54 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-07-18 02:24 - 2017-05-04 17:09 - 00000000 ____D C:\Program Files (x86)\Google
2017-07-18 02:04 - 2017-05-27 20:30 - 00000000 ____D C:\Program Files (x86)\Steam
2017-07-18 02:04 - 2017-05-23 01:14 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\BitTorrent DNA
2017-07-18 01:22 - 2017-05-23 01:14 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\BitTorrent
2017-07-18 01:22 - 2017-05-14 03:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-07-18 01:22 - 2017-05-12 12:04 - 00000000 ____D C:\Users\Public\OysterMug
2017-07-18 01:22 - 2017-05-05 03:47 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\vlc
2017-07-18 01:22 - 2017-05-04 19:21 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\IrfanView
2017-07-18 01:22 - 2017-05-04 18:05 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-18 01:22 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-07-18 01:22 - 2017-03-18 17:01 - 00000000 ____D C:\WINDOWS\INF
2017-07-18 01:22 - 2016-11-20 14:54 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-07-18 01:21 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\registration
2017-07-18 00:51 - 2017-05-05 13:53 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Razer
2017-07-18 00:45 - 2017-04-26 13:14 - 00000000 ____D C:\Games
2017-07-17 17:49 - 2017-05-14 03:20 - 00077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-07-17 16:57 - 2017-05-04 19:20 - 00000000 ____D C:\ProgramData\CLink4
2017-07-17 16:06 - 2017-05-04 19:37 - 01048576 _____ C:\WINDOWS\PE_Rom.dll
2017-07-17 15:55 - 2017-05-14 03:20 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-07-17 14:40 - 2017-05-04 17:11 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-17 05:38 - 2017-04-26 01:36 - 00000000 ___RD C:\Users\Dennis\OneDrive
2017-07-17 04:48 - 2017-06-23 20:34 - 00000000 ____D C:\Program Files\KMSpico
2017-07-17 04:34 - 2017-05-04 17:05 - 00000000 ____D C:\Users\Dennis\AppData\Local\Comms
2017-07-17 04:33 - 2017-05-04 17:03 - 00000000 ____D C:\Users\Dennis\AppData\Local\Packages
2017-07-17 04:29 - 2017-05-04 17:03 - 00000000 ____D C:\Users\Dennis\AppData\Local\ConnectedDevicesPlatform
2017-07-17 04:12 - 2017-05-04 23:10 - 00000000 ____D C:\Users\Dennis\AppData\Local\ElevatedDiagnostics
2017-07-16 02:17 - 2017-05-04 17:09 - 00000000 ____D C:\Users\Dennis\AppData\Local\Google
2017-07-15 16:47 - 2017-06-26 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-07-15 16:47 - 2017-06-26 00:05 - 00000000 ____D C:\Program Files (x86)\Wondershare
2017-07-14 12:02 - 2017-05-14 02:35 - 00000008 __RSH C:\ProgramData\ntuser.pol
2017-07-14 10:09 - 2015-12-03 11:12 - 00116448 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys
2017-07-14 10:09 - 2015-10-06 22:30 - 00087984 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwfp.sys
2017-07-14 10:06 - 2017-05-22 04:56 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-07-14 10:03 - 2017-05-04 19:24 - 00000837 _____ C:\WINDOWS\Ascd_ProcessLog.ini
2017-07-14 10:03 - 2017-05-04 19:23 - 00047806 _____ C:\WINDOWS\Ascd_tmp.ini
2017-07-14 09:55 - 2017-03-18 17:03 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-07-14 09:55 - 2017-03-18 07:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-07-14 06:03 - 2017-06-26 00:05 - 00000000 ____D C:\ProgramData\Wondershare
2017-07-14 05:51 - 2017-06-26 00:05 - 00000000 ____D C:\ProgramData\Wondershare Video Converter Ultimate
2017-07-14 01:36 - 2017-05-04 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2017-07-14 01:36 - 2017-05-04 19:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-07-14 01:36 - 2017-05-04 19:23 - 00000000 ____D C:\Program Files (x86)\ASUS
2017-07-14 01:31 - 2017-05-04 19:27 - 00000000 ____D C:\ProgramData\Intel
2017-07-14 00:56 - 2017-05-04 19:27 - 00000000 ____D C:\Program Files (x86)\Intel
2017-07-14 00:54 - 2017-05-08 20:10 - 00000000 ____D C:\Program Files (x86)\Razer Chroma SDK
2017-07-13 15:44 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\rescache
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ___RD C:\Program Files\Windows Defender
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-07-12 12:35 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-07-12 08:01 - 2017-05-26 20:42 - 00002769 _____ C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2017-07-12 02:55 - 2017-03-18 16:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-12 02:54 - 2017-05-04 17:11 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-12 02:52 - 2017-05-05 11:30 - 00005120 _____ C:\Users\Dennis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-10 23:54 - 2017-05-04 17:03 - 00000000 ____D C:\Users\Dennis\AppData\Local\VirtualStore
2017-07-10 23:03 - 2017-05-14 03:48 - 00000000 ____D C:\ProgramData\Razer
2017-07-10 22:47 - 2017-05-04 19:30 - 00000000 ____D C:\Users\Dennis\AppData\Local\Razer
2017-07-10 22:43 - 2017-05-04 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2017-07-10 22:42 - 2017-05-14 03:48 - 00000000 ____D C:\Program Files (x86)\Razer
2017-07-10 21:17 - 2017-05-04 18:23 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2017-07-10 04:54 - 2017-05-17 13:33 - 09720048 _____ C:\WINDOWS\PE_File.dll
2017-07-09 18:30 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-07-08 07:05 - 2017-05-23 01:17 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\BitTorrent
2017-07-08 05:33 - 2017-05-17 16:14 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\dvdcss
2017-07-08 05:27 - 2017-05-27 02:52 - 00009216 _____ C:\Users\Non-Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-04 23:48 - 2017-05-14 03:54 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2017-07-04 07:10 - 2017-06-09 06:39 - 00000000 ____D C:\Program Files (x86)\SoundSpectrum
2017-07-04 02:48 - 2017-06-17 21:15 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Sony
2017-07-04 02:48 - 2017-06-17 21:15 - 00000000 ____D C:\Users\Dennis\AppData\Local\Sony
2017-07-04 00:07 - 2017-05-04 19:35 - 00000000 ____D C:\Program Files (x86)\Java
2017-07-04 00:06 - 2017-05-04 19:35 - 00268864 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2017-07-04 00:06 - 2017-05-04 19:35 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-07-03 23:58 - 2017-05-30 02:17 - 00000000 ____D C:\Users\Dennis\AppData\Roaming\Logitech
2017-07-03 23:58 - 2017-05-16 01:06 - 00002410 _____ C:\Users\Dennis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-07-03 23:58 - 2017-05-14 03:54 - 00003282 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-07-03 04:36 - 2017-05-22 05:51 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2017-07-03 02:21 - 2017-05-22 04:57 - 00000000 ____D C:\ProgramData\Trend Micro
2017-07-01 23:56 - 2017-05-04 19:08 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2017-07-01 23:42 - 2017-05-14 03:49 - 00000000 ____D C:\WINDOWS\system32\DAX2
2017-07-01 23:42 - 2017-05-14 03:49 - 00000000 ____D C:\ProgramData\Audyssey Labs
2017-07-01 23:42 - 2017-05-04 21:51 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-07-01 23:42 - 2017-05-04 21:51 - 00000000 ____D C:\WINDOWS\system32\RTCOM
2017-07-01 23:41 - 2017-05-07 23:56 - 00000000 ____D C:\ProgramData\SS3
2017-07-01 23:38 - 2017-05-07 23:56 - 00000000 ____D C:\WINDOWS\system32\DAX3
2017-07-01 23:36 - 2017-05-04 21:51 - 00003008 ____N C:\WINDOWS\system32\Drivers\DTSU2P.DAT
2017-07-01 04:33 - 2017-05-14 03:48 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-06-30 10:47 - 2017-03-18 17:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-30 10:47 - 2017-03-18 17:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-28 19:12 - 2017-05-04 18:47 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Google
2017-06-27 18:39 - 2017-05-12 07:16 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-06-27 18:39 - 2017-05-04 20:55 - 04208984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-06-27 18:39 - 2017-05-04 20:55 - 03709952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-06-27 18:39 - 2017-05-04 20:55 - 00046373 _____ C:\WINDOWS\system32\nvinfo.pb
2017-06-27 17:03 - 2017-05-14 03:48 - 06462400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-06-27 17:03 - 2017-05-14 03:48 - 02478712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-06-27 17:03 - 2017-05-14 03:48 - 01762936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-06-27 17:03 - 2017-05-14 03:48 - 00549312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-06-27 17:03 - 2017-05-14 03:48 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-06-27 17:03 - 2017-05-14 03:48 - 00082040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-06-27 17:03 - 2017-05-14 03:48 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-06-27 16:52 - 2017-05-14 03:48 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-06-27 10:24 - 2017-05-14 03:54 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-27 10:24 - 2017-05-14 03:54 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-27 10:24 - 2017-05-14 03:54 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-27 10:24 - 2017-05-14 03:54 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-27 10:24 - 2017-05-14 03:54 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-27 10:24 - 2017-05-14 03:54 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-27 10:24 - 2017-05-14 03:54 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-27 10:24 - 2017-05-14 03:54 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-27 10:24 - 2017-05-14 03:48 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-06-27 10:24 - 2017-05-14 03:48 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-06-27 06:25 - 2017-05-04 18:47 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Packages
2017-06-27 04:34 - 2017-05-04 18:47 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\VirtualStore
2017-06-27 03:46 - 2017-06-17 21:17 - 00000000 ____D C:\Users\Non-Admin\AppData\Roaming\Sony
2017-06-27 03:39 - 2017-06-17 21:17 - 00000000 ____D C:\Users\Non-Admin\AppData\Local\Sony
==================== Files in the root of some directories =======
2017-01-14 07:37 - 2017-01-14 07:37 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2017-06-17 19:54 - 2017-06-17 19:56 - 0292886 _____ () C:\Users\Dennis\AppData\Roaming\DXDriver_Install.log
2017-07-16 02:11 - 2017-07-16 02:16 - 0055476 _____ () C:\Users\Dennis\AppData\Roaming\ProfileImage.png
2017-05-22 05:56 - 2017-05-22 05:56 - 0313452 _____ () C:\Users\Dennis\AppData\Local\ars.cache
2017-05-22 05:57 - 2017-05-22 05:57 - 0834554 _____ () C:\Users\Dennis\AppData\Local\census.cache
2017-05-05 11:30 - 2017-07-12 02:52 - 0005120 _____ () C:\Users\Dennis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-05-22 04:56 - 2017-05-22 04:56 - 0000036 _____ () C:\Users\Dennis\AppData\Local\housecall.guid.cache
2017-05-22 05:14 - 2017-05-22 05:57 - 0000010 _____ () C:\Users\Dennis\AppData\Local\sponge.last.runtime.cache
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

ATTENTION: ==> Could not access BCD.
LastRegBack: 2017-07-22 05:18
==================== End of FRST.txt ============================


#8 Opmpro

Opmpro
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:54 PM

Posted 27 July 2017 - 01:24 AM

I did the very best I could to get you this information and I tried over a 60 min period to post this. I know it is a dup post but you have no idea how hard it was just to get you this. I have a question. Can this malware be effecting my phone as well? I have a software update for my phone and the battery is dying really fast for no reason. It was connected via Bluetooth to the PC and was set up to file share. I am wondering if I should wipe the phone and not do the update. Thanks for everything.



#9 nasdaq

nasdaq

  • Malware Response Team
  • 39,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:54 PM

Posted 27 July 2017 - 08:48 AM



Hi,

Please disable this Emsissoft anti-malware. It should not be running while Kasperky if Enabled.
AV: Emsisoft Anti-Malware (Enabled - Out of date) {701CB209-EBBC-AADC-11E6-DE73E7AF4C9D}
AS: Emsisoft Anti-Malware (Enabled - Out of date) {CB7D53ED-CD86-A552-2B56-E5019C280620}
===


Press the Windows key + r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.

Please copy the entire contents of the code box below to a new file.


Start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

HKU\S-1-5-21-2691424144-4102199767-1168573955-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2691424144-4102199767-1168573955-1005\...\Run: [AdobeBridge] => [X]
GroupPolicyScripts: Restriction <==== ATTENTION
CHR Extension: (Avast Online Security) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-07-10]
CHR Extension: (Kaspersky Protection) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpeeaghdjmhlakojjcgfdhgcejdaefmi [2017-07-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-04]
CHR Extension: (Hover Zoom) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2017-05-04]
CHR Extension: (Chrome Media Router) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-13]
CHR Extension: (Amazon Assistant for Chrome) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2017-07-09]
CHR Extension: (Chrome Media Router) - C:\Users\Dennis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-12]
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
S2 Crypkey License; crypserv.exe [X]
ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
ContextMenuHandlers02: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers03: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers06: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} =>  -> No File
ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
FirewallRules: [{2368BDD5-B01D-4CA7-86F7-FEE97A8A8FEA}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{5351BD9D-32CE-4AA3-AADB-1BEA99D3D310}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Repair these services.

Please Download Tweaking.com - Windows Repair from Here
  • Install and then run the program
  • Execute the instructions on Step 1 Important
  • Click Next on Step 2 Optional, do the Pre Scan skip Step 3 and 4 Optional for now.
  • On Step 5 Backup System Restore Do a Registry backup. When you have completed this click Next
  • Click Repairs - Open Repairs in the bottom right corner
  • Uncheck the All repair button then select just the item(s) listed below

  • 01 - Repair Registry Permissions
    03 - Reset Service permissions
    04 - Register System Files
    05 - Repair WMI
    06 - Repair Windows Firewall
    10 - Remove Policies Set By Infections
    17 - Repair Windows Updates
    21 - Repair MSI (Windows Installer)
    26 - Restore Important Windows Services
    27 - Set Windows Service to Default Startup
  • Click the Start button and let the process run to completion. Copy any error messages into Notepad, Save it on your Desktop. ( Reboot if asked to do so)
  • Please copy and paste the Contents of this file on your next reply.
===

Restart the computer normally.

Post the Fixllog.txt for my review.

If any problems please run the Farbar tool one more time.
Post fresh FRST.txt and Addition.txt logs for my review.
Make sure that the box to create an Addition.txt is marked.

Please let me know what problem persists with this computer.

#10 nasdaq

nasdaq

  • Malware Response Team
  • 39,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:54 PM

Posted 02 August 2017 - 09:49 AM

Are you still with me?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users