Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help me Eliminate malware alpha.exe & zed.exe


  • This topic is locked This topic is locked
19 replies to this topic

#1 winglien

winglien

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:25 PM

Posted 15 September 2017 - 07:09 PM

Greeting, im windows 10 home user.
 
i have problem, start about 5 days ago, PC get glicth for 1-3sec repeatable each 9-10 minute, no virus found from anti virus, then after scan with "malwarebytes" this found as trojan and riskware bitcoinminer, name alpha exe and zed exe, inside folder Temp -> folder ati & folder nvd. somehow after quarantine and deleted, the malware still keep poping up on malwarebytes guard, is very annoying. so i read from this forum there already solved topic about this by malware respon team, with the topic recomended, i already using:
1.malwarebytes
2.FRST64
3.Mbar
4.RGSA
5.hitman pro
6. rogue killer
7.adwcleaner
 
but still the malware not complete remove and will always poping up back again. somehow it need special fix and remove the root of problem (PUPs)?
please help me to fix this problem (remove completely/ full eliminate this malware).
 
here i attach some report from scan FRST64,mbar,RGSA,adwcleaner

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2017
Ran by Wingly (administrator) on WINGLIEN (16-09-2017 07:55:37)
Running from C:\Users\Wingly\Desktop
Loaded Profiles: Wingly (Available Profiles: Wingly)
Platform: Windows 10 Home Version 1703 (X64) Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\afwServ.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(McAfee, Inc.) C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Nitro PDF Software) C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe
() C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB3\Sound Blaster X-Fi MB3\SBXFIMB3.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.587\SSScheduler.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.21.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(BitTorrent Inc.) C:\Users\Wingly\AppData\Roaming\BitTorrent\BitTorrent.exe
(BitTorrent Inc.) C:\Users\Wingly\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe
(BitTorrent Inc.) C:\Users\Wingly\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_27_0_0_130.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_27_0_0_130.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-19] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-07-07] (Realtek Semiconductor)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-08-24] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [289248 2017-09-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Sound Blaster X-Fi MB 3] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB3\Sound Blaster X-Fi MB3\SBXFIMB3.exe [2112512 2015-06-12] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-08-24] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [406664 2016-10-02] (Power Software Ltd)
HKU\S-1-5-21-114570740-81500683-4137005013-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3071776 2017-09-07] (Valve Corporation)
HKU\S-1-5-21-114570740-81500683-4137005013-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9855192 2017-09-08] (Piriform Ltd)
HKU\S-1-5-21-114570740-81500683-4137005013-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [804352 2017-03-19] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2016-06-05]
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe (GIGABYTE Technology Co.,Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-06-05]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-07-15]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.587\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Wingly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\winnet.exe [2017-09-10] (Microsoft Corporation)
GroupPolicy: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1    mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{58b6daa2-11c5-4548-900c-005b45d7ed06}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{b49300c2-105e-450b-9777-f215fca24d72}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{ced96a4a-d95d-4cb4-9f49-736ae4b57689}: [DhcpNameServer] 192.168.43.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-114570740-81500683-4137005013-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={AB10230A-57FA-475B-8D10-27647E55E2EF}&mid=0f7126b8f33947cfa75691c41a58964a-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=AVG&coid=avgtbavg&cmpid=0117tb&pr=fr&d=2016-12-08 09:54:54&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-114570740-81500683-4137005013-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={AB10230A-57FA-475B-8D10-27647E55E2EF}&mid=0f7126b8f33947cfa75691c41a58964a-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=AVG&coid=avgtbavg&cmpid=0117tb&pr=fr&d=2016-12-08 09:54:54&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_112\bin\ssv.dll [2016-12-07] (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_112\bin\jp2ssv.dll [2016-12-07] (Oracle Corporation)
BHO-x32: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: snvmmumo.default
FF ProfilePath: C:\Users\Wingly\AppData\Roaming\Mozilla\Firefox\Profiles\snvmmumo.default [2017-09-16]
FF NewTab: Mozilla\Firefox\Profiles\snvmmumo.default -> about:newtab
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\snvmmumo.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\snvmmumo.default -> Yahoo! Powered
FF Homepage: Mozilla\Firefox\Profiles\snvmmumo.default -> about:home
FF Keyword.URL: Mozilla\Firefox\Profiles\snvmmumo.default -> user_pref("keyword.URL", true);
FF Extension: (Bing Search) - C:\Users\Wingly\AppData\Roaming\Mozilla\Firefox\Profiles\snvmmumo.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-12-07]
FF SearchPlugin: C:\Users\Wingly\AppData\Roaming\Mozilla\Firefox\Profiles\snvmmumo.default\searchplugins\bing-.xml [2016-12-07]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll [2017-09-13] ()
FF Plugin: @java.com/DTPlugin,version=11.112.2 -> C:\Program Files\Java\jre1.8.0_112\bin\dtplugin\npDeployJava1.dll [2016-12-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.112.2 -> C:\Program Files\Java\jre1.8.0_112\bin\plugin2\npjp2.dll [2016-12-07] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-13] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-15] (CANON INC.)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 10\npnitromozilla.dll [2015-07-03] (Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-14] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Wingly\AppData\Local\Google\Chrome\User Data\Default [2017-09-16]
CHR Extension: (Google Slides) - C:\Users\Wingly\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-09-15]
CHR Extension: (Google Docs) - C:\Users\Wingly\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-09-15]
CHR Extension: (Google Drive) - C:\Users\Wingly\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-15]
CHR Extension: (YouTube) - C:\Users\Wingly\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-15]
CHR Extension: (Google Docs Offline) - C:\Users\Wingly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Wingly\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-15]
CHR Extension: (Gmail) - C:\Users\Wingly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-15]
CHR Extension: (Chrome Media Router) - C:\Users\Wingly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-15]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [276328 2017-09-07] (AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [324096 2017-09-07] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7502936 2017-09-07] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-08-24] (AVG Technologies CZ, s.r.o.)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2016-06-05] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2016-06-05] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [406016 2011-09-14] (Creative Technology Ltd) [File not signed]
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [135488 2017-09-14] (SurfRight B.V.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-27] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-15] ()
R2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe [187792 2016-08-23] (McAfee, Inc.)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [451072 2015-10-06] (Rivet Networks) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-21] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.587\McCHSvc.exe [404376 2017-06-30] (McAfee, Inc.)
R2 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [324760 2015-07-03] (Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [418968 2015-07-03] ()
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [7986816 2016-11-06] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-04] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-04] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-02] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-04] (NVIDIA Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-07-26] (AVG Technologies CZ, s.r.o.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-19] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgbdisk; C:\WINDOWS\system32\drivers\avgbdiska.sys [166624 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\system32\drivers\avgbidsdrivera.sys [314128 2017-09-07] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\system32\drivers\avgbidsha.sys [192584 2017-09-07] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\system32\drivers\avgbloga.sys [336896 2017-09-07] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\system32\drivers\avgbuniva.sys [51336 2017-09-07] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\system32\drivers\avgHwid.sys [39424 2017-09-07] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\system32\drivers\avgMonFlt.sys [140192 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 avgNetSec; C:\WINDOWS\system32\drivers\avgNetSec.sys [547480 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\system32\drivers\avgRdr2.sys [102792 2017-09-07] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\system32\drivers\avgRvrt.sys [76832 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\system32\drivers\avgSnx.sys [1008800 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\system32\drivers\avgSP.sys [583288 2017-09-07] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\system32\drivers\avgStm.sys [191720 2017-09-07] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\system32\drivers\avgVmm.sys [353744 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [141896 2015-09-30] (Rivet Networks, LLC.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-08-24] ()
R3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2017-03-19] (Qualcomm Atheros, Inc.)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [192960 2017-09-14] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [101824 2017-09-16] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [45472 2017-09-16] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253888 2017-09-16] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [94144 2017-09-16] (Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_f9309145156afb40\nvlddmkm.sys [14456912 2017-05-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-05-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-05-04] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-05-04] (NVIDIA Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-19] ()
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-19] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-19] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-19] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [37344 2017-08-31] (Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-16 07:55 - 2017-09-16 07:55 - 000022458 _____ C:\Users\Wingly\Desktop\FRST.txt
2017-09-16 07:55 - 2017-09-16 07:55 - 000000000 ____D C:\Users\Wingly\Desktop\FRST-OlderVersion
2017-09-16 07:34 - 2017-09-16 07:34 - 000000946 _____ C:\Users\Wingly\Desktop\SALog.txt
2017-09-16 07:33 - 2017-09-16 07:33 - 000899584 _____ C:\Users\Wingly\Desktop\RGSA.exe
2017-09-16 07:15 - 2017-09-16 07:25 - 338087196 _____ C:\Users\Wingly\Downloads\[HorribleSubs] 18if - 11 [720p].mkv
2017-09-16 07:11 - 2017-09-16 07:22 - 276174353 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Made in Abyss - 11 [720p].mkv
2017-09-16 07:02 - 2017-09-16 07:23 - 360126567 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Vatican Kiseki Chousakan - 11 [720p].mkv
2017-09-16 07:02 - 2017-09-16 07:17 - 335285240 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Shoukoku no Altair - 10 [720p].mkv
2017-09-16 07:02 - 2017-09-16 07:15 - 337810862 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Jikan no Shihaisha - 11 [720p].mkv
2017-09-16 07:02 - 2017-09-16 07:11 - 340396254 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Jigoku Shoujo - Yoi no Togi - 10 [720p].mkv
2017-09-16 07:01 - 2017-09-16 07:22 - 433011320 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Shingeki no Bahamut - Virgin Soul - 22 [720p].mkv
2017-09-15 23:59 - 2017-09-16 06:56 - 000000000 ____D C:\Users\Wingly\Desktop\mbar
2017-09-15 23:59 - 2017-09-16 06:56 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-09-15 23:58 - 2017-09-15 23:59 - 016563352 _____ (Malwarebytes Corp.) C:\Users\Wingly\Desktop\mbar-1.09.3.1001.exe
2017-09-15 22:42 - 2017-09-15 23:36 - 000000000 ____D C:\Users\Wingly\Desktop\inaccesible folder
2017-09-15 19:37 - 2017-09-16 00:36 - 000028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2017-09-15 19:34 - 2017-09-16 00:33 - 000000000 ____D C:\AdwCleaner
2017-09-15 19:33 - 2017-09-15 19:36 - 000000000 ____D C:\ProgramData\RogueKiller
2017-09-15 19:33 - 2017-09-15 19:33 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2017-09-15 19:33 - 2017-09-15 19:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-09-15 19:33 - 2017-09-15 19:33 - 000000000 ____D C:\Program Files\RogueKiller
2017-09-15 19:30 - 2017-09-15 19:30 - 008182736 _____ (Malwarebytes) C:\Users\Wingly\Desktop\AdwCleaner.exe
2017-09-15 19:29 - 2017-09-15 19:32 - 035835424 _____ (Adlice Software ) C:\Users\Wingly\Desktop\RogueKiller_setup.exe
2017-09-15 19:29 - 2017-09-15 19:30 - 005660248 _____ (Swearware) C:\Users\Wingly\Desktop\ComboFix.exe
2017-09-15 18:39 - 2017-09-15 18:39 - 000001468 _____ C:\Users\Wingly\Desktop\berharap bantuan JO.txt
2017-09-15 16:49 - 2017-09-15 16:49 - 000002060 _____ C:\Users\Wingly\Desktop\Fixlog.txt
2017-09-15 15:43 - 2017-09-15 16:47 - 000000000 ____D C:\Users\Wingly\Desktop\anti zed exe, FRST64
2017-09-15 15:23 - 2017-09-16 07:55 - 002398720 _____ (Farbar) C:\Users\Wingly\Desktop\FRST64.exe
2017-09-15 15:23 - 2017-09-16 07:55 - 000000000 ____D C:\FRST
2017-09-15 07:10 - 2017-09-15 07:17 - 345223763 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Konbini Kareshi - 10 [720p].mkv
2017-09-15 07:10 - 2017-09-15 07:17 - 340536621 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Gamers! - 10 [720p].mkv
2017-09-14 23:13 - 2017-09-14 23:14 - 000000000 ____D C:\Program Files\CCleaner
2017-09-14 23:13 - 2017-09-14 23:13 - 000002858 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-09-14 23:13 - 2017-09-14 23:13 - 000002340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-14 23:13 - 2017-09-14 23:13 - 000002328 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-09-14 23:13 - 2017-09-14 23:13 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-09-14 23:13 - 2017-09-14 23:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-09-14 23:12 - 2017-09-14 23:19 - 000000000 ____D C:\Users\Wingly\AppData\Local\Google
2017-09-14 23:12 - 2017-09-14 23:18 - 000003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-09-14 23:12 - 2017-09-14 23:18 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-09-14 23:12 - 2017-09-14 23:13 - 000000000 ____D C:\Program Files (x86)\Google
2017-09-14 23:06 - 2017-09-14 23:06 - 000012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2017-09-14 22:50 - 2017-09-14 22:50 - 000001958 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2017-09-14 22:50 - 2017-09-14 22:50 - 000000000 ____D C:\Program Files\HitmanPro
2017-09-14 22:49 - 2017-09-14 22:53 - 000000000 ____D C:\ProgramData\HitmanPro
2017-09-14 08:12 - 2017-09-14 08:24 - 465820242 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Boruto - Naruto Next Generations - 24 [720p].mkv
2017-09-14 08:06 - 2017-09-14 08:23 - 549487223 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Yu-Gi-Oh! VRAINS - 18 [720p].mkv
2017-09-14 08:06 - 2017-09-14 08:23 - 338492681 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sakura Quest - 24 [720p].mkv
2017-09-14 08:06 - 2017-09-14 08:19 - 342933169 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Youkoso Jitsuryoku Shijou Shugi no Kyoubleepsu e - 10 [720p].mkv
2017-09-14 08:06 - 2017-09-14 08:12 - 159675292 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sagrada Reset - 24 [720p].mkv
2017-09-14 07:43 - 2017-09-16 06:44 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-09-14 07:43 - 2017-09-16 00:06 - 000253888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-09-14 07:43 - 2017-09-16 00:06 - 000101824 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-09-14 07:43 - 2017-09-16 00:06 - 000045472 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-09-14 07:43 - 2017-09-15 23:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-09-14 07:43 - 2017-09-14 07:43 - 000192960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-09-14 07:43 - 2017-09-14 07:43 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-09-14 07:43 - 2017-09-14 07:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-09-14 07:43 - 2017-09-14 07:43 - 000000000 ____D C:\Program Files\Malwarebytes
2017-09-14 07:43 - 2017-08-24 11:27 - 000077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-09-13 23:45 - 2017-09-15 07:58 - 000000000 ____D C:\Users\Wingly\AppData\Roaming\MPC-HC
2017-09-13 23:45 - 2017-09-13 23:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-09-13 23:45 - 2017-09-13 23:45 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2017-09-13 21:56 - 2017-09-13 23:34 - 000000000 ____D C:\Users\Wingly\Downloads\Documents\Diagnostic Tool for the Microsoft VM
2017-09-13 21:06 - 2017-09-13 21:06 - 000000000 ____D C:\WINDOWS\PCHEALTH
2017-09-13 21:01 - 2017-09-05 13:15 - 000871448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-09-13 21:01 - 2017-09-05 13:14 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-13 21:01 - 2017-09-05 13:12 - 001409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-09-13 21:01 - 2017-09-05 13:12 - 001292880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-09-13 21:01 - 2017-09-05 13:12 - 000627080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-09-13 21:01 - 2017-09-05 13:12 - 000081176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2017-09-13 21:01 - 2017-09-05 12:53 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-09-13 21:01 - 2017-09-05 12:53 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-09-13 21:01 - 2017-09-05 12:52 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-09-13 21:01 - 2017-09-05 12:50 - 004330920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2017-09-13 21:01 - 2017-09-05 12:46 - 004471888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-09-13 21:01 - 2017-09-05 12:45 - 005821496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-09-13 21:01 - 2017-09-05 12:45 - 002476712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-09-13 21:01 - 2017-09-05 12:45 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-09-13 21:01 - 2017-09-05 12:45 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-09-13 21:01 - 2017-09-05 12:45 - 000085784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2017-09-13 21:01 - 2017-09-05 12:44 - 000569264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-09-13 21:01 - 2017-09-05 12:43 - 000611096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-09-13 21:01 - 2017-09-05 12:43 - 000359560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-09-13 21:01 - 2017-09-05 12:43 - 000280480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-09-13 21:01 - 2017-09-05 12:43 - 000169376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-09-13 21:01 - 2017-09-05 12:43 - 000042456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-09-13 21:01 - 2017-09-05 12:42 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-09-13 21:01 - 2017-09-05 12:42 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-09-13 21:01 - 2017-09-05 12:42 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-09-13 21:01 - 2017-09-05 12:42 - 000291904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-09-13 21:01 - 2017-09-05 12:42 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-09-13 21:01 - 2017-09-05 12:41 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-09-13 21:01 - 2017-09-05 12:41 - 006761560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-13 21:01 - 2017-09-05 12:41 - 004671832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-09-13 21:01 - 2017-09-05 12:41 - 001106904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-09-13 21:01 - 2017-09-05 12:41 - 001013912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-09-13 21:01 - 2017-09-05 12:40 - 000052768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-09-13 21:01 - 2017-09-05 12:37 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-09-13 21:01 - 2017-09-05 12:28 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2017-09-13 21:01 - 2017-09-05 12:27 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-09-13 21:01 - 2017-09-05 12:26 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-09-13 21:01 - 2017-09-05 12:26 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-09-13 21:01 - 2017-09-05 12:25 - 013844480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-09-13 21:01 - 2017-09-05 12:25 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-09-13 21:01 - 2017-09-05 12:25 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-09-13 21:01 - 2017-09-05 12:25 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-09-13 21:01 - 2017-09-05 12:25 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-09-13 21:01 - 2017-09-05 12:24 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-09-13 21:01 - 2017-09-05 12:23 - 020509184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-09-13 21:01 - 2017-09-05 12:23 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-09-13 21:01 - 2017-09-05 12:22 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-09-13 21:01 - 2017-09-05 12:22 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-09-13 21:01 - 2017-09-05 12:21 - 006728704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-09-13 21:01 - 2017-09-05 12:21 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-13 21:01 - 2017-09-05 12:21 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-09-13 21:01 - 2017-09-05 12:21 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-09-13 21:01 - 2017-09-05 12:21 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-09-13 21:01 - 2017-09-05 12:20 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-09-13 21:01 - 2017-09-05 12:20 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-09-13 21:01 - 2017-09-05 12:19 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-09-13 21:01 - 2017-09-05 12:19 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-09-13 21:01 - 2017-09-05 12:19 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-09-13 21:01 - 2017-09-05 12:19 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-09-13 21:01 - 2017-09-05 12:19 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2017-09-13 21:01 - 2017-09-05 12:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-09-13 21:01 - 2017-09-05 12:19 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-09-13 21:01 - 2017-09-05 12:18 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-09-13 21:01 - 2017-09-05 12:18 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-09-13 21:01 - 2017-09-05 12:18 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2017-09-13 21:01 - 2017-09-05 12:18 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-09-13 21:01 - 2017-09-05 12:18 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-09-13 21:01 - 2017-09-05 12:18 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2017-09-13 21:01 - 2017-09-05 12:18 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-09-13 21:01 - 2017-09-05 12:17 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2017-09-13 21:01 - 2017-09-05 12:17 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-09-13 21:01 - 2017-09-05 12:17 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-09-13 21:01 - 2017-09-05 12:17 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-09-13 21:01 - 2017-09-05 12:16 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-09-13 21:01 - 2017-09-05 12:16 - 000844288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-09-13 21:01 - 2017-09-05 12:16 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-09-13 21:01 - 2017-09-05 12:16 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-09-13 21:01 - 2017-09-05 12:16 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-09-13 21:01 - 2017-09-05 12:16 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-09-13 21:01 - 2017-09-05 12:15 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-09-13 21:01 - 2017-09-05 12:15 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-09-13 21:01 - 2017-09-05 12:15 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-09-13 21:01 - 2017-09-05 12:15 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-09-13 21:01 - 2017-09-05 12:15 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-09-13 21:01 - 2017-09-05 12:15 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-09-13 21:01 - 2017-09-05 12:15 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-09-13 21:01 - 2017-09-05 12:14 - 011887104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-09-13 21:01 - 2017-09-05 12:14 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-09-13 21:01 - 2017-09-05 12:14 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-09-13 21:01 - 2017-09-05 12:14 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-09-13 21:01 - 2017-09-05 12:13 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-09-13 21:01 - 2017-09-05 12:13 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-09-13 21:01 - 2017-09-05 12:13 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-09-13 21:01 - 2017-09-05 12:12 - 006265856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-09-13 21:01 - 2017-09-05 12:12 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-09-13 21:01 - 2017-09-05 12:12 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-09-13 21:01 - 2017-09-05 12:12 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-09-13 21:01 - 2017-09-05 12:12 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-09-13 21:01 - 2017-09-05 12:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-09-13 21:01 - 2017-09-05 12:11 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-09-13 21:01 - 2017-09-05 12:11 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-09-13 21:01 - 2017-09-05 12:11 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-09-13 21:01 - 2017-09-05 12:11 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-09-13 21:01 - 2017-09-05 12:11 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-09-13 21:01 - 2017-09-05 12:11 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-09-13 21:01 - 2017-09-05 12:10 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-09-13 21:01 - 2017-09-05 12:10 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-09-13 21:01 - 2017-09-05 12:10 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-09-13 21:01 - 2017-09-05 12:06 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2017-09-13 21:01 - 2017-09-05 12:06 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-09-13 21:01 - 2017-09-05 12:04 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-09-13 21:01 - 2017-09-05 12:04 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-09-13 21:00 - 2017-09-05 13:31 - 001596592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-09-13 21:00 - 2017-09-05 13:31 - 001346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-09-13 21:00 - 2017-09-05 13:31 - 001147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-09-13 21:00 - 2017-09-05 13:31 - 001024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-09-13 21:00 - 2017-09-05 13:31 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-09-13 21:00 - 2017-09-05 13:31 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-09-13 21:00 - 2017-09-05 13:31 - 000115792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-09-13 21:00 - 2017-09-05 13:30 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-09-13 21:00 - 2017-09-05 13:27 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-09-13 21:00 - 2017-09-05 13:27 - 000136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-09-13 21:00 - 2017-09-05 13:26 - 008319904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-09-13 21:00 - 2017-09-05 13:26 - 001930840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-09-13 21:00 - 2017-09-05 13:25 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-13 21:00 - 2017-09-05 13:25 - 000159648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-09-13 21:00 - 2017-09-05 13:24 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-09-13 21:00 - 2017-09-05 13:24 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-09-13 21:00 - 2017-09-05 13:23 - 004462120 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-09-13 21:00 - 2017-09-05 13:23 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-09-13 21:00 - 2017-09-05 13:21 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-09-13 21:00 - 2017-09-05 13:20 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-09-13 21:00 - 2017-09-05 13:19 - 004848960 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-09-13 21:00 - 2017-09-05 13:19 - 002443168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-09-13 21:00 - 2017-09-05 13:18 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-09-13 21:00 - 2017-09-05 13:18 - 005477096 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-13 21:00 - 2017-09-05 13:18 - 002972552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-09-13 21:00 - 2017-09-05 13:18 - 002647224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-09-13 21:00 - 2017-09-05 13:18 - 001668344 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-09-13 21:00 - 2017-09-05 13:18 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-09-13 21:00 - 2017-09-05 13:18 - 000685512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-09-13 21:00 - 2017-09-05 13:18 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-09-13 21:00 - 2017-09-05 13:17 - 000316320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-09-13 21:00 - 2017-09-05 13:16 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-09-13 21:00 - 2017-09-05 13:16 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-09-13 21:00 - 2017-09-05 13:16 - 000724200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-09-13 21:00 - 2017-09-05 13:16 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-09-13 21:00 - 2017-09-05 13:16 - 000546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-09-13 21:00 - 2017-09-05 13:16 - 000410168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-09-13 21:00 - 2017-09-05 13:16 - 000228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-09-13 21:00 - 2017-09-05 13:16 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-09-13 21:00 - 2017-09-05 13:16 - 000049720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-09-13 21:00 - 2017-09-05 13:15 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-09-13 21:00 - 2017-09-05 13:15 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-13 21:00 - 2017-09-05 13:15 - 000381824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-09-13 21:00 - 2017-09-05 13:15 - 000257440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-13 21:00 - 2017-09-05 13:14 - 021352656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-09-13 21:00 - 2017-09-05 13:14 - 004708504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-09-13 21:00 - 2017-09-05 13:14 - 001146176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-09-13 21:00 - 2017-09-05 13:14 - 000958664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-09-13 21:00 - 2017-09-05 13:14 - 000254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-09-13 21:00 - 2017-09-05 13:14 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-09-13 21:00 - 2017-09-05 13:13 - 001619816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-09-13 21:00 - 2017-09-05 13:13 - 000064680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-09-13 21:00 - 2017-09-05 13:11 - 002675104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-09-13 21:00 - 2017-09-05 13:11 - 000610720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2017-09-13 21:00 - 2017-09-05 13:11 - 000387936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-09-13 21:00 - 2017-09-05 12:45 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-09-13 21:00 - 2017-09-05 12:31 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-09-13 21:00 - 2017-09-05 12:30 - 001639936 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-09-13 21:00 - 2017-09-05 12:30 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-09-13 21:00 - 2017-09-05 12:30 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-13 21:00 - 2017-09-05 12:30 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-09-13 21:00 - 2017-09-05 12:30 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-09-13 21:00 - 2017-09-05 12:30 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-09-13 21:00 - 2017-09-05 12:30 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-09-13 21:00 - 2017-09-05 12:30 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-09-13 21:00 - 2017-09-05 12:30 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-09-13 21:00 - 2017-09-05 12:29 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-09-13 21:00 - 2017-09-05 12:28 - 017371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-13 21:00 - 2017-09-05 12:28 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-13 21:00 - 2017-09-05 12:28 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-09-13 21:00 - 2017-09-05 12:27 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-09-13 21:00 - 2017-09-05 12:27 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-13 21:00 - 2017-09-05 12:27 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-13 21:00 - 2017-09-05 12:27 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-09-13 21:00 - 2017-09-05 12:27 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-09-13 21:00 - 2017-09-05 12:27 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-09-13 21:00 - 2017-09-05 12:27 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-09-13 21:00 - 2017-09-05 12:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-09-13 21:00 - 2017-09-05 12:26 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-09-13 21:00 - 2017-09-05 12:26 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\csplte.dll
2017-09-13 21:00 - 2017-09-05 12:26 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-09-13 21:00 - 2017-09-05 12:26 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-09-13 21:00 - 2017-09-05 12:26 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-13 21:00 - 2017-09-05 12:26 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-09-13 21:00 - 2017-09-05 12:26 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-09-13 21:00 - 2017-09-05 12:26 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-09-13 21:00 - 2017-09-05 12:26 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-09-13 21:00 - 2017-09-05 12:25 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-09-13 21:00 - 2017-09-05 12:25 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-09-13 21:00 - 2017-09-05 12:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-09-13 21:00 - 2017-09-05 12:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-09-13 21:00 - 2017-09-05 12:24 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-13 21:00 - 2017-09-05 12:24 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-09-13 21:00 - 2017-09-05 12:24 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-09-13 21:00 - 2017-09-05 12:24 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-09-13 21:00 - 2017-09-05 12:24 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-09-13 21:00 - 2017-09-05 12:24 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcrecovery.dll
2017-09-13 21:00 - 2017-09-05 12:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-09-13 21:00 - 2017-09-05 12:24 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-09-13 21:00 - 2017-09-05 12:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-09-13 21:00 - 2017-09-05 12:23 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-09-13 21:00 - 2017-09-05 12:23 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-09-13 21:00 - 2017-09-05 12:23 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-09-13 21:00 - 2017-09-05 12:23 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-09-13 21:00 - 2017-09-05 12:23 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-09-13 21:00 - 2017-09-05 12:23 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-09-13 21:00 - 2017-09-05 12:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-09-13 21:00 - 2017-09-05 12:23 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 023684608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-09-13 21:00 - 2017-09-05 12:22 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-09-13 21:00 - 2017-09-05 12:22 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-09-13 21:00 - 2017-09-05 12:21 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-09-13 21:00 - 2017-09-05 12:21 - 000946688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-09-13 21:00 - 2017-09-05 12:21 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-09-13 21:00 - 2017-09-05 12:21 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-09-13 21:00 - 2017-09-05 12:21 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-09-13 21:00 - 2017-09-05 12:21 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-09-13 21:00 - 2017-09-05 12:21 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-09-13 21:00 - 2017-09-05 12:20 - 007337472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-13 21:00 - 2017-09-05 12:20 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-13 21:00 - 2017-09-05 12:20 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-13 21:00 - 2017-09-05 12:20 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-09-13 21:00 - 2017-09-05 12:20 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-09-13 21:00 - 2017-09-05 12:20 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-09-13 21:00 - 2017-09-05 12:20 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-09-13 21:00 - 2017-09-05 12:19 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-09-13 21:00 - 2017-09-05 12:19 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-09-13 21:00 - 2017-09-05 12:19 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-09-13 21:00 - 2017-09-05 12:19 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-09-13 21:00 - 2017-09-05 12:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-09-13 21:00 - 2017-09-05 12:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-09-13 21:00 - 2017-09-05 12:19 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 012801536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-09-13 21:00 - 2017-09-05 12:18 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-13 21:00 - 2017-09-05 12:18 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-09-13 21:00 - 2017-09-05 12:18 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-09-13 21:00 - 2017-09-05 12:17 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-09-13 21:00 - 2017-09-05 12:17 - 008207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-09-13 21:00 - 2017-09-05 12:17 - 002765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-13 21:00 - 2017-09-05 12:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-13 21:00 - 2017-09-05 12:17 - 001397760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-09-13 21:00 - 2017-09-05 12:17 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-09-13 21:00 - 2017-09-05 12:16 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-13 21:00 - 2017-09-05 12:16 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-13 21:00 - 2017-09-05 12:16 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-13 21:00 - 2017-09-05 12:16 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 002503680 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-09-13 21:00 - 2017-09-05 12:15 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 001460224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 001143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 001077248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-09-13 21:00 - 2017-09-05 12:15 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-09-13 21:00 - 2017-09-05 12:14 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 002445824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 002006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-09-13 21:00 - 2017-09-05 12:14 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-09-13 21:00 - 2017-09-05 12:13 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-09-13 21:00 - 2017-09-05 12:13 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-09-13 21:00 - 2017-09-05 12:11 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-09-13 21:00 - 2017-09-05 12:10 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthHFSrv.dll
2017-09-13 21:00 - 2017-09-05 12:09 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-09-13 21:00 - 2017-09-05 12:07 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-09-13 21:00 - 2017-09-05 12:07 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-09-13 21:00 - 2017-09-05 12:06 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-09-13 21:00 - 2017-09-01 13:55 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-09-13 18:13 - 2017-09-13 18:13 - 000000000 ____D C:\Users\Wingly\Downloads\Documents\FeedbackHub
2017-09-13 16:14 - 2017-09-13 16:14 - 000133004 _____ C:\Users\Wingly\Desktop\Pengajuan Kedistributoran 2018.PDF
2017-09-13 08:04 - 2017-09-13 08:11 - 258928114 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Aho Girl - 11 [720p].mkv
2017-09-13 08:04 - 2017-09-13 08:08 - 178911149 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Tsurezure Children - 11 [720p].mkv
2017-09-13 08:03 - 2017-09-13 08:17 - 532609667 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Isekai wa Smartphone to Tomo ni. - 10 [720p].mkv
2017-09-13 08:03 - 2017-09-13 08:15 - 326477347 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Nana Maru San Batsu - 11 [720p].mkv
2017-09-12 08:41 - 2017-09-12 08:58 - 568014410 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Gundam Build Fighters GM's Counterattack - 01 [720p].mkv
2017-09-12 08:40 - 2017-09-12 08:53 - 338152764 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Tenshi no 3P! - 10 [720p].mkv
2017-09-12 08:39 - 2017-09-12 08:55 - 337613351 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Youkai Apartment no Yuuga na Nichijou - 11 [720p].mkv
2017-09-12 08:39 - 2017-09-12 08:53 - 339727407 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Isekai Shokudou - 11 [720p].mkv
2017-09-12 08:39 - 2017-09-12 08:50 - 231660499 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Koi to Uso - 11 [720p].mkv
2017-09-11 08:12 - 2017-09-11 08:24 - 331915577 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Princess Principal - 10 [720p].mkv
2017-09-11 08:12 - 2017-09-11 08:22 - 337921864 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Centaur no Nayami - 10 [720p].mkv
2017-09-11 08:11 - 2017-09-11 08:28 - 379055086 _____ C:\Users\Wingly\Downloads\[UTW]_Fate_Apocrypha_-_11_[h264-720p][B83F914E].mkv
2017-09-11 08:11 - 2017-09-11 08:25 - 349822958 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Knight's & Magic - 11 [720p].mkv
2017-09-11 08:11 - 2017-09-11 08:25 - 338627783 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Keppeki Danshi! Aoyama-kun - 11 [720p].mkv
2017-09-10 08:14 - 2017-09-10 08:29 - 338395256 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Katsugeki Touken Ranbu - 11 [720p].mkv
2017-09-10 08:12 - 2017-09-10 08:22 - 309480569 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Vatican Kiseki Chousakan - 10 [720p].mkv
2017-09-10 08:12 - 2017-09-10 08:16 - 183533563 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Action Heroine Cheer Fruits - 09 [720p].mkv
2017-09-09 21:56 - 2017-09-09 22:04 - 340394032 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Boku no Hero Academia - 35 [720p].mkv
2017-09-09 21:56 - 2017-09-09 22:03 - 338386266 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Hina Logi - From Luck & Logic - 11 [720p].mkv
2017-09-09 08:19 - 2017-09-09 08:28 - 300414294 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Made in Abyss - 10 [720p].mkv
2017-09-09 08:11 - 2017-09-09 08:27 - 348003697 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Vatican Kiseki Chousakan - 09 [720p].mkv
2017-09-09 08:10 - 2017-09-09 08:26 - 338020027 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Jikan no Shihaisha - 10 [720p].mkv
2017-09-09 08:10 - 2017-09-09 08:25 - 359810050 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Shoukoku no Altair - 09 [720p].mkv
2017-09-09 08:10 - 2017-09-09 08:23 - 337836108 _____ C:\Users\Wingly\Downloads\[HorribleSubs] 18if - 10 [720p].mkv
2017-09-08 23:13 - 2017-09-16 00:46 - 000000000 ____D C:\Users\Wingly\Downloads\[ Newytstorrent.com ] Guardians Of The Galaxy Vol 2 2017 720p BluRay
2017-09-08 07:47 - 2017-09-08 07:54 - 344857757 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Konbini Kareshi - 09 [720p].mkv
2017-09-08 07:47 - 2017-09-08 07:52 - 340427473 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Gamers! - 09 [720p].mkv
2017-09-07 19:36 - 2017-09-07 19:40 - 178685195 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Aho Girl - 08 [720p].mkv
2017-09-07 08:25 - 2017-09-07 08:38 - 341824369 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Boruto - Naruto Next Generations - 23 [720p].mkv
2017-09-07 08:25 - 2017-09-07 08:33 - 410108565 _____ C:\Users\Wingly\Downloads\[UTW]_Fate_Apocrypha_-_10_[h264-720p][3D8AE10D].mkv
2017-09-07 08:23 - 2017-09-07 08:39 - 344957713 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Yu-Gi-Oh! VRAINS - 17 [720p].mkv
2017-09-07 08:15 - 2017-09-07 08:25 - 179005697 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Tsurezure Children - 10 [720p].mkv
2017-09-07 08:13 - 2017-09-07 08:26 - 343106818 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Youkoso Jitsuryoku Shijou Shugi no Kyoubleepsu e - 09 [720p].mkv
2017-09-07 08:13 - 2017-09-07 08:24 - 338402099 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sakura Quest - 23 [720p].mkv
2017-09-07 08:13 - 2017-09-07 08:23 - 285490928 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sagrada Reset - 23 [720p].mkv
2017-09-07 06:47 - 2017-09-07 06:47 - 000402608 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2017-09-06 17:36 - 2017-09-06 17:36 - 000000000 ____D C:\Users\Wingly\Downloads\Chikan Densha (ep. 1-2 of 2) [uncen]
2017-09-06 17:35 - 2017-09-09 17:49 - 000000000 ____D C:\Users\Wingly\Downloads\Kunoichi Gakuen Ninpouchou (ep. 1-6 of 6) [uncen]
2017-09-06 17:34 - 2017-09-06 17:58 - 000000000 ____D C:\Users\Wingly\Downloads\Shoujo kara Shoujo e... (ep. 1-2)
2017-09-06 17:31 - 2017-09-06 17:31 - 000000000 ____D C:\Users\Wingly\Downloads\[RepoAnime] Queens Blade - Season 01 [BD Uncensored] [1920x1080 x264 AAC Eng Subbed]
2017-09-06 06:54 - 2017-09-06 07:02 - 338872713 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Isekai wa Smartphone to Tomo ni. - 09 [720p].mkv
2017-09-06 06:53 - 2017-09-06 07:04 - 339352292 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Isekai Shokudou - 10 [720p].mkv
2017-09-06 06:53 - 2017-09-06 07:01 - 328476173 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Nana Maru San Batsu - 10 [720p].mkv
2017-09-06 06:53 - 2017-09-06 06:58 - 178847723 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Aho Girl - 10 [720p].mkv
2017-09-05 11:24 - 2017-09-05 11:24 - 000000000 ____D C:\Users\Default\AppData\Local\AVG
2017-09-05 11:24 - 2017-09-05 11:24 - 000000000 ____D C:\Users\Default User\AppData\Local\AVG
2017-09-05 08:20 - 2017-09-05 08:29 - 338596754 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Tenshi no 3P! - 09 [720p].mkv
2017-09-05 08:20 - 2017-09-05 08:29 - 337667675 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Youkai Apartment no Yuuga na Nichijou - 10 [720p].mkv
2017-09-05 08:20 - 2017-09-05 08:26 - 219894237 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Koi to Uso - 10 [720p].mkv
2017-09-04 07:58 - 2017-09-04 08:09 - 266870728 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Princess Principal - 09 [720p].mkv
2017-09-04 07:56 - 2017-09-04 08:09 - 338777933 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Keppeki Danshi! Aoyama-kun - 10 [720p].mkv
2017-09-04 07:56 - 2017-09-04 08:08 - 338080769 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Centaur no Nayami - 09 [720p].mkv
2017-09-04 07:56 - 2017-09-04 08:04 - 349233667 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Knight's & Magic - 10 [720p].mkv
2017-09-03 10:22 - 2017-09-03 10:30 - 337948515 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Katsugeki Touken Ranbu - 09 [720p].mkv
2017-09-03 10:15 - 2017-09-03 10:25 - 337699508 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Hina Logi - From Luck & Logic - 10 [720p].mkv
2017-09-03 10:08 - 2017-09-03 10:34 - 912839884 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Boku no Hero Academia - 34 [1080p].mkv
2017-09-03 10:06 - 2017-09-03 10:24 - 354121152 _____ C:\Users\Wingly\Downloads\[HorribleSubs] The Reflection - 07 [720p].mkv
2017-09-03 10:06 - 2017-09-03 10:21 - 337617460 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Katsugeki Touken Ranbu - 10 [720p].mkv
2017-09-03 10:06 - 2017-09-03 10:15 - 190851774 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Action Heroine Cheer Fruits - 08 [720p].mkv
2017-09-02 09:18 - 2017-09-02 09:24 - 336960480 _____ C:\Users\Wingly\Downloads\[HorribleSubs] 18if - 09 [720p].mkv
2017-09-02 09:15 - 2017-09-02 09:27 - 340020578 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Jigoku Shoujo - Yoi no Togi - 08 [720p].mkv
2017-09-02 09:13 - 2017-09-02 09:24 - 338142500 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Jikan no Shihaisha - 09 [720p].mkv
2017-09-02 09:13 - 2017-09-02 09:21 - 329012922 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Shoukoku no Altair - 08 [720p].mkv
2017-09-02 09:13 - 2017-09-02 09:18 - 337266408 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Made in Abyss - 09 [720p].mkv
2017-09-01 14:26 - 2017-09-01 14:34 - 214994208 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sagrada Reset - 22 [720p].mkv
2017-09-01 14:25 - 2017-09-01 14:37 - 345695982 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Konbini Kareshi - 08 [720p].mkv
2017-09-01 14:25 - 2017-09-01 14:37 - 339141264 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Gamers! - 08 [720p].mkv
2017-09-01 14:25 - 2017-09-01 14:37 - 337891683 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sakura Quest - 22 [720p].mkv
2017-09-01 07:26 - 2017-09-01 09:52 - 000000000 ____D C:\Users\Wingly\Downloads\[DeadFish] Darker than Black - Kuro no Keiyakusha Gaiden [BD][720p][MP4][AAC]
2017-08-31 07:50 - 2017-08-31 08:00 - 343377931 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Youkoso Jitsuryoku Shijou Shugi no Kyoubleepsu e - 08 [720p].mkv
2017-08-31 07:50 - 2017-08-31 07:59 - 343768107 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Yu-Gi-Oh! VRAINS - 16 [720p].mkv
2017-08-31 07:50 - 2017-08-31 07:57 - 341825021 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Boruto - Naruto Next Generations - 22 [720p].mkv
2017-08-30 20:34 - 2017-08-30 20:35 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2017-08-30 20:34 - 2017-08-30 20:34 - 000000000 ____D C:\Users\Wingly\Downloads\Documents\My Games
2017-08-30 19:32 - 2017-08-30 19:32 - 000000567 _____ C:\Users\Public\Desktop\NieR - Automata.lnk
2017-08-30 16:26 - 2017-08-30 16:26 - 000000000 ____D C:\Users\Wingly\Downloads\[Eng-Sub] [English Subs] Monmusu Quest - もんむす・くえすと! Ep.01-02
2017-08-30 16:16 - 2017-08-30 08:14 - 000624201 ____N C:\Users\Wingly\Desktop\Sales Order UD. Tani Sejahtera.pdf
2017-08-30 09:02 - 2017-08-30 09:06 - 178290268 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Aho Girl - 09 [720p].mkv
2017-08-30 09:01 - 2017-08-30 09:10 - 328314282 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Nana Maru San Batsu - 09 [720p].mkv
2017-08-30 09:01 - 2017-08-30 09:08 - 339589921 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Isekai wa Smartphone to Tomo ni. - 08 [720p].mkv
2017-08-30 09:01 - 2017-08-30 09:08 - 178627561 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Tsurezure Children - 09 [720p].mkv
2017-08-29 13:31 - 2017-08-29 13:31 - 001007113 _____ C:\Users\Wingly\Desktop\Kode BookingUD. Tani Sejahtera.pdf
2017-08-29 08:17 - 2017-08-29 08:26 - 441439519 _____ C:\Users\Wingly\Downloads\[UTW]_Fate_Apocrypha_-_09_[h264-720p][3CC42AD2].mkv
2017-08-29 08:06 - 2017-08-29 08:20 - 338369179 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Tenshi no 3P! - 08 [720p].mkv
2017-08-29 08:06 - 2017-08-29 08:19 - 340554977 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Isekai Shokudou - 09 [720p].mkv
2017-08-29 08:06 - 2017-08-29 08:18 - 337672027 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Youkai Apartment no Yuuga na Nichijou - 09 [720p].mkv
2017-08-29 08:06 - 2017-08-29 08:17 - 232104532 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Koi to Uso - 09 [720p].mkv
2017-08-28 20:07 - 2017-09-15 13:11 - 000000000 ____D C:\Users\Wingly\Downloads\Shingeki no Bahamut - Virgin Soul
2017-08-28 09:28 - 2017-08-28 09:41 - 349710205 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Knight's & Magic - 09 [720p].mkv
2017-08-28 09:28 - 2017-08-28 09:40 - 337628191 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Keppeki Danshi! Aoyama-kun - 09 [720p].mkv
2017-08-28 09:28 - 2017-08-28 09:39 - 336932920 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Centaur no Nayami - 08 [720p].mkv
2017-08-28 09:28 - 2017-08-28 09:37 - 295069955 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Princess Principal - 08 [720p].mkv
2017-08-27 19:58 - 2017-08-27 20:02 - 197410841 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Action Heroine Cheer Fruits - 07 [720p].mkv
2017-08-27 08:44 - 2017-08-27 08:56 - 353726812 _____ C:\Users\Wingly\Downloads\[HorribleSubs] The Reflection - 06 [720p].mkv
2017-08-27 08:44 - 2017-08-27 08:53 - 338393439 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Shoukoku no Altair - 07 [720p].mkv
2017-08-26 12:58 - 2017-08-26 13:12 - 338253022 _____ C:\Users\Wingly\Downloads\[HorribleSubs] 18if - 08 [720p].mkv
2017-08-26 12:57 - 2017-08-26 13:10 - 302840150 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Vatican Kiseki Chousakan - 08 [720p].mkv
2017-08-26 12:54 - 2017-08-26 13:06 - 339496494 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Jigoku Shoujo - Yoi no Togi - 07 [720p].mkv
2017-08-26 12:46 - 2017-08-26 13:18 - 1065548994 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Shoukoku no Altair - 06 [720p].mkv
2017-08-26 12:46 - 2017-08-26 12:58 - 338288504 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Hina Logi - From Luck & Logic - 09 [720p].mkv
2017-08-26 12:46 - 2017-08-26 12:56 - 338094596 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Jikan no Shihaisha - 08 [720p].mkv
2017-08-26 12:46 - 2017-08-26 12:54 - 283009188 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Made in Abyss - 08 [720p].mkv
2017-08-25 12:05 - 2017-08-25 12:11 - 345805770 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Konbini Kareshi - 07 [720p].mkv
2017-08-25 12:05 - 2017-08-25 12:08 - 339585528 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Gamers! - 07 [720p].mkv
2017-08-22 21:38 - 2017-08-22 21:49 - 339182179 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Isekai wa Smartphone to Tomo ni. - 07 [720p].mkv
2017-08-22 21:36 - 2017-08-22 21:43 - 179118477 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Tsurezure Children - 08 [720p].mkv
2017-08-22 21:31 - 2017-08-22 21:46 - 329022725 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Nana Maru San Batsu - 08 [720p].mkv
2017-08-22 21:30 - 2017-08-22 21:40 - 340650290 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Boruto - Naruto Next Generations - 21 [720p].mkv
2017-08-22 21:19 - 2017-08-22 21:38 - 343213801 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Youkoso Jitsuryoku Shijou Shugi no Kyoubleepsu e - 07 [720p].mkv
2017-08-22 21:19 - 2017-08-22 21:30 - 338348842 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sakura Quest - 21 [720p].mkv
2017-08-22 21:19 - 2017-08-22 21:30 - 213649295 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sagrada Reset - 21 [720p].mkv
2017-08-22 16:14 - 2017-08-22 16:19 - 371412428 _____ C:\Users\Wingly\Downloads\[UTW]_Fate_Apocrypha_-_08_[h264-720p][D59A64E0].mkv
2017-08-22 08:58 - 2017-08-22 09:13 - 340145382 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Isekai Shokudou - 08 [720p].mkv
2017-08-22 08:58 - 2017-08-22 09:13 - 338336755 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Tenshi no 3P! - 07 [720p].mkv
2017-08-22 08:58 - 2017-08-22 09:11 - 348692800 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Knight's & Magic - 08 [720p].mkv
2017-08-22 08:58 - 2017-08-22 09:11 - 337725993 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Youkai Apartment no Yuuga na Nichijou - 08 [720p].mkv
2017-08-22 08:58 - 2017-08-22 09:06 - 235064894 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Koi to Uso - 08 [720p].mkv
2017-08-21 08:09 - 2017-08-21 08:18 - 337868811 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Centaur no Nayami - 07 [720p].mkv
2017-08-21 08:09 - 2017-08-21 08:17 - 337891298 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Keppeki Danshi! Aoyama-kun - 08 [720p].mkv
2017-08-21 08:09 - 2017-08-21 08:17 - 279553472 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Princess Principal - 07 [720p].mkv
2017-08-20 09:54 - 2017-08-20 10:00 - 339971646 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Boku no Hero Academia - 32 [720p].mkv
2017-08-20 09:32 - 2017-08-20 09:43 - 340938934 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Jigoku Shoujo - Yoi no Togi - 06 [720p].mkv
2017-08-20 09:32 - 2017-08-20 09:41 - 353328531 _____ C:\Users\Wingly\Downloads\[HorribleSubs] The Reflection - 05 [720p].mkv
2017-08-20 09:32 - 2017-08-20 09:41 - 338476978 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Katsugeki Touken Ranbu - 08 [720p].mkv
2017-08-20 09:32 - 2017-08-20 09:39 - 184028387 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Action Heroine Cheer Fruits - 06 [720p].mkv
2017-08-20 09:29 - 2017-09-14 23:15 - 000000000 ____D C:\WINDOWS\Minidump
2017-08-19 21:06 - 2017-08-19 21:24 - 340693335 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Boku no Hero Academia - 33 [720p].mkv
2017-08-19 21:06 - 2017-08-19 21:20 - 338037276 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Hina Logi - From Luck & Logic - 08 [720p].mkv
2017-08-19 19:18 - 2017-08-19 19:19 - 001516231 _____ C:\Users\Wingly\Desktop\PEDOMAN PELAPORAN PENYALURAN KIOS 130217.pdf
2017-08-19 19:02 - 2017-08-19 19:02 - 001723745 _____ C:\Users\Wingly\Desktop\PEDOMAN PELAPORAN PENYALURAN DISTRIBUTOR 130217.pdf
2017-08-19 18:48 - 2017-08-19 18:48 - 000000000 ____D C:\Users\Wingly\AppData\Local\DBG
2017-08-19 18:36 - 2016-07-30 06:47 - 000000739 _____ C:\Users\Wingly\Desktop\2353816953.txt
2017-08-19 08:29 - 2017-08-19 08:36 - 337942950 _____ C:\Users\Wingly\Downloads\[HorribleSubs] 18if - 07 [720p].mkv
2017-08-19 08:18 - 2017-08-19 08:34 - 342717776 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Vatican Kiseki Chousakan - 07 [720p].mkv
2017-08-19 08:18 - 2017-08-19 08:34 - 332128398 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Shoukoku no Altair - 05 [720p].mkv
2017-08-19 08:18 - 2017-08-19 08:33 - 337495592 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Jikan no Shihaisha - 07 [720p].mkv
2017-08-19 08:18 - 2017-08-19 08:28 - 265147102 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Made in Abyss - 07 [720p].mkv
2017-08-18 11:40 - 2017-08-18 11:48 - 345633532 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Konbini Kareshi - 06 [720p].mkv
2017-08-18 11:40 - 2017-08-18 11:48 - 340405874 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Gamers! - 06 [720p].mkv
2017-08-17 10:24 - 2017-08-17 10:31 - 341389421 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Boruto - Naruto Next Generations - 20 [720p].mkv
2017-08-17 10:11 - 2017-08-17 10:26 - 338204560 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sakura Quest - 20 [720p].mkv
2017-08-17 10:10 - 2017-08-17 10:25 - 328883160 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Nana Maru San Batsu - 07 [720p].mkv
2017-08-17 10:10 - 2017-08-17 10:23 - 342337942 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Youkoso Jitsuryoku Shijou Shugi no Kyoubleepsu e - 06 [720p].mkv
2017-08-17 10:10 - 2017-08-17 10:19 - 215720752 _____ C:\Users\Wingly\Downloads\[HorribleSubs] Sagrada Reset - 20 [720p].mkv

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-16 07:53 - 2016-07-06 22:29 - 000000000 ____D C:\Users\Wingly\AppData\Roaming\BitTorrent
2017-09-16 07:30 - 2016-12-08 22:15 - 000000000 ____D C:\Users\Wingly\AppData\LocalLow\Mozilla
2017-09-16 07:19 - 2017-08-06 10:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-09-16 07:01 - 2017-08-01 00:44 - 000000000 ____D C:\Users\Wingly\AppData\LocalLow\BitTorrent
2017-09-16 06:39 - 2017-08-06 10:22 - 000000000 ____D C:\ProgramData\NVIDIA
2017-09-16 06:39 - 2016-12-11 06:16 - 000000000 ____D C:\Users\Wingly\Downloads\Documents\temp
2017-09-16 06:39 - 2016-12-07 18:26 - 000000000 ____D C:\Program Files (x86)\Steam
2017-09-16 00:12 - 2017-08-06 10:36 - 001320778 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-16 00:06 - 2017-08-06 10:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-16 00:06 - 2017-03-20 11:41 - 000000000 ____D C:\WINDOWS\en-GB
2017-09-16 00:06 - 2017-03-18 19:40 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2017-09-15 22:56 - 2016-07-06 22:18 - 000000000 ____D C:\Users\Wingly\AppData\Local\CrashDumps
2017-09-15 20:25 - 2017-08-06 10:26 - 000004282 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2017-09-15 12:33 - 2017-03-19 05:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-15 12:33 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-14 23:15 - 2017-08-06 09:20 - 000000000 ___DC C:\WINDOWS\Panther
2017-09-14 23:15 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-09-14 23:15 - 2017-03-19 05:01 - 000000000 ____D C:\WINDOWS\INF
2017-09-14 22:47 - 2017-08-06 10:23 - 000000000 ____D C:\Users\Wingly
2017-09-14 13:26 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\rescache
2017-09-14 12:56 - 2016-06-05 22:13 - 000000000 ____D C:\Users\Wingly\AppData\Local\Packages
2017-09-14 00:10 - 2017-08-06 10:22 - 000388304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-14 00:10 - 2016-06-05 22:13 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\SysWOW64\en-GB
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\system32\setup
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\system32\en-GB
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-09-14 00:08 - 2017-03-19 05:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 21:59 - 2016-06-05 22:13 - 000000000 ____D C:\Users\Wingly\AppData\Local\VirtualStore
2017-09-13 21:10 - 2016-12-08 14:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-13 21:09 - 2017-03-19 04:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-13 21:09 - 2016-12-08 14:45 - 138202976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-13 21:06 - 2015-10-30 15:24 - 000000167 _____ C:\WINDOWS\win.ini
2017-09-13 18:13 - 2016-06-05 22:44 - 000000000 ____D C:\Users\Wingly\AppData\Local\ElevatedDiagnostics
2017-09-13 10:33 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-09-13 10:33 - 2017-03-19 05:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-09-12 21:57 - 2017-08-06 10:26 - 000003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-09-12 08:22 - 2017-05-12 09:19 - 000000000 ____D C:\Users\Wingly\Desktop\WCM
2017-09-07 13:31 - 2017-08-06 10:26 - 000003360 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-114570740-81500683-4137005013-1001
2017-09-07 13:31 - 2016-06-05 22:14 - 000002362 _____ C:\Users\Wingly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-07 13:31 - 2016-06-05 22:14 - 000000000 ___RD C:\Users\Wingly\OneDrive
2017-09-07 06:47 - 2017-03-19 14:02 - 001008800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000583288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000547480 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetSec.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000353744 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000336896 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbloga.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000314128 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdrivera.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000192584 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsha.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000191720 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000166624 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdiska.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000140192 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000102792 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000076832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000051336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniva.sys
2017-09-07 06:47 - 2017-03-19 14:02 - 000039424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys
2017-09-05 14:57 - 2016-12-07 16:01 - 000000000 ____D C:\ProgramData\CanonIJPLM
2017-09-05 11:25 - 2017-04-04 16:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-09-05 11:25 - 2016-12-08 17:49 - 000000894 _____ C:\Users\Public\Desktop\AVG.lnk
2017-09-02 23:15 - 2017-03-19 05:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-09-02 23:15 - 2017-03-19 05:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-08-31 07:14 - 2016-12-09 13:38 - 000037344 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2017-08-30 19:57 - 2016-12-07 16:19 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-27 08:22 - 2016-12-08 19:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-08-27 08:22 - 2016-07-06 21:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-25 22:06 - 2017-01-29 09:03 - 000000000 ____D C:\Users\Wingly\Desktop\Mixels
2017-08-24 19:02 - 2016-12-07 15:38 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-08-17 06:38 - 2017-05-15 11:44 - 000000000 ____D C:\Users\Wingly\Desktop\RDKK WCM
2017-08-17 05:53 - 2017-05-12 11:54 - 000000000 ____D C:\Users\Wingly\Desktop\KELOMPOK TANI PER KIOS - WCM

==================== Files in the root of some directories =======

2017-03-12 18:21 - 2017-03-12 18:21 - 000000017 _____ () C:\Users\Wingly\AppData\Local\resmon.resmoncfg

Some files in TEMP:
====================
2017-09-15 19:33 - 2017-09-05 13:26 - 001930840 _____ (Microsoft Corporation) C:\Users\Wingly\AppData\Local\Temp\dllnt_dump.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-09-13 12:09

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2017
Ran by Wingly (16-09-2017 07:56:02)
Running from C:\Users\Wingly\Desktop
Windows 10 Home Version 1703 (X64) (2017-08-06 02:30:17)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-114570740-81500683-4137005013-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-114570740-81500683-4137005013-503 - Limited - Disabled)
Guest (S-1-5-21-114570740-81500683-4137005013-501 - Limited - Disabled)
Wingly (S-1-5-21-114570740-81500683-4137005013-1001 - Administrator - Enabled) => C:\Users\Wingly

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: AVG Antivirus (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Antivirus (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
AVG (HKLM\...\{BA40B3B4-7707-437E-84FF-8C18BE5AD9B6}) (Version: 1.211.2 - AVG Technologies) Hidden
AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 17.6.3029 - AVG Technologies)
AVG PC TuneUp (HKLM-x32\...\{A3DEEC4D-7D8A-465E-90BD-B853A19DDF82}) (Version: 16.75.1 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.75.3.10304 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
BitTorrent (HKU\S-1-5-21-114570740-81500683-4137005013-1001\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
Blade & Soul (HKLM-x32\...\{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC) Hidden
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MP Navigator EX 4.0 (HKLM-x32\...\MP Navigator EX 4.0) (Version:  - )
Canon MP280 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP280_series) (Version:  - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version:  - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.34 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CPUID CPU-Z 1.76 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Dota 2 (HKLM\...\Steam App 570) (Version:  - Valve)
FMW 1 (HKLM\...\{F64508FE-73C8-4C27-9CCA-3799C428B70B}) (Version: 1.223.1 - AVG Technologies) Hidden
GIGABYTE OC_GURU II (HKLM-x32\...\{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.90.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.90.0000 - GIGABYTE Technology Co.,Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.79 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.20.286 - SurfRight B.V.)
Intel® Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Network Connections 20.2.3001.0 (HKLM\...\PROSetDX) (Version: 20.2.3001.0 - Intel)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.0.1029 - Intel Corporation)
Java 8 Update 112 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180112F0}) (Version: 8.0.1120.15 - Oracle Corporation)
Killer Bandwidth Control Filter Driver (HKLM\...\{13B41FD4-5139-473B-95E5-15370745BCA6}) (Version: 1.1.56.1343 - Rivet Networks) Hidden
Killer E220x Drivers (HKLM\...\{307298E7-8415-4EBD-BEE2-A02306562A74}) (Version: 1.1.56.1343 - Rivet Networks) Hidden
Killer Network Manager (HKLM\...\{223A9628-C462-43E5-B941-077CFDA23305}) (Version: 1.1.56.1343 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{BBEC6403-B531-4A86-A93C-BAE057E67ED5}) (Version: 1.1.56.1343 - Rivet Networks)
K-Lite Codec Pack 12.6.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.6.5 - KLCP)
LEGO Digital Designer (HKLM-x32\...\New LEGO Digital Designer) (Version:  - LEGO A/S)
Malwarebytes version 3.2.2.2018 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2018 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.587.1 - McAfee, Inc.)
Metal Gear Solid V The Phantom Pain (HKLM-x32\...\Metal Gear Solid V The Phantom Pain_is1) (Version: 1.0.7.1 - Konami)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-114570740-81500683-4137005013-1001\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 55.0.3 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 55.0.3 (x86 en-GB)) (Version: 55.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 55.0.3.6445 - Mozilla)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
NieR: Automata (HKLM-x32\...\NieR: Automata_is1) (Version:  - )
Nitro Pro 10 (HKLM\...\{1036A6C3-22B4-4EB7-8ACE-FAF840113EB1}) (Version: 10.5.3.21 - Nitro)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.2.2 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.7 - Power Software Ltd)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
RogueKiller version 12.11.14.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.11.14.0 - Adlice Software)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Sound Blaster X-Fi MB3 (HKLM-x32\...\{3689CE39-3173-4952-B7AF-F1A9D6F9A288}) (Version: 1.00.06 - Creative Technology Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TEKKEN 7 (HKLM\...\Steam App 389730) (Version:  - BANDAI NAMCO Studios Inc.)
Town of Salem (HKLM\...\Steam App 334230) (Version:  - BlankMediaGames)
Tree Of Savior INA version 1.0 (HKLM-x32\...\{6B6E4BE9-C3AE-46BF-9772-1694401A0534}_is1) (Version: 1.0 - IMCGames)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2016-11-28] ()
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-09-07] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2017-07-26] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 10\NPShellExtension.dll [2015-07-03] (Nitro PDF)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2016-10-02] (Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2017-07-26] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2017-07-26] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2016-10-02] (Power Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-02] (NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-09-07] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2016-10-02] (Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14F04026-4555-4B7E-B8FE-9B2A78E9F61D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-04] (NVIDIA Corporation)
Task: {173B2753-E202-4F23-B1CA-5AC8D9B7C547} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {390F2DC6-397E-43E5-A1E3-D443B3FFE06A} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2017-09-07] (AVG Technologies CZ, s.r.o.)
Task: {5B0F2BED-731C-49E5-A50C-DECEC554FF7B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-04] (NVIDIA Corporation)
Task: {70CA50D9-18F4-4794-A56C-407A7AA046A5} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-04] (NVIDIA Corporation)
Task: {9E0A3FF5-F204-4DA7-A284-E000728F7F14} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-14] (Google Inc.)
Task: {A24FB942-CC7C-42C3-B81A-9AF1A6909264} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-04] (NVIDIA Corporation)
Task: {A4D47241-0F76-4A34-B5C2-A5B5ED25F4B2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-04] (NVIDIA Corporation)
Task: {B0AD1FA0-672B-40B9-84C9-D16F4EE82B7D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-08] (Piriform Ltd)
Task: {BA8792FA-2F14-4DC4-A150-03DCEC6FF547} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2017-07-26] (AVG Technologies CZ, s.r.o.)
Task: {C69DAA47-2210-4790-B23E-B4D623D3B61F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-13] (Adobe Systems Incorporated)
Task: {CB36FC8C-98DF-4ABC-BF11-A4D3F378CE87} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-04] (NVIDIA Corporation)
Task: {DF1F1018-6158-4BF7-9003-79E12521E5A6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-04] (NVIDIA Corporation)
Task: {E72BC14C-7050-4ABF-B8C9-4A45E7CBD370} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-04] (NVIDIA Corporation)
Task: {EE53758F-92AD-454B-8C76-48DA4E46C09F} - System32\Tasks\OC GURU II Auto Run => C:\Program [Argument = Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe]
Task: {F8C04043-7A10-4105-97FC-94C258B2B994} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-14] (Google Inc.)
Task: {FB0B919C-7676-4FBC-A07D-2FDCF478C7FC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2016-12-07 16:01 - 2013-05-15 02:50 - 000140936 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2016-12-07 18:29 - 2017-05-04 04:16 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-07-03 19:02 - 2015-07-03 19:02 - 000418968 _____ () c:\program files\nitro\pro 10\nitro_updateservice.exe
2015-07-03 19:02 - 2015-07-03 19:02 - 002543768 _____ () c:\program files\nitro\pro 10\Nitro_KissMetrics.dll
2017-09-14 07:43 - 2017-08-24 11:27 - 002264528 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-03-19 04:58 - 2017-03-19 04:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-19 04:59 - 2017-03-20 11:43 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-08-24 19:02 - 2017-08-24 19:03 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-08-24 19:02 - 2017-08-24 19:03 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-08-24 19:02 - 2017-08-24 19:03 - 036162048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-08-24 19:02 - 2017-08-24 19:03 - 002237952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\skypert.dll
2016-06-05 22:32 - 2015-05-30 00:57 - 000089600 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
2016-06-05 22:32 - 2015-05-30 00:56 - 000366080 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2017-04-07 15:41 - 2017-04-07 15:41 - 000054488 _____ () C:\Program Files\CCleaner\branding.dll
2017-09-14 14:59 - 2017-09-14 14:59 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.21.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-09-14 14:59 - 2017-09-14 14:59 - 010634752 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.21.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-09-14 14:59 - 2017-09-14 14:59 - 002640896 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.21.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-09-12 15:27 - 2017-09-12 15:33 - 000020480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-09-12 15:27 - 2017-09-12 15:33 - 029621760 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-08-18 11:14 - 2017-08-18 11:15 - 000358912 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-08-18 11:14 - 2017-08-18 11:15 - 002536448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2017-09-12 15:27 - 2017-09-12 15:33 - 020305920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2017-08-18 11:14 - 2017-08-18 11:15 - 002415104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-09-12 15:27 - 2017-09-12 15:33 - 003028992 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2017-06-09 18:27 - 2017-06-09 18:27 - 003139496 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-15 06:26 - 2017-06-15 06:28 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-08-18 11:14 - 2017-08-18 11:15 - 001370112 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-09-12 15:27 - 2017-09-12 15:33 - 000024576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Lumia.ViewerPluginProxy.dll
2016-12-07 18:29 - 2017-05-04 04:16 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-03-24 18:01 - 2015-03-24 18:01 - 000192512 _____ () C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GvVGAConfig.dll
2016-12-08 17:46 - 2016-12-08 17:44 - 048920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2017-09-07 06:47 - 2017-09-07 06:47 - 000168216 _____ () C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll
2017-09-07 06:47 - 2017-09-07 06:47 - 000060160 _____ () C:\Program Files (x86)\AVG\Antivirus\module_lifetime.dll
2017-07-01 11:17 - 2017-07-01 11:17 - 067109376 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll
2017-09-07 06:47 - 2017-09-07 06:47 - 000213024 _____ () C:\Program Files (x86)\AVG\Antivirus\event_routing_rpc.dll
2017-09-07 06:47 - 2017-09-07 06:47 - 000243080 _____ () C:\Program Files (x86)\AVG\Antivirus\tasks_core.dll
2017-09-07 06:47 - 2017-09-07 06:47 - 000686808 _____ () C:\Program Files (x86)\AVG\Antivirus\ffl2.dll
2016-12-07 18:27 - 2017-08-05 05:19 - 000678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-12-07 18:27 - 2016-09-01 09:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-12-07 18:27 - 2017-09-07 12:51 - 002505504 _____ () C:\Program Files (x86)\Steam\video.dll
2016-12-07 18:27 - 2016-09-01 09:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-12-07 18:27 - 2016-09-01 09:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-12-07 18:27 - 2016-01-27 15:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-12-07 18:27 - 2016-01-27 15:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-12-07 18:27 - 2016-01-27 15:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-12-07 18:27 - 2016-01-27 15:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-12-07 18:27 - 2016-01-27 15:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-12-07 18:27 - 2017-09-07 12:51 - 000885024 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-12-07 18:27 - 2016-07-05 06:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-12-07 18:29 - 2017-05-04 04:15 - 065708992 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-12-13 12:52 - 2017-07-18 06:50 - 073115424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-06-10 06:24 - 2017-05-17 09:54 - 000678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2016-12-07 18:27 - 2015-09-25 07:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences [386]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 15:24 - 2017-07-15 23:36 - 000000869 _____ C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.1    mssplus.mcafee.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-114570740-81500683-4137005013-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Wingly\Downloads\Pictures\Anime & Game\Nier Automata\nier big bots.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "RTHDVCPL"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C7287425-A8B2-4E47-9BD4-C96806DF8AE8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0987D14C-E18C-457D-AE5D-5F1B3FAD24E3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BE27C807-C9D4-4E29-847C-62D8D102EA34}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{09D2CBAC-C40A-4E5C-A8D0-A19FFEE092C8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E10ED285-8AA0-428D-B924-3832AA66CDDF}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C42B0F78-421C-46EC-9E4D-23167904402A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{63638D28-B2B3-4B6C-AFA5-72F12AA1178F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DE857858-24A3-474A-89B7-CBECEFC43F2A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2E330EAF-B93F-4861-A5BF-915711A4E568}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{85D0F7E6-154C-40F1-9694-A87896B67EA5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{07C48E23-4659-41BE-B800-D67284F824AC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{73B309F9-5360-4FA2-9012-D31A344E03EC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ACD70304-B2E6-4F8E-A16C-581CDA4FBA68}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{904F51E5-E241-402A-8563-72F9F0C4308C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{06D21FE7-6F4F-43A6-9E58-ED358177324D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E3799051-826F-40BA-830B-C2272A0F8495}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A74D50CB-4B76-4007-8F17-72CBFDBEF669}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{76452472-7511-4A24-9070-F8C667B6FA80}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{57739289-8A1A-475D-A4D8-D9FF818A6512}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E8C239F4-EA7F-48A5-93C1-D5500F55B89D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{10D02DF2-1C2E-466D-A788-2ECB2D7D4087}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AC98FAAC-9A47-4216-A14B-F6033A5729F8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{876BAB33-E6CC-4E0A-B0FD-81FD335E0327}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{73131706-27A6-442C-A6D1-555171F3B3E0}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E851187D-2AC4-4545-A366-5C7E4A1E1E58}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8124AFE7-A622-4A4A-A8C0-E6BA8588B81C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2AA0119B-5D7F-447C-97CE-5E38BB047DA1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F9B61943-D9FF-4061-95C1-9B32AFD71FD6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3E5599FB-BF9C-4159-8BC7-814C4F95FA14}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C98C0FA8-5457-49B3-9A29-49A345E1FB39}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4FA0BFE7-7226-4CFE-B937-DA26BD445633}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BF8A87C9-CD7B-4A64-BB50-320F7AB3139F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{85F4EAE3-B955-4251-A52B-B3A0C71E212C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D837CD2A-B38C-4260-95A5-F22DF03BC291}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{117718B7-DFF4-455E-BB37-8CE281704A3F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{456D093C-D369-4C47-89B3-45EE4D590D39}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{602A25FA-9B2A-47B1-8BC7-DDC826968AF8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ED98088F-A87A-4735-B636-378C56753C20}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0FDD08AB-AC72-4BA5-B625-B47251EC0117}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4361CFAA-1474-46F3-A288-C463678E44F3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ECB757CB-D035-49B1-A762-A958D83A9623}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{55AD4617-201F-4A2A-BDD0-83424BDAD7E9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7FA04E68-610D-4692-8C7D-A61F9CB392D4}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4BF4EF4F-FEB5-41A2-B546-0E21EC073587}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B06AE524-BF70-4989-98C8-AB3D1304AD1D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AE6377CF-DFFF-4741-BA38-6BA545B87DB2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{59792098-CAB5-41D5-B94C-DD1F7EB1047E}] => (Allow) E:\SteamLibrary\steamapps\common\TEKKEN 7\TEKKEN 7.exe
FirewallRules: [{CA8AE011-2B65-44B3-9997-6AF9CCD36833}] => (Allow) E:\SteamLibrary\steamapps\common\TEKKEN 7\TEKKEN 7.exe
FirewallRules: [{3595C840-3CB0-4343-B8AF-9E8A55C5A89C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8B61259D-5582-437E-A34E-519982424893}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9FA847C9-846D-49D4-9138-02DEA96718F5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{249F5933-1692-4F8B-B529-53A564C59B16}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0ABF63B2-DF0B-4BF5-BDAE-5ECA2308DD08}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{29223205-2E9B-4068-85FE-D0D78CB38CF8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3C0D32C7-DBA3-4FC9-9CB5-D50B0A72BDE1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{542043DC-C513-49AC-9F54-A52DAA6D74BF}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8B4084DE-C255-4C30-BA80-F4DAD1EC03A0}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{92C5AAA2-C548-46C3-B5B2-E3B57E8A5187}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B74D87FE-FAD6-4A37-B990-2311058DF292}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D5CDC648-4DBB-4EDE-8002-4AEDE7CFD962}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{48EFD5FD-0773-4EB5-A479-FA1A2C8A0377}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{91833F39-7F07-4666-80E0-BCC7CD43EAEA}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FDC12616-7C2F-4480-939A-17ED0498DF60}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{369438AD-31B5-4EF9-AEF1-F9626F52932C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{515E87C1-5918-41FF-A3E6-E48E04C5D8CE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{43E62C92-67B9-4D01-8CD3-8C977B3B8229}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [UDP Query User{C575F9F5-132D-44A8-84B6-9AE8410F729C}E:\steamlibrary\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe
FirewallRules: [TCP Query User{6703BF89-FAB9-4200-83FD-8D9BC92B1D0A}E:\steamlibrary\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe
FirewallRules: [{8DB1DA5E-51DA-4B55-9506-C0DC0B05DBA7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7F30B48B-E8C0-4F29-A551-00EF5F7020A8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A2D799D3-E7FC-45D3-A38B-E6AD7FECFC70}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B8C3AB1F-885D-4284-A94A-BFD8781B96A5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{696C09C8-681F-43C0-9CA9-439A57809D2C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8609AA31-DB79-4263-BCCE-0C52551C0C64}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F3957D3D-E654-47BE-A5E9-64501783D0E1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{049F8B53-6829-4BAE-92C5-4D975BF33A23}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D2DC654F-EBEF-49F8-8A53-66F17AC46A62}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{945BEA37-1429-4E46-9E36-B5559B209379}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3262FDC6-4976-485A-BE19-3279053ED6A9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4347AB04-BC4B-4D9E-8129-850513211039}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{13592D97-83AE-4757-A687-3F76F8482DB4}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{188D05EE-3879-45ED-88AB-D5D528859B66}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F345F09D-2F38-4D3C-8D1A-EF7446611295}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{88D9820E-7533-4DDC-A310-C8620114D3EA}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D99B7480-D4DD-43CF-9F2E-F4CCBDC1F924}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2A79FFE3-C162-49BD-A370-494C7ADB65D5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{23179128-F63D-4128-9102-972F41BE5B83}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FAD97D0F-EB9F-496B-98C2-2AE4D248D780}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8A3EB8F6-E36D-4F01-B30E-87E9B8167A7A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{506E9BFC-5494-4C3D-832E-3A0F0F2A0D54}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8A5A7E6E-B51D-427D-8F18-49DD9AE249A6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EFFE1A20-743D-40F9-B26E-2AEB1C81818A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C6A3E2DB-E0FF-47EC-A78F-3ACC41C1BCEB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2985A508-3BE3-4C96-A7D3-4A30717ECDFA}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CD69D34E-5F05-4CB4-95B8-82ABB76FCE1A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{54EC9139-1088-4738-BCA5-0F088FBFFF53}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7D56C403-58A7-45CE-AD0F-FF8C341ED549}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BCF8CC95-6044-4572-8553-010BB5F35295}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{82524C01-E5F3-4782-9147-310AF581091C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7E95A83F-49EF-4CB9-A203-08172E42D048}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{44776A22-1293-40B7-B852-691F362F70C2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5C260D6E-E720-46BB-9A02-ADC0F4E0F6E3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E73EDEDB-0F69-4ECE-80DF-69B1EAA6508A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{65C0BD2F-804C-4E5D-A14D-A7104407C8FD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8B24BBB2-752E-4AAB-9869-8CE4CFEA2642}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C91DA5CF-AA8B-49BB-B1E9-B251D82BBD63}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8A103A98-5A63-4CEC-91C8-135913712225}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A3C7F136-6CC0-4A48-8256-4AF9BA8BD457}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D507F3CC-9717-42B8-8864-7CBB485748DE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7FF8734A-09E2-4F79-97E2-680CB9E9527C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9C6DB3B4-0157-46B4-9FC6-A33CD819034D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C9E1C36F-75C2-43B7-AC63-1E117BE819E3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{00C93F82-6411-4F27-9443-A285B696FBC4}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6B93FF2F-2229-4297-9E2C-4F155C6BC46A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AD0884DA-D75B-40A2-910E-535358F588BB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C7E87062-70C0-4866-8493-3A910C4008AB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{75E875EA-033A-4BB9-859D-41B6036B66A2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9FB64C4B-25E1-4521-B2DB-805259C50863}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B657E64C-E048-4AC5-8EBF-C9C24D9771F9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0E644FFA-55FD-47A6-9439-F2A50419A37E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{935A675A-1065-49E7-8479-EC4B6DEB18C9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0C30C3AC-DB2A-42B2-A914-BA9B7ECD2123}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F38AB41E-E8AA-4EBE-A253-299ECD8DA41C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3C626ED7-909A-43C6-8F3B-59DEE88BB1B6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A932D0F0-3922-49D8-9BF5-70393BA249CE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F5F30AB8-9DC1-41E0-9374-AF1C3E247B9B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0243144F-ADD3-4CB3-A407-5E464C5C6A90}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3794FE6C-B7C4-4C7A-B4D0-7260993E3C39}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DF6B6F05-4599-400D-8CDB-5C2952BA1471}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BFDEBFE7-EE4B-4F7C-90E6-A6D892F4BA12}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6BA773DE-E5C5-4AC5-9F45-1DA76AB4CC36}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DE9E2799-AD91-40D4-8735-D8EB34790532}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{32CCC5A0-A2FD-444D-80F5-6DF755B4A244}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B8A50C6D-E077-4A50-8021-9869C5A9CA10}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5D637041-C554-4CCC-99FB-21FDFE93F0F1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{527E4EB7-D113-4C9D-BC5B-3261184F18F9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8AF61EFE-69E2-453C-AAA8-0CE1D1E2A8B9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A45433DE-6F33-4F89-9FED-6B58160BDAAE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2A5BCE54-3415-4274-9BCB-E57ED637031B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7E35F6AA-D5EF-4E30-BF33-1AA4DFEEA37B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{45D083AA-F3BF-49F7-B537-ABFB2024D0DC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{105D8BA4-447C-4EBC-904D-35BDCEED87BF}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C9429ED7-D6ED-47E7-BA0A-A33A057F80DD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F9A3CFFC-7188-47D3-BE3C-4BAA12759D12}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E5AE17CE-381D-470C-9F3C-BA75754D9C3C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{03AA4BBE-3243-4327-BDC8-8DB29D1FAC9A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DD1542E5-BADF-4CB5-9BBF-F786D58E3C70}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C8426FB4-D2B6-4DA0-BF86-2CCB7C13071F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0E21EB0E-F264-4104-B78F-986C16A105FC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1DA513F7-83DB-4237-A116-B7C7CC753CCE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{412800FE-3A36-4E15-8AA1-4A63C2C66229}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C46E6119-0FC0-48D1-93E0-04E6CAB204B4}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BEAD9385-6120-4F55-8D93-861D0E286213}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E7DF8E7A-CB8E-4C2A-BF89-560624E71A11}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0FE752A6-98CD-4EAC-9AAD-4719525CBA72}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C6BE4A64-35D3-4884-B466-4FFCC9B2B09E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3F8EC2C6-6174-44E3-92B9-74DEC9A09E27}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2DEA3EC0-AFF8-4FEF-B1A8-BF25573C2398}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4182FA6A-6A90-4EBC-8083-4B60B5086D8A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C75AAC0E-059B-482D-881C-7ACC0F0C1B2D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6FFD4110-E0BB-4353-AFDA-36C94A06511E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5998B4F6-B3B5-44C0-9847-994841D4F392}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EAFC1DF6-1A8A-4902-A595-73BE19596C2C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{68709AFA-C6EE-41E7-946B-1452DA9792AC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{84588354-BA5C-44E1-A547-1B6805B2F19D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{17430F54-66C9-4729-A14D-737C6CF2A9D9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{09119E50-02CF-422F-82B9-68672EA374AE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E962344D-218B-4EFB-8E49-A5C6EC261564}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FF2CB8E5-0639-46CA-AE26-32765E0F1BBB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B08CD5E9-F518-4A15-8392-649AD10B51CE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7F5E27E8-BFB0-4D9F-8E73-770338DDC514}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C441716E-E1EA-4DDE-8985-9C19650FF493}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1D7555D9-1839-4176-9997-2F503FB79DA0}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D35803EE-A5D6-4D3C-8455-DA9BC60EC16E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DDC9B92E-1A6C-4F18-AD78-9010AA3A0303}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{31A602EB-080A-4980-9DB9-FD39EA3F2861}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9946AB1E-BE15-4161-A189-B1055E3AC365}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CE559347-961F-4005-A5F0-137A8C0C3A75}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F002BEA6-12FB-4A88-931B-23A1FED275F2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9CD46C54-76C2-4663-B227-43C7555020CC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E742EC43-98D4-438C-BBD6-7E9DBAA7959C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BE21B779-35C4-4DB5-A40B-298C49B52BE2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{42728F00-5FBD-4BEF-9A0F-CF05B6DAD596}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6C930CF1-5931-432B-8972-3875676269D6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AC25509B-DA90-432C-8154-9D35293F5113}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A82EAF85-2737-4A2A-8E62-DD18C6F49C84}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9FE9AD80-E3B6-43C9-8871-C85AA7E69589}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{519C261A-CAA6-410C-A0A1-92D73775CCE2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4D51C342-76E7-450C-9B0E-FB652229E595}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A3409FD9-E25B-4AB0-8024-614FEAC8F81E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ECFD1AAB-FB32-4595-A941-FDAD5EF4A49C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A51C7F43-33BE-4CE7-8B8C-76C3F2470AC2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D88E046D-1F68-469B-8AD7-E6D382839077}] => (Allow) C:\Users\Wingly\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{85D4AB9E-6C50-4125-8AF9-378A2B17DB15}] => (Allow) C:\Users\Wingly\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{9DFF5F71-FFB7-4148-AD4F-03B828C9BA99}] => (Allow) C:\Users\Wingly\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C8ACF0E7-6F62-4776-8D9E-28B1099AD57C}] => (Allow) C:\Users\Wingly\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E4479347-4A2A-4A5D-8D05-37425A065CAD}] => (Allow) C:\Users\Wingly\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{4EC74414-DDF9-46E1-825C-DE4D72487224}] => (Allow) C:\Users\Wingly\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{1DE176EF-66DA-4B9B-964A-DC4B4FC4100B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3B6739F9-C537-4162-B1B6-73F34FC742F9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9C2C56A5-AB1B-4079-9228-457F15192931}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{60690CED-E93E-4B03-9155-5BA9E2B9BB41}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C39029C8-787A-4909-BF69-CFE62D620C88}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{089D25ED-4177-46D9-8292-58978AAB99F1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DED7BD39-40BA-4516-A9F6-8778CABA7291}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{625C8B8B-8B67-4A81-82A2-FD7F97EF9DBD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{08C7BBC3-5319-4F55-B87A-E793D4008921}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1C4823CC-BAB6-427A-8E64-F38103E180EC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5933B34D-63B4-4DBE-A201-208B48FA1315}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FAAC0BE3-79DE-42A8-A4E8-3F7BBEF6665E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6A5311AB-E8B5-4730-B8B0-45F5199058C1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A4AEFB2A-60D0-4663-9FF0-4F5ACE310466}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BD1F3308-6FB3-4A96-92C4-7AAA9C370FF2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E53B55F6-1240-4D68-A0BF-66FC879D6AD7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9F0F2BC1-3F8E-4FFD-8066-EB0D5DE0E8A3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{21AB9A1E-7E3E-48A6-8EAE-B5D1B58B1E54}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5EFE1A0D-4BE7-4196-BF2B-EF6781D8BF9E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E7749851-FA63-409C-9E83-02CCDAC65CA8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AFA0BD41-0FF9-4B28-AE37-7BECE5E312E1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{393CF17A-9DB9-4AB4-9FBC-E6B5C63B3D62}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B966559C-43ED-4567-9461-9CB635E9263E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7296A778-2130-4574-A662-EAF92C7715C8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{26F1B03D-4110-4BA4-99C9-CCF5A19E5EA6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CC66192D-0F8E-454E-9EB1-0BA836E938BD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{52589E84-C796-4858-9CCE-1BC19526F4C6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F8CF2B0E-9702-47EB-924D-1671389149A1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C0740E56-BCE2-4227-9083-87C75B2D8A6E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2D174EBA-D393-4348-B658-38385702D73F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{058EE52C-CEA6-40E7-86DB-CAFD0F0622E1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6E376DC0-9958-4425-BB98-2A9C759BD78A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7BCB330E-A731-40DC-9164-60E28B3E2AD5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FAB8E134-2377-491E-95E2-37F3B86C83A2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E541376B-94DE-4B24-AC9C-11A8FB756711}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E807F1CB-533C-4427-A2A9-7E517CC448FC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6D29168F-014B-4174-B186-49D90F8FCF4F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B186C7B2-1153-453B-9199-5317A21EE416}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E800750F-D0C3-4A6A-B8D8-6A68A0570F64}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9F437DA7-680C-4FA2-A6E9-C552D2C8AD1E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A23BDD12-A9D9-4DEB-AD73-0BD7633DD601}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5A238556-BCC5-44B4-A55C-F8BBF51D5665}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8E8595E2-7893-42CD-A1BB-5C795315C00A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{9882ED1C-ECCF-4627-8B35-F7A629F1EC1C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{1515483B-2904-4636-B162-C567CC47512A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{14D4BE08-1BDE-4858-A029-A80B90092C04}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4AD30060-9F18-4CD6-A55A-F79F0BF9D9FD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A6DF99D4-0491-46F7-8D0B-EF969B86DE44}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ED6810FF-276C-45F9-B96C-ABFAC6DCEB92}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F28DB606-DC32-459B-8B25-2A09F98BA83E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8FB8DCCB-17BD-4904-BD39-ADFBCE49BD34}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{54A666C0-74E5-47E8-B8FC-0046A21095D6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3C811DE2-1FA3-4515-AF29-9BFFF5002852}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CEDE5842-3752-4CB6-BA60-A6397FF5585F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8DDD4E04-82E9-4895-923D-49B54A1A5313}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2998FD4C-BC34-4396-8F11-890C9104E085}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B09E2529-D78A-4055-915E-C7A6ADD5B0CC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B63B065F-C59A-4254-8C71-A74A360E9397}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{07684AF5-FF45-4A8E-8098-8C64890F9F4E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D42FD9EB-054F-4273-B3C3-2F901D61C8FE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{76F566E3-2B92-4989-A641-689A06A95CEC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3F3D1CDD-C276-40A2-994D-6DE38D898CF6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6D574DF4-012B-40E2-A2C3-482440F67B53}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{68B9C32C-9B5E-4141-BC05-E659B4828021}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{498C3708-8A6D-4ED2-9B6F-EB8F60092112}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BB2AB4DC-910B-4AEF-A2CC-3BED0D9EE6DC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C22A5764-8ABB-47DA-9942-C1BC065024BA}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9DB7C91A-4822-4BF4-B081-0145D804C513}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4C85E386-10F1-48D2-9C93-9CB505F9C788}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DCFA6E78-3B4E-48D6-A3DD-8516796CB2F0}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{04BDDC4D-9110-4C32-9F8B-B18B910BDCC2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3F61AB76-D119-4A32-8D69-C173414776FA}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2F66BBB1-3F50-4FA2-8629-74D17F9DA2ED}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1948667F-83AF-4545-858C-3763FCE0E6F5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C8B035E2-46D3-4FFE-969B-5CF241D6333B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1AB7DB54-76D6-4C51-A20A-EAB9DE0BC064}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EC151530-DD95-4DA6-A940-6C376248EDEC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DC994B61-B744-4D53-A1C0-8EAE6172D5F1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{28719824-74DC-427D-B784-5D9EFECEC665}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CCC09151-D6C4-4133-87DA-B7421DD6FE53}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BF710690-2D0D-4B16-9967-126E59A8AAEC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3C9E3896-8784-4B17-ACA4-3CFA9D1FBB43}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1678D82B-1A24-4C3E-9DAA-8F7968710527}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{786AFFA8-13A9-4AF5-833B-79993719056F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E7C44A28-B74F-4841-81B2-1DB9975D4987}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{60E4C462-E80B-4382-A401-D101B65F50BF}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{33A66779-5712-4004-AE65-834FD800C7E9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4077EB84-06C3-4304-A284-A298CD36882A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{413E9D6D-3C0E-4A3B-A0CE-5BC9600C1FE2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2AADD063-E95C-4585-AEB7-3FDB921479FC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A8EDB9CA-5034-4164-9B8E-392DCA66F605}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F216C879-46B5-462D-9D07-D5AF3CE7B874}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9751A3B8-44B3-4847-BFA6-1548CED0A21C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F9BFED55-30A5-4345-B2C9-41C99FC22C1F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5B021F0A-D695-4905-8EA9-6B17195613B3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7F6E1C9D-A5C9-4FF3-A47C-9681B6B748A3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F047A038-B450-442D-A4DA-80DDE73F4374}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BBFBF185-BD51-4285-81F7-AB9B9A2C497E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8F5CB22B-9AC1-4619-B835-54BD84A79785}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A51B7F10-0CC6-440F-BD44-2E88920AA8BD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{37D90B07-B4B8-445A-AF5C-D7FC98986C1A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{64B770C0-03F9-40CB-897B-E2880C7CD025}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8AA90AF9-B92D-4B8B-B347-5E228BD30F4A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{25927FA1-8DFA-48CD-A962-EBDE36B9364B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{84B961A5-46A5-4870-81A9-29F930A71044}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1B2C030F-B73B-4BBC-9FA0-D6617AADFE94}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9CACEF47-24E5-4BC8-A6A0-C6EFCC5C2B23}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AD3B220A-B8C4-4F36-B0BC-CE95FCDC964E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A0453A42-EDA2-4598-896C-8F9EA1680D10}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F2F5CCBC-F4DF-4BC6-8B24-A75D952953E4}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{966F5749-DAA3-4EE3-8F72-6921CA87BE95}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{17156E06-525B-41DE-8812-2A14933BC9C2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F6F6B97B-3BEA-4B1B-A697-B3A4AD08F675}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BDE9D2FA-2666-4955-BDAE-9C48CCF6CFA3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7CD7BDEE-1831-47CD-8A01-4143FF8811FB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5587BAC7-2A4C-4C96-A995-B4553EEC93B7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5C17DECB-84FB-4D8D-B3AB-F57F3C0B55F1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A4E61F75-0351-4F32-BFD8-C6C919BD18E5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CDB06C92-FC8F-42B2-9839-EB0EB3C8445D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CC51CA5E-177A-43E6-8089-CC905F5F689E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5E43B7D2-8FD3-4792-8AA3-35C763BE76D0}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CD08F587-2563-4BFD-9D71-2491789A3382}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9C712921-A480-4788-8494-630B47EF5A1B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F9F41ADE-A490-4F20-A1EF-AF12FE33B171}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{33F2E666-8F78-4A00-B04B-DD199423232A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F785ADCE-BB11-4D8C-B7B8-3D952E3D7CFD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CD4416D5-4133-4709-AEB1-8A865AF83522}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{28C043D8-3960-4FA7-A967-5DD79038679B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6EF5E9EB-9155-4F4E-A0BF-C1EB3285A319}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1A4B8502-8613-4F15-A40C-2C84DDB843E4}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6DA296B8-80E5-45FA-8EC4-6D44A9F5C9D8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9FEB088E-6663-4D86-8417-9CAA908AFE0D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A286FB84-1202-4722-9DF7-FCDB02A395D0}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F6115A15-2D03-4987-92DB-C932A90D65F1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{32AA50D2-2191-4295-934E-6446AB40E2D8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3B3D4CA6-01EF-4B32-B8F8-1A8C97D58B90}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EACEA0BD-11A8-4260-91CD-F2B383D850DA}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4A316CE9-1FC8-430F-8FB2-C53F01A85386}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4416932A-F642-43BF-A621-57621835B307}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A1236381-8179-4D03-9586-44915E3ADCB2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2F643ADC-69AD-46D5-A603-AF8E9C97A813}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{364D7147-3AFA-4759-81ED-760798A65953}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{12E71EDB-ED03-46FA-97A9-A0B607CD5828}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4BACDCB5-47DE-4784-8A6E-182EB0428164}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{24A22C76-1E87-4E6F-81C2-7BF524CB0B88}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3AF378FB-507C-41A6-A4D1-87DBC69ACFCF}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1771E8FA-1E2F-4E35-8516-A72A6B26DAA5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B956F4E7-0EA0-46F6-8CDB-1B4C8FAEFE77}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{77FC15B2-023B-455F-A210-C3097A9913FE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{07BCCF8D-D2AA-4371-9DC9-3C777D0FA00A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3251DC75-7A1A-458C-AF43-91FC0F0E797B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BF324C51-C3AD-4225-9280-60EB10B1A64B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9C6D855A-C3F2-4923-BC66-33F8214AE996}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{218230FF-DDC4-4320-9178-44E6BEE611D6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{71305B56-7783-4DB2-8391-2A28DDE80FD6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DD8150CD-8441-4A7D-8C17-548629491A32}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C7A98738-5414-496F-B086-FF2D9C12B542}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{69A098DE-FD8E-46F4-B545-BA18F130EBD7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F8077725-CDD1-4BAC-BF28-38CA98B945C2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{30EF28C0-BCA9-4B5F-A904-E36AECA0AF95}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A691D488-8B53-4C5F-98DD-757A9EDDE12F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F7241FAD-66E5-4F52-BC86-D0F034AF19CD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CFCB6405-12E0-4860-88B5-F85A3814B2EB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{29F57D1F-36E9-4082-ADFA-FB5DDA993AB6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{29351E1B-8DA8-4091-80BF-1A53D875B175}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8A2E0DB2-C762-4F58-8500-1DA0D1C7148E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B77949FD-9187-4EB3-80BC-BF457FA87463}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6908B765-BA1A-4545-BECC-B51E8446BC19}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A8E12B70-4C60-4C0C-B128-E3E9C42C9666}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{047EB4BC-A350-48B0-B366-B898F110AF15}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{04DE7468-2A5C-459C-A806-50E0D3560904}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E7F06C6C-B395-498D-89C4-C1CFC2E0EA68}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{42BF77EB-BF1A-4C44-A6F6-0D30772FACB1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BADC1157-D9AF-4872-8B82-65C80FB8B6C7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FD422224-95AA-4FFB-9740-AF6146FF725E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{906A15A8-9DD0-4A16-A24D-06C33338BD1B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{62D6F403-2A38-456D-9F9E-60CF0D4EE5D1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{52196B86-B527-402D-BF91-A027B4DFC9FB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D806F154-84A3-427D-9B40-86EB3ED877E3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8C9ED3B1-7D09-4A35-8A32-AA92549F3767}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BEB029E5-FEA3-4F84-8209-E2BFFAF7D0C7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{19B39E12-06B4-46E5-86B2-D3C08F47C13B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DBC7302B-7735-46CC-84A3-D33FBFF03E79}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{20395FDD-F870-4973-8873-7162A1A070B7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6EA0A657-5E97-4164-BCA5-36F9FBAD1021}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{34A126E6-12B6-4CAD-B012-8E446A25AC95}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D1B910CB-46CE-44E4-995B-34D8CF7BF19A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8DC4155B-7CE4-403E-AB0C-9CE1798E1CDA}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{59D631B7-90E9-42A3-97FA-F26463AACA78}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{23053611-0D85-46F6-829F-7B5F8687AC4E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F77A7FA4-C95F-45D0-B4B0-8171F6362EA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{73688DFE-E8B6-4146-A610-21F5E63B60E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{09847D94-82AF-41B3-B08E-4C95B5B1C037}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A8494466-5B3C-4E45-B1AC-C7527CB083F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9C8F0144-C6F9-4E46-BBEF-60E5912A439D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CD4F2383-581D-4C1A-83C9-9BECA06AAB7F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3A6EC87E-07F9-4A04-86AD-1D79ED039A4C}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{786DB892-ED8F-4148-8829-081949CE7E73}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{B6F0D7D3-1D04-44CE-B627-8A3B83AB5836}] => (Allow) C:\Users\Wingly\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{AF183C13-BE58-40FB-B540-F07F3FE7D149}] => (Allow) C:\Users\Wingly\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{D3578D50-DC28-49BC-BDE8-16202507048C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{87BA2687-D79E-46AB-A8A8-97ACB9DEE022}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DE475292-37D7-4F90-A855-F0E882488DD0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{28DB9C41-0DCF-4E09-A149-3427D35F200B}] => (Allow) E:\SteamLibrary\steamapps\common\Town of Salem\TownOfSalem.exe
FirewallRules: [{25A75FE8-7905-4389-A80E-AD180206F8D0}] => (Allow) E:\SteamLibrary\steamapps\common\Town of Salem\TownOfSalem.exe
FirewallRules: [{FCEE165D-0134-4B4E-A975-9487D37C53CF}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B2943063-24AE-4F03-9A1A-68D3D4818972}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{92A5A5C0-38D0-44CE-95B0-7D7C105966CD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{3F028B75-C69A-4B2A-9F63-87E91DF451B5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{0E84B79E-4428-4910-83BE-35A187CB2868}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F13E46BB-F5F4-4049-93BC-0869A6F657EB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C5F1EC2A-2B25-4D0F-BAA2-BB4135741257}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{82184B76-61A1-4090-95DE-18177C898779}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0B6F3B81-6F29-428C-8B1B-980F63B0CBAB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{38CC4309-671E-4A6E-9EF9-9C82030E45A3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3DA73165-B011-49CF-8E03-A07C6504C873}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{57D05842-8BF6-4C85-B057-3EE2AC71C473}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DD6EF2E9-67D5-48F3-8E03-8F339CC1501F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8C43DA1B-918E-4E49-9175-F224583AA0E2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D44C7B15-F2C7-4CEB-A840-03D79FF5AA40}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ABEE8249-E041-432A-8438-CF24FB65D9C1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6DE9591C-DCBF-4A9D-8CBA-28F8BE8A0B99}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C7558BA6-933E-488D-A56F-D96BECB64B01}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DE75AEAE-D9A0-43B6-942B-B9427DA16EAE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6213A8EC-5962-473B-A2B4-61F260BF9A27}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4D8CFEF6-9FA5-4F64-9A3C-36D4222C8B33}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C556338A-8B75-483D-903F-B4770221DC26}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2184F7D8-92C8-46D8-959E-976C4D3E7646}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5E25D9C3-62BC-4E0D-A29A-CE802C2CB340}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AB206547-EA0C-4C02-A7A4-9509271908CC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{85EB1A32-5084-4BA7-B993-2BE9D8334B5D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6957C40E-ABCE-4E2F-A596-1899C7F438EA}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{095CEDEE-5396-4BC7-BC24-79548BFC5F63}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C258D22B-CADA-48CF-9E22-6593CB9ADB64}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A325F4F0-284A-46D8-9139-EC7E8A2E6E26}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FD3F66D0-171F-411C-AF79-390DD6E07BD7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FD418CE5-C74E-44E4-950F-966EE2862FE9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9AC519FE-51CD-444F-A40D-01EC19B5AE9F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3617EAD1-9EDD-4914-86F3-424C7C7A78BC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0400440A-F117-46FD-94E1-A9C7EAF3E9F9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1609DFF7-2D01-4D60-A6D9-C4D9188331D1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{06A8EECA-1EB8-4C28-B0E2-6F679ABFE9D0}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{216622C8-3061-490B-9F40-5B87FD28CF39}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5B626CE5-8037-4D1A-89CA-83D554AE476C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{289EDDD2-62E5-49EF-97AE-540D46EE6A0A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{67B7299B-1B3E-4574-B303-61BA0C7A9B50}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7B415952-E957-4F9C-A9EE-FC62C9BF51BF}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CB3618D6-6B42-45A3-803D-9C5A3AE4241C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DC741DA5-D995-4DFD-B014-6165965367DE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2F62C858-BBA8-45D9-8B38-3F4C607CCF98}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FFB8D05E-CA59-4704-9E7B-92DA152A4FD6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A4661C31-91C2-46AD-A3AA-8F7659736959}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{95A2C5F0-DBAA-4259-943B-AD0527961D7E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{31A6EF98-83D0-4847-8BF7-17B66C18946E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{81308EC3-1A94-45E6-BEF7-F4DFE6057B5E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E9C2AFD1-2E22-492D-8135-55521F7B7843}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2E6F8FEF-1194-477F-813C-5AFBEFEEAB4A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A18D6BA8-ABE8-41D7-9C1D-32CBAB8563D7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E89C8344-31AD-4723-B9AA-50B31B2B94E2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{80733A0F-15D1-4BDE-B976-E05B80304FD6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C8B91F49-722A-4CDD-827C-032D9EE397BC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2BB8321E-ACB2-4DF4-8773-828C5EC8F9B7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AC0B55E1-90A5-4F4B-B6C7-82C7E8EF7013}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{936791F4-2454-45DB-B2EC-704697624E3D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D7D4F1FE-AF40-47B2-823A-93B1FE1FB84B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe

==================== Restore Points =========================

15-09-2017 16:49:38 Restore Point Created by FRST
16-09-2017 00:05:35 Malwarebytes Anti-Rootkit Restore Point

==================== Faulty Device Manager Devices =============

Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/16/2017 12:52:14 AM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (09/16/2017 12:52:14 AM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (09/16/2017 12:52:06 AM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (09/16/2017 12:52:05 AM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (09/15/2017 11:56:04 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (09/15/2017 11:56:04 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (09/15/2017 11:55:55 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (09/15/2017 11:55:55 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (09/15/2017 10:56:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbam.exe, version: 3.0.0.1169, time stamp: 0x599723f1
Faulting module name: Qt5Core.dll, version: 5.6.2.0, time stamp: 0x594d4411
Exception code: 0xc0000005
Fault offset: 0x0018da93
Faulting process ID: 0x1f0c
Faulting application start time: 0x01d32e32dd2f406b
Faulting application path: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Faulting module path: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
Report ID: 3de056c9-2f77-444f-9ad8-45e34eefaff8
Faulting package full name:
Faulting package-relative application ID:

Error: (09/15/2017 08:32:23 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000


System errors:
=============
Error: (09/16/2017 12:06:42 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CldFlt service failed to start due to the following error:
The request is not supported.

Error: (09/16/2017 12:06:36 AM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5

Error: (09/15/2017 11:34:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CldFlt service failed to start due to the following error:
The request is not supported.

Error: (09/15/2017 11:34:30 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5

Error: (09/15/2017 10:56:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CldFlt service failed to start due to the following error:
The request is not supported.

Error: (09/15/2017 10:56:41 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5

Error: (09/15/2017 08:34:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CldFlt service failed to start due to the following error:
The request is not supported.

Error: (09/15/2017 08:34:01 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5

Error: (09/15/2017 08:16:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CldFlt service failed to start due to the following error:
The request is not supported.

Error: (09/15/2017 08:16:34 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5


CodeIntegrity:
===================================
  Date: 2017-09-15 13:55:37.606
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-15 13:55:37.442
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-15 13:43:44.924
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-15 13:43:44.781
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-15 13:43:40.924
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-15 13:43:40.777
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-15 13:43:01.349
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-15 13:43:01.205
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-15 13:42:43.104
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-15 13:42:42.960
  Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.


==================== Memory info ===========================

Processor: Intel® Core™ i7-6700 CPU @ 3.40GHz
Percentage of memory in use: 17%
Total physical RAM: 32593.54 MB
Available physical RAM: 26803.63 MB
Total Virtual: 65361.54 MB
Available Virtual: 59493.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.02 GB) (Free:51.29 GB) NTFS
Drive d: (Data) (Fixed) (Total:465.72 GB) (Free:308.86 GB) NTFS
Drive e: (Game) (Fixed) (Total:465.72 GB) (Free:231.43 GB) NTFS
Drive f: (Anime) (Fixed) (Total:465.72 GB) (Free:39.33 GB) NTFS
Drive g: (Back up) (Fixed) (Total:465.72 GB) (Free:259.72 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

Attached Files


Edited by JSntgRvr, 16 September 2017 - 02:26 PM.
Moved topic to Malware Logs forum


BC AdBot (Login to Remove)

 


#2 winglien

winglien
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:25 PM

Posted 15 September 2017 - 07:13 PM

somehow, when i scan with mbar log and adwcleaner (in attached files before), it said no malware was found, but honestly, maybe this bcoz i just quarantine and delete the malware with malwarebytes... but as i said before, the malware will pop up again. so i still need someone reply and help to fix this problem.


Edited by winglien, 15 September 2017 - 07:14 PM.


#3 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,761 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:09:25 AM

Posted 15 September 2017 - 08:14 PM

Hi

Welcome :)

I'll be helping you to clean up your computer.

Please read this post completely before beginning. If there's anything that you do not understand, please don't hesitate to ask before proceeding.

Please take note of the guidelines for this fix:

  • Please note that I am a volunteer. I do have a family, a career, and other endeavors that may prevent immediate responses that meet your schedule. Do note that the differences in time zones could present a problem as well. Your patience and understanding will be greatly appreciated.
  • First of all, the procedures we are about to perform are specific to your problem and should only be used on this specific computer.
  • Do not make any changes to your computer that include installing/uninstalling programs, deleting files, modifying the registry, nor running scanners or tools of any kind unless specifically requested by me.
  • Please read ALL instructions carefully and perform the steps fully and in the order they are written.
  • If things appear to be better, let me know. Just because the symptoms no longer exist as before, does not mean that you are clean.
  • Continue to read and follow my instructions until I tell you that your machine is clean.
  • If you have any questions at all, please do not hesitate to ask before performing the task that I ask of you, and please wait for my reply before you proceed.
  • Scanning with programs and reading the logs do take a fair amount of time. Again, your patience will be necessary. :)

Let's begin... :)
 

  • Highlight the entire content of the quote box below.

Start::

Folder: C:\Windows\System32\Drivers

End::

  • Right click on the highlighted text and select Copy.
  • Start FRST (FRST64) with Administrator privileges
  • Press the Fix button. FRST will process the lines copied above from the clipboard.
  • When finished, a log file (Fixlog.txt) will pop up and saved in the same location the tool was ran from.

Please copy and paste its contents in your next reply.
 

 


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#4 winglien

winglien
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:25 PM

Posted 15 September 2017 - 10:14 PM

thank you JSntgRvr for your reply, i still need the help, the trojan and riskware still comeback. as you order this i attach the fixlog from highlight before
 

note: BTW how to..".If you have configured in your control panel to receive immediate topic reply notifications, you may receive an
email for each reply made to this topic. Otherwise, only 1 email is sent per board visit for each subscribed topic.
This is to limit the amount of mail that is sent to your inbox."... i mean What section i must change?

 

FIXLOG.txt

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-09-2017
Ran by Wingly (16-09-2017 10:37:05) Run:4
Running from C:\Users\Wingly\Desktop
Loaded Profiles: Wingly (Available Profiles: Wingly)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Folder: C:\Windows\System32\Drivers
*****************


========================= Folder: C:\Windows\System32\Drivers ========================

2017-03-19 04:56 - 2017-03-19 04:56 - 000238080 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\1394ohci.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000107424 _____ (LSI) C:\Windows\System32\Drivers\3ware.sys
2017-08-09 07:10 - 2017-07-28 13:23 - 000723360 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\acpi.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000020480 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\AcpiDev.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000127392 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\acpiex.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000012800 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\acpipagr.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000014848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\acpipmi.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000014336 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\acpitime.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 001135512 _____ (PMC-Sierra) C:\Windows\System32\Drivers\adp80xx.sys
2017-09-13 21:00 - 2017-09-05 13:11 - 000610720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000108544 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\agilevpn.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000239616 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ahcache.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000176640 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\amdk8.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000172544 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\amdppm.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000083352 _____ (Advanced Micro Devices) C:\Windows\System32\Drivers\amdsata.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000259488 _____ (AMD Technologies Inc.) C:\Windows\System32\Drivers\amdsbs.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000027040 _____ (Advanced Micro Devices) C:\Windows\System32\Drivers\amdxata.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000184736 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\appid.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000017920 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\applockerfltr.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000132000 _____ (PMC-Sierra, Inc.) C:\Windows\System32\Drivers\arcsas.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000028672 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\asyncmac.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000029088 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\atapi.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000194464 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ataport.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000166624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgbdiska.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000314128 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgbidsdrivera.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000192584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgbidsha.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000336896 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgbloga.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000051336 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgbuniva.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000039424 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgHwid.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000140192 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgMonFlt.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000547480 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgNetSec.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000102792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgRdr2.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000076832 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgRvrt.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 001008800 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgSnx.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000583288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgSP.sys
2017-03-19 14:02 - 2017-09-07 06:47 - 000191720 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgStm.sys
2017-03-19 14:02 - 2017-05-14 22:03 - 000159496 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgstm.sys.149477059507801
2017-03-19 14:02 - 2017-09-07 06:47 - 000353744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgVmm.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000057344 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\BasicDisplay.sys
2017-08-06 22:59 - 2017-06-03 17:11 - 000035840 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\BasicRender.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000036256 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\battc.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000009728 _____ (Windows ® Win 7 DDK provider) C:\Windows\System32\Drivers\bcmfn2.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000010240 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\beep.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000101888 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys
2017-08-09 07:10 - 2017-07-28 12:25 - 000115712 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bridge.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000023552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\BtaMPM.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000043520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\BthAvrcpTg.sys
2017-08-09 07:10 - 2017-07-28 12:08 - 000097792 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bthhfenum.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000032256 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\BthhfHid.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000066560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bthmodem.sys
2017-09-13 21:00 - 2017-09-05 12:28 - 000039424 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\buttonconverter.sys
2015-09-30 22:00 - 2015-09-30 22:00 - 000141896 _____ (Rivet Networks, LLC.) C:\Windows\System32\Drivers\bwcW10x64.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000533920 _____ (QLogic Corporation) C:\Windows\System32\Drivers\bxvbda.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000053664 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\CAD.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000122880 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\capimg.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000093184 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cdfs.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000160256 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cdrom.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000077216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\CEA.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000102816 _____ (Chelsio Communications) C:\Windows\System32\Drivers\cht4dx64.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000347032 _____ (Chelsio Communications) C:\Windows\System32\Drivers\cht4sx64.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 002104224 _____ (Chelsio Communications) C:\Windows\System32\Drivers\cht4vx64.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000049152 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\circlass.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000391584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Classpnp.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000012288 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cldflt.sys
2017-08-09 07:10 - 2017-08-01 10:38 - 000382368 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\clfs.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000877472 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ClipSp.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000030208 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\CmBatt.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000028064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cmimcext.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000642688 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000039840 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cnghwassist.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000056224 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\condrv.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000086432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\crashdmp.sys
2017-08-06 23:00 - 2017-05-20 14:59 - 000112544 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dam.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000045568 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\devauthe.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000150528 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dfsc.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000102816 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\disk.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000038816 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Diskdump.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000015360 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Dmpusbstor.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000047104 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dmvsc.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000097280 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\drmk.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000016232 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\drmkaud.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000035744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Dumpata.sys
2017-03-19 04:59 - 2017-03-19 04:59 - 000091152 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dumpfve.sys
2017-09-13 21:00 - 2017-09-05 13:21 - 000189344 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dumpsd.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000032256 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dumpsdport.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000025600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Dumpstorport.sys
2017-09-13 21:00 - 2017-09-05 13:19 - 002443168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2017-08-06 23:03 - 2017-04-01 08:52 - 000409504 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2017-08-09 07:09 - 2017-08-01 10:32 - 000712600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms2.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000524800 _____ (Intel Corporation) C:\Windows\System32\Drivers\e1i63x64.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000145920 _____ (Qualcomm Atheros, Inc.) C:\Windows\System32\Drivers\e2xw10x64.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000088992 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\EhStorClass.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000119200 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\EhStorTcgDrv.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000013824 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\errdev.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 003419040 _____ (QLogic Corporation) C:\Windows\System32\Drivers\evbda.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000347136 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\exfat.sys
2017-09-14 07:43 - 2017-09-16 09:38 - 000101824 _____ (Malwarebytes) C:\Windows\System32\Drivers\farflt.sys
2017-08-06 23:00 - 2017-05-20 14:53 - 000363424 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fastfat.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000032768 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fdc.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000054272 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\filecrypt.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000086432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fileinfo.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000036864 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\filetrace.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000026624 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\flpydisk.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000386464 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fltMgr.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000033688 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000063904 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fsdepends.sys
2017-09-13 21:00 - 2017-09-05 13:16 - 000715168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000419744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2017-03-19 04:56 - 2017-03-19 04:56 - 000021504 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\genericusbfn.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 003440660 _____ () C:\Windows\System32\Drivers\gm.dls
2017-03-19 04:57 - 2017-03-19 04:57 - 000000646 _____ () C:\Windows\System32\Drivers\gmreadme.txt
2017-03-19 04:58 - 2017-03-19 04:58 - 000008192 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\gpuenergydrv.sys
2017-08-06 23:03 - 2017-06-20 13:12 - 000086528 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hdaudbus.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000038296 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidbatt.sys
2017-09-13 21:00 - 2017-09-05 12:26 - 000107008 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidbth.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000180736 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000052224 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidi2c.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000051104 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidinterrupt.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000046592 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidir.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000040960 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidparse.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000040960 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidusb.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000064416 _____ (Hewlett-Packard Company) C:\Windows\System32\Drivers\HpSAMD.sys
2017-08-06 23:03 - 2017-07-07 15:07 - 001106848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000074648 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hvservice.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000118688 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hvsocket.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000029600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hwpolicy.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000016896 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hyperkbd.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000115200 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\i8042prt.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000033280 _____ (Intel® Corporation) C:\Windows\System32\Drivers\iagpio.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000081408 _____ (Intel® Corporation) C:\Windows\System32\Drivers\iai2c.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000070656 _____ (Intel Corporation) C:\Windows\System32\Drivers\iaLPSS2i_GPIO2.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000085504 _____ (Intel Corporation) C:\Windows\System32\Drivers\iaLPSS2i_GPIO2_BXT_P.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000165376 _____ (Intel Corporation) C:\Windows\System32\Drivers\iaLPSS2i_I2C.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000168448 _____ (Intel Corporation) C:\Windows\System32\Drivers\iaLPSS2i_I2C_BXT_P.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000038128 _____ (Intel Corporation) C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000113152 _____ (Intel Corporation) C:\Windows\System32\Drivers\iaLPSSi_I2C.sys
2015-06-24 20:11 - 2015-06-24 20:11 - 000156656 _____ (Intel Corporation) C:\Windows\System32\Drivers\iANSW60e.sys
2015-07-30 02:44 - 2015-07-30 02:44 - 001462720 _____ (Intel Corporation) C:\Windows\System32\Drivers\iaStorA.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000673184 _____ (Intel Corporation) C:\Windows\System32\Drivers\iaStorAV.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000412064 _____ (Intel Corporation) C:\Windows\System32\Drivers\iaStorV.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000526240 _____ (Mellanox) C:\Windows\System32\Drivers\ibbus.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000036864 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\IndirectKmd.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000019360 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\intelide.sys
2015-08-07 07:58 - 2015-08-07 07:58 - 000018720 _____ (Intel Corporation) C:\Windows\System32\Drivers\IntelMEFWVer.dll
2017-03-19 04:56 - 2017-03-19 04:56 - 000074840 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\intelpep.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000193536 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\intelppm.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000049568 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\iorate.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000087040 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ipfltdrv.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000092064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\IPMIDrv.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000214528 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ipnat.sys
2015-05-07 22:00 - 2015-05-07 22:00 - 000037832 _____ (Intel Corporation ) C:\Windows\System32\Drivers\iqvw64e.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000120320 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\irda.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000019968 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\irenum.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000022944 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\isapnp.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000064416 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\kbdclass.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000040448 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\kbdhid.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000023040 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\kdnic.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000390144 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ks.sys
2017-09-13 21:00 - 2017-09-05 13:27 - 000136096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000170912 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2017-08-06 23:00 - 2017-05-20 14:10 - 000027136 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksthunk.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000066560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\lltdio.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000108960 _____ (LSI Corporation) C:\Windows\System32\Drivers\lsi_sas.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000123808 _____ (LSI Corporation) C:\Windows\System32\Drivers\lsi_sas2i.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000103328 _____ (Avago Technologies) C:\Windows\System32\Drivers\lsi_sas3i.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000082848 _____ (LSI Corporation) C:\Windows\System32\Drivers\lsi_sss.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000124928 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\luafv.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000405408 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mausbhost.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000051104 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mausbip.sys
2017-09-14 07:43 - 2017-08-24 11:27 - 000077440 _____ () C:\Windows\System32\Drivers\mbae64.sys
2017-09-14 07:43 - 2017-09-16 09:38 - 000045472 _____ (Malwarebytes) C:\Windows\System32\Drivers\mbam.sys
2017-09-14 07:43 - 2017-09-14 07:43 - 000192960 _____ (Malwarebytes) C:\Windows\System32\Drivers\MBAMChameleon.sys
2017-09-14 07:43 - 2017-09-16 09:38 - 000253888 _____ (Malwarebytes) C:\Windows\System32\Drivers\MBAMSwissArmy.sys
2016-06-05 22:30 - 2009-11-18 07:12 - 000032344 _____ (Creative Technology Ltd.) C:\Windows\System32\Drivers\MBfilt64.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000023552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mcd.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000059808 _____ (Avago Technologies) C:\Windows\System32\Drivers\megasas.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000064416 _____ (Avago Technologies) C:\Windows\System32\Drivers\MegaSas2i.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000575904 _____ (LSI Corporation, Inc.) C:\Windows\System32\Drivers\megasr.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000842656 _____ (Mellanox) C:\Windows\System32\Drivers\mlx4_bus.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000050688 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mmcss.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000042496 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\modem.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000039424 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\monitor.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000060320 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mouclass.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000033280 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mouhid.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000105880 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mountmgr.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000076800 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mpsdrv.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000144384 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxdav.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000467352 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2017-08-06 23:03 - 2017-07-07 14:08 - 000285696 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2017-09-13 21:00 - 2017-09-05 13:16 - 000228256 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000031744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msfs.sys
2017-08-06 10:22 - 2017-08-06 10:22 - 000000000 ____H () C:\Windows\System32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-02-23 21:01 - 2017-02-23 21:01 - 000000000 ____H () C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-07-16 19:42 - 2016-07-16 19:42 - 000000003 ____N () C:\Windows\System32\Drivers\MsftWdf_Kernel_01019_Inbox_Critical.Wdf
2017-03-19 04:57 - 2017-03-19 04:57 - 000169888 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msgpioclx.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000049056 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msgpiowin32.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000008704 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mshidkmdf.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000012288 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mshidumdf.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000019352 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msisadrv.sys
2017-08-09 07:10 - 2017-07-28 13:20 - 000279968 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msiscsi.sys
2017-08-06 23:03 - 2017-06-20 13:14 - 000032768 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mskssrv.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000083456 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mslldp.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000010752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mspclock.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000010752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mspqm.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000367000 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msrpc.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000044960 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mssmbios.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000012800 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mstee.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000016896 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\MTConfig.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000123808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mup.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000063904 _____ (Marvell Semiconductor, Inc.) C:\Windows\System32\Drivers\mvumis.sys
2017-09-14 07:43 - 2017-09-16 09:38 - 000094144 _____ (Malwarebytes) C:\Windows\System32\Drivers\mwac.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000108960 _____ (Mellanox) C:\Windows\System32\Drivers\ndfltr.sys
2017-09-13 21:00 - 2017-09-05 13:23 - 001242528 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000050688 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ndiscap.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000128512 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\NdisImPlatform.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000027136 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ndistapi.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000065536 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ndisuio.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000020992 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\NdisVirtualBus.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000192000 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ndiswan.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000062464 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ndproxy.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000127488 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Ndu.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000122368 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\NetAdapterCx.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000057760 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netbios.sys
2017-09-13 21:00 - 2017-09-05 12:23 - 000305152 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netbt.sys
2017-09-13 21:00 - 2017-09-05 13:24 - 000519584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2017-08-06 22:59 - 2017-04-19 14:18 - 000118784 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netvsc.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000069120 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\npfs.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000027136 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\npsvctrig.sys
2017-09-13 21:00 - 2017-09-05 12:25 - 000043520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\nsiproxy.sys
2017-08-09 07:10 - 2017-07-28 13:24 - 002327456 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000020376 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ntosext.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000007680 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\null.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000080896 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\nvdimmn.sys
2017-05-19 18:03 - 2017-05-19 18:03 - 000226712 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvhda64v.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000150432 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvraid.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000166304 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvstor.sys
2017-06-18 14:29 - 2017-05-04 04:16 - 000048064 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvvad64v.sys
2017-06-18 14:29 - 2017-05-04 04:16 - 000057792 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvvhci.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000549888 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\nwifi.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000152992 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pacer.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000097792 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\parport.sys
2017-09-13 21:00 - 2017-09-05 13:25 - 000159648 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000353696 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pci.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000016800 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pciide.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000053656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pciidex.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000120224 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pcmcia.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000052640 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pcw.sys
2017-08-06 23:03 - 2017-07-07 15:24 - 000117664 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pdc.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000741376 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\PEAuth.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000058784 _____ (Avago Technologies) C:\Windows\System32\Drivers\percsas2i.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000061848 _____ (Avago Technologies) C:\Windows\System32\Drivers\percsas3i.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000101376 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pmem.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000373248 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\portcls.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000172032 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\processr.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000049664 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\qwavedrv.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000017920 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rasacd.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000107008 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rasl2tp.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000081920 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\raspppoe.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000097792 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\raspptp.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000079872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rassstp.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000434080 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rdbss.sys
2017-03-19 04:56 - 2017-03-20 11:44 - 000027136 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rdpbus.sys
2017-03-19 04:59 - 2017-03-20 11:43 - 000183296 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rdpdr.sys
2017-03-19 04:59 - 2017-03-20 11:43 - 000030624 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000282528 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rdyboost.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 001735584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\refs.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000936864 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\refsv1.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000014336 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\registry.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000040960 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\RfxVmt.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000150016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rmcast.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000034816 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys
2017-08-06 23:00 - 2017-05-20 14:08 - 000013312 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rootmdm.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000082432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rspndr.sys
2016-06-05 22:30 - 2015-07-07 15:54 - 035222128 _____ () C:\Windows\System32\Drivers\RTAIODAT.DAT
2016-06-05 22:30 - 2015-07-07 19:13 - 004514008 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\Drivers\RTKVHD64.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000110496 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\sbp2port.sys
2016-12-16 23:32 - 2016-10-02 08:50 - 000137280 _____ (Power Software Ltd) C:\Windows\System32\Drivers\scdemu.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000043520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\scfilter.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000091040 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\scmbus.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000175520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\scsiport.sys
2017-09-13 21:00 - 2017-09-05 13:30 - 000287648 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\sdbus.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000031128 _____ () C:\Windows\System32\Drivers\SDFRd.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000098208 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\sdport.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000094624 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\sdstor.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000075680 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\SerCx.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000154016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\SerCx2.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000026112 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\serenum.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000084480 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\serial.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000028672 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\sermouse.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000018432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\sfloppy.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000044960 _____ (Silicon Integrated Systems Corp.) C:\Windows\System32\Drivers\sisraid2.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000081824 _____ (Silicon Integrated Systems) C:\Windows\System32\Drivers\sisraid4.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000032672 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\SleepStudyHelper.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000021504 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\smclib.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000167328 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\spacedump.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000587168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\spaceport.sys
2017-03-19 04:59 - 2017-03-20 11:43 - 000040352 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\SpatialGraphFilter.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000080288 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\SpbCx.sys
2017-08-06 23:00 - 2017-04-28 07:54 - 000414208 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2017-08-06 23:00 - 2017-04-28 07:54 - 000722944 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2017-09-13 21:00 - 2017-09-05 12:11 - 000254976 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000031136 _____ (Promise Technology, Inc.) C:\Windows\System32\Drivers\stexstor.sys
2017-08-06 23:00 - 2017-05-20 14:54 - 000144288 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\storahci.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000095648 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\stornvme.sys
2017-09-13 21:00 - 2017-09-05 13:16 - 000546208 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\storport.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000079872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\storqosflt.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000036760 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\storufs.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000036768 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\storvsc.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000075776 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\stream.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000018336 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\swenum.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000064512 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Synth3dVsc.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000031232 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tape.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000028064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tbs.sys
2017-09-13 21:00 - 2017-09-05 13:11 - 002675104 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000051712 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpipreg.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000040352 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tdi.sys
2017-08-09 07:10 - 2017-08-01 10:36 - 000119712 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tdx.sys
2015-07-29 03:37 - 2017-06-26 00:01 - 000205984 _____ (Intel Corporation) C:\Windows\System32\Drivers\TeeDriverW8x64.sys
2017-03-19 04:56 - 2017-03-20 11:44 - 000037280 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\terminpt.sys
2017-08-06 23:00 - 2017-06-03 18:10 - 000130464 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tm.sys
2017-08-06 22:59 - 2017-06-03 18:00 - 000219040 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tpm.sys
2017-09-15 19:37 - 2017-09-16 00:36 - 000028272 _____ () C:\Windows\System32\Drivers\TrueSight.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000061440 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000035328 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbGD.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000162304 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tunnel.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000078752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\uaspstor.sys
2017-09-13 21:00 - 2017-09-05 12:27 - 000104960 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UcmCx.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000179200 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UcmTcpciCx.sys
2017-08-09 07:10 - 2017-07-28 12:27 - 000051712 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UcmUcsi.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000213920 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Ucx01000.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000045568 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Udecx.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000324096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\udfs.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000029600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\uefi.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000263584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ufx01000.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000098712 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UfxChipidea.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000138656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ufxsynopsys.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000057856 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\umbus.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000014336 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\umpass.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000029600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\urschipidea.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000059288 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\urscx01000.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000028064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\urssynopsys.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000023040 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000037888 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\USBCAMD2.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000173984 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000103424 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbcir.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000032160 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000098200 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000511904 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2017-08-09 07:10 - 2017-07-28 13:15 - 000554400 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\USBHUB3.SYS
2017-03-19 04:56 - 2017-03-19 04:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000466336 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000027136 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbprint.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000032768 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbrpm.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000047104 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbscan.sys
2017-09-13 21:01 - 2017-09-05 12:28 - 000071680 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbser.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000131488 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\USBSTOR.SYS
2017-03-19 04:56 - 2017-03-19 04:56 - 000035328 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2017-08-06 22:59 - 2017-04-28 08:59 - 000388000 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\USBXHCI.SYS
2017-03-19 04:56 - 2017-03-19 04:56 - 000054176 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vdrvroot.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000215456 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\VerifierExt.sys
2017-08-06 22:59 - 2017-05-20 14:54 - 000730016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vhdmp.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000035328 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vhf.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000049664 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\videoprt.sys
2017-08-09 07:09 - 2017-08-01 10:30 - 000082336 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vmbkmcl.sys
2017-08-09 07:09 - 2017-08-01 09:44 - 000083968 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vmbkmclr.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000107424 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vmbus.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000025088 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\VMBusHID.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000013824 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vmgencounter.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000010240 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vmgid.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000009216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vms3cap.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000047520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vmstorfl.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000083360 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\volmgr.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000373664 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\volmgrx.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000397216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\volsnap.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000016288 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\volume.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000074656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vpci.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000166816 _____ (VIA Technologies Inc.,Ltd) C:\Windows\System32\Drivers\vsmraid.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000305568 _____ (VIA Corporation) C:\Windows\System32\Drivers\VSTXRAID.SYS
2017-03-19 04:58 - 2017-03-19 04:58 - 000027136 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vwifibus.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000077312 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vwififlt.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000041472 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vwifimp.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wacompen.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000081408 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wanarp.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000055808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\watchdog.sys
2017-08-06 23:03 - 2017-06-20 14:00 - 000142752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wcifs.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000072192 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wcnfs.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000044632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WdBoot.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000902376 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Wdf01000.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000294816 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WdFilter.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000061672 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WdfLdr.sys
2017-08-06 23:03 - 2017-06-20 13:07 - 000757248 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WdiWiFi.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000121248 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WdNisDrv.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000046488 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\werkernel.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000164768 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wfplwfs.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000035744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wimmount.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000070232 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WindowsTrustedRT.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000018520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WindowsTrustedRTProxy.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000031648 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\winhv.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000055296 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\winhvr.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000032160 _____ (Mellanox) C:\Windows\System32\Drivers\winmad.sys
2017-03-19 04:58 - 2017-03-19 04:58 - 000217088 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\winnat.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000090112 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\winusb.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000064920 _____ (Mellanox) C:\Windows\System32\Drivers\winverbs.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000018432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wmiacpi.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000020384 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wmilib.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000208288 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wof.sys
2017-03-19 04:59 - 2017-03-19 04:59 - 000030624 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WpdUpFltr.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000033184 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WppRecorder.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000023552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ws2ifsl.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000100864 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFPf.sys
2017-03-19 04:57 - 2017-03-19 04:57 - 000220672 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFRd.sys
2017-08-06 22:59 - 2017-05-20 14:07 - 000277504 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\xboxgip.sys
2017-03-19 04:56 - 2017-03-19 04:56 - 000046592 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\xinputhid.sys
2017-03-20 11:41 - 2017-03-20 11:41 - 000000000 ____D () C:\Windows\System32\Drivers\en-GB
2017-03-20 11:39 - 2017-03-19 10:29 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-GB\bthenum.sys.mui
2017-03-20 11:39 - 2017-03-19 10:29 - 000004096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-GB\BthMini.SYS.mui
2017-03-20 11:39 - 2017-03-19 10:29 - 000016384 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-GB\bthport.sys.mui
2017-03-20 11:39 - 2017-03-19 10:29 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-GB\BTHUSB.SYS.mui
2017-03-20 11:39 - 2017-03-19 10:29 - 000005120 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-GB\hidbth.sys.mui
2017-03-20 11:39 - 2017-03-19 10:29 - 000011776 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-GB\NdisImPlatform.sys.mui
2017-03-20 11:39 - 2017-03-19 22:33 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-GB\scfilter.sys.mui
2017-03-20 11:39 - 2017-03-19 22:24 - 000128000 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-GB\tcpip.sys.mui
2017-03-20 11:41 - 2017-03-20 11:44 - 000000000 ____D () C:\Windows\System32\Drivers\en-US
2017-03-20 11:39 - 2017-03-18 13:43 - 000012288 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\1394OHCI.sys.mui
2017-03-20 11:39 - 2017-03-18 13:54 - 000010752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\acpi.sys.mui
2017-03-20 11:39 - 2017-03-18 13:40 - 000022528 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\afd.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000004096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\agilevpn.sys.mui
2017-03-20 11:39 - 2017-03-18 13:39 - 000014848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\amdk8.sys.mui
2017-03-20 11:39 - 2017-03-18 13:39 - 000014848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\amdppm.sys.mui
2017-03-20 11:39 - 2017-03-18 13:56 - 000007680 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ataport.sys.mui
2017-03-20 11:39 - 2017-03-18 13:54 - 000008192 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\battc.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000005120 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\bthpan.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\CAD.sys.mui
2017-03-20 11:39 - 2017-03-18 13:40 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\cdrom.sys.mui
2017-03-20 11:39 - 2017-03-18 13:56 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\cmimcext.sys.mui
2017-03-20 11:39 - 2017-03-18 13:55 - 000006144 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\disk.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000005632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\dmvsc.sys.mui
2017-03-20 11:39 - 2017-03-18 13:50 - 000007168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\dumpsd.sys.mui
2017-03-20 11:39 - 2017-03-18 13:43 - 000008704 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\EhStorTcgDrv.sys.mui
2017-03-20 11:39 - 2017-03-18 13:54 - 000005632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\fltmgr.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000023552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\fvevol.sys.mui
2017-03-20 11:39 - 2017-03-18 13:52 - 000008192 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\fwpkclnt.sys.mui
2017-03-20 11:39 - 2017-03-18 13:49 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\hidbatt.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000006656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\hidclass.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000004096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\hidi2c.sys.mui
2017-03-20 11:39 - 2017-03-18 13:40 - 000038912 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\http.sys.mui
2017-03-20 11:39 - 2017-03-18 14:00 - 000018432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\hvservice.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000010752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\i8042prt.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\IndirectKmd.sys.mui
2017-03-20 11:39 - 2017-03-18 13:39 - 000014848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\intelppm.sys.mui
2017-03-20 11:39 - 2017-03-18 13:39 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\iorate.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000006144 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\IPMIDRV.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000004608 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ipnat.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000004096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\isapnp.sys.mui
2017-03-20 11:39 - 2017-03-18 13:52 - 000004608 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\kbdclass.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\kbdhid.sys.mui
2017-03-20 11:39 - 2017-03-18 13:48 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ks.sys.mui
2017-03-20 11:39 - 2017-03-18 13:40 - 000007168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\luafv.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000013824 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\Microsoft.Bluetooth.Legacy.LEEnumerator.sys.mui
2017-03-20 11:39 - 2017-03-18 13:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\modem.sys.mui
2017-03-20 11:39 - 2017-03-18 13:52 - 000004608 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mouclass.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mouhid.sys.mui
2017-03-20 11:39 - 2017-03-18 13:54 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mountmgr.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000064512 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mrxsmb.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mshidkmdf.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mshidumdf.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000009216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mslldp.sys.mui
2017-03-20 11:39 - 2017-03-18 13:49 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mssmbios.sys.mui
2017-03-20 11:39 - 2017-03-18 13:43 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\MTConfig.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000013312 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mup.sys.mui
2017-03-20 11:39 - 2017-03-18 13:53 - 000066560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ndis.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000006656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ndiscap.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ndisuio.sys.mui
2017-03-20 11:39 - 2017-03-18 13:43 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\NdisVirtualBus.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000010752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\netvsc.sys.mui
2017-03-20 11:39 - 2017-03-18 13:55 - 000099328 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ntfs.sys.mui
2017-03-20 11:39 - 2017-03-18 14:01 - 000014848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\nvdimmn.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000015360 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\nwifi.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000017920 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pacer.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000004096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\parport.sys.mui
2017-03-20 11:39 - 2017-03-18 13:54 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\partmgr.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000008704 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pci.sys.mui
2017-03-20 11:39 - 2017-03-18 13:52 - 000004608 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pcmcia.sys.mui
2017-03-20 11:39 - 2017-03-18 13:57 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pdc.sys.mui
2017-03-20 11:39 - 2017-03-18 14:01 - 000015872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pmem.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pnpmem.sys.mui
2017-03-20 11:39 - 2017-03-18 13:39 - 000014848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\processr.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\qwavedrv.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000006144 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rdbss.sys.mui
2017-03-20 11:39 - 2017-03-18 13:43 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rdpdr.sys.mui
2017-03-20 11:39 - 2017-03-18 13:55 - 000030720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\refs.sys.mui
2017-03-20 11:39 - 2017-03-18 13:56 - 000008704 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\refsv1.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rfxvmt.sys.mui
2017-03-20 11:39 - 2017-03-18 13:43 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\RNDISMP.sys.mui
2017-03-20 11:39 - 2017-03-18 14:01 - 000004096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\scmbus.sys.mui
2017-03-20 11:39 - 2017-03-18 13:42 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\scsiport.sys.mui
2017-03-20 11:39 - 2017-03-18 13:59 - 000007168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\sdbus.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\sdstor.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000004096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\sercx.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000009216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\sercx2.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000010752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\serial.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000005632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\sermouse.sys.mui
2017-03-20 11:39 - 2017-03-18 13:49 - 000046080 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\spaceport.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000004608 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\spbcx.sys.mui
2017-03-20 11:39 - 2017-03-18 13:46 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\srv.sys.mui
2017-03-20 11:39 - 2017-03-18 13:46 - 000079872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\srv2.sys.mui
2017-03-20 11:39 - 2017-03-18 13:40 - 000009216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\storqosflt.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000008704 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\synth3dvsc.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000008704 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tpm.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tsusbflt.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000008192 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tunnel.sys.mui
2017-03-20 11:39 - 2017-03-18 13:46 - 000012800 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ucx01000.sys.mui
2017-03-20 11:39 - 2017-03-18 13:43 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\UmBus.sys.mui
2017-03-20 11:39 - 2017-03-18 13:46 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbehci.sys.mui
2017-03-20 11:39 - 2017-03-18 13:52 - 000014848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbhub.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000024064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\USBHUB3.SYS.mui
2017-03-20 11:39 - 2017-03-18 13:55 - 000026624 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbport.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbrpm.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbstor.sys.mui
2017-03-20 11:39 - 2017-03-18 14:03 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbvideo.sys.mui
2017-03-20 11:39 - 2017-03-18 13:46 - 000015360 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\USBXHCI.SYS.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000011264 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vdrvroot.sys.mui
2017-03-20 11:39 - 2017-03-18 13:46 - 000011264 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vhdmp.sys.mui
2017-03-20 11:39 - 2017-03-18 13:46 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vhf.sys.mui
2017-03-20 11:39 - 2017-03-18 13:52 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vmbus.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000006144 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vmstorfl.sys.mui
2017-03-20 11:39 - 2017-03-18 13:54 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\volmgr.sys.mui
2017-03-20 11:39 - 2017-03-18 13:56 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\volmgrx.sys.mui
2017-03-20 11:39 - 2017-03-18 13:43 - 000004608 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wacompen.sys.mui
2017-03-20 11:39 - 2017-03-18 13:55 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wdf01000.sys.mui
2017-03-20 11:39 - 2017-03-18 13:46 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wfplwfs.sys.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000028672 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\winnat.sys.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000015872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wmbclass.sys.mui
2017-03-20 11:39 - 2017-03-18 13:54 - 000005632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wof.sys.mui
2017-03-20 11:39 - 2017-03-18 13:39 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\WpdUpFltr.sys.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ws2ifsl.sys.mui
2017-03-20 11:39 - 2017-03-18 13:39 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wudfpf.sys.mui
2017-03-19 05:03 - 2017-08-06 10:26 - 000000000 ____D () C:\Windows\System32\Drivers\etc
2015-10-30 15:24 - 2017-07-15 23:36 - 000000869 _____ () C:\Windows\System32\Drivers\etc\hosts
2017-03-19 05:03 - 2017-03-19 05:01 - 000003683 _____ () C:\Windows\System32\Drivers\etc\lmhosts.sam
2015-10-30 15:24 - 2015-10-30 15:21 - 000000407 _____ () C:\Windows\System32\Drivers\etc\networks
2015-10-30 15:24 - 2015-10-30 15:21 - 000001358 _____ () C:\Windows\System32\Drivers\etc\protocol
2015-10-30 15:24 - 2015-10-30 15:21 - 000017463 _____ () C:\Windows\System32\Drivers\etc\services
2017-03-19 05:02 - 2017-09-14 00:08 - 000000000 ____D () C:\Windows\System32\Drivers\UMDF
2017-03-19 04:56 - 2017-03-19 04:56 - 000085504 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\EhStorPwdDrv.dll
2017-03-19 04:58 - 2017-03-19 04:58 - 000194048 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\IddCx.dll
2017-08-09 07:10 - 2017-07-28 12:24 - 000177152 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\Microsoft.Bluetooth.Profiles.HidOverGatt.dll
2017-08-06 23:03 - 2017-06-20 13:09 - 000710656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\NfcCx.dll
2017-03-19 04:58 - 2017-03-19 04:58 - 000026624 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\PosCx.dll
2017-03-19 04:56 - 2017-03-19 04:56 - 000026528 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\SDFLauncher.dll
2017-03-19 04:58 - 2017-03-19 04:58 - 000185856 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\SensorsCx.dll
2017-03-19 04:58 - 2017-03-19 04:58 - 000052736 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\SMCCx.dll
2017-09-13 21:00 - 2017-09-05 12:27 - 000102912 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\UcmCx.dll
2017-03-19 04:56 - 2017-03-19 04:56 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\WpdFs.dll
2017-03-19 04:56 - 2017-03-19 04:56 - 000933888 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\WpdMtpDr.dll
2017-03-20 11:41 - 2017-03-20 11:41 - 000000000 ____D () C:\Windows\System32\Drivers\UMDF\en-GB
2017-03-20 11:39 - 2017-03-19 22:33 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-GB\SensorsCx.dll.mui
2017-03-20 11:41 - 2017-03-20 11:41 - 000000000 ____D () C:\Windows\System32\Drivers\UMDF\en-US
2017-03-20 11:39 - 2017-03-18 13:47 - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\hidscanner.dll.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000007168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\IddCx.dll.mui
2017-03-20 11:39 - 2017-03-18 13:49 - 000010752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\idtsec.dll.mui
2017-03-20 11:39 - 2017-03-18 13:47 - 000010752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\mgtdyn.dll.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000005120 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\Microsoft.Bluetooth.Profiles.HidOverGatt.dll.mui
2017-03-20 11:39 - 2017-03-18 13:44 - 000006656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\NfcCx.dll.mui
2017-03-20 11:39 - 2017-03-18 13:48 - 000003584 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\SensorsHid.dll.mui
2017-03-20 11:39 - 2017-03-18 13:45 - 000006656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\UsbccidDriver.dll.mui
2017-03-20 11:39 - 2017-03-18 13:40 - 000003072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\wpdmtpdr.dll.mui
2017-03-20 11:39 - 2017-03-18 13:43 - 000007168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\WUDFUsbccidDriver.dll.mui

====== End of Folder: ======


==== End of Fixlog 10:37:06 ====



#5 winglien

winglien
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:25 PM

Posted 16 September 2017 - 10:13 AM

still waiting...

still didnt take any action, and the malwarebytes keep quarantine the bitcoinminer. how to completely remove this malware?



#6 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,761 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:09:25 AM

Posted 16 September 2017 - 02:18 PM

Sorry, but reviewing these logs take some time. In addition, we can't fix what we can't see. You must be patient.

 

  • Highlight the entire content of the quote box below.

Quote

Start::

Folder: C:\Windows\System32

End::

  • Right click on the highlighted text and select Copy.
  • Start FRST (FRST64) with Administrator privileges
  • Press the Fix button. FRST will process the lines copied above from the clipboard.
  • When finished, a log file (Fixlog.txt) will pop up and saved in the same location the tool was ran from.

Please copy and paste its contents in your next reply.


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#7 winglien

winglien
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:25 PM

Posted 16 September 2017 - 05:48 PM

understand.

 

hmmmm some strange happen....a pop up box appearand and it said an error was occuring...that i dont have permission to do that...while i want send my fixlog post

this i test without the fixlog copy...



#8 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,761 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:09:25 AM

Posted 16 September 2017 - 06:56 PM

Maybe due to its size.

 

Attempt to Upload the file(s) here: http://www.bleepingcomputer.com/submit-malware.php?channel=132

Click on Browse button and navigate to the file you want to upload.
Click on Submit Query button.

 

If the space is not sufficient, then try:

 

Upload the file(s) here: http://www.sendspace.com/
Click on Browse button and navigate to the file you want to upload.
Click on Upload button.
Click on FIRST Copy Link button and paste the link in your next reply.

 

Malwarebytes may block this site. To avoid this, quit Malwarebytes on the system tray. Once done, you may run Malwarebytes and the protection will be restated.


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#9 winglien

winglien
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:25 PM

Posted 16 September 2017 - 08:05 PM

yes is due to long script, i waste 3 hour times only for copy paste the fixlog, now i already upload it on Attempt to Upload the file(s) here: http://www.bleepingcomputer.com/submit-malware.php?channel=132 with same title "Help me Eliminate malware alpha.exe & zed.exe"



#10 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,761 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:09:25 AM

Posted 16 September 2017 - 10:15 PM

I have reviewed the fixlog. There is no sign of the tasks and files related to that infection. Are you sure these files keep spawning?


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#11 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,761 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:09:25 AM

Posted 16 September 2017 - 10:28 PM

It is sleep time on this part of the woods. I'll be checking on you in the AM.


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#12 winglien

winglien
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:25 PM

Posted 17 September 2017 - 12:18 AM

yes im prety sure, this virus/malware still active, the quarantine and guard from "mawarebytes" keep poping up

Attached Files



#13 winglien

winglien
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:25 PM

Posted 17 September 2017 - 02:22 AM

i ever see forum malware respon team fix the same problem malware, trojan alpha exe and zed.exe,

with same method he check the CPU system,

then he just suddenly said, he believe an app game was the PuPs (maybe source of malware)(i realy want to know how you all diagnosis the source of problem)

then after that he ask to remove the app and give some highlight for FRST fixlist.

unfortunately each fixlist was only special for that CPU

so i guess no general fixlist for all CPU to terminate this malware.

 

here the conversation

https://www.bleepingcomputer.com/forums/t/657057/infected-by-the-zedexe-malwarevirus/



#14 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,761 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:09:25 AM

Posted 17 September 2017 - 09:17 AM

  • Highlight the entire content of the quote box below.

Start::  
GroupPolicy: Restriction <==== ATTENTION
BHO: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
BHO-x32: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
2017-09-15 19:33 - 2017-09-05 13:26 - 001930840 _____ (Microsoft Corporation) C:\Users\Wingly\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Wingly\appdata\local\temp\nvd
C:\Users\Wingly\appdata\local\temp\ati
Startup: C:\Users\Wingly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\winnet.exe [2017-09-10] (Microsoft Corporation)
HOSTS:
Removeproxy:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset C:\resettcpip.txt
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
CMD: Bitsadmin /Reset /Allusers
EMPTYTEMP:
Reboot:
End::

  • Right click on the highlighted text and select Copy.
  • Start FRST (FRST64) with Administrator privileges
  • Press the Fix button. FRST will process the lines copied above from the clipboard.
  • When finished, a log file (Fixlog.txt) will pop up and saved in the same location the tool was ran from.

Please copy and paste its contents in your next reply.
 


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#15 winglien

winglien
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:25 PM

Posted 17 September 2017 - 09:55 AM

sorry for the delay, here the fixlog

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-09-2017
Ran by Wingly (17-09-2017 22:50:16) Run:6
Running from C:\Users\Wingly\Desktop
Loaded Profiles: Wingly (Available Profiles: Wingly)
Boot Mode: Normal
==============================================

fixlist content:
*****************
 
GroupPolicy: Restriction <==== ATTENTION
BHO: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
BHO-x32: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
2017-09-15 19:33 - 2017-09-05 13:26 - 001930840 _____ (Microsoft Corporation) C:\Users\Wingly\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Wingly\appdata\local\temp\nvd
C:\Users\Wingly\appdata\local\temp\ati
Startup: C:\Users\Wingly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\winnet.exe [2017-09-10] (Microsoft Corporation)
HOSTS:
Removeproxy:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset C:\resettcpip.txt
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
CMD: Bitsadmin /Reset /Allusers
EMPTYTEMP:
Reboot:

*****************

C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} => key removed successfully
HKLM\Software\Classes\CLSID\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} => key removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} => key removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => key removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => key removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\Users\Wingly\AppData\Local\Temp\dllnt_dump.dll => moved successfully
C:\Users\Wingly\appdata\local\temp\nvd => moved successfully
C:\Users\Wingly\appdata\local\temp\ati => moved successfully
C:\Users\Wingly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\winnet.exe => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-114570740-81500683-4137005013-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-114570740-81500683-4137005013-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


========= End of RemoveProxy: =========


========= netsh advfirewall reset =========

Ok.


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Ok.


========= End of CMD: =========


========= ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========


========= netsh winsock reset catalog =========


Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.


========= End of CMD: =========


========= netsh int ip reset C:\resettcpip.txt =========

Resetting Compartment Forwarding, OK!
Resetting Compartment, OK!
Resetting Control Protocol, OK!
Resetting Echo Sequence Request, OK!
Resetting Global, OK!
Resetting Interface, OK!
Resetting Anycast Address, OK!
Resetting Multicast Address, OK!
Resetting Unicast Address, OK!
Resetting Neighbor, OK!
Resetting Path, OK!
Resetting Potential, OK!
Resetting Prefix Policy, OK!
Resetting Proxy Neighbor, OK!
Resetting Route, OK!
Resetting Site Prefix, OK!
Resetting Subinterface, OK!
Resetting Wakeup Pattern, OK!
Resetting Resolve Neighbor, OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , failed.
Access is denied.

Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Restart the computer to complete this action.


========= End of CMD: =========


========= FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" =========

Failed to clear log Microsoft-Windows-LiveId/Analytic. Access is denied.
Failed to clear log Microsoft-Windows-LiveId/Operational. Access is denied.

========= End of CMD: =========


========= Bitsadmin /Reset /Allusers =========


BITSADMIN version 3.0
BITS administration utility.
© Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

{DB6A9DC6-220C-4AA2-A19B-486833CD547F} canceled.
1 out of 1 jobs canceled.

========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 19072166 B
Java, Flash, Steam htmlcache => 550 B
Windows/system/drivers => 13268482 B
Edge => 0 B
Chrome => 0 B
Firefox => 219740892 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 11482 B
NetworkService => 0 B
Wingly => 37103536 B

RecycleBin => 0 B
EmptyTemp: => 283.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:51:14 ====






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users