Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with malware after trying to install KMSpico


  • Please log in to reply
18 replies to this topic

#1 DevelishBuffalo

DevelishBuffalo

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 11 September 2018 - 01:10 PM

Hello,

 

After trying to install KMSpico, I ran into problems with all kinds of malware, starting with All-Radio 4.27.

During my search on google (hindered bij a lot of popups and redirected links) I installed a couple of selfhelpprograms (Malwarebytes, Zemana, Hitmanpro, Adwcleaner and Emergency Kit Scanner.

 

A lot of malware was deleted by these prgrams, but my problems aren't over. I also manually deleted all KMSpico files.

 

I've added the FRST logs.

 

I hope you can help me

Attached Files



BC AdBot (Login to Remove)

 


#2 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,370 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:21 AM

Posted 12 September 2018 - 08:46 AM

Greetings DevelishBuffalo and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that.

===================================================

Ground Rules:
  • First, please keep in mind most of us at BleepingComputer volunteer our assistance for your benefit in your time of need. Please try to match our commitment to you with your patience toward us.
  • It is important to not run any tools or take any steps other than those I will provide for you.
  • Please perform all steps in the order they are listed. If things are not clear or you experience problems be sure to stop and let me know.
  • Please copy and paste all logs into your post unless otherwise requested.
  • When your computer is clean I will let you know, provide instructions to remove tools and reports, and offer you information about how you can combat future infections.
  • If you do not reply to your topic after 5 days I will assume it has been abandoned and I will close it.
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and let me know.

Thank you for your patience thus far.

I would like to get the FRST reports in English so that it is easier for me to review. Please right click on the FRST64 icon, select Rename, and rename it to FRST64english and then run another scan. Be sure to copy and paste both documents in your reply using multiple posts if necessary.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#3 DevelishBuffalo

DevelishBuffalo
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 12 September 2018 - 12:43 PM

Hello Gary,
 
Thank you for your reply. My name is Stefan
 
My apologies, I didn't realize the reports would be in Dutch  :).
Attached you will find the English versions.
 
I hope to hear from you.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.09.2018
Ran by Desktopper (administrator) on DESKTOP-L09T855 (12-09-2018 19:36:21)
Running from C:\Users\Desktopper\Downloads
Loaded Profiles: Desktopper (Available Profiles: Desktopper)
Platform: Windows 10 Home Version 1803 17134.228 (X64) Language: Nederlands (Nederland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.281_none_eada712a1d8142be\TiWorker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Desktopper\Downloads\FRST64english.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16475392 2016-05-26] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [291056 2018-08-26] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKU\S-1-5-21-198283595-3172470215-2829322620-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2018-08-20] (Glarysoft Ltd)
HKU\S-1-5-21-198283595-3172470215-2829322620-1001\...\MountPoints2: {32128517-8c53-11e8-9718-806e6f6e6963} - "E:\autostart.exe"
BootExecute: autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{efec0116-e344-4e0b-ba32-6a3f63d1c5c2}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-07-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxps://www.google.com/"
CHR Profile: C:\Users\Desktopper\AppData\Local\Google\Chrome\User Data\Default [2018-09-12]
CHR Extension: (Documenten) - C:\Users\Desktopper\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-27]
CHR Extension: (Google Drive) - C:\Users\Desktopper\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-07-27]
CHR Extension: (YouTube) - C:\Users\Desktopper\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-27]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Desktopper\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2018-07-28]
CHR Extension: (Offline Documenten) - C:\Users\Desktopper\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-26]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Desktopper\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-27]
CHR Extension: (Gmail) - C:\Users\Desktopper\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-07-27]
CHR Extension: (Chrome Media Router) - C:\Users\Desktopper\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-07-28]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [323512 2018-08-26] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [8043904 2018-08-26] (AVG Technologies CZ, s.r.o.)
S3 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [111040 2018-08-26] (AVG Technologies CZ, s.r.o.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-07-30] (Intel Corporation)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\NisSrv.exe [3925648 2018-07-20] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MsMpEng.exe [100080 2018-07-20] (Microsoft Corporation)
R2 WSWNA3100M; C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe [316120 2014-08-18] ()
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [192104 2018-08-26] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [222288 2018-08-26] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [194224 2018-08-26] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [339048 2018-08-26] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [51952 2018-08-26] (AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\Windows\System32\drivers\avgElam.sys [15344 2018-08-26] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [39352 2018-08-26] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [155664 2018-09-11] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [104256 2018-08-26] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [78864 2018-08-28] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1020112 2018-08-26] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [459624 2018-09-04] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [208216 2018-09-12] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [373944 2018-08-26] (AVG Technologies CZ, s.r.o.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [152688 2018-07-12] (Malwarebytes)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2018-08-29] (Glarysoft Ltd)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193256 2018-09-10] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [117472 2018-09-11] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [52328 2018-09-11] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [259360 2018-09-10] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [109872 2018-09-12] (Malwarebytes)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [3818056 2018-02-13] (Realtek Semiconductor Corporation )
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [46592 2018-07-20] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [340008 2018-07-20] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [59944 2018-07-20] (Microsoft Corporation)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2018-09-10] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-09-10] (Zemana Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-12 19:33 - 2018-09-12 19:33 - 000027972 _____ C:\Users\Desktopper\Downloads\Addition_11-09-2018 19.58.12.txt
2018-09-11 19:58 - 2018-09-11 19:58 - 000027972 _____ C:\Users\Desktopper\Downloads\Addition.txt
2018-09-11 19:57 - 2018-09-12 19:36 - 000012022 _____ C:\Users\Desktopper\Downloads\FRST.txt
2018-09-11 19:57 - 2018-09-12 19:36 - 000000000 ____D C:\FRST
2018-09-11 19:56 - 2018-09-11 19:56 - 002413568 _____ (Farbar) C:\Users\Desktopper\Downloads\FRST64english.exe
2018-09-10 22:42 - 2018-09-10 22:43 - 000000000 ____D C:\AdwCleaner
2018-09-10 22:42 - 2018-09-10 22:42 - 007567568 _____ (Malwarebytes) C:\Users\Desktopper\Downloads\AdwCleaner.exe
2018-09-10 22:34 - 2018-09-10 22:34 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Desktopper\Downloads\iExplore.exe
2018-09-10 22:34 - 2018-09-10 22:34 - 000002072 _____ C:\Users\Desktopper\Desktop\Rkill.txt
2018-09-10 22:07 - 2018-09-10 22:07 - 011576808 _____ (SurfRight B.V.) C:\Users\Desktopper\Downloads\hitmanpro_x64 (1).exe
2018-09-10 21:07 - 2018-09-10 21:07 - 000000000 ____D C:\ProgramData\Emsisoft
2018-09-10 21:06 - 2018-09-11 20:16 - 000000000 ____D C:\EEK
2018-09-10 21:04 - 2018-09-10 21:05 - 342305208 _____ C:\Users\Desktopper\Downloads\EmsisoftEmergencyKit.exe
2018-09-10 21:02 - 2018-09-12 19:36 - 000159477 _____ C:\Windows\ZAM.krnl.trace
2018-09-10 21:02 - 2018-09-12 19:36 - 000124682 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-09-10 21:02 - 2018-09-10 21:02 - 006625600 _____ (Zemana Ltd. ) C:\Users\Desktopper\Downloads\Zemana.AntiMalware.Setup.exe
2018-09-10 21:02 - 2018-09-10 21:02 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2018-09-10 21:02 - 2018-09-10 21:02 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam64.sys
2018-09-10 21:02 - 2018-09-10 21:02 - 000000000 ____D C:\Users\Desktopper\AppData\Local\Zemana
2018-09-10 21:02 - 2018-09-10 21:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2018-09-10 21:02 - 2018-09-10 21:02 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-09-10 20:58 - 2018-09-10 21:01 - 000000000 ____D C:\ProgramData\HitmanPro
2018-09-10 20:58 - 2018-09-10 20:58 - 011576808 _____ (SurfRight B.V.) C:\Users\Desktopper\Downloads\hitmanpro_x64.exe
2018-09-10 20:53 - 2018-09-12 19:33 - 000109872 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-09-10 20:53 - 2018-09-11 19:28 - 000117472 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-09-10 20:53 - 2018-09-11 19:28 - 000052328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-09-10 20:53 - 2018-09-10 20:53 - 000259360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-09-10 20:53 - 2018-09-10 20:53 - 000193256 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-09-10 20:53 - 2018-09-10 20:53 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-09-10 20:53 - 2018-09-10 20:53 - 000000000 ____D C:\Users\Desktopper\AppData\Local\mbam
2018-09-10 20:53 - 2018-09-10 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-09-10 20:53 - 2018-09-10 20:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-09-10 20:53 - 2018-09-10 20:53 - 000000000 ____D C:\Program Files\Malwarebytes
2018-09-10 20:53 - 2018-07-12 08:42 - 000152688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-09-10 20:52 - 2018-09-10 20:52 - 080038952 _____ (Malwarebytes ) C:\Users\Desktopper\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.441-1.0.6729.exe
2018-09-10 20:37 - 2018-09-10 20:55 - 000000000 ____D C:\ProgramData\zVmiMcGqez
2018-09-10 20:37 - 2018-09-10 20:37 - 000000000 ____D C:\Users\Desktopper\AppData\Local\CrashDumps
2018-09-10 20:36 - 2018-09-10 20:55 - 000000000 ____D C:\Windows\SysWOW64\hfoxekvy
2018-09-10 20:36 - 2018-09-10 20:41 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\Windows RTL Handler
2018-09-10 20:36 - 2018-09-10 20:36 - 000000116 _____ C:\ProgramData\ythdg.exe
2018-09-10 20:35 - 2018-09-10 20:35 - 000003072 _____ C:\Users\Desktopper\AppData\Local\asSSDOptimizerV13.exe
2018-09-10 20:30 - 2018-09-10 20:30 - 000000000 ___HD C:\$AV_AVG
2018-09-10 20:17 - 2018-09-10 20:17 - 000000000 ____D C:\Users\Desktopper\AppData\LocalLow\Temp
2018-09-04 19:14 - 2018-09-04 19:29 - 000000022 _____ C:\Users\Desktopper\Downloads\wetransfer-6d3974.zip
2018-09-02 17:37 - 2018-09-02 17:37 - 001849788 _____ C:\Users\Desktopper\Downloads\TOMB RAIDER 2018 1080p BluRay.nzb
2018-09-02 14:55 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2018-09-02 14:55 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2018-09-02 14:55 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2018-09-02 14:55 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2018-09-02 14:55 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2018-09-02 14:55 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2018-09-02 14:55 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2018-09-02 14:55 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2018-09-02 14:55 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2018-09-02 14:55 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2018-09-02 14:55 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2018-09-02 14:55 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2018-09-02 14:55 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2018-09-02 14:55 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2018-09-02 14:55 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2018-09-02 14:55 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2018-09-02 14:55 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2018-09-02 14:55 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2018-09-02 14:55 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2018-09-02 14:55 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2018-09-02 14:55 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2018-09-02 14:55 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2018-09-02 14:55 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2018-09-02 14:55 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2018-09-02 14:55 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2018-09-02 14:55 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2018-09-02 14:55 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2018-09-02 14:55 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2018-09-02 14:55 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2018-09-02 14:55 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2018-09-02 14:55 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2018-09-02 14:55 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2018-09-02 14:55 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2018-09-02 14:55 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2018-09-02 14:55 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2018-09-02 14:55 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2018-09-02 14:55 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2018-09-02 14:55 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2018-09-02 14:55 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2018-09-02 14:55 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2018-09-02 14:55 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2018-09-02 14:55 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2018-09-02 14:55 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2018-09-02 14:55 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2018-09-02 14:55 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2018-09-02 14:55 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2018-09-02 14:55 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2018-09-02 14:55 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2018-09-02 14:55 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2018-09-02 14:55 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2018-09-02 14:55 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2018-09-02 14:55 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2018-09-02 14:55 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2018-09-02 14:55 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2018-09-02 14:55 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2018-09-02 14:55 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2018-09-02 14:55 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2018-09-02 14:55 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2018-09-02 14:55 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2018-09-02 14:55 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2018-09-02 14:55 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2018-09-02 14:55 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2018-09-02 14:55 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2018-09-02 14:55 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2018-09-02 14:55 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2018-09-02 14:55 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2018-09-02 14:55 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2018-09-02 14:55 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2018-09-02 14:55 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2018-09-02 14:55 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2018-09-02 14:55 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2018-09-02 14:55 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2018-09-02 14:55 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2018-09-02 14:55 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2018-09-02 14:55 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2018-09-02 14:55 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2018-09-02 14:55 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2018-09-02 14:55 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2018-09-02 14:55 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2018-09-02 14:55 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2018-09-02 14:55 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2018-09-02 14:55 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2018-09-02 14:55 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2018-09-02 14:55 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2018-09-02 14:55 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2018-09-02 14:55 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2018-09-02 14:55 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2018-09-02 14:55 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2018-09-02 14:55 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2018-09-02 14:55 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2018-09-02 14:55 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2018-09-02 14:55 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2018-09-02 14:55 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2018-09-02 14:55 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2018-09-02 14:55 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2018-09-02 14:55 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2018-09-02 14:55 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2018-09-02 14:55 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2018-09-02 14:55 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2018-09-02 14:55 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2018-09-02 14:55 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2018-09-02 14:55 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2018-09-02 14:55 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2018-09-02 14:55 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2018-09-02 14:55 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2018-09-02 14:55 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2018-09-02 14:55 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2018-09-02 14:55 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2018-09-02 14:55 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2018-09-02 14:55 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2018-09-02 14:55 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2018-09-02 14:55 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2018-09-02 14:55 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2018-09-02 14:55 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2018-09-02 14:55 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2018-09-02 14:55 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2018-09-02 14:55 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2018-09-02 14:55 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2018-09-02 14:55 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2018-09-02 14:55 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2018-09-02 14:55 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2018-09-02 14:55 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2018-09-02 14:55 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2018-09-02 14:55 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2018-09-02 14:55 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2018-09-02 14:55 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2018-09-02 14:55 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2018-09-02 14:55 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2018-09-02 14:55 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2018-09-02 14:55 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2018-09-02 14:55 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2018-09-02 14:55 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2018-09-02 14:55 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2018-09-02 14:55 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2018-09-02 14:55 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2018-09-02 14:55 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2018-09-02 14:55 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2018-09-02 14:55 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2018-09-02 14:55 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2018-09-02 14:55 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2018-09-02 14:55 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2018-09-02 14:55 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2018-09-02 14:55 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2018-09-02 14:55 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2018-09-02 14:55 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2018-09-02 14:55 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2018-09-02 14:55 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2018-09-02 14:55 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2018-09-02 14:55 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2018-09-02 14:55 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2018-09-02 14:55 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2018-09-02 14:55 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2018-09-02 14:55 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2018-09-02 14:55 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2018-09-02 14:55 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2018-09-02 14:55 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2018-09-02 14:55 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2018-09-02 14:55 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2018-09-02 14:55 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2018-09-02 14:55 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2018-09-02 14:55 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2018-09-02 14:55 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2018-09-02 14:55 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2018-09-02 14:55 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2018-09-02 14:54 - 2018-09-02 14:55 - 000000000 ____D C:\ProgramData\Package Cache
2018-09-02 14:20 - 2018-09-02 14:30 - 000000000 ____D C:\Users\Desktopper\AppData\Local\Steam
2018-08-29 21:51 - 2018-08-29 21:51 - 001094982 _____ C:\Users\Desktopper\Downloads\facqpmAuyrLJFhXs.par2.nzb
2018-08-29 21:16 - 2018-08-29 21:16 - 000000000 ____D C:\ProgramData\GlarySoft
2018-08-29 21:14 - 2018-08-29 21:14 - 000028936 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2018-08-29 21:14 - 2018-08-29 21:14 - 000001161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2018-08-29 21:14 - 2018-08-29 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2018-08-29 21:13 - 2018-09-10 21:41 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2018-08-29 21:13 - 2018-08-29 21:18 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\GlarySoft
2018-08-29 21:13 - 2018-08-29 21:13 - 017229968 _____ (Glarysoft Ltd) C:\Users\Desktopper\Downloads\gu5setup.exe
2018-08-29 21:13 - 2018-08-29 21:13 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\DiskDefrag
2018-08-29 20:16 - 2018-08-29 20:16 - 003409276 _____ C:\Users\Desktopper\Downloads\F4dMHokfJzk8qB.par2.nzb
2018-08-29 20:14 - 2018-08-29 20:14 - 000599358 _____ C:\Users\Desktopper\Downloads\97HYEWS258DF7G5G23RR65GLK88FF8.nzb
2018-08-29 20:13 - 2018-08-29 20:13 - 000591695 _____ C:\Users\Desktopper\Downloads\97HYEWS258DF7G5G23RR65GLK88FF8.par2.nzb
2018-08-28 20:42 - 2018-08-28 20:42 - 000057932 _____ C:\Users\Desktopper\Downloads\aanslag-gemeentelijke-belastingen (4).pdf
2018-08-28 20:40 - 2018-08-28 20:40 - 000108187 _____ C:\Users\Desktopper\Downloads\def-aanslag-inkomstenbelasting-2017.pdf
2018-08-28 20:40 - 2018-08-28 20:40 - 000086220 _____ C:\Users\Desktopper\Downloads\definitieve-berekening-toeslagen (1).pdf
2018-08-26 20:00 - 2018-08-26 20:00 - 000380656 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2018-08-16 22:58 - 2018-08-16 22:58 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\dvdcss
2018-08-16 22:08 - 2018-08-16 22:08 - 000287359 _____ C:\Users\Desktopper\Downloads\060418BIA14A.nzb
2018-08-16 22:06 - 2018-08-16 22:06 - 001324170 _____ C:\Users\Desktopper\Downloads\Bumba - In De Far West.nzb
2018-08-15 21:17 - 2018-08-03 10:39 - 021389368 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-08-15 21:17 - 2018-08-03 10:20 - 003652608 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2018-08-15 21:17 - 2018-08-03 09:43 - 020383720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-08-15 21:17 - 2018-08-03 09:28 - 002895360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2018-08-15 21:17 - 2018-08-03 05:47 - 001034624 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2018-08-15 21:17 - 2018-08-03 05:40 - 001221048 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2018-08-15 21:17 - 2018-08-03 05:40 - 001030952 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2018-08-15 21:17 - 2018-08-03 05:39 - 009091480 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-08-15 21:17 - 2018-08-03 05:39 - 007519992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2018-08-15 21:17 - 2018-08-03 05:39 - 007436120 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2018-08-15 21:17 - 2018-08-03 05:39 - 002829216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-08-15 21:17 - 2018-08-03 05:38 - 002765440 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-08-15 21:17 - 2018-08-03 05:26 - 006043600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2018-08-15 21:17 - 2018-08-03 05:25 - 006568784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-08-15 21:17 - 2018-08-03 05:25 - 002255008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-08-15 21:17 - 2018-08-03 05:25 - 001622296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-08-15 21:17 - 2018-08-03 05:23 - 025846784 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2018-08-15 21:17 - 2018-08-03 05:18 - 022714880 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-08-15 21:17 - 2018-08-03 05:18 - 022007808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2018-08-15 21:17 - 2018-08-03 05:17 - 004380160 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2018-08-15 21:17 - 2018-08-03 05:15 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2018-08-15 21:17 - 2018-08-03 05:14 - 004867584 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-08-15 21:17 - 2018-08-03 05:13 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-08-15 21:17 - 2018-08-03 05:13 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2018-08-15 21:17 - 2018-08-03 05:13 - 003395072 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2018-08-15 21:17 - 2018-08-03 05:12 - 003392000 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2018-08-15 21:17 - 2018-08-03 05:12 - 002738688 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2018-08-15 21:17 - 2018-08-03 05:11 - 007577088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2018-08-15 21:17 - 2018-08-03 05:11 - 003712000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-08-15 21:17 - 2018-08-03 05:11 - 002700288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2018-08-15 21:17 - 2018-08-03 05:11 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2018-08-15 21:17 - 2018-08-03 05:09 - 005776896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2018-08-15 21:17 - 2018-08-03 05:09 - 004615680 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-08-15 21:17 - 2018-08-03 05:09 - 001854976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2018-08-15 21:17 - 2018-08-03 05:09 - 001395200 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2018-08-15 21:17 - 2018-08-03 05:09 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2018-08-15 21:17 - 2018-08-03 05:08 - 002258944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2018-08-15 21:17 - 2018-08-03 05:06 - 004191232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-08-15 21:17 - 2018-07-15 02:56 - 001523240 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2018-08-15 21:17 - 2018-07-15 02:44 - 006587392 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2018-08-15 21:17 - 2018-07-15 02:43 - 012710400 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-08-15 21:17 - 2018-07-15 02:42 - 008624128 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2018-08-15 21:17 - 2018-07-15 02:42 - 004708864 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2018-08-15 21:17 - 2018-07-15 02:38 - 002051584 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2018-08-15 21:17 - 2018-07-15 01:28 - 001327424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2018-08-15 21:17 - 2018-07-15 01:18 - 005657600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2018-08-15 21:17 - 2018-07-15 01:17 - 011901440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-08-15 21:17 - 2018-07-14 08:46 - 023862784 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2018-08-15 21:17 - 2018-07-14 08:42 - 019525632 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2018-08-15 21:17 - 2018-07-14 06:22 - 006813744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2018-08-15 21:17 - 2018-07-14 06:22 - 001144664 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2018-08-15 21:17 - 2018-07-14 06:19 - 001946752 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2018-08-15 21:17 - 2018-07-14 06:19 - 000981920 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2018-08-15 21:17 - 2018-07-14 06:18 - 002371416 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2018-08-15 21:17 - 2018-07-14 06:18 - 001017584 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-08-15 21:17 - 2018-07-14 06:18 - 000613176 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2018-08-15 21:17 - 2018-07-14 06:17 - 006527056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2018-08-15 21:17 - 2018-07-14 06:17 - 002420632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-08-15 21:17 - 2018-07-14 06:16 - 002331576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2018-08-15 21:17 - 2018-07-14 06:16 - 001143096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2018-08-15 21:17 - 2018-07-14 06:15 - 001174552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-08-15 21:17 - 2018-07-14 05:59 - 009084928 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2018-08-15 21:17 - 2018-07-14 05:59 - 005883392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2018-08-15 21:17 - 2018-07-14 05:57 - 007057920 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2018-08-15 21:17 - 2018-07-14 05:57 - 004331008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2018-08-15 21:17 - 2018-07-14 05:56 - 004559872 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2018-08-15 21:17 - 2018-07-14 05:56 - 002900992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2018-08-15 21:17 - 2018-07-14 05:56 - 002697216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Controls.dll
2018-08-15 21:17 - 2018-07-14 05:55 - 001627136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-08-15 21:17 - 2018-07-14 05:54 - 003319808 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2018-08-15 21:17 - 2018-07-14 05:54 - 002825728 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2018-08-15 21:17 - 2018-07-14 05:54 - 001627136 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2018-08-15 21:17 - 2018-07-14 05:53 - 004770816 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2018-08-15 21:17 - 2018-07-14 05:53 - 003381248 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2018-08-15 21:17 - 2018-07-14 05:53 - 002368512 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2018-08-15 21:17 - 2018-07-14 05:53 - 001825792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2018-08-15 21:17 - 2018-07-14 05:53 - 001668096 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll
2018-08-15 21:17 - 2018-07-14 05:53 - 000681984 _____ (Microsoft Corporation) C:\Windows\system32\WFDSConMgrSvc.dll
2018-08-15 21:17 - 2018-07-14 05:51 - 003376640 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2018-08-15 21:17 - 2018-07-14 05:51 - 002904576 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-08-15 21:17 - 2018-07-14 05:51 - 001804288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-08-15 21:17 - 2018-07-14 05:50 - 001457664 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2018-08-15 21:17 - 2018-07-14 05:50 - 000949760 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2018-08-15 21:17 - 2018-07-14 05:50 - 000943616 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll
2018-08-15 21:16 - 2018-08-03 10:39 - 000790304 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2018-08-15 21:16 - 2018-08-03 10:25 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-08-15 21:16 - 2018-08-03 10:25 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-08-15 21:16 - 2018-08-03 10:24 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2018-08-15 21:16 - 2018-08-03 10:24 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2018-08-15 21:16 - 2018-08-03 10:24 - 000046592 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-08-15 21:16 - 2018-08-03 10:22 - 001127936 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2018-08-15 21:16 - 2018-08-03 10:21 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2018-08-15 21:16 - 2018-08-03 10:21 - 001121792 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2018-08-15 21:16 - 2018-08-03 10:21 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2018-08-15 21:16 - 2018-08-03 10:21 - 000391680 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-08-15 21:16 - 2018-08-03 10:20 - 004049408 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2018-08-15 21:16 - 2018-08-03 10:20 - 000134144 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2018-08-15 21:16 - 2018-08-03 10:19 - 001661440 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2018-08-15 21:16 - 2018-08-03 09:45 - 000663128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2018-08-15 21:16 - 2018-08-03 09:33 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-08-15 21:16 - 2018-08-03 09:33 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-08-15 21:16 - 2018-08-03 09:32 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2018-08-15 21:16 - 2018-08-03 09:30 - 000099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2018-08-15 21:16 - 2018-08-03 09:29 - 000621568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2018-08-15 21:16 - 2018-08-03 09:29 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-08-15 21:16 - 2018-08-03 09:27 - 004050432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2018-08-15 21:16 - 2018-08-03 09:27 - 001469952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2018-08-15 21:16 - 2018-08-03 07:41 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2018-08-15 21:16 - 2018-08-03 06:49 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-08-15 21:16 - 2018-08-03 05:47 - 000128920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmbus.sys
2018-08-15 21:16 - 2018-08-03 05:46 - 000272296 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
2018-08-15 21:16 - 2018-08-03 05:46 - 000269248 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2018-08-15 21:16 - 2018-08-03 05:41 - 000568600 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2018-08-15 21:16 - 2018-08-03 05:41 - 000077608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2018-08-15 21:16 - 2018-08-03 05:41 - 000061736 _____ (Microsoft Corporation) C:\Windows\system32\hvhostsvc.dll
2018-08-15 21:16 - 2018-08-03 05:40 - 001064744 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2018-08-15 21:16 - 2018-08-03 05:40 - 000566568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2018-08-15 21:16 - 2018-08-03 05:40 - 000228136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ucx01000.sys
2018-08-15 21:16 - 2018-08-03 05:40 - 000136488 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2018-08-15 21:16 - 2018-08-03 05:40 - 000072800 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2018-08-15 21:16 - 2018-08-03 05:39 - 001457136 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-08-15 21:16 - 2018-08-03 05:39 - 000709824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-08-15 21:16 - 2018-08-03 05:39 - 000692240 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2018-08-15 21:16 - 2018-08-03 05:39 - 000170936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-08-15 21:16 - 2018-08-03 05:39 - 000114080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2018-08-15 21:16 - 2018-08-03 05:39 - 000075160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
2018-08-15 21:16 - 2018-08-03 05:39 - 000031648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2018-08-15 21:16 - 2018-08-03 05:38 - 001945792 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-08-15 21:16 - 2018-08-03 05:38 - 001285536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2018-08-15 21:16 - 2018-08-03 05:38 - 001258288 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-08-15 21:16 - 2018-08-03 05:38 - 001140576 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-08-15 21:16 - 2018-08-03 05:38 - 001097648 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2018-08-15 21:16 - 2018-08-03 05:38 - 000983016 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-08-15 21:16 - 2018-08-03 05:38 - 000885856 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2018-08-15 21:16 - 2018-08-03 05:38 - 000713368 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2018-08-15 21:16 - 2018-08-03 05:38 - 000604576 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2018-08-15 21:16 - 2018-08-03 05:38 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\vertdll.dll
2018-08-15 21:16 - 2018-08-03 05:38 - 000115640 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2018-08-15 21:16 - 2018-08-03 05:27 - 000061032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2018-08-15 21:16 - 2018-08-03 05:25 - 001131064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2018-08-15 21:16 - 2018-08-03 05:25 - 000583120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2018-08-15 21:16 - 2018-08-03 05:25 - 000568568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2018-08-15 21:16 - 2018-08-03 05:25 - 000539168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2018-08-15 21:16 - 2018-08-03 05:17 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmgid.sys
2018-08-15 21:16 - 2018-08-03 05:16 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2018-08-15 21:16 - 2018-08-03 05:16 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2018-08-15 21:16 - 2018-08-03 05:15 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys
2018-08-15 21:16 - 2018-08-03 05:14 - 000514560 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2018-08-15 21:16 - 2018-08-03 05:14 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2018-08-15 21:16 - 2018-08-03 05:14 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\WaaSAssessment.dll
2018-08-15 21:16 - 2018-08-03 05:13 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2018-08-15 21:16 - 2018-08-03 05:13 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2018-08-15 21:16 - 2018-08-03 05:12 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2018-08-15 21:16 - 2018-08-03 05:12 - 000761344 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2018-08-15 21:16 - 2018-08-03 05:12 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-08-15 21:16 - 2018-08-03 05:12 - 000311296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2018-08-15 21:16 - 2018-08-03 05:11 - 002172928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2018-08-15 21:16 - 2018-08-03 05:11 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2018-08-15 21:16 - 2018-08-03 05:11 - 000983040 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2018-08-15 21:16 - 2018-08-03 05:11 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2018-08-15 21:16 - 2018-08-03 05:10 - 001535488 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-08-15 21:16 - 2018-08-03 05:10 - 000015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2018-08-15 21:16 - 2018-08-03 05:09 - 001932288 _____ (Microsoft Corporation) C:\Windows\system32\edgeangle.dll
2018-08-15 21:16 - 2018-08-03 05:09 - 001550848 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2018-08-15 21:16 - 2018-08-03 05:09 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2018-08-15 21:16 - 2018-08-03 05:09 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2018-08-15 21:16 - 2018-08-03 05:08 - 002236928 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2018-08-15 21:16 - 2018-08-03 05:08 - 000796672 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2018-08-15 21:16 - 2018-08-03 05:08 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-08-15 21:16 - 2018-08-03 05:08 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2018-08-15 21:16 - 2018-08-03 05:08 - 000602112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2018-08-15 21:16 - 2018-08-03 05:08 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-08-15 21:16 - 2018-08-03 05:08 - 000542208 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-08-15 21:16 - 2018-08-03 05:08 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2018-08-15 21:16 - 2018-08-03 05:08 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2018-08-15 21:16 - 2018-08-03 05:08 - 000288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-08-15 21:16 - 2018-08-03 05:07 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2018-08-15 21:16 - 2018-08-03 05:07 - 000505344 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2018-08-15 21:16 - 2018-08-03 05:07 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2018-08-15 21:16 - 2018-08-03 05:07 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2018-08-15 21:16 - 2018-08-03 05:06 - 001000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2018-08-15 21:16 - 2018-08-03 05:06 - 000856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2018-08-15 21:16 - 2018-08-03 05:06 - 000678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-08-15 21:16 - 2018-08-03 05:06 - 000619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2018-08-15 21:16 - 2018-08-03 05:06 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2018-08-15 21:16 - 2018-08-03 05:05 - 000735744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2018-08-15 21:16 - 2018-08-03 05:05 - 000669696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-08-15 21:16 - 2018-08-03 05:05 - 000534016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-08-15 21:16 - 2018-08-03 05:04 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-08-15 21:16 - 2018-08-03 03:54 - 000001312 _____ C:\Windows\system32\tcbres.wim
2018-08-15 21:16 - 2018-07-15 02:58 - 000094112 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2018-08-15 21:16 - 2018-07-15 02:44 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2018-08-15 21:16 - 2018-07-15 02:41 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.XamlHost.dll
2018-08-15 21:16 - 2018-07-15 02:41 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll
2018-08-15 21:16 - 2018-07-15 02:39 - 001787392 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2018-08-15 21:16 - 2018-07-15 02:39 - 001605632 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2018-08-15 21:16 - 2018-07-15 02:38 - 001180160 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2018-08-15 21:16 - 2018-07-15 02:38 - 001004032 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2018-08-15 21:16 - 2018-07-15 02:38 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2018-08-15 21:16 - 2018-07-15 02:36 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2018-08-15 21:16 - 2018-07-15 01:15 - 007987712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2018-08-15 21:16 - 2018-07-15 01:14 - 000133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.XamlHost.dll
2018-08-15 21:16 - 2018-07-15 01:13 - 001452544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2018-08-15 21:16 - 2018-07-15 01:13 - 001308160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2018-08-15 21:16 - 2018-07-15 01:13 - 000775168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2018-08-15 21:16 - 2018-07-15 01:13 - 000485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2018-08-15 21:16 - 2018-07-15 01:11 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2018-08-15 21:16 - 2018-07-14 06:37 - 000375712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2018-08-15 21:16 - 2018-07-14 06:37 - 000230304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2018-08-15 21:16 - 2018-07-14 06:23 - 000760888 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2018-08-15 21:16 - 2018-07-14 06:22 - 000510392 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2018-08-15 21:16 - 2018-07-14 06:22 - 000203560 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2018-08-15 21:16 - 2018-07-14 06:21 - 000722824 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2018-08-15 21:16 - 2018-07-14 06:21 - 000192920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-08-15 21:16 - 2018-07-14 06:20 - 000184472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2018-08-15 21:16 - 2018-07-14 06:19 - 002535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2018-08-15 21:16 - 2018-07-14 06:19 - 000636944 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2018-08-15 21:16 - 2018-07-14 06:19 - 000483024 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
2018-08-15 21:16 - 2018-07-14 06:18 - 002563984 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2018-08-15 21:16 - 2018-07-14 06:18 - 000930712 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2018-08-15 21:16 - 2018-07-14 06:18 - 000443216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2018-08-15 21:16 - 2018-07-14 06:18 - 000376216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2018-08-15 21:16 - 2018-07-14 06:17 - 000743320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2018-08-15 21:16 - 2018-07-14 06:16 - 000506728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2018-08-15 21:16 - 2018-07-14 06:15 - 001559368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2018-08-15 21:16 - 2018-07-14 06:15 - 000829856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2018-08-15 21:16 - 2018-07-14 06:01 - 006647296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2018-08-15 21:16 - 2018-07-14 05:59 - 003553280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2018-08-15 21:16 - 2018-07-14 05:58 - 000172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enrollmentapi.dll
2018-08-15 21:16 - 2018-07-14 05:58 - 000094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2018-08-15 21:16 - 2018-07-14 05:58 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-08-15 21:16 - 2018-07-14 05:57 - 001295360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2018-08-15 21:16 - 2018-07-14 05:57 - 000391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2018-08-15 21:16 - 2018-07-14 05:56 - 002449408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2018-08-15 21:16 - 2018-07-14 05:56 - 001986560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2018-08-15 21:16 - 2018-07-14 05:56 - 001703936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Controls.dll
2018-08-15 21:16 - 2018-07-14 05:56 - 001558016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2018-08-15 21:16 - 2018-07-14 05:56 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2018-08-15 21:16 - 2018-07-14 05:56 - 000365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2018-08-15 21:16 - 2018-07-14 05:56 - 000257536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WiFiDisplay.dll
2018-08-15 21:16 - 2018-07-14 05:56 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll
2018-08-15 21:16 - 2018-07-14 05:56 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\WFDSConMgr.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 001124352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000993792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2018-08-15 21:16 - 2018-07-14 05:55 - 000344576 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000282624 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2018-08-15 21:16 - 2018-07-14 05:55 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreCommonProxyStub.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000204288 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\datamarketsvc.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2018-08-15 21:16 - 2018-07-14 05:55 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\EASPolicyManagerBrokerHost.exe
2018-08-15 21:16 - 2018-07-14 05:55 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 001537024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 001307648 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000729088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000444416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000409088 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000358400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2018-08-15 21:16 - 2018-07-14 05:54 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\PushToInstall.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2018-08-15 21:16 - 2018-07-14 05:54 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\EasPolicyManagerBrokerPS.dll
2018-08-15 21:16 - 2018-07-14 05:53 - 000713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingOnlineServices.dll
2018-08-15 21:16 - 2018-07-14 05:53 - 000705024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2018-08-15 21:16 - 2018-07-14 05:53 - 000566272 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2018-08-15 21:16 - 2018-07-14 05:53 - 000450560 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreCommonProxyStub.dll
2018-08-15 21:16 - 2018-07-14 05:53 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2018-08-15 21:16 - 2018-07-14 05:53 - 000220160 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2018-08-15 21:16 - 2018-07-14 05:52 - 000972800 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2018-08-15 21:16 - 2018-07-14 05:52 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2018-08-15 21:16 - 2018-07-14 05:52 - 000755712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2018-08-15 21:16 - 2018-07-14 05:52 - 000506880 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2018-08-15 21:16 - 2018-07-14 05:52 - 000311296 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2018-08-15 21:16 - 2018-07-14 05:51 - 001747968 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2018-08-15 21:16 - 2018-07-14 05:51 - 001304064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2018-08-15 21:16 - 2018-07-14 05:51 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2018-08-15 21:16 - 2018-07-14 05:51 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2018-08-15 21:16 - 2018-07-14 05:50 - 001773056 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2018-08-15 21:16 - 2018-07-14 05:50 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\lpasvc.dll
2018-08-15 21:16 - 2018-07-14 05:50 - 001225216 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2018-08-15 21:16 - 2018-07-14 05:50 - 000932352 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2018-08-15 21:16 - 2018-07-14 05:50 - 000884224 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
2018-08-15 21:16 - 2018-07-14 05:50 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2018-08-15 21:16 - 2018-07-14 05:50 - 000401920 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2018-08-15 21:16 - 2018-07-14 05:49 - 000884736 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-12 19:36 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-09-12 19:35 - 2018-07-28 12:57 - 000208216 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2018-09-12 19:35 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\AppReadiness
2018-09-12 19:34 - 2018-07-28 12:51 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-11 20:56 - 2018-07-20 21:04 - 000000000 ____D C:\ProgramData\NVIDIA
2018-09-11 20:55 - 2018-07-20 20:29 - 000000000 ____D C:\Windows\system32\SleepStudy
2018-09-11 20:55 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-09-11 19:34 - 2018-07-20 20:37 - 000000000 ____D C:\Users\Desktopper
2018-09-11 19:33 - 2018-07-20 20:43 - 000000000 ____D C:\Windows\system32\MRT
2018-09-11 19:32 - 2018-07-28 12:57 - 000155664 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2018-09-11 19:32 - 2018-07-20 20:43 - 139184408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-09-11 19:32 - 2018-04-12 01:30 - 000000000 ____D C:\Windows\CbsTemp
2018-09-11 19:31 - 2018-07-20 20:44 - 001676386 _____ C:\Windows\system32\PerfStringBackup.INI
2018-09-11 19:31 - 2018-04-12 18:01 - 000746500 _____ C:\Windows\system32\perfh013.dat
2018-09-11 19:31 - 2018-04-12 18:01 - 000145696 _____ C:\Windows\system32\perfc013.dat
2018-09-11 19:31 - 2018-04-12 01:36 - 000000000 ____D C:\Windows\INF
2018-09-11 19:27 - 2018-07-28 12:57 - 000004266 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2018-09-10 22:44 - 2018-07-20 20:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-09-10 22:44 - 2018-04-11 23:04 - 000524288 _____ C:\Windows\system32\config\BBI
2018-09-10 20:20 - 2018-07-28 12:58 - 000000000 ____D C:\ProgramData\Spotnet
2018-09-10 20:06 - 2018-07-28 12:57 - 000208216 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys.153677370453101
2018-09-05 01:04 - 2018-04-12 01:41 - 000835144 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-09-05 01:04 - 2018-04-12 01:41 - 000179808 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-04 19:12 - 2018-07-28 12:57 - 000459624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2018-09-03 23:53 - 2018-08-11 20:12 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\vlc
2018-08-28 20:02 - 2018-07-28 12:57 - 000078864 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 001020112 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 000373944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 000339048 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 000222288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 000194224 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 000192104 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 000155664 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys.153668716273401
2018-08-26 20:00 - 2018-07-28 12:57 - 000104256 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 000051952 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 000039352 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2018-08-26 20:00 - 2018-07-28 12:57 - 000015344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgElam.sys
2018-08-26 20:00 - 2018-04-12 01:38 - 000000000 ___HD C:\Windows\ELAMBKUP
2018-08-26 19:59 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\LiveKernelReports
2018-08-16 21:47 - 2018-07-20 20:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-08-16 21:47 - 2018-07-20 20:38 - 000000000 ___RD C:\Users\Desktopper\3D Objects
2018-08-16 21:47 - 2018-07-20 20:29 - 000234008 _____ C:\Windows\system32\FNTCACHE.DAT
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\zu-ZA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\yo-NG
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\xh-ZA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\wo-SN
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\uz-Latn-UZ
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\tn-ZA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\ti-ET
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\tg-Cyrl-TJ
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-RS
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-BA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\sd-Arab-PK
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\rw-RW
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\quc-Latn-GT
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\pa-Arab-PK
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\nso-ZA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\ku-Arab-IQ
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\ig-NG
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\ha-Latn-NG
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\chr-CHER-US
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\ca-ES-valencia
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\bs-Latn-BA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\SysWOW64\az-Latn-AZ
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\zu-ZA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\yo-NG
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\xh-ZA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\wo-SN
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\uz-Latn-UZ
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\tn-ZA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\ti-ET
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\tg-Cyrl-TJ
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\sr-Cyrl-RS
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\sr-Cyrl-BA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\sd-Arab-PK
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\rw-RW
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\quc-Latn-GT
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\pa-Arab-PK
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\nso-ZA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\ku-Arab-IQ
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\ig-NG
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\ha-Latn-NG
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\chr-CHER-US
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\ca-ES-valencia
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\bs-Latn-BA
2018-08-15 22:25 - 2018-04-12 18:02 - 000000000 ____D C:\Windows\system32\az-Latn-AZ
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\SysWOW64\F12
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\system32\UNP
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\system32\F12
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ___RD C:\Windows\PrintDialog
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\TextInput
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\system32\ShellExperiences
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\ShellExperiences
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\bcastdvr
2018-08-15 22:25 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-08-14 12:36 - 2018-07-20 20:43 - 000003386 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-198283595-3172470215-2829322620-1001
2018-08-14 12:36 - 2018-07-20 20:42 - 000000000 ___RD C:\Users\Desktopper\OneDrive
2018-08-14 12:36 - 2018-07-20 20:37 - 000002398 _____ C:\Users\Desktopper\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

==================== Files in the root of some directories =======

2018-09-10 20:36 - 2018-09-10 20:36 - 000000116 _____ () C:\ProgramData\ythdg.exe
2018-09-10 20:35 - 2018-09-10 20:35 - 000003072 _____ () C:\Users\Desktopper\AppData\Local\asSSDOptimizerV13.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-07-20 20:29

==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.09.2018
Ran by Desktopper (12-09-2018 19:36:58)
Running from C:\Users\Desktopper\Downloads
Windows 10 Home Version 1803 17134.228 (X64) (2018-07-20 18:30:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-198283595-3172470215-2829322620-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-198283595-3172470215-2829322620-503 - Limited - Disabled)
Desktopper (S-1-5-21-198283595-3172470215-2829322620-1001 - Administrator - Enabled) => C:\Users\Desktopper
Gast (S-1-5-21-198283595-3172470215-2829322620-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-198283595-3172470215-2829322620-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: AVG Antivirus (Enabled - Up to date) {C50510DE-367A-330C-FD5C-556ACFB11243}
AS: AVG Antivirus (Enabled - Up to date) {7E64F13A-1040-3C82-C7EC-6E18B43658FE}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 18.6.3066 - AVG Technologies)
Batman Arkham Knight (HKLM-x32\...\{0F4673C2-B7F4-4771-96FD-1AB79B1C1923}_is1) (Version: - Rocksteady Studios)
Glary Utilities 5.104 (HKLM-x32\...\Glary Utilities 5) (Version: 5.104.0.128 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.92 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Malwarebytes versie 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-198283595-3172470215-2829322620-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
NETGEAR WNA3100M N300 Wireless USB Adapter (HKLM-x32\...\{D3580358-0F78-402A-BE53-2E9D06383E04}) (Version: 1.0.0.28 - NETGEAR)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7831 - Realtek Semiconductor Corp.)
Spotnet (HKU\S-1-5-21-198283595-3172470215-2829322620-1001\...\Spotnet) (Version: 2.0.0.276 - Spotnet)
SSDOptimizerV13 (HKU\S-1-5-21-198283595-3172470215-2829322620-1001\...\SSDOptimizerV13) (Version: - Alt0Cl0ud)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)
WinRAR 5.60 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-198283595-3172470215-2829322620-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-09-10] ()
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-08-26] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-26] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-06-26] (Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-07-30] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-09-10] ()
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-08-26] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-26] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-06-26] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1954D184-9CAF-4249-B40A-DBF242079C6E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-28] (Google Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {66674DA6-75DE-4D44-B7D3-F1ECBC5AE966} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [2018-08-26] (AVG Technologies CZ, s.r.o.)
Task: {BD49BA33-9B79-4D6A-8B0A-8D81CBE97ABD} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2018-09-10] (AVG Technologies CZ, s.r.o.)
Task: {D8BF217F-71F1-49F2-B769-9E9D3CB06368} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-28] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-07-28 12:42 - 2014-08-18 17:50 - 000316120 _____ () C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
2018-09-10 20:53 - 2018-07-24 12:32 - 002681424 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-09-10 20:53 - 2018-08-06 14:20 - 002769768 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-09-10 21:02 - 2018-09-10 21:02 - 000155504 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2018-08-15 21:17 - 2018-08-03 05:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-25 18:27 - 2018-07-25 18:27 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-07-25 18:27 - 2018-07-25 18:27 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-07-25 18:27 - 2018-07-25 18:27 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-07-25 18:27 - 2018-07-25 18:27 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll
2018-08-10 21:50 - 2018-08-10 21:50 - 035124224 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-08-10 21:50 - 2018-08-10 21:50 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-08-10 21:50 - 2018-08-10 21:50 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-04-12 18:05 - 2018-04-12 18:05 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-08-10 21:50 - 2018-08-10 21:50 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-08-10 21:48 - 2018-08-08 02:41 - 004855640 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libglesv2.dll
2018-08-10 21:48 - 2018-08-08 02:41 - 000115544 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libegl.dll
2018-07-28 12:42 - 2015-07-15 17:26 - 000450560 _____ () C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
2018-07-28 12:57 - 2018-07-28 12:57 - 067127976 _____ () C:\Program Files\AVG\Antivirus\libcef.dll
2018-08-26 20:00 - 2018-08-26 20:00 - 000574192 _____ () C:\Program Files\AVG\Antivirus\streamback.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 01:38 - 2018-09-10 20:55 - 000000832 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-198283595-3172470215-2829322620-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{05F15D51-47A9-44FE-B516-D3AA5291A438}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled
26-03-2018 09:54:37 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/10/2018 08:37:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: explorer.exe, versie: 10.0.17134.165, tijdstempel: 0xd6678f84
Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000
Uitzonderingscode: 0xc0000005
Foutmarge: 0x00a02c8d
Id van proces met fout: 0x4e0
Starttijd van toepassing met fout: 0x01d4493542bde725
Pad naar toepassing met fout: C:\Windows\SysWOW64\explorer.exe
Pad naar module met fout: unknown
Rapport-id: ad92cf66-ae2b-4ac0-b3f2-29c2f22354b9
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (09/10/2018 08:05:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: WifiSvc.exe, versie: 2.1.0.24, tijdstempel: 0x53cdc9f5
Naam van module met fout: WifiLib.dll, versie: 2.1.1.20, tijdstempel: 0x55a6273a
Uitzonderingscode: 0xc0000005
Foutmarge: 0x00003486
Id van proces met fout: 0x1fd8
Starttijd van toepassing met fout: 0x01d44094c602b37c
Pad naar toepassing met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
Pad naar module met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
Rapport-id: 8f440ebc-18c8-4cbc-b792-a2a33cd5599f
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (08/30/2018 09:07:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: WifiSvc.exe, versie: 2.1.0.24, tijdstempel: 0x53cdc9f5
Naam van module met fout: WifiLib.dll, versie: 2.1.1.20, tijdstempel: 0x55a6273a
Uitzonderingscode: 0xc0000005
Foutmarge: 0x00003486
Id van proces met fout: 0x508
Starttijd van toepassing met fout: 0x01d43fc369f780fb
Pad naar toepassing met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
Pad naar module met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
Rapport-id: d83e340c-bea1-45af-9295-2bd08ac9fe18
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (08/29/2018 08:09:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: WifiSvc.exe, versie: 2.1.0.24, tijdstempel: 0x53cdc9f5
Naam van module met fout: WifiLib.dll, versie: 2.1.1.20, tijdstempel: 0x55a6273a
Uitzonderingscode: 0xc0000005
Foutmarge: 0x00003486
Id van proces met fout: 0x24c
Starttijd van toepassing met fout: 0x01d43599f39b879b
Pad naar toepassing met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
Pad naar module met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
Rapport-id: a7b807a1-34f4-4ecb-b68e-187fb9f28d3f
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (08/15/2018 09:08:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: WifiSvc.exe, versie: 2.1.0.24, tijdstempel: 0x53cdc9f5
Naam van module met fout: WifiLib.dll, versie: 2.1.1.20, tijdstempel: 0x55a6273a
Uitzonderingscode: 0xc0000005
Foutmarge: 0x00003486
Id van proces met fout: 0x1ddc
Starttijd van toepassing met fout: 0x01d430e2e7c39af8
Pad naar toepassing met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
Pad naar module met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
Rapport-id: 4444461c-5c3e-46c3-a602-a316b16ad3fa
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (08/10/2018 09:46:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: WifiSvc.exe, versie: 2.1.0.24, tijdstempel: 0x53cdc9f5
Naam van module met fout: WifiLib.dll, versie: 2.1.1.20, tijdstempel: 0x55a6273a
Uitzonderingscode: 0xc0000005
Foutmarge: 0x00003486
Id van proces met fout: 0x8cc
Starttijd van toepassing met fout: 0x01d42a86269c694f
Pad naar toepassing met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
Pad naar module met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
Rapport-id: 909f7fee-74c9-4f3a-b042-6808ecc8ce07
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (08/02/2018 07:27:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: WifiSvc.exe, versie: 2.1.0.24, tijdstempel: 0x53cdc9f5
Naam van module met fout: WifiLib.dll, versie: 2.1.1.20, tijdstempel: 0x55a6273a
Uitzonderingscode: 0xc0000005
Foutmarge: 0x00003486
Id van proces met fout: 0x4cc
Starttijd van toepassing met fout: 0x01d428f51e6c904c
Pad naar toepassing met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
Pad naar module met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
Rapport-id: 59343116-b1aa-46b4-a84c-14b5985c2034
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (07/31/2018 07:36:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: WifiSvc.exe, versie: 2.1.0.24, tijdstempel: 0x53cdc9f5
Naam van module met fout: WifiLib.dll, versie: 2.1.1.20, tijdstempel: 0x55a6273a
Uitzonderingscode: 0xc0000005
Foutmarge: 0x00003486
Id van proces met fout: 0xfb4
Starttijd van toepassing met fout: 0x01d42762d74e5d44
Pad naar toepassing met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
Pad naar module met fout: C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
Rapport-id: 27b1b066-a6e9-4c9b-aba3-e690cf300c18
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:


System errors:
=============
Error: (09/12/2018 07:33:25 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-L09T855)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker DESKTOP-L09T855\Desktopper SID (S-1-5-21-198283595-3172470215-2829322620-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (09/12/2018 07:32:19 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-L09T855)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker DESKTOP-L09T855\Desktopper SID (S-1-5-21-198283595-3172470215-2829322620-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (09/11/2018 07:30:28 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-L09T855)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker DESKTOP-L09T855\Desktopper SID (S-1-5-21-198283595-3172470215-2829322620-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (09/10/2018 10:46:05 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-L09T855)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker DESKTOP-L09T855\Desktopper SID (S-1-5-21-198283595-3172470215-2829322620-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (09/10/2018 10:44:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN-uitbreidingsmodule is onverwacht gestopt.

Pad naar module: C:\Windows\system32\Rtlihvs.dll

Error: (09/10/2018 10:44:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN-uitbreidingsmodule is onverwacht gestopt.

Pad naar module: C:\Windows\system32\Rtlihvs.dll

Error: (09/10/2018 10:43:58 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN-uitbreidingsmodule is onverwacht gestopt.

Pad naar module: C:\Windows\system32\Rtlihvs.dll

Error: (09/10/2018 10:43:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: De WSWNA3100M-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 5000 milliseconden worden uitgevoerd: Service opnieuw starten.


Windows Defender:
===================================
Date: 2018-07-27 21:11:13.745
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {B37EB4DF-3771-45B7-95D7-CA6EBB490B63}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM

Date: 2018-07-28 12:32:56.591
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.273.461.0
Bron update: Microsoft-updateserver
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie:
Vorige engineversie: 1.1.15100.1
Foutcode: 0x80240438
Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen.

Date: 2018-07-28 11:42:49.097
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.273.461.0
Bron update: Microsoft-updateserver
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie:
Vorige engineversie: 1.1.15100.1
Foutcode: 0x80240438
Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen.

Date: 2018-07-27 21:49:17.957
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.273.337.0
Bron update: Microsoft Centrum voor beveiliging tegen malware
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\NETWORK SERVICE
Huidige engineversie:
Vorige engineversie: 1.1.15100.1
Foutcode: 0x80072ee7
Foutbeschrijving: De naam of het adres van de server kan niet worden omgezet

Date: 2018-07-27 21:49:17.957
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.273.337.0
Bron update: Microsoft Centrum voor beveiliging tegen malware
Type handtekening: AntiSpyware
Type update: Volledig
Gebruiker: NT AUTHORITY\NETWORK SERVICE
Huidige engineversie:
Vorige engineversie: 1.1.15100.1
Foutcode: 0x80072ee7
Foutbeschrijving: De naam of het adres van de server kan niet worden omgezet

Date: 2018-07-27 21:49:17.956
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.273.337.0
Bron update: Microsoft Centrum voor beveiliging tegen malware
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\NETWORK SERVICE
Huidige engineversie:
Vorige engineversie: 1.1.15100.1
Foutcode: 0x80072ee7
Foutbeschrijving: De naam of het adres van de server kan niet worden omgezet

CodeIntegrity:
===================================

Date: 2018-09-11 20:21:35.812
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-09-11 20:21:35.806
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-09-10 22:18:29.352
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-09-10 22:18:29.352
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

Processor: Intel® Core™ i5-3470S CPU @ 2.90GHz
Percentage of memory in use: 38%
Total physical RAM: 8157.15 MB
Available physical RAM: 5001.53 MB
Total Virtual: 12765.15 MB
Available Virtual: 8896.46 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.25 GB) (Free:78.24 GB) NTFS
Drive e: (WNA3100M) (CDROM) (Total:0.09 GB) (Free:0 GB) CDFS
Drive f: () (Fixed) (Total:465.22 GB) (Free:380.09 GB) NTFS
Drive g: (NieuwVolume) (Fixed) (Total:1397.26 GB) (Free:98.46 GB) NTFS
Drive i: () (Fixed) (Total:111.25 GB) (Free:94.7 GB) NTFS

\\?\Volume{84607d71-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.54 GB) (Free:0.16 GB) NTFS
\\?\Volume{b50531d8-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.54 GB) (Free:0.16 GB) NTFS
\\?\Volume{7fa100b8-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 84607D71)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: B50531D8)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1397.3 GB) (Disk ID: 122CF9D3)
Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 7FA100B8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Attached Files


Edited by Oh My!, 12 September 2018 - 01:08 PM.


#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,370 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:21 AM

Posted 12 September 2018 - 02:07 PM

Greetings.

Do you have a Windows 10 Home 64 bit Installation Disk?
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#5 DevelishBuffalo

DevelishBuffalo
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 12 September 2018 - 02:40 PM

Hi Gary,

 

Unfortunately not.



#6 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,370 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:21 AM

Posted 12 September 2018 - 02:48 PM

No problem.

Please do this.

===================================================

Microsoft Windows ISO Download Tool

--------------------
  • Download Windows ISO Download Tool and save it to your Desktop
  • Double click the icon
  • Under Choose Software select the Windows Version you want to download
  • Select the Edition you want then click Confirm
  • Select the product language then click Confirm
  • Select either 32-bit Download or 64-bit Download depending on your Operating System (if you are unsure click here)
  • Click Save and save the file on your Desktop
  • Insert a blank DVD into your computer
  • If you do not have ISO burning software download and install ImgBurn
  • Burn the ISO Image to a Disc
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Let me know if this was successful

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#7 DevelishBuffalo

DevelishBuffalo
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 12 September 2018 - 03:01 PM

Thank you for your quick response!

I won't be able to do this tomorrow, but will see in to it on friday, so their won't be an answer from untill then.

Thanks again for your help so far!

#8 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,370 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:21 AM

Posted 12 September 2018 - 03:09 PM

You are welcome Stefan.

 

You may be infected with a specialized piece of malware that has been partially removed already. At least some of the entries in your logs are similar to what we find with this infection. Rather than play around with lesser possible steps to take I would prefer to hit it hard from the start. The only way to do that is to boot a special way by means of the disk I have asked you to create. As a side benefit of the additional work up front you will now have your own copy of the Windows 10 disk.

 

No problem on the delay. Thanks for letting me know.


Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#9 DevelishBuffalo

DevelishBuffalo
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 14 September 2018 - 01:54 PM

Hi Gary,

 

I've just finished burning the image to a dvd.

 

Looking forward to the next step!



#10 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,370 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:21 AM

Posted 14 September 2018 - 01:57 PM

Excellent Stefan, thanks.

Do you already know how to boot to the Windows disk rather than boot normally?
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#11 DevelishBuffalo

DevelishBuffalo
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 14 September 2018 - 02:07 PM

Not really



#12 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,370 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:21 AM

Posted 14 September 2018 - 02:28 PM

No problem at all.

I was going to have you test the DVD first but if you run into any difficulties just stop and let me know.

===================================================

FRST Scan Using Windows 10 Operating System USB or CD/DVD Device

--------------------
  • On a clean computer download Farbar Recover Scan Tool 64 bit systems and save it to a USB device
  • Remove the USB device containing FRST <<<Important
  • Insert your Installation Disk into your compromised computer
  • Click Start, type Recovery, select Recovery above, then click Restart now
  • Click Use a device
  • If you are using a Windows CD/DVD disk select Internal CD/DVD ROM Drive (UEFI)
  • After the computer boots to the DVD at the Windows screen click Next
  • Select Repair your computer
  • Selct Troubleshoot
  • Select Advanced Options
  • Select Command Prompt
  • Now insert the USB drive containing FRST into the compromised computer <<<Important
  • In the command window type in Notepad and press Enter.
  • Click File then Open
  • In the lower right hand corner change Text Documents (*.txt) to All Files (*.*)
  • On the left side locate and double click on the USB device containing FRST (the FRST icon should be visible)
  • Right click on the FRST icon and select Run as administrator
  • Click Yes on the Disclaimer
  • Press Scan button.
  • When completed a (FRST.txt) file will be created on the flash drive. Please copy and paste the contents in your reply.
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Fixlog

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#13 DevelishBuffalo

DevelishBuffalo
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 14 September 2018 - 02:36 PM

At this moment I don't have acces to another (clean) computer, so I will continue our troubleshoot tommorow.

As soon as I have the results, I will let you know. (probably around this time tomorrow)



#14 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,370 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:21 AM

Posted 14 September 2018 - 03:27 PM

You can try to download FRST directly onto your USB drive and attempt the steps.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#15 DevelishBuffalo

DevelishBuffalo
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 15 September 2018 - 01:57 PM

Here is the requested log information

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.09.2018
Ran by SYSTEM on MININT-ALR07AU (15-09-2018 20:53:59)
Running from K:\
Platform: Windows 10 Home Version 1803 17134.285 (X64) Language: Nederlands (Nederland)
Internet Explorer Version 11
Boot Mode: Recovery
Default: ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16475392 2016-05-26] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [291056 2018-08-26] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKU\Desktopper\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2018-08-20] (Glarysoft Ltd)
BootExecute: autocheck autochk *  
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [323512 2018-08-26] (AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [8043904 2018-08-26] (AVG Technologies CZ, s.r.o.)
S3 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [111040 2018-08-26] (AVG Technologies CZ, s.r.o.)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-07-30] (Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\NisSrv.exe [3925648 2018-07-20] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MsMpEng.exe [100080 2018-07-20] (Microsoft Corporation)
S2 WSWNA3100M; C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe [316120 2014-08-18] ()
S2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
S2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [192104 2018-08-26] (AVG Technologies CZ, s.r.o.)
S1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [222288 2018-08-26] (AVG Technologies CZ, s.r.o.)
S0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [194224 2018-08-26] (AVG Technologies CZ, s.r.o.)
S0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [339048 2018-08-26] (AVG Technologies CZ, s.r.o.)
S0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [51952 2018-08-26] (AVG Technologies CZ, s.r.o.)
S0 avgElam; C:\Windows\System32\drivers\avgElam.sys [15344 2018-08-26] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [39352 2018-08-26] (AVG Technologies CZ, s.r.o.)
S2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [155664 2018-09-11] (AVG Technologies CZ, s.r.o.)
S1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [104256 2018-08-26] (AVG Technologies CZ, s.r.o.)
S0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [78864 2018-08-28] (AVG Technologies CZ, s.r.o.)
S1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1020112 2018-08-26] (AVG Technologies CZ, s.r.o.)
S1 avgSP; C:\Windows\System32\drivers\avgSP.sys [459624 2018-09-04] (AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\Windows\System32\drivers\avgStm.sys [208216 2018-09-12] (AVG Technologies CZ, s.r.o.)
S0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [373944 2018-08-26] (AVG Technologies CZ, s.r.o.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [152688 2018-07-12] (Malwarebytes)
S1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2018-08-29] (Glarysoft Ltd)
S2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193256 2018-09-10] (Malwarebytes)
S3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [117472 2018-09-11] (Malwarebytes)
S3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [52328 2018-09-11] (Malwarebytes)
S0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [259360 2018-09-10] (Malwarebytes)
S3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [109872 2018-09-12] (Malwarebytes)
S3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
S3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
S3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [3818056 2018-02-13] (Realtek Semiconductor Corporation )
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [46592 2018-07-20] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [340008 2018-07-20] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [59944 2018-07-20] (Microsoft Corporation)
S1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2018-09-10] (Zemana Ltd.)
S1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-09-10] (Zemana Ltd.)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-09-15 20:43 - 2018-09-15 20:43 - 000000000 _____ C:\Recovery.txt
2018-09-14 19:44 - 2018-09-14 19:52 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\ImgBurn
2018-09-14 19:37 - 2018-09-14 19:37 - 000000626 _____ C:\Users\Public\Desktop\ImgBurn.lnk
2018-09-14 19:36 - 2018-09-14 19:36 - 003101913 _____ (LIGHTNING UK!) C:\Users\Desktopper\Downloads\SetupImgBurn_2.5.8.0.exe
2018-09-14 19:32 - 2018-09-14 19:32 - 274325504 _____ C:\Users\Desktopper\Desktop\Win10_1803_Dutch_x64.iso
2018-09-14 19:13 - 2018-09-14 19:13 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\Macromedia
2018-09-14 19:12 - 2018-09-14 19:12 - 003596264 _____ () C:\Users\Desktopper\Downloads\Windows ISO Downloader (1).exe
2018-09-14 19:11 - 2018-09-14 19:12 - 003596264 _____ () C:\Users\Desktopper\Downloads\Windows ISO Downloader.exe
2018-09-12 18:42 - 2018-08-31 08:46 - 000542504 _____ (Microsoft Corporation) C:\Windows\System32\pcasvc.dll
2018-09-12 18:42 - 2018-08-31 08:43 - 001524152 _____ (Microsoft Corporation) C:\Windows\System32\msctf.dll
2018-09-12 18:42 - 2018-08-31 08:42 - 001636232 _____ (Microsoft Corporation) C:\Windows\System32\gdi32full.dll
2018-09-12 18:42 - 2018-08-31 08:24 - 001127936 _____ (Microsoft Corporation) C:\Windows\System32\nettrace.dll
2018-09-12 18:42 - 2018-08-31 08:23 - 001364992 _____ (Microsoft Corporation) C:\Windows\System32\bcastdvruserservice.dll
2018-09-12 18:42 - 2018-08-31 08:23 - 000765440 _____ (Microsoft Corporation) C:\Windows\System32\tdh.dll
2018-09-12 18:42 - 2018-08-31 08:22 - 001855488 _____ (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2018-09-12 18:42 - 2018-08-31 08:22 - 001661440 _____ (Microsoft Corporation) C:\Windows\System32\GdiPlus.dll
2018-09-12 18:42 - 2018-08-31 07:55 - 001455960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2018-09-12 18:42 - 2018-08-31 07:53 - 001327504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2018-09-12 18:42 - 2018-08-31 07:37 - 001585664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-09-12 18:42 - 2018-08-31 07:37 - 000622080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2018-09-12 18:42 - 2018-08-31 07:36 - 001469952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2018-09-12 18:42 - 2018-08-31 04:50 - 000273720 _____ (Microsoft Corporation) C:\Windows\System32\SgrmEnclave.dll
2018-09-12 18:42 - 2018-08-31 04:50 - 000270648 _____ (Microsoft Corporation) C:\Windows\System32\SgrmEnclave_secure.dll
2018-09-12 18:42 - 2018-08-31 04:44 - 001222440 _____ (Microsoft Corporation) C:\Windows\System32\hvix64.exe
2018-09-12 18:42 - 2018-08-31 04:44 - 001030952 _____ (Microsoft Corporation) C:\Windows\System32\hvax64.exe
2018-09-12 18:42 - 2018-08-31 04:44 - 000568600 _____ (Microsoft Corporation) C:\Windows\System32\tcblaunch.exe
2018-09-12 18:42 - 2018-08-31 04:43 - 002719216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2018-09-12 18:42 - 2018-08-31 04:43 - 000722880 _____ (Microsoft Corporation) C:\Windows\System32\ci.dll
2018-09-12 18:42 - 2018-08-31 04:42 - 009090016 _____ (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2018-09-12 18:42 - 2018-08-31 04:42 - 007520064 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.Protection.PlayReady.dll
2018-09-12 18:42 - 2018-08-31 04:42 - 007436192 _____ (Microsoft Corporation) C:\Windows\System32\windows.storage.dll
2018-09-12 18:42 - 2018-08-31 04:42 - 002824672 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2018-09-12 18:42 - 2018-08-31 04:42 - 002461312 _____ (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2018-09-12 18:42 - 2018-08-31 04:42 - 001767064 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2018-09-12 18:42 - 2018-08-31 04:42 - 001458552 _____ (Microsoft Corporation) C:\Windows\System32\winload.efi
2018-09-12 18:42 - 2018-08-31 04:42 - 001258352 _____ (Microsoft Corporation) C:\Windows\System32\winload.exe
2018-09-12 18:42 - 2018-08-31 04:42 - 001142000 _____ (Microsoft Corporation) C:\Windows\System32\winresume.efi
2018-09-12 18:42 - 2018-08-31 04:42 - 001097720 _____ (Microsoft Corporation) C:\Windows\System32\msvproc.dll
2018-09-12 18:42 - 2018-08-31 04:42 - 000983080 _____ (Microsoft Corporation) C:\Windows\System32\winresume.exe
2018-09-12 18:42 - 2018-08-31 04:42 - 000632296 _____ (Microsoft Corporation) C:\Windows\System32\dpx.dll
2018-09-12 18:42 - 2018-08-31 04:42 - 000604640 _____ (Microsoft Corporation) C:\Windows\System32\securekernel.exe
2018-09-12 18:42 - 2018-08-31 04:42 - 000155112 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2018-09-12 18:42 - 2018-08-31 04:28 - 006570040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-09-12 18:42 - 2018-08-31 04:28 - 006043680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2018-09-12 18:42 - 2018-08-31 04:28 - 001989496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-09-12 18:42 - 2018-08-31 04:28 - 001514352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2018-09-12 18:42 - 2018-08-31 04:28 - 001129728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2018-09-12 18:42 - 2018-08-31 04:28 - 000453104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpx.dll
2018-09-12 18:42 - 2018-08-31 04:28 - 000134936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2018-09-12 18:42 - 2018-08-31 04:26 - 025847808 _____ (Microsoft Corporation) C:\Windows\System32\edgehtml.dll
2018-09-12 18:42 - 2018-08-31 04:21 - 022008320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2018-09-12 18:42 - 2018-08-31 04:20 - 022715904 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2018-09-12 18:42 - 2018-08-31 04:18 - 008189440 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Data.Pdf.dll
2018-09-12 18:42 - 2018-08-31 04:16 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-09-12 18:42 - 2018-08-31 04:16 - 006661120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2018-09-12 18:42 - 2018-08-31 04:16 - 004382720 _____ (Microsoft Corporation) C:\Windows\System32\EdgeContent.dll
2018-09-12 18:42 - 2018-08-31 04:15 - 007577088 _____ (Microsoft Corporation) C:\Windows\System32\Chakra.dll
2018-09-12 18:42 - 2018-08-31 04:15 - 004866560 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2018-09-12 18:42 - 2018-08-31 04:15 - 003392512 _____ (Microsoft Corporation) C:\Windows\System32\tquery.dll
2018-09-12 18:42 - 2018-08-31 04:15 - 000894464 _____ (Microsoft Corporation) C:\Windows\System32\webplatstorageserver.dll
2018-09-12 18:42 - 2018-08-31 04:14 - 002700288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2018-09-12 18:42 - 2018-08-31 04:14 - 000898560 _____ (Microsoft Corporation) C:\Windows\System32\WpcWebFilter.dll
2018-09-12 18:42 - 2018-08-31 04:14 - 000808448 _____ (Microsoft Corporation) C:\Windows\System32\EdgeManager.dll
2018-09-12 18:42 - 2018-08-31 04:13 - 002738688 _____ (Microsoft Corporation) C:\Windows\System32\mssrch.dll
2018-09-12 18:42 - 2018-08-31 04:12 - 000736256 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2018-09-12 18:42 - 2018-08-31 04:11 - 002236928 _____ (Microsoft Corporation) C:\Windows\System32\win32kbase.sys
2018-09-12 18:42 - 2018-08-31 04:11 - 001854976 _____ (Microsoft Corporation) C:\Windows\System32\wevtsvc.dll
2018-09-12 18:42 - 2018-08-31 04:11 - 001804288 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2018-09-12 18:42 - 2018-08-31 04:11 - 001057792 _____ (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
2018-09-12 18:42 - 2018-08-31 04:11 - 000604160 _____ (Microsoft Corporation) C:\Windows\System32\updatehandlers.dll
2018-09-12 18:42 - 2018-08-31 04:10 - 005777920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2018-09-12 18:42 - 2018-08-31 04:10 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-09-12 18:42 - 2018-08-31 04:10 - 001375744 _____ (Microsoft Corporation) C:\Windows\System32\usocore.dll
2018-09-12 18:42 - 2018-08-31 04:10 - 000889344 _____ (Microsoft Corporation) C:\Windows\System32\schedsvc.dll
2018-09-12 18:42 - 2018-08-31 04:10 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2018-09-12 18:42 - 2018-08-31 04:10 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-09-12 18:42 - 2018-08-31 04:09 - 002258944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2018-09-12 18:42 - 2018-08-31 04:07 - 001627648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-09-12 18:42 - 2018-08-31 04:07 - 000856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2018-09-12 18:42 - 2018-08-28 08:17 - 023862784 _____ (Microsoft Corporation) C:\Windows\System32\Hydrogen.dll
2018-09-12 18:42 - 2018-08-28 07:48 - 001274368 _____ (Microsoft Corporation) C:\Windows\System32\HoloSI.PCShell.dll
2018-09-12 18:42 - 2018-08-28 07:45 - 000713216 _____ (Microsoft Corporation) C:\Windows\System32\SharedRealitySvc.dll
2018-09-12 18:42 - 2018-08-09 10:32 - 004527680 _____ (Microsoft Corporation) C:\Windows\System32\sppsvc.exe
2018-09-12 18:42 - 2018-08-09 10:31 - 001617728 _____ (Microsoft Corporation) C:\Windows\System32\sppobjs.dll
2018-09-12 18:42 - 2018-08-09 10:31 - 000766872 _____ (Microsoft Corporation) C:\Windows\System32\LicensingWinRT.dll
2018-09-12 18:42 - 2018-08-09 10:14 - 012709376 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2018-09-12 18:42 - 2018-08-09 10:13 - 000521216 _____ (Microsoft Corporation) C:\Windows\System32\winspool.drv
2018-09-12 18:42 - 2018-08-09 10:13 - 000340992 _____ (Microsoft Corporation) C:\Windows\System32\AcGenral.dll
2018-09-12 18:42 - 2018-08-09 10:12 - 001787392 _____ (Microsoft Corporation) C:\Windows\System32\wsp_health.dll
2018-09-12 18:42 - 2018-08-09 10:11 - 003652608 _____ (Microsoft Corporation) C:\Windows\System32\win32kfull.sys
2018-09-12 18:42 - 2018-08-09 10:11 - 002051584 _____ (Microsoft Corporation) C:\Windows\System32\wsp_fs.dll
2018-09-12 18:42 - 2018-08-09 10:11 - 001004032 _____ (Microsoft Corporation) C:\Windows\System32\clusapi.dll
2018-09-12 18:42 - 2018-08-09 10:11 - 000615424 _____ (Microsoft Corporation) C:\Windows\System32\resutils.dll
2018-09-12 18:42 - 2018-08-09 10:10 - 001557504 _____ (Microsoft Corporation) C:\Windows\System32\certutil.exe
2018-09-12 18:42 - 2018-08-09 10:10 - 000757248 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2018-09-12 18:42 - 2018-08-09 10:09 - 000217088 _____ (Microsoft Corporation) C:\Windows\System32\dinput8.dll
2018-09-12 18:42 - 2018-08-09 09:36 - 000660896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2018-09-12 18:42 - 2018-08-09 09:24 - 011901952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-09-12 18:42 - 2018-08-09 09:23 - 001308160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2018-09-12 18:42 - 2018-08-09 09:22 - 001452544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2018-09-12 18:42 - 2018-08-09 09:21 - 002894848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2018-09-12 18:42 - 2018-08-09 09:20 - 002401792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll
2018-09-12 18:42 - 2018-08-09 06:02 - 001035144 _____ (Microsoft Corporation) C:\Windows\System32\ApplyTrustOffline.exe
2018-09-12 18:42 - 2018-08-09 06:01 - 000777400 _____ (Microsoft Corporation) C:\Windows\System32\pkeyhelper.dll
2018-09-12 18:42 - 2018-08-09 05:55 - 000230304 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tpm.sys
2018-09-12 18:42 - 2018-08-09 05:54 - 001019016 _____ (Microsoft Corporation) C:\Windows\System32\ucrtbase.dll
2018-09-12 18:42 - 2018-08-09 05:54 - 000203568 _____ (Microsoft Corporation) C:\Windows\System32\rsaenh.dll
2018-09-12 18:42 - 2018-08-09 05:53 - 002765440 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2018-09-12 18:42 - 2018-08-09 05:53 - 001947720 _____ (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2018-09-12 18:42 - 2018-08-09 05:53 - 001026456 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2018-09-12 18:42 - 2018-08-09 05:53 - 000932136 _____ (Microsoft Corporation) C:\Windows\System32\WWAHost.exe
2018-09-12 18:42 - 2018-08-09 05:53 - 000482480 _____ (Microsoft Corporation) C:\Windows\System32\ucrtbase_enclave.dll
2018-09-12 18:42 - 2018-08-09 05:30 - 000829856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2018-09-12 18:42 - 2018-08-09 05:30 - 000183992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2018-09-12 18:42 - 2018-08-09 05:29 - 002253584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-09-12 18:42 - 2018-08-09 05:29 - 001620880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-09-12 18:42 - 2018-08-09 05:29 - 001174552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-09-12 18:42 - 2018-08-09 05:29 - 000581696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2018-09-12 18:42 - 2018-08-09 05:28 - 003395072 _____ (Microsoft Corporation) C:\Windows\System32\AppXDeploymentServer.dll
2018-09-12 18:42 - 2018-08-09 05:28 - 001589248 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Globalization.dll
2018-09-12 18:42 - 2018-08-09 05:27 - 000428032 _____ (Microsoft Corporation) C:\Windows\System32\MusNotification.exe
2018-09-12 18:42 - 2018-08-09 05:26 - 000990720 _____ (Microsoft Corporation) C:\Windows\System32\IKEEXT.DLL
2018-09-12 18:42 - 2018-08-09 05:25 - 003320320 _____ (Microsoft Corporation) C:\Windows\System32\dwmcore.dll
2018-09-12 18:42 - 2018-08-09 05:25 - 000898560 _____ (Microsoft Corporation) C:\Windows\System32\MusUpdateHandlers.dll
2018-09-12 18:42 - 2018-08-09 05:25 - 000460288 _____ (Microsoft Corporation) C:\Windows\System32\certcli.dll
2018-09-12 18:42 - 2018-08-09 05:25 - 000392704 _____ (Microsoft Corporation) C:\Windows\System32\WaaSMedicSvc.dll
2018-09-12 18:42 - 2018-08-09 05:24 - 002368512 _____ (Microsoft Corporation) C:\Windows\System32\WebRuntimeManager.dll
2018-09-12 18:42 - 2018-08-09 05:24 - 001535488 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2018-09-12 18:42 - 2018-08-09 05:23 - 003148288 _____ (Microsoft Corporation) C:\Windows\System32\CertEnroll.dll
2018-09-12 18:42 - 2018-08-09 05:23 - 002904064 _____ (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2018-09-12 18:42 - 2018-08-09 05:23 - 002172928 _____ (Microsoft Corporation) C:\Windows\System32\AppXDeploymentExtensions.onecore.dll
2018-09-12 18:42 - 2018-08-09 05:23 - 000916992 _____ (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2018-09-12 18:42 - 2018-08-09 05:22 - 004615680 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2018-09-12 18:42 - 2018-08-09 05:22 - 001586176 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2018-09-12 18:42 - 2018-08-09 05:22 - 001551360 _____ (Microsoft Corporation) C:\Windows\System32\AppXDeploymentExtensions.desktop.dll
2018-09-12 18:42 - 2018-08-09 05:21 - 000505344 _____ (Microsoft Corporation) C:\Windows\System32\edgeIso.dll
2018-09-12 18:42 - 2018-08-09 05:13 - 001189376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2018-09-12 18:42 - 2018-08-09 05:11 - 002900992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2018-09-12 18:42 - 2018-08-09 05:10 - 002893824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2018-09-12 18:42 - 2018-08-09 05:10 - 000835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-09-12 18:42 - 2018-08-09 05:09 - 004191232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-09-12 18:42 - 2018-08-09 05:09 - 001466368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-09-12 18:42 - 2018-08-09 04:08 - 000806416 _____ C:\Windows\SysWOW64\locale.nls
2018-09-12 18:42 - 2018-08-09 04:08 - 000806416 _____ C:\Windows\System32\locale.nls
2018-09-12 18:41 - 2018-08-31 08:45 - 000348328 _____ (Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
2018-09-12 18:41 - 2018-08-31 08:27 - 000178176 _____ (Microsoft Corporation) C:\Windows\System32\t2embed.dll
2018-09-12 18:41 - 2018-08-31 08:27 - 000056320 _____ (Microsoft Corporation) C:\Windows\System32\mf3216.dll
2018-09-12 18:41 - 2018-08-31 08:26 - 000101888 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys
2018-09-12 18:41 - 2018-08-31 08:25 - 000270336 _____ (Microsoft Corporation) C:\Windows\System32\spp.dll
2018-09-12 18:41 - 2018-08-31 08:25 - 000266752 _____ (Microsoft Corporation) C:\Windows\System32\rstrui.exe
2018-09-12 18:41 - 2018-08-31 08:24 - 000482304 _____ (Microsoft Corporation) C:\Windows\System32\srcore.dll
2018-09-12 18:41 - 2018-08-31 08:24 - 000392192 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2018-09-12 18:41 - 2018-08-31 07:41 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-09-12 18:41 - 2018-08-31 07:41 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2018-09-12 18:41 - 2018-08-31 07:40 - 000216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2018-09-12 18:41 - 2018-08-31 07:37 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-09-12 18:41 - 2018-08-31 04:44 - 001064744 _____ (Microsoft Corporation) C:\Windows\System32\SecConfig.efi
2018-09-12 18:41 - 2018-08-31 04:44 - 000136488 _____ (Microsoft Corporation) C:\Windows\System32\hvloader.dll
2018-09-12 18:41 - 2018-08-31 04:44 - 000076256 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hvservice.sys
2018-09-12 18:41 - 2018-08-31 04:42 - 000885928 _____ (Microsoft Corporation) C:\Windows\System32\CoreMessaging.dll
2018-09-12 18:41 - 2018-08-31 04:42 - 000527328 _____ (Microsoft Corporation) C:\Windows\System32\hal.dll
2018-09-12 18:41 - 2018-08-31 04:42 - 000494472 _____ (Microsoft Corporation) C:\Windows\System32\bcryptprimitives.dll
2018-09-12 18:41 - 2018-08-31 04:28 - 000568568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2018-09-12 18:41 - 2018-08-31 04:17 - 000144384 _____ (Microsoft Corporation) C:\Windows\System32\mssprxy.dll
2018-09-12 18:41 - 2018-08-31 04:17 - 000020480 _____ (Microsoft Corporation) C:\Windows\System32\netevent.dll
2018-09-12 18:41 - 2018-08-31 04:15 - 000395776 _____ (Microsoft Corporation) C:\Windows\System32\Search.ProtocolHandler.MAPI2.dll
2018-09-12 18:41 - 2018-08-31 04:15 - 000075776 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mpsdrv.sys
2018-09-12 18:41 - 2018-08-31 04:14 - 000726528 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2018-09-12 18:41 - 2018-08-31 04:14 - 000154112 _____ (Microsoft Corporation) C:\Windows\System32\Chakradiag.dll
2018-09-12 18:41 - 2018-08-31 04:13 - 001708544 _____ (Microsoft Corporation) C:\Windows\System32\MSPhotography.dll
2018-09-12 18:41 - 2018-08-31 04:13 - 000402432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ks.sys
2018-09-12 18:41 - 2018-08-31 04:12 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2018-09-12 18:41 - 2018-08-31 04:11 - 000796672 _____ (Microsoft Corporation) C:\Windows\System32\mssvp.dll
2018-09-12 18:41 - 2018-08-31 04:11 - 000406528 _____ (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
2018-09-12 18:41 - 2018-08-31 04:10 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2018-09-12 18:41 - 2018-08-31 04:10 - 000288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-09-12 18:41 - 2018-08-31 04:10 - 000176640 _____ (Microsoft Corporation) C:\Windows\System32\mssph.dll
2018-09-12 18:41 - 2018-08-31 04:09 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2018-09-12 18:41 - 2018-08-31 04:08 - 000619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2018-09-12 18:41 - 2018-08-31 04:07 - 000735744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2018-09-12 18:41 - 2018-08-31 04:06 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-09-12 18:41 - 2018-08-31 02:57 - 000001308 _____ C:\Windows\System32\tcbres.wim
2018-09-12 18:41 - 2018-08-28 07:56 - 001008640 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.MixedRealityCapture.dll
2018-09-12 18:41 - 2018-08-28 07:49 - 000677376 _____ (Microsoft Corporation) C:\Windows\System32\HeadTrackerStorage.dll
2018-09-12 18:41 - 2018-08-28 06:51 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-09-12 18:41 - 2018-08-14 03:14 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2018-09-12 18:41 - 2018-08-14 03:14 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2018-09-12 18:41 - 2018-08-09 10:31 - 000253544 _____ (Microsoft Corporation) C:\Windows\System32\sppwinob.dll
2018-09-12 18:41 - 2018-08-09 10:31 - 000236624 _____ (Microsoft Corporation) C:\Windows\System32\EditionUpgradeManagerObj.dll
2018-09-12 18:41 - 2018-08-09 10:17 - 000064000 _____ (Microsoft Corporation) C:\Windows\System32\iemigplugin.dll
2018-09-12 18:41 - 2018-08-09 10:14 - 000466944 _____ (Microsoft Corporation) C:\Windows\System32\DscCore.dll
2018-09-12 18:41 - 2018-08-09 10:14 - 000326144 _____ (Microsoft Corporation) C:\Windows\System32\CertEnrollUI.dll
2018-09-12 18:41 - 2018-08-09 10:14 - 000158720 _____ (Microsoft Corporation) C:\Windows\System32\fdeploy.dll
2018-09-12 18:41 - 2018-08-09 10:13 - 000517120 _____ (Microsoft Corporation) C:\Windows\System32\certreq.exe
2018-09-12 18:41 - 2018-08-09 10:13 - 000223232 _____ (Microsoft Corporation) C:\Windows\System32\TtlsExt.dll
2018-09-12 18:41 - 2018-08-09 10:12 - 002084864 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2018-09-12 18:41 - 2018-08-09 10:12 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2018-09-12 18:41 - 2018-08-09 10:11 - 000181248 _____ (Microsoft Corporation) C:\Windows\System32\EditionUpgradeHelper.dll
2018-09-12 18:41 - 2018-08-09 10:10 - 000836608 _____ (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2018-09-12 18:41 - 2018-08-09 10:09 - 000165376 _____ (Microsoft Corporation) C:\Windows\System32\dinput.dll
2018-09-12 18:41 - 2018-08-09 10:09 - 000091136 _____ (Microsoft Corporation) C:\Windows\System32\mcbuilder.exe
2018-09-12 18:41 - 2018-08-09 09:36 - 000221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeManagerObj.dll
2018-09-12 18:41 - 2018-08-09 09:24 - 000131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll
2018-09-12 18:41 - 2018-08-09 09:23 - 000291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
2018-09-12 18:41 - 2018-08-09 09:22 - 000668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-09-12 18:41 - 2018-08-09 09:22 - 000485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2018-09-12 18:41 - 2018-08-09 09:22 - 000429568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
2018-09-12 18:41 - 2018-08-09 09:21 - 002016768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-09-12 18:41 - 2018-08-09 09:21 - 001274368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2018-09-12 18:41 - 2018-08-09 09:21 - 000775168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2018-09-12 18:41 - 2018-08-09 09:20 - 000423424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2018-09-12 18:41 - 2018-08-09 09:20 - 000178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput8.dll
2018-09-12 18:41 - 2018-08-09 09:20 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput.dll
2018-09-12 18:41 - 2018-08-09 09:19 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2018-09-12 18:41 - 2018-08-09 05:54 - 000709824 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2018-09-12 18:41 - 2018-08-09 05:54 - 000375704 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pci.sys
2018-09-12 18:41 - 2018-08-09 05:54 - 000170912 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2018-09-12 18:41 - 2018-08-09 05:53 - 000714792 _____ (Microsoft Corporation) C:\Windows\System32\MSVideoDSP.dll
2018-09-12 18:41 - 2018-08-09 05:53 - 000158720 _____ (Microsoft Corporation) C:\Windows\System32\vertdll.dll
2018-09-12 18:41 - 2018-08-09 05:53 - 000125600 _____ (Microsoft Corporation) C:\Windows\System32\cryptxml.dll
2018-09-12 18:41 - 2018-08-09 05:29 - 000099208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptxml.dll
2018-09-12 18:41 - 2018-08-09 05:27 - 000117248 _____ (Microsoft Corporation) C:\Windows\System32\eShims.dll
2018-09-12 18:41 - 2018-08-09 05:27 - 000051200 _____ (Microsoft Corporation) C:\Windows\System32\CertEnrollCtrl.exe
2018-09-12 18:41 - 2018-08-09 05:26 - 000572416 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Networking.UX.EapRequestHandler.dll
2018-09-12 18:41 - 2018-08-09 05:26 - 000528384 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\nwifi.sys
2018-09-12 18:41 - 2018-08-09 05:26 - 000319488 _____ (Microsoft Corporation) C:\Windows\System32\MusNotificationUx.exe
2018-09-12 18:41 - 2018-08-09 05:26 - 000238592 _____ (Microsoft Corporation) C:\Windows\System32\TtlsAuth.dll
2018-09-12 18:41 - 2018-08-09 05:26 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\TtlsCfg.dll
2018-09-12 18:41 - 2018-08-09 05:26 - 000209408 _____ (Microsoft Corporation) C:\Windows\System32\AppXApplicabilityBlob.dll
2018-09-12 18:41 - 2018-08-09 05:25 - 000797184 _____ (Microsoft Corporation) C:\Windows\System32\certca.dll
2018-09-12 18:41 - 2018-08-09 05:25 - 000596992 _____ (Microsoft Corporation) C:\Windows\System32\TileDataRepository.dll
2018-09-12 18:41 - 2018-08-09 05:25 - 000145408 _____ (Microsoft Corporation) C:\Windows\System32\updatepolicy.dll
2018-09-12 18:41 - 2018-08-09 05:22 - 000316928 _____ (Microsoft Corporation) C:\Windows\System32\GlobCollationHost.dll
2018-09-12 18:41 - 2018-08-09 05:13 - 000042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollCtrl.exe
2018-09-12 18:41 - 2018-08-09 05:12 - 000652288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certca.dll
2018-09-12 18:41 - 2018-08-09 05:11 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2018-09-12 18:41 - 2018-08-09 05:11 - 000350208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-09-12 18:41 - 2018-08-09 05:11 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2018-09-12 18:41 - 2018-08-09 05:11 - 000178176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsAuth.dll
2018-09-12 18:41 - 2018-08-09 05:11 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsCfg.dll
2018-09-12 18:41 - 2018-08-09 05:11 - 000122368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2018-09-12 18:41 - 2018-08-09 05:10 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2018-09-12 18:41 - 2018-08-09 05:08 - 000195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2018-09-12 18:33 - 2018-09-12 18:33 - 000027972 _____ C:\Users\Desktopper\Downloads\Addition_11-09-2018 19.58.12.txt
2018-09-11 18:58 - 2018-09-12 18:37 - 000029977 _____ C:\Users\Desktopper\Downloads\Addition.txt
2018-09-11 18:57 - 2018-09-15 20:42 - 000000000 ____D C:\FRST
2018-09-11 18:57 - 2018-09-12 18:37 - 000084878 _____ C:\Users\Desktopper\Downloads\FRST.txt
2018-09-11 18:56 - 2018-09-11 18:56 - 002413568 _____ (Farbar) C:\Users\Desktopper\Downloads\FRST64english.exe
2018-09-10 21:42 - 2018-09-10 21:43 - 000000000 ____D C:\AdwCleaner
2018-09-10 21:42 - 2018-09-10 21:42 - 007567568 _____ (Malwarebytes) C:\Users\Desktopper\Downloads\AdwCleaner.exe
2018-09-10 21:34 - 2018-09-10 21:34 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Desktopper\Downloads\iExplore.exe
2018-09-10 21:34 - 2018-09-10 21:34 - 000002072 _____ C:\Users\Desktopper\Desktop\Rkill.txt
2018-09-10 21:07 - 2018-09-10 21:07 - 011576808 _____ (SurfRight B.V.) C:\Users\Desktopper\Downloads\hitmanpro_x64 (1).exe
2018-09-10 20:07 - 2018-09-10 20:07 - 000000000 ____D C:\ProgramData\Emsisoft
2018-09-10 20:06 - 2018-09-11 19:16 - 000000000 ____D C:\EEK
2018-09-10 20:04 - 2018-09-10 20:05 - 342305208 _____ C:\Users\Desktopper\Downloads\EmsisoftEmergencyKit.exe
2018-09-10 20:02 - 2018-09-15 19:49 - 000057097 _____ C:\Windows\ZAM.krnl.trace
2018-09-10 20:02 - 2018-09-15 19:49 - 000027348 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-09-10 20:02 - 2018-09-10 20:02 - 006625600 _____ (Zemana Ltd. ) C:\Users\Desktopper\Downloads\Zemana.AntiMalware.Setup.exe
2018-09-10 20:02 - 2018-09-10 20:02 - 000203680 _____ (Zemana Ltd.) C:\Windows\System32\Drivers\zamguard64.sys
2018-09-10 20:02 - 2018-09-10 20:02 - 000203680 _____ (Zemana Ltd.) C:\Windows\System32\Drivers\zam64.sys
2018-09-10 20:02 - 2018-09-10 20:02 - 000000000 ____D C:\Users\Desktopper\AppData\Local\Zemana
2018-09-10 20:02 - 2018-09-10 20:02 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-09-10 19:58 - 2018-09-10 20:01 - 000000000 ____D C:\ProgramData\HitmanPro
2018-09-10 19:58 - 2018-09-10 19:58 - 011576808 _____ (SurfRight B.V.) C:\Users\Desktopper\Downloads\hitmanpro_x64.exe
2018-09-10 19:53 - 2018-09-12 18:33 - 000109872 _____ (Malwarebytes) C:\Windows\System32\Drivers\mwac.sys
2018-09-10 19:53 - 2018-09-11 18:28 - 000117472 _____ (Malwarebytes) C:\Windows\System32\Drivers\farflt.sys
2018-09-10 19:53 - 2018-09-11 18:28 - 000052328 _____ (Malwarebytes) C:\Windows\System32\Drivers\mbam.sys
2018-09-10 19:53 - 2018-09-10 19:53 - 000259360 _____ (Malwarebytes) C:\Windows\System32\Drivers\mbamswissarmy.sys
2018-09-10 19:53 - 2018-09-10 19:53 - 000193256 _____ (Malwarebytes) C:\Windows\System32\Drivers\MbamChameleon.sys
2018-09-10 19:53 - 2018-09-10 19:53 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-09-10 19:53 - 2018-09-10 19:53 - 000000000 ____D C:\Users\Desktopper\AppData\Local\mbam
2018-09-10 19:53 - 2018-09-10 19:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-09-10 19:53 - 2018-09-10 19:53 - 000000000 ____D C:\Program Files\Malwarebytes
2018-09-10 19:53 - 2018-07-12 07:42 - 000152688 _____ (Malwarebytes) C:\Windows\System32\Drivers\mbae64.sys
2018-09-10 19:52 - 2018-09-10 19:52 - 080038952 _____ (Malwarebytes ) C:\Users\Desktopper\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.441-1.0.6729.exe
2018-09-10 19:37 - 2018-09-10 19:55 - 000000000 ____D C:\ProgramData\zVmiMcGqez
2018-09-10 19:37 - 2018-09-10 19:37 - 000000000 ____D C:\Users\Desktopper\AppData\Local\CrashDumps
2018-09-10 19:36 - 2018-09-10 19:55 - 000000000 ____D C:\Windows\SysWOW64\hfoxekvy
2018-09-10 19:36 - 2018-09-10 19:41 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\Windows RTL Handler
2018-09-10 19:36 - 2018-09-10 19:36 - 000000116 _____ C:\ProgramData\ythdg.exe
2018-09-10 19:35 - 2018-09-10 19:35 - 000003072 _____ C:\Users\Desktopper\AppData\Local\asSSDOptimizerV13.exe
2018-09-10 19:30 - 2018-09-10 19:30 - 000000000 ___HD C:\$AV_AVG
2018-09-10 19:17 - 2018-09-10 19:17 - 000000000 ____D C:\Users\Desktopper\AppData\LocalLow\Temp
2018-09-04 18:14 - 2018-09-04 18:29 - 000000022 _____ C:\Users\Desktopper\Downloads\wetransfer-6d3974.zip
2018-09-02 16:37 - 2018-09-02 16:37 - 001849788 _____ C:\Users\Desktopper\Downloads\TOMB RAIDER 2018 1080p BluRay.nzb
2018-09-02 13:55 - 2010-06-02 03:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2018-09-02 13:55 - 2010-06-02 03:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2018-09-02 13:55 - 2010-06-02 03:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2018-09-02 13:55 - 2010-06-02 03:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2018-09-02 13:55 - 2010-06-02 03:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2018-09-02 13:55 - 2010-06-02 03:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2018-09-02 13:55 - 2010-05-26 10:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2018-09-02 13:55 - 2010-02-04 09:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll
2018-09-02 13:55 - 2010-02-04 09:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2018-09-02 13:55 - 2010-02-04 09:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2018-09-02 13:55 - 2010-02-04 09:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll
2018-09-02 13:55 - 2010-02-04 09:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll
2018-09-02 13:55 - 2010-02-04 09:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2018-09-02 13:55 - 2010-02-04 09:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll
2018-09-02 13:55 - 2010-02-04 09:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2018-09-02 13:55 - 2009-09-04 16:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2018-09-02 13:55 - 2009-09-04 16:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2018-09-02 13:55 - 2009-09-04 16:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2018-09-02 13:55 - 2009-09-04 16:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2018-09-02 13:55 - 2009-09-04 16:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2018-09-02 13:55 - 2009-09-04 16:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2018-09-02 13:55 - 2009-09-04 16:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2018-09-02 13:55 - 2009-03-16 13:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll
2018-09-02 13:55 - 2009-03-16 13:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2018-09-02 13:55 - 2009-03-16 13:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2018-09-02 13:55 - 2009-03-16 13:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll
2018-09-02 13:55 - 2009-03-16 13:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll
2018-09-02 13:55 - 2009-03-16 13:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2018-09-02 13:55 - 2009-03-09 14:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll
2018-09-02 13:55 - 2009-03-09 14:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2018-09-02 13:55 - 2009-03-09 14:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll
2018-09-02 13:55 - 2009-03-09 14:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2018-09-02 13:55 - 2009-03-09 14:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll
2018-09-02 13:55 - 2009-03-09 14:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2018-09-02 13:55 - 2008-10-27 09:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2018-09-02 13:55 - 2008-10-27 09:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2018-09-02 13:55 - 2008-10-27 09:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2018-09-02 13:55 - 2008-10-27 09:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2018-09-02 13:55 - 2008-10-27 09:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2018-09-02 13:55 - 2008-10-27 09:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2018-09-02 13:55 - 2008-10-27 09:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2018-09-02 13:55 - 2008-10-27 09:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2018-09-02 13:55 - 2008-10-15 05:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll
2018-09-02 13:55 - 2008-10-15 05:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2018-09-02 13:55 - 2008-10-15 05:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll
2018-09-02 13:55 - 2008-10-15 05:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2018-09-02 13:55 - 2008-10-15 05:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll
2018-09-02 13:55 - 2008-10-15 05:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2018-09-02 13:55 - 2008-07-31 09:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2018-09-02 13:55 - 2008-07-31 09:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2018-09-02 13:55 - 2008-07-31 09:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2018-09-02 13:55 - 2008-07-31 09:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2018-09-02 13:55 - 2008-07-31 09:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2018-09-02 13:55 - 2008-07-31 09:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2018-09-02 13:55 - 2008-07-10 10:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2018-09-02 13:55 - 2008-07-10 10:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_39.dll
2018-09-02 13:55 - 2008-07-10 10:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2018-09-02 13:55 - 2008-07-10 10:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_39.dll
2018-09-02 13:55 - 2008-07-10 10:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2018-09-02 13:55 - 2008-07-10 10:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_39.dll
2018-09-02 13:55 - 2008-05-30 13:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_1.dll
2018-09-02 13:55 - 2008-05-30 13:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2018-09-02 13:55 - 2008-05-30 13:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2018-09-02 13:55 - 2008-05-30 13:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_1.dll
2018-09-02 13:55 - 2008-05-30 13:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_0.dll
2018-09-02 13:55 - 2008-05-30 13:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2018-09-02 13:55 - 2008-05-30 13:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2018-09-02 13:55 - 2008-05-30 13:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_4.dll
2018-09-02 13:55 - 2008-05-30 13:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_38.dll
2018-09-02 13:55 - 2008-05-30 13:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2018-09-02 13:55 - 2008-05-30 13:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_38.dll
2018-09-02 13:55 - 2008-05-30 13:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2018-09-02 13:55 - 2008-05-30 13:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_38.dll
2018-09-02 13:55 - 2008-05-30 13:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2018-09-02 13:55 - 2008-03-05 15:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_0.dll
2018-09-02 13:55 - 2008-03-05 15:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2018-09-02 13:55 - 2008-03-05 15:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2018-09-02 13:55 - 2008-03-05 15:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_0.dll
2018-09-02 13:55 - 2008-03-05 15:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_3.dll
2018-09-02 13:55 - 2008-03-05 15:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2018-09-02 13:55 - 2008-03-05 14:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_37.dll
2018-09-02 13:55 - 2008-03-05 14:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2018-09-02 13:55 - 2008-03-05 14:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_37.dll
2018-09-02 13:55 - 2008-03-05 14:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2018-09-02 13:55 - 2008-02-05 22:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_37.dll
2018-09-02 13:55 - 2008-02-05 22:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2018-09-02 13:55 - 2007-10-22 02:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_10.dll
2018-09-02 13:55 - 2007-10-22 02:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2018-09-02 13:55 - 2007-10-22 02:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_2.dll
2018-09-02 13:55 - 2007-10-22 02:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2018-09-02 13:55 - 2007-10-12 14:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_36.dll
2018-09-02 13:55 - 2007-10-12 14:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2018-09-02 13:55 - 2007-10-12 14:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_36.dll
2018-09-02 13:55 - 2007-10-12 14:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2018-09-02 13:55 - 2007-10-02 08:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_36.dll
2018-09-02 13:55 - 2007-10-02 08:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2018-09-02 13:55 - 2007-07-19 23:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_9.dll
2018-09-02 13:55 - 2007-07-19 23:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2018-09-02 13:55 - 2007-07-19 17:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_35.dll
2018-09-02 13:55 - 2007-07-19 17:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2018-09-02 13:55 - 2007-07-19 17:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_35.dll
2018-09-02 13:55 - 2007-07-19 17:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2018-09-02 13:55 - 2007-07-19 17:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_35.dll
2018-09-02 13:55 - 2007-07-19 17:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2018-09-02 13:55 - 2007-06-20 19:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_8.dll
2018-09-02 13:55 - 2007-06-20 19:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2018-09-02 13:55 - 2007-05-16 15:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_34.dll
2018-09-02 13:55 - 2007-05-16 15:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2018-09-02 13:55 - 2007-05-16 15:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_34.dll
2018-09-02 13:55 - 2007-05-16 15:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2018-09-02 13:55 - 2007-05-16 15:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_34.dll
2018-09-02 13:55 - 2007-05-16 15:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2018-09-02 13:55 - 2007-04-04 17:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_7.dll
2018-09-02 13:55 - 2007-04-04 17:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2018-09-02 13:55 - 2007-04-04 17:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_3.dll
2018-09-02 13:55 - 2007-04-04 17:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2018-09-02 13:55 - 2007-03-15 15:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_33.dll
2018-09-02 13:55 - 2007-03-15 15:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2018-09-02 13:55 - 2007-03-12 15:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_33.dll
2018-09-02 13:55 - 2007-03-12 15:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2018-09-02 13:55 - 2007-03-12 15:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_33.dll
2018-09-02 13:55 - 2007-03-12 15:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2018-09-02 13:55 - 2007-03-05 11:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_1.dll
2018-09-02 13:55 - 2007-03-05 11:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2018-09-02 13:55 - 2007-01-24 14:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_6.dll
2018-09-02 13:55 - 2007-01-24 14:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2018-09-02 13:55 - 2006-12-08 11:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2018-09-02 13:55 - 2006-12-08 11:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_5.dll
2018-09-02 13:55 - 2006-11-29 12:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_32.dll
2018-09-02 13:55 - 2006-11-29 12:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2018-09-02 13:55 - 2006-11-29 12:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10.dll
2018-09-02 13:55 - 2006-11-29 12:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2018-09-02 13:55 - 2006-09-28 15:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_31.dll
2018-09-02 13:55 - 2006-09-28 15:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2018-09-02 13:55 - 2006-09-28 15:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2018-09-02 13:55 - 2006-09-28 15:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_4.dll
2018-09-02 13:55 - 2006-07-28 08:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_2.dll
2018-09-02 13:55 - 2006-07-28 08:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_3.dll
2018-09-02 13:55 - 2006-07-28 08:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2018-09-02 13:55 - 2006-07-28 08:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2018-09-02 13:55 - 2006-05-31 06:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2018-09-02 13:55 - 2006-05-31 06:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_2.dll
2018-09-02 13:55 - 2006-03-31 11:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_30.dll
2018-09-02 13:55 - 2006-03-31 11:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2018-09-02 13:55 - 2006-03-31 11:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_1.dll
2018-09-02 13:55 - 2006-03-31 11:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2018-09-02 13:55 - 2006-03-31 11:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_1.dll
2018-09-02 13:55 - 2006-03-31 11:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2018-09-02 13:55 - 2006-02-03 07:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_29.dll
2018-09-02 13:55 - 2006-02-03 07:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2018-09-02 13:55 - 2006-02-03 07:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_0.dll
2018-09-02 13:55 - 2006-02-03 07:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2018-09-02 13:55 - 2006-02-03 07:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_0.dll
2018-09-02 13:55 - 2006-02-03 07:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2018-09-02 13:55 - 2005-12-05 17:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_28.dll
2018-09-02 13:55 - 2005-12-05 17:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2018-09-02 13:55 - 2005-07-22 18:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_27.dll
2018-09-02 13:55 - 2005-07-22 18:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2018-09-02 13:55 - 2005-05-26 14:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_26.dll
2018-09-02 13:55 - 2005-05-26 14:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2018-09-02 13:55 - 2005-03-18 16:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_25.dll
2018-09-02 13:55 - 2005-03-18 16:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2018-09-02 13:55 - 2005-02-05 18:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_24.dll
2018-09-02 13:55 - 2005-02-05 18:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2018-09-02 13:54 - 2018-09-02 13:55 - 000000000 ____D C:\ProgramData\Package Cache
2018-09-02 13:20 - 2018-09-02 13:30 - 000000000 ____D C:\Users\Desktopper\AppData\Local\Steam
2018-08-29 20:51 - 2018-08-29 20:51 - 001094982 _____ C:\Users\Desktopper\Downloads\facqpmAuyrLJFhXs.par2.nzb
2018-08-29 20:16 - 2018-08-29 20:16 - 000000000 ____D C:\ProgramData\GlarySoft
2018-08-29 20:14 - 2018-08-29 20:14 - 000028936 _____ (Glarysoft Ltd) C:\Windows\System32\Drivers\GUBootStartup.sys
2018-08-29 20:13 - 2018-09-10 20:41 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2018-08-29 20:13 - 2018-08-29 20:18 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\GlarySoft
2018-08-29 20:13 - 2018-08-29 20:13 - 017229968 _____ (Glarysoft Ltd) C:\Users\Desktopper\Downloads\gu5setup.exe
2018-08-29 20:13 - 2018-08-29 20:13 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\DiskDefrag
2018-08-29 19:16 - 2018-08-29 19:16 - 003409276 _____ C:\Users\Desktopper\Downloads\F4dMHokfJzk8qB.par2.nzb
2018-08-29 19:14 - 2018-08-29 19:14 - 000599358 _____ C:\Users\Desktopper\Downloads\97HYEWS258DF7G5G23RR65GLK88FF8.nzb
2018-08-29 19:13 - 2018-08-29 19:13 - 000591695 _____ C:\Users\Desktopper\Downloads\97HYEWS258DF7G5G23RR65GLK88FF8.par2.nzb
2018-08-28 19:42 - 2018-08-28 19:42 - 000057932 _____ C:\Users\Desktopper\Downloads\aanslag-gemeentelijke-belastingen (4).pdf
2018-08-28 19:40 - 2018-08-28 19:40 - 000108187 _____ C:\Users\Desktopper\Downloads\def-aanslag-inkomstenbelasting-2017.pdf
2018-08-28 19:40 - 2018-08-28 19:40 - 000086220 _____ C:\Users\Desktopper\Downloads\definitieve-berekening-toeslagen (1).pdf
2018-08-26 19:00 - 2018-08-26 19:00 - 000380656 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\avgBoot.exe
2018-08-16 21:58 - 2018-08-16 21:58 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\dvdcss
2018-08-16 21:08 - 2018-08-16 21:08 - 000287359 _____ C:\Users\Desktopper\Downloads\060418BIA14A.nzb
2018-08-16 21:06 - 2018-08-16 21:06 - 001324170 _____ C:\Users\Desktopper\Downloads\Bumba - In De Far West.nzb
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-09-15 19:50 - 2018-04-11 22:04 - 000524288 _____ C:\Windows\System32\config\BBI
2018-09-15 19:49 - 2018-07-20 19:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-09-15 19:48 - 2018-07-20 19:44 - 001676386 _____ C:\Windows\System32\PerfStringBackup.INI
2018-09-15 19:48 - 2018-04-12 17:01 - 000746500 _____ C:\Windows\System32\perfh013.dat
2018-09-15 19:48 - 2018-04-12 17:01 - 000145696 _____ C:\Windows\System32\perfc013.dat
2018-09-15 19:48 - 2018-04-12 00:36 - 000000000 ____D C:\Windows\INF
2018-09-15 19:44 - 2018-07-20 20:04 - 000000000 ____D C:\ProgramData\NVIDIA
2018-09-15 19:44 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-09-15 19:04 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\AppReadiness
2018-09-14 20:56 - 2018-07-20 19:29 - 000000000 ____D C:\Windows\System32\SleepStudy
2018-09-14 19:14 - 2018-07-20 19:38 - 000000000 ____D C:\Users\Desktopper\AppData\Local\Packages
2018-09-14 19:14 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-09-12 20:03 - 2018-07-20 19:29 - 000234008 _____ C:\Windows\System32\FNTCACHE.DAT
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\zu-ZA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\yo-NG
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\xh-ZA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\wo-SN
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\uz-Latn-UZ
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\tn-ZA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\ti-ET
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\tg-Cyrl-TJ
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-RS
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-BA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\sd-Arab-PK
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\rw-RW
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\quc-Latn-GT
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\pa-Arab-PK
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\nso-ZA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\ku-Arab-IQ
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\ig-NG
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\ha-Latn-NG
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\chr-CHER-US
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\ca-ES-valencia
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\bs-Latn-BA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\SysWOW64\az-Latn-AZ
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\zu-ZA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\yo-NG
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\xh-ZA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\wo-SN
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\uz-Latn-UZ
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\tn-ZA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\ti-ET
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\tg-Cyrl-TJ
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\sr-Cyrl-RS
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\sr-Cyrl-BA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\sd-Arab-PK
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\rw-RW
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\quc-Latn-GT
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\pa-Arab-PK
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\nso-ZA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\ku-Arab-IQ
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\ig-NG
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\ha-Latn-NG
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\chr-CHER-US
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\ca-ES-valencia
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\bs-Latn-BA
2018-09-12 20:03 - 2018-04-12 17:02 - 000000000 ____D C:\Windows\System32\az-Latn-AZ
2018-09-12 20:03 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\TextInput
2018-09-12 20:03 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\SysWOW64\Dism
2018-09-12 20:03 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\System32\oobe
2018-09-12 20:03 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\bcastdvr
2018-09-12 20:03 - 2018-04-11 22:04 - 000000000 ____D C:\Windows\System32\Dism
2018-09-12 18:45 - 2018-04-12 00:30 - 000000000 ____D C:\Windows\CbsTemp
2018-09-12 18:35 - 2018-07-28 11:57 - 000208216 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgStm.sys
2018-09-11 18:34 - 2018-07-20 19:37 - 000000000 ____D C:\users\Desktopper
2018-09-11 18:33 - 2018-07-20 19:43 - 000000000 ____D C:\Windows\System32\MRT
2018-09-11 18:32 - 2018-07-28 11:57 - 000155664 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgMonFlt.sys
2018-09-11 18:32 - 2018-07-20 19:43 - 139184408 ____C (Microsoft Corporation) C:\Windows\System32\MRT.exe
2018-09-11 18:27 - 2018-07-28 11:57 - 000004266 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2018-09-10 19:20 - 2018-07-28 11:58 - 000000000 ____D C:\ProgramData\Spotnet
2018-09-05 00:04 - 2018-04-12 00:41 - 000835144 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-09-05 00:04 - 2018-04-12 00:41 - 000179808 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-04 18:12 - 2018-07-28 11:57 - 000459624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgSP.sys
2018-09-03 22:53 - 2018-08-11 19:12 - 000000000 ____D C:\Users\Desktopper\AppData\Roaming\vlc
2018-08-28 19:02 - 2018-07-28 11:57 - 000078864 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgRvrt.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 001020112 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgSnx.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 000373944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgVmm.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 000339048 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgbloga.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 000222288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgbidsdrivera.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 000194224 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgbidsha.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 000192104 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgArPot.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 000104256 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgRdr2.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 000051952 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgbuniva.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 000039352 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgHwid.sys
2018-08-26 19:00 - 2018-07-28 11:57 - 000015344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgElam.sys
2018-08-26 19:00 - 2018-04-12 00:38 - 000000000 ___HD C:\Windows\ELAMBKUP
2018-08-26 18:59 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\LiveKernelReports
2018-08-16 20:47 - 2018-07-20 19:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-08-16 20:47 - 2018-07-20 19:38 - 000000000 ___RD C:\Users\Desktopper\3D Objects
 
==================== Known DLLs (Whitelisted) =========================
 
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe
[2018-07-20 19:51] - [2018-07-06 14:52] - 000677376 _____ (Microsoft Corporation) 3E56F9D58EBBB1B33E31B86267DBECFC
 
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2018-07-20 19:51] - [2018-07-06 15:17] - 003932672 _____ (Microsoft Corporation) E4A81EDDFF8B844D85C8B45354E4144E
 
C:\Windows\SysWOW64\explorer.exe
[2018-07-20 19:51] - [2018-07-06 13:06] - 003611368 _____ (Microsoft Corporation) 499B0D1F6277F17B3BAC525B8717C064
 
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe
[2018-08-15 20:16] - [2018-07-14 05:19] - 000636944 _____ (Microsoft Corporation) 2FC61B2CF84792516D543CA94139A92C
 
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2018-07-20 19:51] - [2018-06-08 09:55] - 001160192 _____ (Microsoft Corporation) 107661923943E9DC06ED2713AC5F7753
 
C:\Windows\System32\dnsapi.dll
[2018-07-20 19:51] - [2018-07-06 08:26] - 000766608 _____ (Microsoft Corporation) F4B9F200B9D7EBC8BD4C8E39F02A44E3
 
C:\Windows\SysWOW64\dnsapi.dll
[2018-07-20 19:51] - [2018-07-06 08:14] - 000573904 _____ (Microsoft Corporation) BE663A3C8E4F3ED2E8404A808614BCE3
 
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
==================== Association (Whitelisted) =============
 
 
==================== Restore Points  =========================
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 10%
Total physical RAM: 8157.15 MB
Available physical RAM: 7271.16 MB
Total Virtual: 8157.15 MB
Available Virtual: 7314.86 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:111.25 GB) (Free:75.11 GB) NTFS
Drive d: (Door systeem gereserveerd) (Fixed) (Total:0.54 GB) (Free:0.16 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (NieuwVolume) (Fixed) (Total:1397.26 GB) (Free:98.46 GB) NTFS
Drive f: (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive h: () (Fixed) (Total:465.22 GB) (Free:380.15 GB) NTFS
Drive i: () (Fixed) (Total:111.25 GB) (Free:94.7 GB) NTFS
Drive j: (CCCOMA_X64FRE_NL-NL_DV9) (CDROM) (Total:4.26 GB) (Free:0 GB) UDF
Drive k: (STORE N GO) (Removable) (Total:29.28 GB) (Free:19 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.5 GB) (Free:0.49 GB) NTFS
Drive y: (Door systeem gereserveerd) (Fixed) (Total:0.54 GB) (Free:0.16 GB) NTFS ==>[system with boot components (obtained from drive)]
 
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 84607D71)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: B50531D8)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
 
========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1397.3 GB) (Disk ID: 122CF9D3)
Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS)
 
========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 7FA100B8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
 
========================================================
Disk: 4 (MBR Code: Windows XP) (Size: 29.3 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=29.3 GB) - (Type=0C)
 
LastRegBack: 2018-07-20 19:29
 
==================== End of FRST.txt ============================





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users