1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Solved ImgSync Virus or not ?

Discussion in 'Malware and Virus Removal' started by jimbo0706, 2018/09/13.

Page 1 of 2
  1. 2018/09/13
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    I keep getting a message every time I open Edge from imgSync saying what do you want to do with imgsync
    from image8.PubMatic.com open save or cancel I keep hitting cancel and as soon as I reopen edge it is back.. Below is a copy of Ferber..

    Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.09.2018
    Ran by lagoi (administrator) on DESKTOP-522SFFR (12-09-2018 23:46:57)
    Running from C:\Users\lagoi\OneDrive\Desktop
    Loaded Profiles: lagoi (Available Profiles: lagoi)
    Platform: Windows 10 Home Version 1803 17134.285 (X64) Language: English (United States)
    Internet Explorer Version 11 (Default browser: Edge)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
    ==================== Processes (Whitelisted) =================
    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
    (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    (Micro-Star International Co., Ltd.) C:\Windows\SysWOW64\MSIService.exe
    (Intel Corporation) C:\Windows\System32\ibtsiva.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
    (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1807.18075-0\MsMpEng.exe
    (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
    (Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1807.18075-0\NisSrv.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    (Intel Corporation) C:\Windows\System32\igfxEM.exe
    (Intel Corporation) C:\Windows\System32\igfxHK.exe
    () C:\Windows\System32\igfxTray.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
    (Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    (Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    (Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    (Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    (Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Gaming Center\Dragon Gaming Center.exe
    () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
    (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
    (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11807.1001.13.0_x64__8wekyb3d8bbwe\WinStore.App.exe
    (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
    (Microsoft Corporation) C:\Windows\System32\browser_broker.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
    (EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe
    (EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    ==================== Registry (Whitelisted) ===========================
    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
    HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9268672 2018-09-04] (Realtek Semiconductor)
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd)
    ==================== Internet (Whitelisted) ====================
    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
    Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
    Tcpip\..\Interfaces\{2f562065-3d06-48fe-8efa-c37d81e1897e}: [DhcpNameServer] 192.168.1.1
    Tcpip\..\Interfaces\{62502753-ed87-439f-ba46-e70e73f11a44}: [DhcpNameServer] 192.168.1.1
    Internet Explorer:
    ==================
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yahoo.com/
    BHO: No Name -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> No File
    BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-09-10] (Microsoft Corporation)
    Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-10] (Microsoft Corporation)
    Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-10] (Microsoft Corporation)
    Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-10] (Microsoft Corporation)
    Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-10] (Microsoft Corporation)
    FireFox:
    ========
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-10] (Microsoft Corporation)
    Chrome:
    =======
    CHR Profile: C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default [2018-09-12]
    CHR Extension: (Docs) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-22]
    CHR Extension: (Google Drive) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-22]
    CHR Extension: (YouTube) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-22]
    CHR Extension: (Chrome Web Store Payments) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-22]
    CHR Extension: (Gmail) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-08-22]
    ==================== Services (Whitelisted) ====================
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9659456 2018-08-30] (Microsoft Corporation)
    R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [9872688 2018-09-12] (EnigmaSoft Limited)
    R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [541896 2018-05-10] (Intel Corporation)
    R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
    R2 Killer Network Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2483376 2018-06-15] (Rivet Networks)
    R2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.) [File not signed]
    R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
    S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
    R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [538416 2018-09-12] (EnigmaSoft Limited)
    S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
    R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [279096 2017-12-06] (Synaptics Incorporated)
    R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-08-14] (Microsoft Corporation)
    R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-08-14] (Microsoft Corporation)
    R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
    R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
    ===================== Drivers (Whitelisted) ======================
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    R3 EnigmaFileMonDriver; C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys [61624 2018-09-12] (EnigmaSoft Limited)
    R3 ETDSMBus; C:\Windows\System32\drivers\ETDSMBus.sys [31816 2018-09-04] (ELAN Microelectronic Corp.)
    R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-09-04] (REALiX(tm))
    R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [136720 2018-05-10] (Intel Corporation)
    R3 KfeCoSvc; C:\Windows\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [150184 2018-06-15] (Rivet Networks, LLC.)
    R3 KillerEth; C:\Windows\System32\drivers\e2xw10x64.sys [145920 2018-04-11] (Qualcomm Atheros, Inc.)
    R1 MpKslc8c4b7b5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8C11FAB3-FC7A-4C07-8268-CFFB02FC6D72}\MpKslc8c4b7b5.sys [58120 2018-09-12] (Microsoft Corporation)
    R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3586072 2018-09-04] (Intel Corporation)
    R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_76bb9a50a59f3335\nvlddmkm.sys [17213832 2018-09-06] (NVIDIA Corporation)
    S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-12] (NVIDIA Corporation)
    R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69544 2018-06-07] (NVIDIA Corporation)
    R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation)
    R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [433096 2018-05-23] (Realsil Semiconductor Corporation)
    R1 tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [334488 2017-10-17] (Trend Micro Inc.)
    S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46584 2018-08-14] (Microsoft Corporation)
    R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [340008 2018-08-14] (Microsoft Corporation)
    R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [61992 2018-08-14] (Microsoft Corporation)
    R3 WINIO; C:\Program Files (x86)\MSI\Dragon Gaming Center\winio64.sys [15160 2010-06-07] ()
    S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X]
    S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]
    ==================== NetSvcs (Whitelisted) ===================
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    ==================== One Month Created files and folders ========
    (If an entry is included in the fixlist, the file/folder will be moved.)
    2018-09-12 23:46 - 2018-09-12 23:46 - 000000000 ____D C:\FRST
    2018-09-12 23:30 - 2018-09-12 23:30 - 000061624 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
    2018-09-12 23:30 - 2018-09-12 23:30 - 000001059 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
    2018-09-12 23:30 - 2018-09-12 23:30 - 000000000 ____D C:\sh5ldr
    2018-09-12 23:30 - 2018-09-12 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
    2018-09-12 23:30 - 2018-09-12 23:30 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
    2018-09-12 23:30 - 2018-09-12 23:30 - 000000000 ____D C:\Program Files\EnigmaSoft
    2018-09-12 23:00 - 2018-09-12 23:00 - 000760520 _____ C:\Users\lagoi\AppData\Local\census.cache
    2018-09-12 23:00 - 2018-09-12 23:00 - 000326934 _____ C:\Users\lagoi\AppData\Local\ars.cache
    2018-09-12 22:55 - 2018-09-12 22:55 - 000000036 _____ C:\Users\lagoi\AppData\Local\housecall.guid.cache
    2018-09-12 22:55 - 2017-10-17 11:40 - 000334488 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys
    2018-09-12 20:07 - 2018-09-12 20:07 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
    2018-09-12 16:41 - 2018-09-12 16:41 - 000007601 _____ C:\Users\lagoi\AppData\Local\Resmon.ResmonCfg
    2018-09-12 15:47 - 2018-08-31 02:43 - 001524152 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
    2018-09-12 15:47 - 2018-08-31 01:53 - 001327504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
    2018-09-12 15:47 - 2018-08-30 22:44 - 001222440 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
    2018-09-12 15:47 - 2018-08-30 22:44 - 001030952 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
    2018-09-12 15:47 - 2018-08-30 22:42 - 009090016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2018-09-12 15:47 - 2018-08-30 22:42 - 007520064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
    2018-09-12 15:47 - 2018-08-30 22:42 - 007436192 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
    2018-09-12 15:47 - 2018-08-30 22:42 - 002824672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2018-09-12 15:47 - 2018-08-30 22:42 - 002461312 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
    2018-09-12 15:47 - 2018-08-30 22:28 - 006570040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
    2018-09-12 15:47 - 2018-08-30 22:28 - 006043680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
    2018-09-12 15:47 - 2018-08-30 22:28 - 001989496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
    2018-09-12 15:47 - 2018-08-30 22:26 - 025847808 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
    2018-09-12 15:47 - 2018-08-30 22:21 - 022008320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
    2018-09-12 15:47 - 2018-08-30 22:20 - 022715904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2018-09-12 15:47 - 2018-08-30 22:18 - 008189440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
    2018-09-12 15:47 - 2018-08-30 22:16 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2018-09-12 15:47 - 2018-08-30 22:16 - 006661120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
    2018-09-12 15:47 - 2018-08-30 22:16 - 004382720 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
    2018-09-12 15:47 - 2018-08-30 22:15 - 007577088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
    2018-09-12 15:47 - 2018-08-30 22:15 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2018-09-12 15:47 - 2018-08-30 22:15 - 003392512 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
    2018-09-12 15:47 - 2018-08-30 22:14 - 002700288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
    2018-09-12 15:47 - 2018-08-30 22:14 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
    2018-09-12 15:47 - 2018-08-30 22:13 - 002738688 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
    2018-09-12 15:47 - 2018-08-30 22:11 - 001854976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
    2018-09-12 15:47 - 2018-08-30 22:11 - 001804288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2018-09-12 15:47 - 2018-08-30 22:10 - 005777920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
    2018-09-12 15:47 - 2018-08-30 22:10 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2018-09-12 15:47 - 2018-08-30 22:10 - 001375744 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
    2018-09-12 15:47 - 2018-08-30 22:09 - 002258944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
    2018-09-12 15:47 - 2018-08-30 22:07 - 001627648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2018-09-12 15:47 - 2018-08-28 02:17 - 023862784 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
    2018-09-12 15:46 - 2018-08-31 02:46 - 000542504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
    2018-09-12 15:46 - 2018-08-31 02:45 - 000348328 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
    2018-09-12 15:46 - 2018-08-31 02:42 - 001636232 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
    2018-09-12 15:46 - 2018-08-31 02:27 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
    2018-09-12 15:46 - 2018-08-31 02:27 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
    2018-09-12 15:46 - 2018-08-31 02:26 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
    2018-09-12 15:46 - 2018-08-31 02:25 - 000270336 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
    2018-09-12 15:46 - 2018-08-31 02:25 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2018-09-12 15:46 - 2018-08-31 02:24 - 001127936 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
    2018-09-12 15:46 - 2018-08-31 02:24 - 000482304 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2018-09-12 15:46 - 2018-08-31 02:24 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2018-09-12 15:46 - 2018-08-31 02:23 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
    2018-09-12 15:46 - 2018-08-31 02:23 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
    2018-09-12 15:46 - 2018-08-31 02:22 - 001855488 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2018-09-12 15:46 - 2018-08-31 02:22 - 001661440 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
    2018-09-12 15:46 - 2018-08-31 01:55 - 001455960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
    2018-09-12 15:46 - 2018-08-31 01:41 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
    2018-09-12 15:46 - 2018-08-31 01:41 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
    2018-09-12 15:46 - 2018-08-31 01:40 - 000216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
    2018-09-12 15:46 - 2018-08-31 01:37 - 001585664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
    2018-09-12 15:46 - 2018-08-31 01:37 - 000622080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
    2018-09-12 15:46 - 2018-08-31 01:37 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2018-09-12 15:46 - 2018-08-31 01:36 - 001469952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
    2018-09-12 15:46 - 2018-08-30 22:50 - 000273720 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
    2018-09-12 15:46 - 2018-08-30 22:50 - 000270648 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
    2018-09-12 15:46 - 2018-08-30 22:44 - 001064744 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
    2018-09-12 15:46 - 2018-08-30 22:44 - 000568600 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
    2018-09-12 15:46 - 2018-08-30 22:44 - 000136488 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
    2018-09-12 15:46 - 2018-08-30 22:44 - 000076256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
    2018-09-12 15:46 - 2018-08-30 22:43 - 002719216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
    2018-09-12 15:46 - 2018-08-30 22:43 - 000722880 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 001767064 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 001458552 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
    2018-09-12 15:46 - 2018-08-30 22:42 - 001258352 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2018-09-12 15:46 - 2018-08-30 22:42 - 001142000 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
    2018-09-12 15:46 - 2018-08-30 22:42 - 001097720 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000983080 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
    2018-09-12 15:46 - 2018-08-30 22:42 - 000885928 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000632296 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000604640 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
    2018-09-12 15:46 - 2018-08-30 22:42 - 000527328 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000494472 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000155112 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 001514352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 001129728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 000568568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 000453104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpx.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 000134936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
    2018-09-12 15:46 - 2018-08-30 22:17 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
    2018-09-12 15:46 - 2018-08-30 22:17 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
    2018-09-12 15:46 - 2018-08-30 22:15 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
    2018-09-12 15:46 - 2018-08-30 22:15 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
    2018-09-12 15:46 - 2018-08-30 22:15 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
    2018-09-12 15:46 - 2018-08-30 22:14 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
    2018-09-12 15:46 - 2018-08-30 22:14 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2018-09-12 15:46 - 2018-08-30 22:14 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
    2018-09-12 15:46 - 2018-08-30 22:13 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
    2018-09-12 15:46 - 2018-08-30 22:13 - 000402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
    2018-09-12 15:46 - 2018-08-30 22:12 - 000736256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
    2018-09-12 15:46 - 2018-08-30 22:12 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
    2018-09-12 15:46 - 2018-08-30 22:11 - 002236928 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
    2018-09-12 15:46 - 2018-08-30 22:11 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
    2018-09-12 15:46 - 2018-08-30 22:11 - 000796672 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
    2018-09-12 15:46 - 2018-08-30 22:11 - 000604160 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
    2018-09-12 15:46 - 2018-08-30 22:11 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
    2018-09-12 15:46 - 2018-08-30 22:10 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000889344 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
    2018-09-12 15:46 - 2018-08-30 22:09 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
    2018-09-12 15:46 - 2018-08-30 22:08 - 000619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
    2018-09-12 15:46 - 2018-08-30 22:07 - 000856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
    2018-09-12 15:46 - 2018-08-30 22:07 - 000735744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
    2018-09-12 15:46 - 2018-08-30 22:06 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
    2018-09-12 15:46 - 2018-08-30 20:57 - 000001308 _____ C:\Windows\system32\tcbres.wim
    2018-09-12 15:46 - 2018-08-28 01:56 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
    2018-09-12 15:46 - 2018-08-28 01:49 - 000677376 _____ (Microsoft Corporation) C:\Windows\system32\HeadTrackerStorage.dll
    2018-09-12 15:46 - 2018-08-28 01:48 - 001274368 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll
    2018-09-12 15:46 - 2018-08-28 01:45 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\SharedRealitySvc.dll
    2018-09-12 15:46 - 2018-08-28 00:51 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
    2018-09-12 15:46 - 2018-08-13 21:14 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
    2018-09-12 15:46 - 2018-08-13 21:14 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
    2018-09-12 15:26 - 2018-09-11 17:39 - 000835144 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2018-09-12 15:26 - 2018-09-11 17:39 - 000179808 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2018-09-12 15:02 - 2018-09-12 15:02 - 000000000 ____D C:\Users\lagoi\AppData\Local\mbam
    2018-09-12 15:02 - 2018-09-12 15:02 - 000000000 ____D C:\Program Files\Malwarebytes
    2018-09-10 19:26 - 2018-09-05 20:17 - 000124112 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 040346912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 035251264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 004352800 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 003768768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 002014832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6439924.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001565248 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001467832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6439924.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001420224 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001218624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001093568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 000629120 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 000518592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 031250800 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 025966472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 017756464 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 015170504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 013732232 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 011277048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 004858088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 004127984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 001349272 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 001159392 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 001065768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 000906904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 000816672 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 000654864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
    2018-09-10 19:24 - 2018-09-05 21:58 - 000044335 _____ C:\Windows\system32\nvinfo.pb
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
    2018-09-09 15:32 - 2018-09-12 18:29 - 096993280 _____ C:\Windows\system32\config\SOFTWARE
    2018-09-09 15:32 - 2018-09-12 18:29 - 000786432 _____ C:\Windows\system32\config\DEFAULT
    2018-09-09 15:32 - 2018-09-12 18:29 - 000040960 _____ C:\Windows\system32\config\SAM
    2018-09-09 15:32 - 2018-09-12 18:29 - 000032768 _____ C:\Windows\system32\config\SECURITY
    2018-09-06 12:13 - 2018-09-06 12:17 - 000000000 ____D C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc
    2018-09-06 00:47 - 2018-09-06 00:47 - 000000000 ____D C:\Users\lagoi\AppData\Local\Micro-Star_International_
    2018-09-05 18:06 - 2018-09-05 18:06 - 000003256 _____ C:\Windows\System32\Tasks\MSI_Dragon Gaming Center
    2018-09-05 18:06 - 2018-09-05 18:06 - 000002881 _____ C:\Users\Public\Desktop\Dragon Gaming Center.lnk
    2018-09-05 18:06 - 2018-09-05 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
    2018-09-05 18:06 - 2018-09-05 18:06 - 000000000 ____D C:\Program Files (x86)\MSI
    2018-09-05 18:06 - 2018-09-05 18:06 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
    2018-09-05 16:34 - 2018-09-09 15:32 - 093265920 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
    2018-09-05 16:34 - 2018-09-09 15:32 - 005296128 _____ C:\Windows\system32\config\DRIVERS.iodefrag.bak
    2018-09-05 16:34 - 2018-09-09 15:32 - 000585728 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
    2018-09-05 16:34 - 2018-09-09 15:32 - 000040960 _____ C:\Windows\system32\config\SAM.iodefrag.bak
    2018-09-05 16:34 - 2018-09-09 15:32 - 000032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
    2018-09-04 13:26 - 2018-09-04 14:08 - 000000000 ____D C:\ESD
    2018-09-04 13:23 - 2018-09-04 13:23 - 000000000 ____D C:\$WINDOWS.~BT
    2018-09-04 12:26 - 2018-09-04 12:26 - 004535040 _____ C:\Windows\system32\Drivers\Netwfw02.dat
    2018-09-04 12:26 - 2018-09-04 12:26 - 003586072 _____ (Intel Corporation) C:\Windows\system32\Drivers\Netwbw02.sys
    2018-09-04 12:24 - 2018-09-04 12:24 - 072520680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
    2018-09-04 12:24 - 2018-09-04 12:24 - 016279845 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
    2018-09-04 12:24 - 2018-09-04 12:24 - 007178432 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 007101704 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 006270152 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 006114248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
    2018-09-04 12:24 - 2018-09-04 12:24 - 005346960 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 004112656 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003691368 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003677120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
    2018-09-04 12:24 - 2018-09-04 12:24 - 003452120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003417976 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003306784 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003223832 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003214672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003128776 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 002930624 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 002444648 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 002197944 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001971336 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001965120 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001787920 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001598360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001516232 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001435104 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001382200 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001353288 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001340344 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001337608 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001268976 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001204336 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001159144 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001133560 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001037032 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001000616 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000994648 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000964992 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000873424 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000852096 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000751256 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000734736 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000715616 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000714424 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000692128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000604760 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000541080 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000511608 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000480800 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
    2018-09-04 12:24 - 2018-09-04 12:24 - 000467120 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000453240 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000452704 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000448568 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000447144 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000416472 _____ (Harman) C:\Windows\system32\HMUI.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000392840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000381376 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000378344 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000367576 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000366080 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000360304 _____ (Harman) C:\Windows\system32\HMClariFi.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000343672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000341112 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000341112 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000332976 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000327240 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000327240 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000315944 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000278240 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000266512 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000261200 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000261168 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000260176 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000231880 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000230672 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000220352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000218232 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000203808 _____ (Harman) C:\Windows\system32\HMHVS.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000192944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000190896 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000190896 _____ (Harman) C:\Windows\system32\HMEQ.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000179560 _____ (Harman) C:\Windows\system32\HMLimiter.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000174904 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000158656 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000157312 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000154328 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000139720 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000122280 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000118552 _____ C:\Windows\system32\AcpiServiceVnA64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000116504 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000105272 _____ C:\Windows\system32\audioLibVc.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000093864 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000090880 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000090136 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000088288 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000083592 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000075504 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000023656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
    2018-09-04 12:23 - 2018-09-04 12:23 - 001804688 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
    2018-09-04 12:23 - 2018-09-04 12:23 - 001469952 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
    2018-09-04 12:23 - 2018-09-04 12:23 - 000031816 _____ (ELAN Microelectronic Corp.) C:\Windows\system32\Drivers\ETDSMBus.sys
    2018-09-04 12:22 - 2018-09-04 12:22 - 000206488 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverW8x64.sys
    2018-09-04 12:17 - 2018-09-04 12:17 - 000027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
    2018-09-04 12:17 - 2018-09-04 12:17 - 000000000 ____D C:\Windows\IObit
    2018-09-03 18:26 - 2018-09-10 17:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
    2018-09-03 18:26 - 2018-09-03 18:26 - 000000000 ____D C:\Program Files\Microsoft Office 15
    2018-09-03 17:42 - 2018-09-03 17:42 - 077254656 _____ C:\Windows\system32\config\SOFTWARE.iobit
    2018-09-03 17:42 - 2018-09-03 17:42 - 005328896 _____ C:\Windows\system32\config\DRIVERS.iobit
    2018-09-03 17:42 - 2018-09-03 17:42 - 000413696 _____ C:\Windows\system32\config\DEFAULT.iobit
    2018-09-03 17:42 - 2018-09-03 17:42 - 000040960 _____ C:\Windows\system32\config\SAM.iobit
    2018-09-03 17:42 - 2018-09-03 17:42 - 000032768 _____ C:\Windows\system32\config\SECURITY.iobit
    2018-09-03 17:37 - 2018-09-05 19:43 - 000000000 ____D C:\ProgramData\ProductData
    2018-09-03 17:36 - 2018-09-03 17:37 - 000000000 ____D C:\Users\lagoi\AppData\LocalLow\IObit
    2018-09-03 17:36 - 2018-09-03 17:36 - 000000000 ____D C:\Windows\Tasks\ImCleanDisabled
    2018-09-03 17:36 - 2018-09-03 17:36 - 000000000 ____D C:\ProgramData\{13CFD044-61E4-4EAC-AD61-02536D961216}
    2018-09-03 17:35 - 2018-09-10 17:41 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\IObit
    2018-09-03 17:35 - 2018-09-04 12:18 - 000000000 ____D C:\ProgramData\IObit
    2018-09-03 17:35 - 2018-09-04 12:17 - 000000000 ____D C:\Program Files (x86)\IObit
    2018-08-31 16:57 - 2018-08-09 04:32 - 004527680 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
     
    jimbo0706,
    #1
  2. 2018/09/13
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    2018-08-31 16:57 - 2018-08-09 04:31 - 001617728 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
    2018-08-31 16:57 - 2018-08-09 04:31 - 000766872 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
    2018-08-31 16:57 - 2018-08-09 04:31 - 000253544 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
    2018-08-31 16:57 - 2018-08-09 04:31 - 000236624 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
    2018-08-31 16:57 - 2018-08-09 04:17 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
    2018-08-31 16:57 - 2018-08-09 04:14 - 012709376 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2018-08-31 16:57 - 2018-08-09 04:14 - 000466944 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
    2018-08-31 16:57 - 2018-08-09 04:14 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
    2018-08-31 16:57 - 2018-08-09 04:14 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
    2018-08-31 16:57 - 2018-08-09 04:13 - 000521216 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
    2018-08-31 16:57 - 2018-08-09 04:13 - 000517120 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
    2018-08-31 16:57 - 2018-08-09 04:13 - 000340992 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll
    2018-08-31 16:57 - 2018-08-09 04:13 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\TtlsExt.dll
    2018-08-31 16:57 - 2018-08-09 04:12 - 002084864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2018-08-31 16:57 - 2018-08-09 04:12 - 001787392 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
    2018-08-31 16:57 - 2018-08-09 04:12 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2018-08-31 16:57 - 2018-08-09 04:11 - 003652608 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
    2018-08-31 16:57 - 2018-08-09 04:11 - 002051584 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
    2018-08-31 16:57 - 2018-08-09 04:11 - 001004032 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
    2018-08-31 16:57 - 2018-08-09 04:11 - 000615424 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
    2018-08-31 16:57 - 2018-08-09 04:11 - 000181248 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeHelper.dll
    2018-08-31 16:57 - 2018-08-09 04:10 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
    2018-08-31 16:57 - 2018-08-09 04:10 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
    2018-08-31 16:57 - 2018-08-09 04:10 - 000757248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2018-08-31 16:57 - 2018-08-09 04:09 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\dinput8.dll
    2018-08-31 16:57 - 2018-08-09 04:09 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\dinput.dll
    2018-08-31 16:57 - 2018-08-09 04:09 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
    2018-08-31 16:57 - 2018-08-09 03:36 - 000660896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
    2018-08-31 16:57 - 2018-08-09 03:36 - 000221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeManagerObj.dll
    2018-08-31 16:57 - 2018-08-09 03:24 - 011901952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2018-08-31 16:57 - 2018-08-09 03:24 - 000131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll
    2018-08-31 16:57 - 2018-08-09 03:23 - 001308160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
    2018-08-31 16:57 - 2018-08-09 03:23 - 000291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
    2018-08-31 16:57 - 2018-08-09 03:22 - 001452544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
    2018-08-31 16:57 - 2018-08-09 03:22 - 000668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2018-08-31 16:57 - 2018-08-09 03:22 - 000485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
    2018-08-31 16:57 - 2018-08-09 03:22 - 000429568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
    2018-08-31 16:57 - 2018-08-09 03:21 - 002894848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
    2018-08-31 16:57 - 2018-08-09 03:21 - 002016768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2018-08-31 16:57 - 2018-08-09 03:21 - 001274368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
    2018-08-31 16:57 - 2018-08-09 03:21 - 000775168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
    2018-08-31 16:57 - 2018-08-09 03:20 - 002401792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll
    2018-08-31 16:57 - 2018-08-09 03:20 - 000423424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
    2018-08-31 16:57 - 2018-08-09 03:20 - 000178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput8.dll
    2018-08-31 16:57 - 2018-08-09 03:20 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput.dll
    2018-08-31 16:57 - 2018-08-09 03:19 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
    2018-08-31 16:57 - 2018-08-09 00:02 - 001035144 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
    2018-08-31 16:57 - 2018-08-09 00:01 - 000777400 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
    2018-08-31 16:57 - 2018-08-08 23:55 - 000230304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
    2018-08-31 16:57 - 2018-08-08 23:54 - 001019016 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
    2018-08-31 16:57 - 2018-08-08 23:54 - 000709824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2018-08-31 16:57 - 2018-08-08 23:54 - 000375704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
    2018-08-31 16:57 - 2018-08-08 23:54 - 000203568 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
    2018-08-31 16:57 - 2018-08-08 23:54 - 000170912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2018-08-31 16:57 - 2018-08-08 23:53 - 002765440 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 001947720 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 001026456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
    2018-08-31 16:57 - 2018-08-08 23:53 - 000932136 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
    2018-08-31 16:57 - 2018-08-08 23:53 - 000714792 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 000482480 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\vertdll.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 000125600 _____ (Microsoft Corporation) C:\Windows\system32\cryptxml.dll
    2018-08-31 16:57 - 2018-08-08 23:30 - 000829856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
    2018-08-31 16:57 - 2018-08-08 23:30 - 000183992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 002253584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 001620880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 001174552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 000581696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 000099208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptxml.dll
    2018-08-31 16:57 - 2018-08-08 23:28 - 003395072 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
    2018-08-31 16:57 - 2018-08-08 23:28 - 001589248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
    2018-08-31 16:57 - 2018-08-08 23:27 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
    2018-08-31 16:57 - 2018-08-08 23:27 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\eShims.dll
    2018-08-31 16:57 - 2018-08-08 23:27 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollCtrl.exe
    2018-08-31 16:57 - 2018-08-08 23:26 - 000990720 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
    2018-08-31 16:57 - 2018-08-08 23:26 - 000572416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
    2018-08-31 16:57 - 2018-08-08 23:26 - 000528384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
    2018-08-31 16:57 - 2018-08-08 23:26 - 000319488 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
    2018-08-31 16:57 - 2018-08-08 23:26 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\TtlsAuth.dll
    2018-08-31 16:57 - 2018-08-08 23:26 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\TtlsCfg.dll
    2018-08-31 16:57 - 2018-08-08 23:26 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 003320320 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000797184 _____ (Microsoft Corporation) C:\Windows\system32\certca.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000460288 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
    2018-08-31 16:57 - 2018-08-08 23:24 - 002368512 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
    2018-08-31 16:57 - 2018-08-08 23:24 - 001535488 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2018-08-31 16:57 - 2018-08-08 23:23 - 003148288 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
    2018-08-31 16:57 - 2018-08-08 23:23 - 002904064 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2018-08-31 16:57 - 2018-08-08 23:23 - 002172928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
    2018-08-31 16:57 - 2018-08-08 23:23 - 000916992 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
    2018-08-31 16:57 - 2018-08-08 23:22 - 004615680 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2018-08-31 16:57 - 2018-08-08 23:22 - 001586176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2018-08-31 16:57 - 2018-08-08 23:22 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
    2018-08-31 16:57 - 2018-08-08 23:22 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
    2018-08-31 16:57 - 2018-08-08 23:21 - 000505344 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
    2018-08-31 16:57 - 2018-08-08 23:13 - 001189376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
    2018-08-31 16:57 - 2018-08-08 23:13 - 000042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollCtrl.exe
    2018-08-31 16:57 - 2018-08-08 23:12 - 000652288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certca.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 002900992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000350208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000178176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsAuth.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsCfg.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000122368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
    2018-08-31 16:57 - 2018-08-08 23:10 - 002893824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
    2018-08-31 16:57 - 2018-08-08 23:10 - 000835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
    2018-08-31 16:57 - 2018-08-08 23:10 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
    2018-08-31 16:57 - 2018-08-08 23:09 - 004191232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2018-08-31 16:57 - 2018-08-08 23:09 - 001466368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2018-08-31 16:57 - 2018-08-08 23:08 - 000195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
    2018-08-31 16:57 - 2018-08-08 22:08 - 000806416 _____ C:\Windows\SysWOW64\locale.nls
    2018-08-31 16:57 - 2018-08-08 22:08 - 000806416 _____ C:\Windows\system32\locale.nls
    2018-08-31 16:57 - 2018-06-08 13:44 - 001121792 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
    2018-08-29 18:37 - 2018-08-29 18:37 - 000000000 ____D C:\Users\lagoi\AppData\Local\Uniden
    2018-08-29 18:35 - 2018-08-29 18:35 - 000002627 _____ C:\Users\Public\Desktop\BCDx36HP_Sentinel.lnk
    2018-08-29 18:35 - 2018-08-29 18:35 - 000000000 ____D C:\ProgramData\Uniden
    2018-08-29 18:35 - 2018-08-29 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniden
    2018-08-29 18:35 - 2018-08-29 18:35 - 000000000 ____D C:\Program Files (x86)\Uniden
    2018-08-29 18:31 - 2018-08-29 18:31 - 000000000 ____D C:\Program Files\Reference Assemblies
    2018-08-29 18:31 - 2018-08-29 18:31 - 000000000 ____D C:\Program Files\MSBuild
    2018-08-29 18:31 - 2018-08-29 18:31 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
    2018-08-29 18:31 - 2018-08-29 18:31 - 000000000 ____D C:\Program Files (x86)\MSBuild
    2018-08-29 18:30 - 2018-03-05 16:07 - 000778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
    2018-08-29 18:30 - 2018-03-05 16:07 - 000103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
    2018-08-29 18:30 - 2018-03-05 16:07 - 000035456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
    2018-08-29 18:30 - 2018-02-14 16:21 - 001166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
    2018-08-29 18:30 - 2018-02-14 16:21 - 000124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2018-08-29 18:30 - 2018-02-14 16:21 - 000035456 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
    2018-08-27 23:26 - 2018-08-27 23:26 - 000675984 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000457512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000386712 _____ (Microsoft Corporation) C:\Windows\system32\vccorlib140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000343192 _____ (Microsoft Corporation) C:\Windows\system32\concrt140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000274072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000248624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\concrt140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000089248 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000087352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000031896 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_1.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000028472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_1.dll
    2018-08-27 19:00 - 2018-08-22 11:13 - 002016600 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6439907.dll
    2018-08-27 19:00 - 2018-08-22 11:13 - 001469144 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6439907.dll
    2018-08-25 00:06 - 2018-08-25 00:06 - 000000000 ____D C:\ProgramData\Twitch
    2018-08-23 23:09 - 2018-07-10 23:52 - 001471384 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
    2018-08-22 17:23 - 2018-09-03 17:43 - 000003048 _____ C:\Windows\System32\Tasks\CCleaner Update
    2018-08-22 17:23 - 2018-08-30 12:44 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
    2018-08-22 17:23 - 2018-08-22 17:23 - 000002870 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
    2018-08-22 17:23 - 2018-08-22 17:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
    2018-08-22 17:23 - 2018-08-22 17:23 - 000000000 ____D C:\Program Files\CCleaner
    2018-08-22 17:22 - 2018-08-22 17:28 - 000000000 ____D C:\Program Files (x86)\Google
    2018-08-22 17:22 - 2018-08-22 17:23 - 000000000 ____D C:\Users\lagoi\AppData\Local\Google
    2018-08-19 12:23 - 2018-08-19 12:23 - 000000000 ____D C:\Users\lagoi\AppData\LocalLow\The Virtual World Web Inc_
    2018-08-19 12:21 - 2018-08-19 12:21 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oasis
    2018-08-19 12:21 - 2018-08-19 12:21 - 000000000 ____D C:\Users\lagoi\AppData\Local\Utherverse Digital Inc
    2018-08-19 09:25 - 2018-09-12 21:17 - 000004166 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{A66D66FD-4C3E-4F0A-8C0F-E297B1A29D53}
    2018-08-18 23:24 - 2018-09-12 17:35 - 000000000 ____D C:\Users\lagoi\AppData\Local\CrashDumps
    2018-08-14 23:05 - 2018-09-04 14:08 - 000000000 ____D C:\Windows\Panther
    2018-08-14 22:07 - 2018-08-14 22:07 - 000000000 _SHDL C:\Documents and Settings
    2018-08-14 22:06 - 2018-09-12 18:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
    2018-08-14 22:06 - 2018-09-12 16:08 - 000000000 ____D C:\Windows\system32\SleepStudy
    2018-08-14 22:06 - 2018-09-03 20:45 - 000404904 _____ C:\Windows\system32\FNTCACHE.DAT
    2018-08-14 22:06 - 2018-08-14 22:06 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
    2018-08-14 22:06 - 2018-08-14 22:06 - 000000000 ____D C:\Windows\ServiceProfiles
    2018-08-14 22:06 - 2018-08-14 20:42 - 000000000 ____D C:\Windows\system32\Drivers\wd
    2018-08-14 21:05 - 2018-08-24 16:26 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\Utherverse
    2018-08-14 21:01 - 2018-09-03 18:34 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\Skype
    2018-08-14 21:01 - 2018-08-31 20:47 - 000001379 _____ C:\Users\Public\Desktop\Skype.lnk
    2018-08-14 21:01 - 2018-08-31 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
    2018-08-14 20:58 - 2018-09-08 18:59 - 000000000 ____D C:\ProgramData\Packages
    2018-08-14 20:51 - 2018-08-14 20:51 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Red Light Center 3D Client
    2018-08-14 20:51 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
    2018-08-14 20:51 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
    2018-08-14 20:51 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
    2018-08-14 20:51 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
    2018-08-14 20:51 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
    2018-08-14 20:51 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
    2018-08-14 20:51 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
    2018-08-14 20:51 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
    2018-08-14 20:51 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
    2018-08-14 20:51 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
    2018-08-14 20:51 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
    2018-08-14 20:51 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
    2018-08-14 20:51 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
    2018-08-14 20:51 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
    2018-08-14 20:51 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
    2018-08-14 20:51 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
    2018-08-14 20:51 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
    2018-08-14 20:51 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
    2018-08-14 20:51 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
    2018-08-14 20:51 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
    2018-08-14 20:51 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
    2018-08-14 20:51 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
    2018-08-14 20:51 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
    2018-08-14 20:51 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
    2018-08-14 20:51 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
    2018-08-14 20:51 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
    2018-08-14 20:51 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
    2018-08-14 20:51 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
    2018-08-14 20:51 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
    2018-08-14 20:51 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
    2018-08-14 20:51 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
    2018-08-14 20:51 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
    2018-08-14 20:51 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
    2018-08-14 20:51 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
    2018-08-14 20:51 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
    2018-08-14 20:51 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
    2018-08-14 20:51 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
    2018-08-14 20:51 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
    2018-08-14 20:51 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
    2018-08-14 20:51 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
    2018-08-14 20:51 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
    2018-08-14 20:51 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
    2018-08-14 20:51 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
    2018-08-14 20:51 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
    2018-08-14 20:51 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
    2018-08-14 20:51 - 2008-10-10 04:52 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
    2018-08-14 20:51 - 2008-10-10 04:52 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
    2018-08-14 20:51 - 2008-10-10 04:52 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
    2018-08-14 20:51 - 2008-10-10 04:52 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
    2018-08-14 20:51 - 2008-10-10 04:52 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
    2018-08-14 20:51 - 2008-10-10 04:52 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
    2018-08-14 20:51 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
    2018-08-14 20:51 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
    2018-08-14 20:51 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
    2018-08-14 20:51 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
    2018-08-14 20:51 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
    2018-08-14 20:51 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
    2018-08-14 20:51 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
    2018-08-14 20:51 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
    2018-08-14 20:51 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
    2018-08-14 20:51 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
    2018-08-14 20:51 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
    2018-08-14 20:51 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
    2018-08-14 20:51 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
    2018-08-14 20:51 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
    2018-08-14 20:51 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
    2018-08-14 20:51 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
    2018-08-14 20:51 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
    2018-08-14 20:51 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
    2018-08-14 20:51 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
    2018-08-14 20:51 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
    2018-08-14 20:51 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
    2018-08-14 20:51 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
    2018-08-14 20:51 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
    2018-08-14 20:51 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
    2018-08-14 20:51 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
    2018-08-14 20:51 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
    2018-08-14 20:51 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
    2018-08-14 20:51 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
    2018-08-14 20:51 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
    2018-08-14 20:51 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
    2018-08-14 20:51 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
    2018-08-14 20:51 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
    2018-08-14 20:51 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
    2018-08-14 20:51 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
    2018-08-14 20:51 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
    2018-08-14 20:51 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
    2018-08-14 20:51 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
    2018-08-14 20:51 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
    2018-08-14 20:51 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
    2018-08-14 20:51 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
    2018-08-14 20:51 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
    2018-08-14 20:51 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
    2018-08-14 20:51 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
    2018-08-14 20:51 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
    2018-08-14 20:51 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
    2018-08-14 20:51 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
    2018-08-14 20:51 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
    2018-08-14 20:51 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
    2018-08-14 20:51 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
    2018-08-14 20:51 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
    2018-08-14 20:51 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
    2018-08-14 20:51 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
    2018-08-14 20:51 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
    2018-08-14 20:51 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
    2018-08-14 20:51 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
    2018-08-14 20:51 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
    2018-08-14 20:51 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
    2018-08-14 20:51 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
    2018-08-14 20:51 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
    2018-08-14 20:51 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
    2018-08-14 20:51 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
    2018-08-14 20:51 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
    2018-08-14 20:51 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
    2018-08-14 20:51 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
    2018-08-14 20:51 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
    2018-08-14 20:51 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
    2018-08-14 20:51 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
    2018-08-14 20:51 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
    2018-08-14 20:51 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
    2018-08-14 20:51 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
    2018-08-14 20:51 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
    2018-08-14 20:51 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
    2018-08-14 20:51 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
    2018-08-14 20:51 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
    2018-08-14 20:51 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
    2018-08-14 20:51 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
    2018-08-14 20:51 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
    2018-08-14 20:51 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
    2018-08-14 20:51 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
    2018-08-14 20:51 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
    2018-08-14 20:51 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
    2018-08-14 20:51 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
    2018-08-14 20:51 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
    2018-08-14 20:51 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
    2018-08-14 20:51 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
    2018-08-14 20:51 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
    2018-08-14 20:51 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
    2018-08-14 20:51 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
    2018-08-14 20:51 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
    2018-08-14 20:51 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
    2018-08-14 20:51 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
    2018-08-14 20:51 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
    2018-08-14 20:51 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
    2018-08-14 20:51 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
    2018-08-14 20:51 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
    2018-08-14 20:51 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
    2018-08-14 20:51 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
    2018-08-14 20:51 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
    2018-08-14 20:51 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
    2018-08-14 20:51 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
    2018-08-14 20:51 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
    2018-08-14 20:51 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
    2018-08-14 20:51 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
    2018-08-14 20:51 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
    2018-08-14 20:51 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
    2018-08-14 20:51 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
    2018-08-14 20:51 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
    2018-08-14 20:51 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
    2018-08-14 20:51 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
    2018-08-14 20:51 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
    2018-08-14 20:51 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
    2018-08-14 20:51 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
    2018-08-14 20:51 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
    2018-08-14 20:51 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
    2018-08-14 20:51 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
    2018-08-14 20:51 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
    2018-08-14 20:49 - 2018-08-14 20:51 - 000000000 ____D C:\Windows\SysWOW64\directx
    2018-08-14 20:49 - 2018-08-14 20:50 - 000000000 ___HD C:\Windows\msdownld.tmp
    2018-08-14 20:48 - 2018-08-14 20:48 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\Macromedia
    2018-08-14 20:48 - 2018-08-14 20:48 - 000000000 ____D C:\Program Files (x86)\Utherverse Digital Inc
    2018-08-14 20:45 - 2018-08-14 20:45 - 000000000 ____D C:\Users\lagoi\AppData\Local\DBG
    2018-08-14 20:42 - 2018-08-14 20:42 - 000000000 ____D C:\Windows\system32\Drivers\RivetNetworks
    2018-08-14 20:42 - 2018-08-14 20:42 - 000000000 ____D C:\ProgramData\RivetNetworks
    2018-08-14 20:41 - 2018-09-12 15:46 - 000000000 ____D C:\Windows\system32\MRT
    2018-08-14 20:41 - 2018-08-14 20:29 - 000563832 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
    2018-08-14 20:40 - 2018-09-12 15:45 - 139184408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2018-08-14 20:36 - 2018-05-20 06:34 - 016592384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
    2018-08-14 20:36 - 2018-05-20 06:23 - 013873152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
    2018-08-14 20:35 - 2018-08-14 21:05 - 000000000 ____D C:\Users\lagoi\AppData\Local\D3DSCache
    2018-08-14 20:35 - 2018-08-03 03:39 - 021389368 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2018-08-14 20:35 - 2018-08-03 03:39 - 000790304 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
    2018-08-14 20:35 - 2018-08-03 03:25 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
    2018-08-14 20:35 - 2018-08-03 03:24 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
    2018-08-14 20:35 - 2018-08-03 03:24 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
    2018-08-14 20:35 - 2018-08-03 03:24 - 000046592 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2018-08-14 20:35 - 2018-08-03 03:20 - 004049408 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
    2018-08-14 20:35 - 2018-08-03 02:45 - 000663128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
    2018-08-14 20:35 - 2018-08-03 02:43 - 020383720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2018-08-14 20:35 - 2018-08-03 02:33 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
    2018-08-14 20:35 - 2018-08-03 02:32 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
    2018-08-14 20:35 - 2018-08-03 02:30 - 000099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
    2018-08-14 20:35 - 2018-08-03 02:27 - 004050432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
    2018-08-14 20:35 - 2018-08-02 22:47 - 000128920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmbus.sys
    2018-08-14 20:35 - 2018-08-02 22:41 - 000061736 _____ (Microsoft Corporation) C:\Windows\system32\hvhostsvc.dll
    2018-08-14 20:35 - 2018-08-02 22:40 - 000566568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
    2018-08-14 20:35 - 2018-08-02 22:40 - 000228136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ucx01000.sys
    2018-08-14 20:35 - 2018-08-02 22:40 - 000072800 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
    2018-08-14 20:35 - 2018-08-02 22:39 - 000692240 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
    2018-08-14 20:35 - 2018-08-02 22:39 - 000114080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
    2018-08-14 20:35 - 2018-08-02 22:39 - 000075160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
    2018-08-14 20:35 - 2018-08-02 22:39 - 000031648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
    2018-08-14 20:35 - 2018-08-02 22:38 - 001285536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
    2018-08-14 20:35 - 2018-08-02 22:38 - 000115640 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
    2018-08-14 20:35 - 2018-08-02 22:27 - 000061032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
    2018-08-14 20:35 - 2018-08-02 22:25 - 000539168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
    2018-08-14 20:35 - 2018-08-02 22:17 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmgid.sys
    2018-08-14 20:35 - 2018-08-02 22:16 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
    2018-08-14 20:35 - 2018-08-02 22:15 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys
    2018-08-14 20:35 - 2018-08-02 22:14 - 000514560 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
    2018-08-14 20:35 - 2018-08-02 22:14 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\WaaSAssessment.dll
    2018-08-14 20:35 - 2018-08-02 22:12 - 000761344 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
    2018-08-14 20:35 - 2018-08-02 22:12 - 000311296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
    2018-08-14 20:35 - 2018-08-02 22:11 - 000983040 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
    2018-08-14 20:35 - 2018-08-02 22:10 - 000015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
    2018-08-14 20:35 - 2018-08-02 22:09 - 001932288 _____ (Microsoft Corporation) C:\Windows\system32\edgeangle.dll
    2018-08-14 20:35 - 2018-08-02 22:09 - 001395200 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
    2018-08-14 20:35 - 2018-08-02 22:09 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
    2018-08-14 20:35 - 2018-08-02 22:08 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2018-08-14 20:35 - 2018-08-02 22:08 - 000602112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
    2018-08-14 20:35 - 2018-08-02 22:08 - 000542208 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2018-08-14 20:35 - 2018-08-02 22:06 - 001000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
    2018-08-14 20:35 - 2018-08-02 22:06 - 000678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
    2018-08-14 20:35 - 2018-08-02 22:05 - 000669696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
    2018-08-14 20:35 - 2018-08-02 22:05 - 000534016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2018-08-14 20:35 - 2018-07-14 19:58 - 000094112 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
    2018-08-14 20:35 - 2018-07-14 19:44 - 006587392 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
    2018-08-14 20:35 - 2018-07-14 19:42 - 008624128 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2018-08-14 20:35 - 2018-07-14 19:42 - 004708864 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
    2018-08-14 20:35 - 2018-07-14 19:41 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.XamlHost.dll
    2018-08-14 20:35 - 2018-07-14 19:41 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll
    2018-08-14 20:35 - 2018-07-14 19:39 - 001605632 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
    2018-08-14 20:35 - 2018-07-14 19:38 - 001180160 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
    2018-08-14 20:35 - 2018-07-14 18:18 - 005657600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
    2018-08-14 20:35 - 2018-07-14 18:15 - 007987712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
    2018-08-14 20:35 - 2018-07-14 18:14 - 000133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.XamlHost.dll
    2018-08-14 20:35 - 2018-07-14 01:42 - 019525632 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
    2018-08-14 20:35 - 2018-07-13 23:23 - 000760888 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
    2018-08-14 20:35 - 2018-07-13 23:22 - 006813744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
    2018-08-14 20:35 - 2018-07-13 23:22 - 001144664 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
    2018-08-14 20:35 - 2018-07-13 23:22 - 000510392 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
    2018-08-14 20:35 - 2018-07-13 23:21 - 000192920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
    2018-08-14 20:35 - 2018-07-13 23:19 - 002535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
    2018-08-14 20:35 - 2018-07-13 23:19 - 001946752 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
    2018-08-14 20:35 - 2018-07-13 23:19 - 000981920 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
    2018-08-14 20:35 - 2018-07-13 23:19 - 000636944 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
    2018-08-14 20:35 - 2018-07-13 23:18 - 002563984 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
    2018-08-14 20:35 - 2018-07-13 23:18 - 002371416 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
    2018-08-14 20:35 - 2018-07-13 23:18 - 000613176 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
    2018-08-14 20:35 - 2018-07-13 23:18 - 000443216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
    2018-08-14 20:35 - 2018-07-13 23:18 - 000376216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
    2018-08-14 20:35 - 2018-07-13 23:17 - 006527056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
    2018-08-14 20:35 - 2018-07-13 23:17 - 002420632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
    2018-08-14 20:35 - 2018-07-13 23:17 - 000743320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
    2018-08-14 20:35 - 2018-07-13 23:16 - 002331576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
    2018-08-14 20:35 - 2018-07-13 23:16 - 001143096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
    2018-08-14 20:35 - 2018-07-13 23:16 - 000506728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
    2018-08-14 20:35 - 2018-07-13 23:15 - 001559368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
    2018-08-14 20:35 - 2018-07-13 23:01 - 006647296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
    2018-08-14 20:35 - 2018-07-13 22:59 - 009084928 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
    2018-08-14 20:35 - 2018-07-13 22:59 - 005883392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
    2018-08-14 20:35 - 2018-07-13 22:59 - 003553280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
    2018-08-14 20:35 - 2018-07-13 22:58 - 000172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enrollmentapi.dll
    2018-08-14 20:35 - 2018-07-13 22:58 - 000094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
    2018-08-14 20:35 - 2018-07-13 22:58 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
    2018-08-14 20:35 - 2018-07-13 22:57 - 007057920 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
    2018-08-14 20:35 - 2018-07-13 22:57 - 004331008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
    2018-08-14 20:35 - 2018-07-13 22:57 - 001295360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
    2018-08-14 20:35 - 2018-07-13 22:57 - 000391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 004559872 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 002697216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Controls.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 002449408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 001986560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
     
    jimbo0706,
    #2


  3. to hide this advert.

  4. 2018/09/13
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    2018-08-14 20:35 - 2018-07-13 22:56 - 001703936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Controls.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 001558016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 000365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 000257536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WiFiDisplay.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll
    2018-08-14 20:35 - 2018-07-13 22:56 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\WFDSConMgr.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 001124352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000993792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
    2018-08-14 20:35 - 2018-07-13 22:55 - 000344576 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000282624 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
    2018-08-14 20:35 - 2018-07-13 22:55 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreCommonProxyStub.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000204288 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\datamarketsvc.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
    2018-08-14 20:35 - 2018-07-13 22:55 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\EASPolicyManagerBrokerHost.exe
    2018-08-14 20:35 - 2018-07-13 22:55 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 002825728 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 001627136 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 001537024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 001307648 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000729088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000444416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000409088 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000358400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
    2018-08-14 20:35 - 2018-07-13 22:54 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\PushToInstall.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
    2018-08-14 20:35 - 2018-07-13 22:54 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\EasPolicyManagerBrokerPS.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 004770816 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 003381248 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 001825792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 001668096 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 000713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingOnlineServices.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 000705024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 000681984 _____ (Microsoft Corporation) C:\Windows\system32\WFDSConMgrSvc.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 000566272 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 000450560 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreCommonProxyStub.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
    2018-08-14 20:35 - 2018-07-13 22:53 - 000220160 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
    2018-08-14 20:35 - 2018-07-13 22:52 - 000972800 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
    2018-08-14 20:35 - 2018-07-13 22:52 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
    2018-08-14 20:35 - 2018-07-13 22:52 - 000755712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
    2018-08-14 20:35 - 2018-07-13 22:52 - 000506880 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
    2018-08-14 20:35 - 2018-07-13 22:52 - 000311296 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
    2018-08-14 20:35 - 2018-07-13 22:51 - 003376640 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
    2018-08-14 20:35 - 2018-07-13 22:51 - 001747968 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
    2018-08-14 20:35 - 2018-07-13 22:51 - 001304064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
    2018-08-14 20:35 - 2018-07-13 22:51 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
    2018-08-14 20:35 - 2018-07-13 22:51 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 001773056 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 001457664 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\lpasvc.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 001225216 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 000949760 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 000943616 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 000932352 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 000884224 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
    2018-08-14 20:35 - 2018-07-13 22:50 - 000401920 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
    2018-08-14 20:35 - 2018-07-13 22:49 - 001069568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
    2018-08-14 20:35 - 2018-07-13 22:49 - 000884736 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
    2018-08-14 20:35 - 2018-07-06 09:20 - 002868640 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
    2018-08-14 20:35 - 2018-07-06 09:20 - 001610648 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
    2018-08-14 20:35 - 2018-07-06 09:20 - 000792472 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
    2018-08-14 20:35 - 2018-07-06 09:20 - 000689560 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
    2018-08-14 20:35 - 2018-07-06 09:20 - 000612248 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
    2018-08-14 20:35 - 2018-07-06 09:20 - 000451992 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
    2018-08-14 20:35 - 2018-07-06 09:20 - 000309664 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
    2018-08-14 20:35 - 2018-07-06 09:20 - 000144792 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
    2018-08-14 20:35 - 2018-07-06 09:20 - 000070040 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
    2018-08-14 20:35 - 2018-07-06 09:17 - 003932672 _____ (Microsoft Corporation) C:\Windows\explorer.exe
    2018-08-14 20:35 - 2018-07-06 08:53 - 000409088 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
    2018-08-14 20:35 - 2018-07-06 08:53 - 000386048 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
    2018-08-14 20:35 - 2018-07-06 08:52 - 000677376 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
    2018-08-14 20:35 - 2018-07-06 07:06 - 003611368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
    2018-08-14 20:35 - 2018-07-06 06:53 - 000347136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
    2018-08-14 20:35 - 2018-07-06 02:32 - 000480672 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
    2018-08-14 20:35 - 2018-07-06 02:31 - 000462752 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
    2018-08-14 20:35 - 2018-07-06 02:31 - 000035232 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
    2018-08-14 20:35 - 2018-07-06 02:27 - 000057440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.ShellCommon.Broker.dll
    2018-08-14 20:35 - 2018-07-06 02:26 - 001148800 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
    2018-08-14 20:35 - 2018-07-06 02:26 - 000766608 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
    2018-08-14 20:35 - 2018-07-06 02:25 - 002571728 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
    2018-08-14 20:35 - 2018-07-06 02:25 - 000335776 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
    2018-08-14 20:35 - 2018-07-06 02:25 - 000267680 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
    2018-08-14 20:35 - 2018-07-06 02:25 - 000139672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2018-08-14 20:35 - 2018-07-06 02:24 - 000380824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
    2018-08-14 20:35 - 2018-07-06 02:14 - 001981896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
    2018-08-14 20:35 - 2018-07-06 02:14 - 000988640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
    2018-08-14 20:35 - 2018-07-06 02:14 - 000573904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
    2018-08-14 20:35 - 2018-07-06 02:01 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll
    2018-08-14 20:35 - 2018-07-06 02:01 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvcProxy.dll
    2018-08-14 20:35 - 2018-07-06 02:00 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll
    2018-08-14 20:35 - 2018-07-06 02:00 - 000094720 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll
    2018-08-14 20:35 - 2018-07-06 02:00 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll
    2018-08-14 20:35 - 2018-07-06 02:00 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\mapstoasttask.dll
    2018-08-14 20:35 - 2018-07-06 02:00 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\MapsTelemetry.dll
    2018-08-14 20:35 - 2018-07-06 02:00 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\nativemap.dll
    2018-08-14 20:35 - 2018-07-06 01:59 - 001153536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
    2018-08-14 20:35 - 2018-07-06 01:59 - 000334336 _____ (Microsoft Corporation) C:\Windows\system32\NmaDirect.dll
    2018-08-14 20:35 - 2018-07-06 01:59 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Geolocation.dll
    2018-08-14 20:35 - 2018-07-06 01:59 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll
    2018-08-14 20:35 - 2018-07-06 01:59 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\tokenbinding.dll
    2018-08-14 20:35 - 2018-07-06 01:59 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll
    2018-08-14 20:35 - 2018-07-06 01:58 - 000670720 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
    2018-08-14 20:35 - 2018-07-06 01:58 - 000236544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
    2018-08-14 20:35 - 2018-07-06 01:58 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Cortana.dll
    2018-08-14 20:35 - 2018-07-06 01:58 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\CredProv2faHelper.dll
    2018-08-14 20:35 - 2018-07-06 01:58 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
    2018-08-14 20:35 - 2018-07-06 01:58 - 000035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tokenbinding.dll
    2018-08-14 20:35 - 2018-07-06 01:57 - 000839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
    2018-08-14 20:35 - 2018-07-06 01:57 - 000676864 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Devices.dll
    2018-08-14 20:35 - 2018-07-06 01:57 - 000473088 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2018-08-14 20:35 - 2018-07-06 01:57 - 000262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NmaDirect.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 001817600 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 001567744 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 000814592 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 000784896 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 000533504 _____ (Microsoft Corporation) C:\Windows\system32\QuietHours.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 000508416 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 000365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 000327680 _____ (Microsoft Corporation) C:\Windows\system32\BioCredProv.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 000181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Core.dll
    2018-08-14 20:35 - 2018-07-06 01:56 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProv2faHelper.dll
    2018-08-14 20:35 - 2018-07-06 01:55 - 001264640 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
    2018-08-14 20:35 - 2018-07-06 01:55 - 000415232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2018-08-14 20:35 - 2018-07-06 01:54 - 001214976 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
    2018-08-14 20:35 - 2018-07-06 01:54 - 000978944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
    2018-08-14 20:35 - 2018-07-06 01:54 - 000899072 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2018-08-14 20:35 - 2018-07-06 01:54 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
    2018-08-14 20:35 - 2018-07-06 01:54 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
    2018-08-14 20:35 - 2018-07-06 01:53 - 000778240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2018-08-14 20:35 - 2018-06-15 12:55 - 000542888 _____ C:\Windows\system32\FaceProcessorCore.dll
    2018-08-14 20:35 - 2018-06-15 12:50 - 001376576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
    2018-08-14 20:35 - 2018-06-15 12:48 - 002395056 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
    2018-08-14 20:35 - 2018-06-15 12:48 - 000338352 _____ (Microsoft Corporation) C:\Windows\system32\AudioSrvPolicyManager.dll
    2018-08-14 20:35 - 2018-06-15 12:34 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\DsmUserTask.exe
    2018-08-14 20:35 - 2018-06-15 12:34 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll
    2018-08-14 20:35 - 2018-06-15 12:33 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
    2018-08-14 20:35 - 2018-06-15 12:33 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManagerAPI.dll
    2018-08-14 20:35 - 2018-06-15 12:33 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
    2018-08-14 20:35 - 2018-06-15 12:32 - 000301568 _____ (Microsoft Corporation) C:\Windows\system32\AcLayers.dll
    2018-08-14 20:35 - 2018-06-15 12:32 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
    2018-08-14 20:35 - 2018-06-15 12:31 - 000907776 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
    2018-08-14 20:35 - 2018-06-15 12:30 - 001308672 _____ C:\Windows\system32\FaceProcessor.dll
    2018-08-14 20:35 - 2018-06-15 12:30 - 001254400 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
    2018-08-14 20:35 - 2018-06-15 12:30 - 001054720 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
    2018-08-14 20:35 - 2018-06-15 12:30 - 000878592 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
    2018-08-14 20:35 - 2018-06-15 12:29 - 000932352 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
    2018-08-14 20:35 - 2018-06-15 12:29 - 000740864 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
    2018-08-14 20:35 - 2018-06-15 12:29 - 000248832 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
    2018-08-14 20:35 - 2018-06-15 12:29 - 000103424 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSoftwareInstallationClient.dll
    2018-08-14 20:35 - 2018-06-15 12:28 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
    2018-08-14 20:35 - 2018-06-15 12:28 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
    2018-08-14 20:35 - 2018-06-15 10:22 - 001026896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
    2018-08-14 20:35 - 2018-06-15 10:16 - 002206528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
    2018-08-14 20:35 - 2018-06-15 10:06 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll
    2018-08-14 20:35 - 2018-06-15 10:04 - 000851968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
    2018-08-14 20:35 - 2018-06-15 10:04 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcLayers.dll
    2018-08-14 20:35 - 2018-06-15 10:03 - 000831488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe
    2018-08-14 20:35 - 2018-06-15 10:02 - 000704000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
    2018-08-14 20:35 - 2018-06-15 10:01 - 000228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
    2018-08-14 20:35 - 2018-06-15 08:23 - 000788992 _____ (Microsoft Corporation) C:\Windows\system32\DHolographicDisplay.dll
    2018-08-14 20:35 - 2018-06-15 02:11 - 000611232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
    2018-08-14 20:35 - 2018-06-15 02:10 - 000048544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
    2018-08-14 20:35 - 2018-06-15 02:03 - 000083360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
    2018-08-14 20:35 - 2018-06-15 00:21 - 001213368 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
    2018-08-14 20:35 - 2018-06-15 00:19 - 000116632 _____ (Microsoft Corporation) C:\Windows\system32\DTUHandler.exe
    2018-08-14 20:35 - 2018-06-15 00:19 - 000093600 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
    2018-08-14 20:35 - 2018-06-15 00:18 - 000228768 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
    2018-08-14 20:35 - 2018-06-15 00:16 - 000562080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
    2018-08-14 20:35 - 2018-06-15 00:16 - 000433560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
    2018-08-14 20:35 - 2018-06-15 00:15 - 000753152 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
    2018-08-14 20:35 - 2018-06-15 00:13 - 000324000 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
    2018-08-14 20:35 - 2018-06-15 00:12 - 000661152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
    2018-08-14 20:35 - 2018-06-15 00:12 - 000491304 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2018-08-14 20:35 - 2018-06-15 00:12 - 000260896 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2018-08-14 20:35 - 2018-06-15 00:12 - 000118872 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
    2018-08-14 20:35 - 2018-06-15 00:10 - 001934400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
    2018-08-14 20:35 - 2018-06-15 00:10 - 000717208 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
    2018-08-14 20:35 - 2018-06-15 00:10 - 000326024 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
    2018-08-14 20:35 - 2018-06-15 00:09 - 002546592 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
    2018-08-14 20:35 - 2018-06-15 00:09 - 001798552 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
    2018-08-14 20:35 - 2018-06-15 00:09 - 001742272 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
    2018-08-14 20:35 - 2018-06-15 00:09 - 001659296 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
    2018-08-14 20:35 - 2018-06-15 00:09 - 001209800 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
    2018-08-14 20:35 - 2018-06-15 00:09 - 001112600 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
    2018-08-14 20:35 - 2018-06-15 00:09 - 000594128 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
    2018-08-14 20:35 - 2018-06-15 00:09 - 000247984 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
    2018-08-14 20:35 - 2018-06-15 00:08 - 004403304 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
    2018-08-14 20:35 - 2018-06-15 00:08 - 002062488 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
    2018-08-14 20:35 - 2018-06-15 00:08 - 001921944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
    2018-08-14 20:35 - 2018-06-15 00:08 - 001784584 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
    2018-08-14 20:35 - 2018-06-15 00:08 - 001288840 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
    2018-08-14 20:35 - 2018-06-15 00:08 - 001150408 _____ (Microsoft Corporation) C:\Windows\system32\MSVP9DEC.dll
    2018-08-14 20:35 - 2018-06-15 00:08 - 000945568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
    2018-08-14 20:35 - 2018-06-15 00:08 - 000898760 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
    2018-08-14 20:35 - 2018-06-15 00:08 - 000642088 _____ (Microsoft Corporation) C:\Windows\system32\msvcp_win.dll
    2018-08-14 20:35 - 2018-06-15 00:08 - 000500552 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
    2018-08-14 20:35 - 2018-06-15 00:08 - 000413816 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
    2018-08-14 20:35 - 2018-06-15 00:08 - 000072768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WindowsTrustedRT.sys
    2018-08-14 20:35 - 2018-06-15 00:07 - 001611584 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
    2018-08-14 20:35 - 2018-06-15 00:05 - 000550608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2018-08-14 20:35 - 2018-06-15 00:04 - 001462824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
    2018-08-14 20:35 - 2018-06-15 00:04 - 001397192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVP9DEC.dll
    2018-08-14 20:35 - 2018-06-15 00:04 - 001251736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll
    2018-08-14 20:35 - 2018-06-15 00:04 - 000719552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
    2018-08-14 20:35 - 2018-06-15 00:04 - 000281080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
    2018-08-14 20:35 - 2018-06-15 00:04 - 000105376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 004788504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 002163184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 001805752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 001710240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 001380192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 001020160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 001011968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 000770152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 000472136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 000356960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
    2018-08-14 20:35 - 2018-06-15 00:03 - 000232488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
    2018-08-14 20:35 - 2018-06-15 00:03 - 000129192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2018-08-14 20:35 - 2018-06-14 23:49 - 002962944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
    2018-08-14 20:35 - 2018-06-14 23:48 - 000311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
    2018-08-14 20:35 - 2018-06-14 23:47 - 000622080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
     
    jimbo0706,
    #3
  5. 2018/09/13
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    2018-08-14 20:35 - 2018-06-14 23:47 - 000515072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
    2018-08-14 20:35 - 2018-06-14 23:47 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
    2018-08-14 20:35 - 2018-06-14 23:46 - 004706816 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
    2018-08-14 20:35 - 2018-06-14 23:46 - 001356800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
    2018-08-14 20:35 - 2018-06-14 23:46 - 000593408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
    2018-08-14 20:35 - 2018-06-14 23:46 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
    2018-08-14 20:35 - 2018-06-14 23:46 - 000224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovhost.dll
    2018-08-14 20:35 - 2018-06-14 23:46 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
    2018-08-14 20:35 - 2018-06-14 23:45 - 002548736 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
    2018-08-14 20:35 - 2018-06-14 23:45 - 000871424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
    2018-08-14 20:35 - 2018-06-14 23:45 - 000740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
    2018-08-14 20:35 - 2018-06-14 23:45 - 000380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
    2018-08-14 20:35 - 2018-06-14 23:45 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
    2018-08-14 20:35 - 2018-06-14 23:45 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\DTUHandlerPS.dll
    2018-08-14 20:35 - 2018-06-14 23:44 - 001342976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
    2018-08-14 20:35 - 2018-06-14 23:44 - 000873472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
    2018-08-14 20:35 - 2018-06-14 23:44 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xboxgip.sys
    2018-08-14 20:35 - 2018-06-14 23:44 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
    2018-08-14 20:35 - 2018-06-14 23:44 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
    2018-08-14 20:35 - 2018-06-14 23:44 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\updatecsp.dll
    2018-08-14 20:35 - 2018-06-14 23:44 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
    2018-08-14 20:35 - 2018-06-14 23:44 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cellulardatacapabilityhandler.dll
    2018-08-14 20:35 - 2018-06-14 23:43 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
    2018-08-14 20:35 - 2018-06-14 23:43 - 001110528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
    2018-08-14 20:35 - 2018-06-14 23:43 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
    2018-08-14 20:35 - 2018-06-14 23:43 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
    2018-08-14 20:35 - 2018-06-14 23:43 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll
    2018-08-14 20:35 - 2018-06-14 23:43 - 000191488 _____ (Microsoft Corporation) C:\Windows\system32\VideoHandlers.dll
    2018-08-14 20:35 - 2018-06-14 23:43 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
    2018-08-14 20:35 - 2018-06-14 23:43 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
    2018-08-14 20:35 - 2018-06-14 23:42 - 000978432 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
    2018-08-14 20:35 - 2018-06-14 23:42 - 000558592 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
    2018-08-14 20:35 - 2018-06-14 23:42 - 000431104 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
    2018-08-14 20:35 - 2018-06-14 23:42 - 000386048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
    2018-08-14 20:35 - 2018-06-14 23:42 - 000287232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
    2018-08-14 20:35 - 2018-06-14 23:42 - 000273920 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
    2018-08-14 20:35 - 2018-06-14 23:42 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
    2018-08-14 20:35 - 2018-06-14 23:42 - 000216064 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll
    2018-08-14 20:35 - 2018-06-14 23:42 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
    2018-08-14 20:35 - 2018-06-14 23:42 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
    2018-08-14 20:35 - 2018-06-14 23:41 - 001768448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
    2018-08-14 20:35 - 2018-06-14 23:41 - 001724928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
    2018-08-14 20:35 - 2018-06-14 23:41 - 000953856 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
    2018-08-14 20:35 - 2018-06-14 23:41 - 000811520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
    2018-08-14 20:35 - 2018-06-14 23:41 - 000625152 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
    2018-08-14 20:35 - 2018-06-14 23:41 - 000270336 _____ (Microsoft Corporation) C:\Windows\system32\credprovhost.dll
    2018-08-14 20:35 - 2018-06-14 23:41 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
    2018-08-14 20:35 - 2018-06-14 23:41 - 000265728 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
    2018-08-14 20:35 - 2018-06-14 23:41 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
    2018-08-14 20:35 - 2018-06-14 23:40 - 001487360 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
    2018-08-14 20:35 - 2018-06-14 23:40 - 000827392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
    2018-08-14 20:35 - 2018-06-14 23:40 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
    2018-08-14 20:35 - 2018-06-14 23:40 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
    2018-08-14 20:35 - 2018-06-14 23:39 - 002583552 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
    2018-08-14 20:35 - 2018-06-14 23:39 - 000847360 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
    2018-08-14 20:35 - 2018-06-14 23:39 - 000684544 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
    2018-08-14 20:35 - 2018-06-14 23:38 - 001581568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
    2018-08-14 20:35 - 2018-06-14 23:38 - 001305088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
    2018-08-14 20:35 - 2018-06-14 23:38 - 001070080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
    2018-08-14 20:35 - 2018-06-14 23:38 - 001036288 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
    2018-08-14 20:35 - 2018-06-14 23:38 - 000910848 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
    2018-08-14 20:35 - 2018-06-14 23:37 - 000883712 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
    2018-08-14 20:35 - 2018-06-14 23:36 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
    2018-08-14 20:35 - 2018-06-08 14:07 - 000506184 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
    2018-08-14 20:35 - 2018-06-08 14:02 - 000661160 _____ (Microsoft Corporation) C:\Windows\system32\GenValObj.exe
    2018-08-14 20:35 - 2018-06-08 14:01 - 001046944 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
    2018-08-14 20:35 - 2018-06-08 13:47 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
    2018-08-14 20:35 - 2018-06-08 13:46 - 000584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
    2018-08-14 20:35 - 2018-06-08 13:45 - 004392448 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
    2018-08-14 20:35 - 2018-06-08 13:45 - 001560576 _____ (Microsoft Corporation) C:\Windows\system32\msdt.exe
    2018-08-14 20:35 - 2018-06-08 13:45 - 000808960 _____ C:\Windows\system32\MBR2GPT.EXE
    2018-08-14 20:35 - 2018-06-08 13:44 - 000625152 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
    2018-08-14 20:35 - 2018-06-08 13:44 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\wlidcredprov.dll
    2018-08-14 20:35 - 2018-06-08 13:43 - 003640832 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
    2018-08-14 20:35 - 2018-06-08 13:43 - 002922496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
    2018-08-14 20:35 - 2018-06-08 13:43 - 001719808 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
    2018-08-14 20:35 - 2018-06-08 13:43 - 001659904 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
    2018-08-14 20:35 - 2018-06-08 13:43 - 001543680 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
    2018-08-14 20:35 - 2018-06-08 13:42 - 003999232 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
    2018-08-14 20:35 - 2018-06-08 13:42 - 000503296 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
    2018-08-14 20:35 - 2018-06-08 13:41 - 002019840 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
    2018-08-14 20:35 - 2018-06-08 13:41 - 001180672 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
    2018-08-14 20:35 - 2018-06-08 13:41 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
    2018-08-14 20:35 - 2018-06-08 13:41 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
    2018-08-14 20:35 - 2018-06-08 13:40 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
    2018-08-14 20:35 - 2018-06-08 11:58 - 000917408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
    2018-08-14 20:35 - 2018-06-08 11:50 - 001508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdt.exe
    2018-08-14 20:35 - 2018-06-08 11:47 - 003492864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
    2018-08-14 20:35 - 2018-06-08 11:47 - 001462784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
    2018-08-14 20:35 - 2018-06-08 11:47 - 001032704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
    2018-08-14 20:35 - 2018-06-08 11:47 - 000231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
    2018-08-14 20:35 - 2018-06-08 11:46 - 003444224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
    2018-08-14 20:35 - 2018-06-08 11:46 - 000908288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
    2018-08-14 20:35 - 2018-06-08 11:06 - 000976384 _____ (Microsoft Corporation) C:\Windows\system32\Spectrum.exe
    2018-08-14 20:35 - 2018-06-08 11:05 - 000944640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
    2018-08-14 20:35 - 2018-06-08 09:00 - 000658432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
    2018-08-14 20:35 - 2018-06-08 05:38 - 005821544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
    2018-08-14 20:35 - 2018-06-08 05:37 - 002417840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
    2018-08-14 20:35 - 2018-06-08 05:35 - 001613200 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
    2018-08-14 20:35 - 2018-06-08 05:35 - 000613144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
    2018-08-14 20:35 - 2018-06-08 05:34 - 001299056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
    2018-08-14 20:35 - 2018-06-08 05:34 - 000748512 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
    2018-08-14 20:35 - 2018-06-08 05:31 - 007900984 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2018-08-14 20:35 - 2018-06-08 05:31 - 003180176 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
    2018-08-14 20:35 - 2018-06-08 05:31 - 000029600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\uefi.sys
    2018-08-14 20:35 - 2018-06-08 05:30 - 000705440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
    2018-08-14 20:35 - 2018-06-08 04:30 - 003296896 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
    2018-08-14 20:35 - 2018-06-08 04:30 - 001363632 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
    2018-08-14 20:35 - 2018-06-08 04:30 - 001017080 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
    2018-08-14 20:35 - 2018-06-08 04:30 - 000723360 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
    2018-08-14 20:35 - 2018-06-08 04:30 - 000527264 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
    2018-08-14 20:35 - 2018-06-08 04:30 - 000194456 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll
    2018-08-14 20:35 - 2018-06-08 04:30 - 000137568 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 004970360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 003283408 _____ (Microsoft Corporation) C:\Windows\system32\CoreUIComponents.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 002590400 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
    2018-08-14 20:35 - 2018-06-08 04:29 - 001792808 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 001364184 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 001190152 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 000678840 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 000659096 _____ (Microsoft Corporation) C:\Windows\system32\StateRepository.Core.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 000416144 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 000375712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
    2018-08-14 20:35 - 2018-06-08 04:29 - 000313592 _____ (Microsoft Corporation) C:\Windows\system32\mfsensorgroup.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 000164768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
    2018-08-14 20:35 - 2018-06-08 04:29 - 000084288 _____ (Microsoft Corporation) C:\Windows\system32\LanguageOverlayUtil.dll
    2018-08-14 20:35 - 2018-06-08 04:29 - 000057960 _____ (Microsoft Corporation) C:\Windows\system32\kernel.appcore.dll
    2018-08-14 20:35 - 2018-06-08 04:12 - 000861616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
    2018-08-14 20:35 - 2018-06-08 04:12 - 000786176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
    2018-08-14 20:35 - 2018-06-08 04:10 - 002479272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
    2018-08-14 20:35 - 2018-06-08 04:10 - 002307336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
    2018-08-14 20:35 - 2018-06-08 04:10 - 000880152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
    2018-08-14 20:35 - 2018-06-08 04:10 - 000457152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
    2018-08-14 20:35 - 2018-06-08 04:10 - 000097176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
    2018-08-14 20:35 - 2018-06-08 04:09 - 004469832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
    2018-08-14 20:35 - 2018-06-08 04:09 - 002486992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreUIComponents.dll
    2018-08-14 20:35 - 2018-06-08 04:09 - 001584128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
    2018-08-14 20:35 - 2018-06-08 04:09 - 001077504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
    2018-08-14 20:35 - 2018-06-08 04:09 - 000607648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
    2018-08-14 20:35 - 2018-06-08 04:09 - 000568720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll
    2018-08-14 20:35 - 2018-06-08 04:09 - 000553248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
    2018-08-14 20:35 - 2018-06-08 04:09 - 000064648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LanguageOverlayUtil.dll
    2018-08-14 20:35 - 2018-06-08 04:09 - 000050208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel.appcore.dll
    2018-08-14 20:35 - 2018-06-08 04:03 - 000906752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.PhoneNumberFormatting.dll
    2018-08-14 20:35 - 2018-06-08 04:03 - 000038400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryCore.dll
    2018-08-14 20:35 - 2018-06-08 04:03 - 000032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys
    2018-08-14 20:35 - 2018-06-08 04:02 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
    2018-08-14 20:35 - 2018-06-08 04:02 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\edpnotify.exe
    2018-08-14 20:35 - 2018-06-08 04:02 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
    2018-08-14 20:35 - 2018-06-08 04:01 - 000342528 _____ (Microsoft Corporation) C:\Windows\system32\browserexport.exe
    2018-08-14 20:35 - 2018-06-08 04:01 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
    2018-08-14 20:35 - 2018-06-08 04:01 - 000294912 _____ (Microsoft Corporation) C:\Windows\system32\TDLMigration.dll
    2018-08-14 20:35 - 2018-06-08 04:01 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerCsp.dll
    2018-08-14 20:35 - 2018-06-08 04:01 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
    2018-08-14 20:35 - 2018-06-08 04:01 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
    2018-08-14 20:35 - 2018-06-08 04:00 - 001285120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
    2018-08-14 20:35 - 2018-06-08 04:00 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\credprovs.dll
    2018-08-14 20:35 - 2018-06-08 04:00 - 000275456 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe
    2018-08-14 20:35 - 2018-06-08 04:00 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
    2018-08-14 20:35 - 2018-06-08 04:00 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
    2018-08-14 20:35 - 2018-06-08 03:59 - 006032384 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
    2018-08-14 20:35 - 2018-06-08 03:59 - 001318400 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
    2018-08-14 20:35 - 2018-06-08 03:59 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
    2018-08-14 20:35 - 2018-06-08 03:59 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
    2018-08-14 20:35 - 2018-06-08 03:59 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryUpgrade.dll
    2018-08-14 20:35 - 2018-06-08 03:59 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
    2018-08-14 20:35 - 2018-06-08 03:58 - 001676800 _____ (Microsoft Corporation) C:\Windows\system32\CoreShell.dll
    2018-08-14 20:35 - 2018-06-08 03:58 - 000781824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
    2018-08-14 20:35 - 2018-06-08 03:58 - 000239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FSClient.dll
    2018-08-14 20:35 - 2018-06-08 03:58 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
    2018-08-14 20:35 - 2018-06-08 03:57 - 003348992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
    2018-08-14 20:35 - 2018-06-08 03:57 - 000483328 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
    2018-08-14 20:35 - 2018-06-08 03:57 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
    2018-08-14 20:35 - 2018-06-08 03:57 - 000150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryUpgrade.dll
    2018-08-14 20:35 - 2018-06-08 03:57 - 000038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
    2018-08-14 20:35 - 2018-06-08 03:56 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
    2018-08-14 20:35 - 2018-06-08 03:56 - 003293696 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
    2018-08-14 20:35 - 2018-06-08 03:56 - 002364928 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
    2018-08-14 20:35 - 2018-06-08 03:56 - 000908800 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
    2018-08-14 20:35 - 2018-06-08 03:56 - 000871424 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.BackgroundMediaPlayback.dll
    2018-08-14 20:35 - 2018-06-08 03:56 - 000869376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
    2018-08-14 20:35 - 2018-06-08 03:56 - 000858112 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
    2018-08-14 20:35 - 2018-06-08 03:56 - 000715776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
    2018-08-14 20:35 - 2018-06-08 03:56 - 000264704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovs.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 002248192 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 002061824 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 001242112 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 001192448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 001171968 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 001160192 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 000849408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.MediaPlayer.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 000778752 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
    2018-08-14 20:35 - 2018-06-08 03:55 - 000667648 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 000652800 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
    2018-08-14 20:35 - 2018-06-08 03:55 - 000630784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 002789376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 001348096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 001128448 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 000950272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 000857088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
    2018-08-14 20:35 - 2018-06-08 03:54 - 000842240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 000729088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 000646656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 000593408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
    2018-08-14 20:35 - 2018-06-08 03:54 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAC3ENC.DLL
    2018-08-14 20:35 - 2018-06-08 03:53 - 001675264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
    2018-08-14 20:35 - 2018-06-08 03:53 - 000648192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
    2018-08-14 20:35 - 2018-06-08 03:53 - 000528384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
    2018-08-14 20:35 - 2018-06-06 13:57 - 003733320 _____ C:\Windows\system32\Windows.Mirage.dll
    2018-08-14 20:35 - 2018-06-05 23:20 - 002841312 _____ C:\Windows\SysWOW64\Windows.Mirage.dll
    2018-08-14 20:35 - 2018-06-01 00:18 - 000058524 _____ C:\Windows\system32\srms.dat
    2018-08-14 20:35 - 2018-05-20 14:42 - 001649760 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
    2018-08-14 20:35 - 2018-05-20 14:26 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
    2018-08-14 20:35 - 2018-05-20 14:23 - 000947712 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
    2018-08-14 20:35 - 2018-05-20 14:23 - 000899072 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
    2018-08-14 20:35 - 2018-05-20 14:22 - 001665024 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
    2018-08-14 20:35 - 2018-05-20 14:22 - 001292288 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
    2018-08-14 20:35 - 2018-05-20 14:22 - 000941056 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
    2018-08-14 20:35 - 2018-05-20 14:22 - 000804352 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
    2018-08-14 20:35 - 2018-05-20 13:14 - 001490144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
     
    jimbo0706,
    #4
  6. 2018/09/13
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    2018-08-14 20:35 - 2018-05-20 13:02 - 000461312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasplap.dll
    2018-08-14 20:35 - 2018-05-20 13:00 - 000864768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
    2018-08-14 20:35 - 2018-05-20 12:59 - 000863232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
    2018-08-14 20:35 - 2018-05-20 12:59 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
    2018-08-14 20:35 - 2018-05-20 11:34 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\HoloShellRuntime.dll
    2018-08-14 20:35 - 2018-05-20 09:54 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HoloShellRuntime.dll
    2018-08-14 20:35 - 2018-05-20 07:33 - 000105368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
    2018-08-14 20:35 - 2018-05-20 06:53 - 002178136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
    2018-08-14 20:35 - 2018-05-20 06:53 - 001017088 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
    2018-08-14 20:35 - 2018-05-20 06:53 - 001012408 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
    2018-08-14 20:35 - 2018-05-20 06:53 - 000792984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
    2018-08-14 20:35 - 2018-05-20 06:53 - 000131232 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
    2018-08-14 20:35 - 2018-05-20 06:53 - 000088472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
    2018-08-14 20:35 - 2018-05-20 06:52 - 000735560 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
    2018-08-14 20:35 - 2018-05-20 06:52 - 000413080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
    2018-08-14 20:35 - 2018-05-20 06:52 - 000347704 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
    2018-08-14 20:35 - 2018-05-20 06:52 - 000130456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvsocket.sys
    2018-08-14 20:35 - 2018-05-20 06:52 - 000089984 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
    2018-08-14 20:35 - 2018-05-20 06:34 - 000861096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
    2018-08-14 20:35 - 2018-05-20 06:33 - 001665920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
    2018-08-14 20:35 - 2018-05-20 06:33 - 000101288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
    2018-08-14 20:35 - 2018-05-20 06:32 - 001034096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
    2018-08-14 20:35 - 2018-05-20 06:32 - 000560488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
    2018-08-14 20:35 - 2018-05-20 06:32 - 000286200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
    2018-08-14 20:35 - 2018-05-20 06:32 - 000077040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
    2018-08-14 20:35 - 2018-05-20 06:31 - 001456640 _____ (Microsoft Corporation) C:\Windows\system32\WpcDesktopMonSvc.dll
    2018-08-14 20:35 - 2018-05-20 06:28 - 000111616 _____ (Microsoft Corporation) C:\Windows\system32\AppHostRegistrationVerifier.exe
    2018-08-14 20:35 - 2018-05-20 06:27 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\ApiSetHost.AppExecutionAlias.dll
    2018-08-14 20:35 - 2018-05-20 06:26 - 000356352 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
    2018-08-14 20:35 - 2018-05-20 06:26 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
    2018-08-14 20:35 - 2018-05-20 06:26 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUser.dll
    2018-08-14 20:35 - 2018-05-20 06:26 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\MSHEIF.dll
    2018-08-14 20:35 - 2018-05-20 06:25 - 000835584 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
    2018-08-14 20:35 - 2018-05-20 06:25 - 000384000 _____ (Microsoft Corporation) C:\Windows\system32\Phoneutil.dll
    2018-08-14 20:35 - 2018-05-20 06:24 - 000234496 _____ (Microsoft Corporation) C:\Windows\system32\DolbyMATEnc.dll
    2018-08-14 20:35 - 2018-05-20 06:23 - 005951488 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
    2018-08-14 20:35 - 2018-05-20 06:23 - 000933376 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
    2018-08-14 20:35 - 2018-05-20 06:21 - 001371136 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
    2018-08-14 20:35 - 2018-05-20 06:21 - 001210880 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
    2018-08-14 20:35 - 2018-05-20 06:21 - 000960512 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
    2018-08-14 20:35 - 2018-05-20 06:21 - 000783360 _____ (Microsoft Corporation) C:\Windows\system32\DolbyHrtfEnc.dll
    2018-08-14 20:35 - 2018-05-20 06:16 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ApiSetHost.AppExecutionAlias.dll
    2018-08-14 20:35 - 2018-05-20 06:15 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
    2018-08-14 20:35 - 2018-05-20 06:15 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSHEIF.dll
    2018-08-14 20:35 - 2018-05-20 06:14 - 000167936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
    2018-08-14 20:35 - 2018-05-20 06:13 - 004929024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
    2018-08-14 20:35 - 2018-05-20 06:13 - 000317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Phoneutil.dll
    2018-08-14 20:35 - 2018-05-20 06:12 - 000860160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
    2018-08-14 20:35 - 2018-05-20 06:11 - 001036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
    2018-08-14 20:35 - 2018-05-20 06:11 - 001005568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
    2018-08-14 20:35 - 2018-05-20 03:26 - 000018716 _____ C:\Windows\system32\srms-apr.dat
    2018-08-14 20:35 - 2018-05-18 12:08 - 000018716 _____ C:\Windows\SysWOW64\srms-apr.dat
    2018-08-14 20:35 - 2018-04-28 09:03 - 013570560 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
    2018-08-14 20:35 - 2018-04-28 09:03 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
    2018-08-14 20:35 - 2018-04-28 09:03 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\SharedPCCSP.dll
    2018-08-14 20:35 - 2018-04-28 09:01 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\MixedReality.Broker.dll
    2018-08-14 20:35 - 2018-04-28 09:00 - 000695296 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
    2018-08-14 20:35 - 2018-04-28 08:18 - 000150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
    2018-08-14 20:35 - 2018-04-28 08:17 - 012500992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
    2018-08-14 20:35 - 2018-04-28 08:14 - 000581120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
    2018-08-14 20:35 - 2018-04-28 08:12 - 001380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
    2018-08-14 20:35 - 2018-04-28 05:58 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Analog.dll
    2018-08-14 20:35 - 2018-04-27 23:29 - 001565592 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
    2018-08-14 20:35 - 2018-04-27 23:29 - 000788216 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
    2018-08-14 20:35 - 2018-04-27 23:29 - 000776880 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
    2018-08-14 20:35 - 2018-04-27 23:29 - 000494488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
    2018-08-14 20:35 - 2018-04-27 23:29 - 000382872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
    2018-08-14 20:35 - 2018-04-27 23:14 - 000434584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
    2018-08-14 20:35 - 2018-04-27 23:13 - 001426328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
    2018-08-14 20:35 - 2018-04-27 23:13 - 000665320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
    2018-08-14 20:35 - 2018-04-27 23:12 - 000606448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
    2018-08-14 20:35 - 2018-04-27 23:03 - 000585728 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.rs3.dll
    2018-08-14 20:35 - 2018-04-27 23:03 - 000444416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.rs1.dll
    2018-08-14 20:35 - 2018-04-27 23:03 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.th.dll
    2018-08-14 20:35 - 2018-04-27 23:03 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.win81.dll
    2018-08-14 20:35 - 2018-04-27 23:02 - 000613376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.rs4.dll
    2018-08-14 20:35 - 2018-04-27 23:02 - 000474624 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.rs2.dll
    2018-08-14 20:35 - 2018-04-27 23:02 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.win8rtm.dll
    2018-08-14 20:35 - 2018-04-27 23:01 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2018-08-14 20:35 - 2018-04-27 23:00 - 000143360 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2018-08-14 20:35 - 2018-04-27 22:59 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\PerceptionSimulationExtensions.dll
    2018-08-14 20:35 - 2018-04-27 22:58 - 003086336 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
    2018-08-14 20:35 - 2018-04-27 22:57 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2018-08-14 20:35 - 2018-04-27 22:55 - 001421312 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
    2018-08-14 20:35 - 2018-04-27 22:53 - 001235968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
    2018-08-14 20:35 - 2018-04-27 22:53 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2018-08-14 20:35 - 2018-04-27 21:43 - 001953280 _____ C:\Windows\system32\rdpnano.dll
    2018-08-14 20:27 - 2018-09-10 19:26 - 000000000 ____D C:\Program Files (x86)\VulkanRT
    2018-08-14 20:27 - 2018-08-14 20:27 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
    2018-08-14 20:25 - 2018-08-01 04:50 - 002002448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6439882.dll
    2018-08-14 20:25 - 2018-08-01 04:50 - 001467920 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6439882.dll
    2018-08-14 20:20 - 2018-09-04 12:25 - 000000000 ____D C:\Users\lagoi\AppData\Local\NVIDIA Corporation
    2018-08-14 20:20 - 2018-09-03 17:43 - 000003256 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-09-03 17:43 - 000002974 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-09-03 17:43 - 000002898 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-09-03 17:43 - 000002804 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-08-14 20:20 - 000004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-08-14 20:20 - 000003976 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-08-14 20:20 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-08-14 20:20 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-08-14 20:20 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-08-14 20:20 - 000003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-08-14 20:20 - 000003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-14 20:20 - 2018-08-14 20:20 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
    2018-08-14 20:20 - 2018-08-14 20:20 - 000000000 ____D C:\Users\lagoi\AppData\Local\NVIDIA
    2018-08-14 20:20 - 2018-08-14 20:20 - 000000000 ____D C:\Users\lagoi\AppData\Local\CEF
    2018-08-14 20:20 - 2018-08-14 20:20 - 000000000 ____D C:\Users\lagoi\ansel
    2018-08-14 20:20 - 2018-08-14 20:20 - 000000000 ____D C:\ProgramData\Package Cache
    2018-08-14 20:20 - 2018-08-14 20:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
    2018-08-14 20:20 - 2018-07-19 15:16 - 002340392 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
    2018-08-14 20:20 - 2018-07-19 15:16 - 001936424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
    2018-08-14 20:20 - 2018-07-19 15:16 - 001311784 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
    2018-08-14 20:20 - 2018-07-19 12:44 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
    2018-08-14 20:20 - 2018-06-27 19:26 - 000206760 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
    2018-08-14 20:20 - 2018-06-27 19:26 - 000185256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
    2018-08-14 20:20 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
    2018-08-14 20:20 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
    2018-08-14 20:20 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
    2018-08-14 20:20 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
    2018-08-14 20:20 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
    2018-08-14 20:20 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
    2018-08-14 20:19 - 2018-06-07 20:59 - 000069544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
    2018-08-14 20:19 - 2018-04-24 12:29 - 000065792 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
    2018-08-14 20:17 - 2018-08-14 20:18 - 000000000 ____D C:\Users\lagoi\AppData\Local\PackageStaging
    2018-08-14 20:16 - 2018-08-14 20:16 - 000000000 ____D C:\Program Files (x86)\Intel
    2018-08-14 20:15 - 2018-09-12 20:07 - 000000000 __SHD C:\Users\lagoi\IntelGraphicsProfiles
    2018-08-14 20:15 - 2018-08-14 20:16 - 000000200 _____ C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
    2018-08-14 20:15 - 2018-08-14 20:15 - 000000000 ____D C:\Program Files\Intel
    2018-08-14 20:15 - 2018-08-14 20:15 - 000000000 ____D C:\Intel
    2018-08-14 20:15 - 2018-08-14 20:15 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin
    2018-08-14 20:14 - 2018-09-04 12:25 - 000000000 ____D C:\Windows\system32\DAX2
    2018-08-14 20:14 - 2018-08-14 20:14 - 000003376 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3334273066-253836076-2869940219-1001
    2018-08-14 20:14 - 2018-08-14 20:14 - 000000000 ____H C:\ProgramData\DP45977C.lfl
    2018-08-14 20:14 - 2018-08-14 20:14 - 000000000 ____D C:\Users\lagoi\OneDrive\Documents\Uniden
    2018-08-14 20:14 - 2018-08-14 20:14 - 000000000 ____D C:\Users\lagoi\OneDrive\Documents\temp
    2018-08-14 20:14 - 2018-08-14 20:14 - 000000000 ____D C:\Users\lagoi\OneDrive\Documents\SSD firmware update software_103_Release
    2018-08-14 20:14 - 2018-08-14 20:14 - 000000000 ____D C:\Users\lagoi\OneDrive\Documents\Scanned Documents
    2018-08-14 20:14 - 2018-08-14 20:14 - 000000000 ____D C:\Users\lagoi\OneDrive\Documents\RocketLifeNetwork
    2018-08-14 20:14 - 2018-08-14 20:14 - 000000000 ____D C:\Users\lagoi\OneDrive\Documents\HpReg_Backup
    2018-08-14 20:14 - 2018-08-14 20:14 - 000000000 ____D C:\Users\lagoi\OneDrive\Documents\Fax
    2018-08-14 20:14 - 2018-08-14 20:14 - 000000000 ____D C:\Users\lagoi\OneDrive\Documents\atto-disk-benchmark-4000f2
    2018-08-14 20:13 - 2018-09-05 18:08 - 000000000 ____D C:\Users\lagoi\AppData\Local\PlaceholderTileLogoFolder
    2018-08-14 20:13 - 2018-09-05 00:21 - 000000000 ___RD C:\Users\lagoi\OneDrive
    2018-08-14 20:13 - 2018-09-04 12:25 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
    2018-08-14 20:13 - 2018-08-14 20:13 - 000000000 ____D C:\Program Files\Realtek
    2018-08-14 20:12 - 2018-09-12 18:36 - 000838560 _____ C:\Windows\system32\PerfStringBackup.INI
    2018-08-14 20:12 - 2018-09-05 20:18 - 005947704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
    2018-08-14 20:12 - 2018-09-05 20:18 - 002612616 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
    2018-08-14 20:12 - 2018-09-05 20:17 - 008330242 _____ C:\Windows\system32\nvcoproc.bin
    2018-08-14 20:12 - 2018-09-05 20:17 - 001767280 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
    2018-08-14 20:12 - 2018-09-05 20:17 - 000634248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
    2018-08-14 20:12 - 2018-09-05 20:17 - 000450416 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
    2018-08-14 20:12 - 2018-09-05 20:17 - 000083256 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
    2018-08-14 20:12 - 2018-09-03 18:38 - 000000000 ____D C:\Users\lagoi\AppData\Local\Comms
    2018-08-14 20:12 - 2018-08-14 20:12 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
    2018-08-14 20:12 - 2018-08-14 20:12 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
    2018-08-14 20:12 - 2018-08-14 20:12 - 000000000 ____D C:\Program Files\Synaptics
    2018-08-14 20:11 - 2018-09-12 23:11 - 000000000 ___HD C:\Users\lagoi\MicrosoftEdgeBackups
    2018-08-14 20:11 - 2018-09-12 20:07 - 000000000 ____D C:\ProgramData\NVIDIA
    2018-08-14 20:11 - 2018-09-05 18:08 - 000000000 ____D C:\Users\lagoi\AppData\Local\Packages
    2018-08-14 20:11 - 2018-09-05 13:12 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
    2018-08-14 20:11 - 2018-08-27 19:02 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
    2018-08-14 20:11 - 2018-08-14 20:44 - 000000000 __RHD C:\Users\Public\AccountPictures
    2018-08-14 20:11 - 2018-08-14 20:44 - 000000000 ___RD C:\Users\lagoi\3D Objects
    2018-08-14 20:11 - 2018-08-14 20:31 - 000000000 ____D C:\Users\lagoi\AppData\Local\Publishers
    2018-08-14 20:11 - 2018-08-14 20:27 - 000000000 ____D C:\Program Files\NVIDIA Corporation
    2018-08-14 20:11 - 2018-08-14 20:27 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
    2018-08-14 20:11 - 2018-08-14 20:12 - 000000000 ____D C:\Users\lagoi\AppData\Local\ConnectedDevicesPlatform
    2018-08-14 20:11 - 2018-08-14 20:11 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\Adobe
    2018-08-14 20:11 - 2018-08-14 20:11 - 000000000 ____D C:\Users\lagoi\AppData\Local\VirtualStore
    2018-08-14 20:11 - 2018-08-14 20:11 - 000000000 ____D C:\Users\lagoi\AppData\Local\MicrosoftEdge
    2018-08-14 20:11 - 2018-08-01 04:52 - 000553376 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
    2018-08-14 20:11 - 2018-08-01 04:52 - 000458312 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
    2018-08-14 20:10 - 2018-08-14 20:44 - 000000000 ____D C:\Users\lagoi
    2018-08-14 20:10 - 2018-08-14 20:14 - 000002363 _____ C:\Users\lagoi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
    2018-08-14 20:10 - 2018-08-14 20:10 - 000000020 ___SH C:\Users\lagoi\ntuser.ini
    2018-08-14 20:09 - 2018-08-14 20:09 - 000000000 ____D C:\ProgramData\USOShared
    2018-08-14 20:09 - 2018-04-11 18:33 - 002752000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
    ==================== One Month Modified files and folders ========
    (If an entry is included in the fixlist, the file/folder will be moved.)
    2018-09-12 23:38 - 2018-04-11 18:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
    2018-09-12 18:36 - 2018-04-11 18:36 - 000000000 ____D C:\Windows\INF
    2018-09-12 18:29 - 2018-04-11 16:04 - 000786432 _____ C:\Windows\system32\config\BBI
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\zu-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\yo-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\xh-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\wo-SN
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\uz-Latn-UZ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\tn-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ti-ET
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\tg-Cyrl-TJ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-RS
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-BA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\sd-Arab-PK
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\rw-RW
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\quc-Latn-GT
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\pa-Arab-PK
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\nso-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ku-Arab-IQ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ig-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ha-Latn-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\chr-CHER-US
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ca-ES-valencia
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\bs-Latn-BA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\az-Latn-AZ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\zu-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\yo-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\xh-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\wo-SN
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\uz-Latn-UZ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\tn-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ti-ET
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\tg-Cyrl-TJ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\sr-Cyrl-RS
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\sr-Cyrl-BA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\sd-Arab-PK
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\rw-RW
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\quc-Latn-GT
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\pa-Arab-PK
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\nso-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ku-Arab-IQ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ig-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ha-Latn-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\chr-CHER-US
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ca-ES-valencia
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\bs-Latn-BA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\az-Latn-AZ
    2018-09-12 16:46 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\TextInput
    2018-09-12 16:46 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\bcastdvr
    2018-09-12 15:49 - 2018-04-11 18:30 - 000000000 ____D C:\Windows\CbsTemp
    2018-09-12 15:26 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\AppReadiness
    2018-09-12 08:33 - 2018-04-11 18:38 - 000000000 ___HD C:\Program Files\WindowsApps
    2018-09-09 15:31 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\LiveKernelReports
    2018-09-03 18:26 - 2018-04-11 18:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
    2018-08-31 17:03 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\SysWOW64\Dism
    2018-08-31 17:03 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\oobe
    2018-08-31 17:03 - 2018-04-11 16:04 - 000000000 ____D C:\Windows\system32\Dism
    2018-08-22 00:29 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
    2018-08-15 15:14 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\appcompat
    2018-08-14 23:05 - 2018-04-11 18:38 - 000028672 _____ C:\Windows\system32\config\BCD-Template
    2018-08-14 22:08 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\WinBioDatabase
    2018-08-14 22:06 - 2018-04-11 16:04 - 000032768 _____ C:\Windows\system32\config\ELAM
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\vi-VN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ur-PK
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ug-CN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\tt-RU
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\tk-TM
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\te-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ta-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\sw-KE
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\sq-AL
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\si-LK
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\quz-PE
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\prs-AF
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\pa-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\or-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\nn-NO
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ne-NP
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\mt-MT
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\mr-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\mn-MN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ml-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\mk-MK
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\mi-NZ
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\lo-LA
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\lb-LU
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ky-KG
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\kok-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\kn-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\km-KH
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\kk-KZ
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ka-GE
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\is-IS
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\id-ID
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\hy-AM
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\gu-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\gd-GB
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ga-IE
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\fil-PH
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\fa-IR
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\cy-GB
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\bn-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\bn-BD
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\be-BY
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\as-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\am-ET
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\af-ZA
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\vi-VN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ur-PK
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ug-CN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\tt-RU
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\tk-TM
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\te-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\sw-KE
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\sq-AL
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\quz-PE
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\prs-AF
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\pa-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\or-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\nn-NO
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ne-NP
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\mt-MT
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\mr-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\mn-MN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ml-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\mk-MK
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\mi-NZ
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\lo-LA
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\lb-LU
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ky-KG
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\kok-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\kn-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\km-KH
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\kk-KZ
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ka-GE
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\is-IS
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\id-ID
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\hy-AM
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\gu-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\gd-GB
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ga-IE
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\fil-PH
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\fa-IR
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\cy-GB
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\bn-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\bn-BD
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\be-BY
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\as-IN
    2018-08-14 20:42 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\af-ZA
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ___SD C:\Windows\SysWOW64\F12
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ___SD C:\Windows\system32\UNP
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ___SD C:\Windows\system32\F12
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ___SD C:\Windows\system32\DiagSvcs
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ___RD C:\Windows\PrintDialog
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\SysWOW64\setup
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\SysWOW64\oobe
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\ta-in
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\si-lk
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\ShellExperiences
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\setup
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\appraiser
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\am-et
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\ShellExperiences
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\Provisioning
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Program Files\Windows Photo Viewer
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Program Files\Windows Defender
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
    2018-08-14 20:42 - 2018-04-11 18:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
    2018-08-14 20:12 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\Help
    2018-08-14 20:09 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\spool
    2018-08-14 20:09 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\FxsTmp
    2018-08-14 20:09 - 2018-04-11 18:38 - 000000000 ____D C:\ProgramData\USOPrivate
    ==================== Files in the root of some directories =======
    2018-09-12 23:00 - 2018-09-12 23:00 - 000326934 _____ () C:\Users\lagoi\AppData\Local\ars.cache
    2018-09-12 23:00 - 2018-09-12 23:00 - 000760520 _____ () C:\Users\lagoi\AppData\Local\census.cache
    2018-09-12 22:55 - 2018-09-12 22:55 - 000000036 _____ () C:\Users\lagoi\AppData\Local\housecall.guid.cache
    2018-09-12 16:41 - 2018-09-12 16:41 - 000007601 _____ () C:\Users\lagoi\AppData\Local\Resmon.ResmonCfg
    ==================== Bamital & volsnap ======================
    (There is no automatic fix for files that do not pass verification.)
    C:\Windows\system32\winlogon.exe => File is digitally signed
    C:\Windows\system32\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\system32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\system32\services.exe => File is digitally signed
    C:\Windows\system32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\system32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\system32\rpcss.dll => File is digitally signed
    C:\Windows\system32\dnsapi.dll => File is digitally signed
    C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
    C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
    LastRegBack: 2018-08-14 22:05
    ==================== End of FRST.txt ============================
     
    jimbo0706,
    #5
  7. 2018/09/13
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    Now addition


    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.09.2018
    Ran by lagoi (12-09-2018 23:47:37)
    Running from C:\Users\lagoi\OneDrive\Desktop
    Windows 10 Home Version 1803 17134.285 (X64) (2018-08-15 03:07:31)
    Boot Mode: Normal
    ==========================================================

    ==================== Accounts: =============================
    Administrator (S-1-5-21-3334273066-253836076-2869940219-500 - Administrator - Disabled)
    DefaultAccount (S-1-5-21-3334273066-253836076-2869940219-503 - Limited - Disabled)
    Guest (S-1-5-21-3334273066-253836076-2869940219-501 - Limited - Disabled)
    lagoi (S-1-5-21-3334273066-253836076-2869940219-1001 - Administrator - Enabled) => C:\Users\lagoi
    WDAGUtilityAccount (S-1-5-21-3334273066-253836076-2869940219-504 - Limited - Disabled)
    ==================== Security Center ========================
    (If an entry is included in the fixlist, it will be removed.)
    AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    ==================== Installed Programs ======================
    (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
    BCDx36HP Sentinel (HKLM-x32\...\{F53C9C91-9671-4792-A428-80C39CEAF161}) (Version: 2.00.10 - Uniden)
    CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
    DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.24 - NVIDIA Corporation) Hidden
    Dragon Gaming Center (HKLM-x32\...\{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 2.0.1701.0601 - Micro-Star International Co., Ltd.) Hidden
    Dragon Gaming Center (HKLM-x32\...\InstallShield_{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 2.0.1701.0601 - Micro-Star International Co., Ltd.)
    Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
    Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
    Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.10730.20088 - Microsoft Corporation)
    Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
    Microsoft OneDrive (HKU\S-1-5-21-3334273066-253836076-2869940219-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
    Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
    Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
    NVIDIA GeForce Experience 3.14.1.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.1.48 - NVIDIA Corporation)
    NVIDIA Graphics Driver 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.24 - NVIDIA Corporation)
    NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
    Oasis (HKU\S-1-5-21-3334273066-253836076-2869940219-1001\...\{8DD4552A-1DCA-4281-985C-F7BB00168D3E}_is1) (Version: 1.0 - Utherverse Digital Inc)
    Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
    Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
    Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
    Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8395 - Realtek Semiconductor Corp.)
    Red Light Center 3D Client (HKLM-x32\...\Red Light Center 3D Client) (Version: 1.9.4773 - Utherverse Digital Inc)
    Skype version 8.29 (HKLM-x32\...\Skype_is1) (Version: 8.29 - Skype Technologies S.A.)
    SpyHunter 5 (HKLM-x32\...\SpyHunter5) (Version: 5.0.30.51 - EnigmaSoft Limited)
    Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.193 - Synaptics Incorporated)
    ==================== Custom CLSID (Whitelisted): ==========================
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
    ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
    ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
    ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
    ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
    ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-11-01] (Intel Corporation)
    ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-09-05] (NVIDIA Corporation)
    ==================== Scheduled Tasks (Whitelisted) =============
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    Task: {032E10BD-983D-401A-995D-F8A3F1A3B003} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-30] (Microsoft Corporation)
    Task: {0852FF0F-7041-4F08-A9B0-CC0B3577DA4F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation)
    Task: {1C38FB82-57E6-428C-9CF3-0AA27154C98C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-10] (Microsoft Corporation)
    Task: {2FE6C4BB-C4AE-44A5-85AD-E55B6B566A5A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation)
    Task: {38457E18-7215-4E60-80A1-FAA42246A718} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
    Task: {432B0607-6977-410B-9B79-0957EF29A7DC} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
    Task: {59ADE879-9178-4CE9-BBFB-72E3E9559D91} - System32\Tasks\MSI_Dragon Gaming Center => C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe [2014-01-23] (TODO: <公司名稱>)
    Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
    Task: {65B9526A-F17E-414A-B8BA-16D2A6081BF7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-07-19] (NVIDIA Corporation)
    Task: {700A2EDA-47D0-48C7-872D-E6D3326441FF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-14] (Microsoft Corporation)
    Task: {8A89ADD8-1385-4C17-B335-1CA2B0AA7A35} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation)
    Task: {8C5CA696-5456-47C7-82B0-012474F0AED6} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-10] (Microsoft Corporation)
    Task: {92CEB4F7-41A6-4FD7-A96F-99EFBB3019D0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-08-24] (Piriform Ltd)
    Task: {936496A0-DF63-4D98-B884-80DD171A4C5C} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
    Task: {94CA3A38-E2B1-477C-B2F0-9AE7E2208EAE} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
    Task: {97C46476-FBE3-4BC5-8C2C-F346E2E9E094} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-30] (Microsoft Corporation)
    Task: {A1AA7E00-A720-418D-8122-8BEA504C5AF8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation)
    Task: {A2645421-A7D5-402D-8B51-2CBE7674CDC0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-14] (Microsoft Corporation)
    Task: {A45FEDC6-250A-433E-BBE8-1D6739D8ADC4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-07-19] (NVIDIA Corporation)
    Task: {AA5EB054-803D-40B1-B3E5-A412E8DDD307} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-09-10] (Microsoft Corporation)
    Task: {AACAB13B-7ACC-4BE6-8581-E32355B205CB} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-09-10] (Microsoft Corporation)
    Task: {C49D8D97-FE85-4AB8-B0DD-BC7C4DBACD52} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-07-19] (NVIDIA Corporation)
    Task: {D4A1332B-50E2-474A-AA14-30A94D7D5EE2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-08-24] (Piriform Ltd)
    Task: {DCB6DF4D-9692-449F-8D11-1AC6C93176DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-14] (Microsoft Corporation)
    Task: {E9DACAC1-6CE7-4718-9087-C3203B9D4EF0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-14] (Microsoft Corporation)
    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    ==================== Shortcuts & WMI ========================
    (The entries could be listed to be restored or removed.)

    ==================== Loaded Modules (Whitelisted) ==============
    2018-08-14 20:20 - 2018-07-19 15:16 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
    2017-03-17 22:34 - 2016-11-01 23:05 - 000401896 _____ () C:\Windows\system32\igfxTray.exe
    2018-04-11 18:34 - 2018-04-11 18:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
    2018-04-11 18:34 - 2018-04-11 18:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
    2018-04-11 18:34 - 2018-04-11 18:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
    2018-09-12 15:47 - 2018-08-30 22:12 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
    2018-08-14 20:36 - 2018-08-14 20:36 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
    2018-08-14 20:36 - 2018-08-14 20:36 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
    2014-01-22 10:44 - 2014-01-22 10:44 - 000075912 _____ () C:\Program Files (x86)\MSI\Dragon Gaming Center\WinIo64.dll
    2018-08-30 14:16 - 2018-08-30 14:16 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
    2018-08-30 14:16 - 2018-08-30 14:16 - 069283840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
    2018-08-14 20:35 - 2018-08-14 20:36 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
    2018-08-17 15:52 - 2018-08-17 15:52 - 000049664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RenderingPlugin.dll
    2018-08-14 20:35 - 2018-08-14 20:36 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
    2018-08-30 14:16 - 2018-08-30 14:16 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
    2018-08-30 14:16 - 2018-08-30 14:16 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
    2018-08-17 15:52 - 2018-08-17 15:52 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_core320.dll
    2018-08-17 15:52 - 2018-08-17 15:52 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
    2018-08-14 20:35 - 2018-08-14 20:36 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
    2018-08-30 14:16 - 2018-08-30 14:16 - 014333440 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
    2018-08-30 14:16 - 2018-08-30 14:16 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngine.dll
    2018-08-30 14:16 - 2018-08-30 14:16 - 002869248 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\AppCore.Windows.dll
    2018-08-30 14:16 - 2018-08-30 14:16 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
    2018-08-14 20:35 - 2018-08-14 20:36 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
    2018-08-14 20:36 - 2018-08-14 20:36 - 000199168 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11807.1001.13.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
    2018-08-14 20:36 - 2018-08-14 20:36 - 002447072 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11807.1001.13.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
    2018-08-14 20:36 - 2018-08-14 20:36 - 007814144 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11807.1001.13.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
    2018-08-14 20:37 - 2018-08-14 20:37 - 000038400 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.11904.0_x64__8wekyb3d8bbwe\SourceAppService.dll
    2018-08-14 20:37 - 2018-08-14 20:37 - 000205312 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.11904.0_x64__8wekyb3d8bbwe\FFmpegInterop.dll
    2018-08-14 20:37 - 2018-08-14 20:37 - 000316928 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.11904.0_x64__8wekyb3d8bbwe\avformat-58_ms.dll
    2018-08-14 20:37 - 2018-08-14 20:37 - 000476672 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.11904.0_x64__8wekyb3d8bbwe\avutil-56_ms.dll
    2018-08-14 20:37 - 2018-08-14 20:37 - 000174592 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.11904.0_x64__8wekyb3d8bbwe\swresample-3_ms.dll
    2018-08-14 20:37 - 2018-08-14 20:37 - 000747008 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.11904.0_x64__8wekyb3d8bbwe\avcodec-58_ms.dll
    2018-08-14 20:37 - 2018-08-14 20:37 - 000721408 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.11904.0_x64__8wekyb3d8bbwe\swscale-5_ms.dll
    2018-08-14 21:00 - 2018-08-28 19:44 - 001790592 _____ () C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
    2018-08-31 20:47 - 2018-08-28 19:44 - 000097224 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
    2018-08-31 20:47 - 2018-08-28 19:44 - 000094152 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\skype-coexistence\build\Release\coexistence.node
    2018-08-31 20:47 - 2018-08-28 19:44 - 000219080 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\electron-ssid\build\Release\electron-ssid.node
    2018-08-14 21:00 - 2018-08-28 19:44 - 002725400 _____ () C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
    2018-08-14 21:00 - 2018-08-28 19:44 - 000033304 _____ () C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
    2018-08-31 20:47 - 2018-08-28 19:44 - 000409544 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\@paulcbetts\spellchecker\build\Release\spellchecker.node
    2018-08-31 20:47 - 2018-08-28 19:44 - 000138696 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node
    2018-08-31 20:47 - 2018-08-28 19:44 - 002384840 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\slimcore\bin\skypert.dll
    ==================== Alternate Data Streams (Whitelisted) =========
    (If an entry is included in the fixlist, only the ADS will be removed.)

    ==================== Safe Mode (Whitelisted) ===================
    (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
    ==================== Association (Whitelisted) ===============
    (If an entry is included in the fixlist, the registry item will be restored to default or removed.)

    ==================== Internet Explorer trusted/restricted ===============
    (If an entry is included in the fixlist, it will be removed from the registry.)

    ==================== Hosts content: ===============================
    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
    2018-04-11 18:38 - 2018-04-11 18:36 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts

    ==================== Other Areas ============================
    (Currently there is no automatic fix for this section.)
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lagoi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\july-4-pictures-3.jpg
    DNS Servers: 192.168.1.1
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
    Windows Firewall is enabled.
    ==================== MSCONFIG/TASK MANAGER disabled items ==
    HKLM\...\StartupApproved\Run: => "RTHDVCPL"
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001\...\StartupApproved\Run: => "Advanced SystemCare 11"
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
    ==================== FirewallRules (Whitelisted) ===============
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    FirewallRules: [{6193DF15-E601-4E92-ACEF-7AF004872D05}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{F82BB06D-1B5A-437B-8179-B14911B998F2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{7A1E987C-44BF-4E3C-842C-614D1F5218CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{DB537812-6708-4611-8702-811A68CE2BE3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{316A1634-57E8-4A1F-8FF8-77990F47E4EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{8A5ACA31-BC2F-4161-863D-D453B99A0069}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{6468D816-8942-48E3-ABCE-2748800C2843}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    FirewallRules: [{A66CBA6C-8643-41E4-A0D0-992FDECC663E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    FirewallRules: [TCP Query User{8A413FDA-F170-48EF-AA9D-BD24F9FE1D0F}C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe] => (Allow) C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe
    FirewallRules: [UDP Query User{DCBA8BF3-A0B6-4F45-AF42-F1AA2593EB31}C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe] => (Allow) C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe
    FirewallRules: [{5906F50F-1A0F-4B14-ACA7-F3B31F9C3C13}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
    FirewallRules: [{854A2422-F65A-4A3E-B797-123B9D0C1833}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
    FirewallRules: [{58EFBD06-331F-42B0-A899-3F62DD598D30}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    FirewallRules: [{5AE2F652-7221-4B74-85ED-93A15638EA89}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    FirewallRules: [{51E98C07-C21E-41E3-B3B6-ADF423EC3428}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
    ==================== Restore Points =========================
    03-09-2018 22:45:56 Windows Modules Installer
    04-09-2018 12:21:46 Driver Booster : Standard SATA AHCI Controller
    05-09-2018 00:33:35 Windows Modules Installer
    06-09-2018 02:57:13 Windows Modules Installer
    06-09-2018 12:17:17 Removed DriverUpdate
    07-09-2018 10:35:02 Windows Modules Installer
    08-09-2018 18:35:04 Windows Modules Installer
    10-09-2018 19:21:19 Windows Modules Installer
    10-09-2018 19:34:35 Windows Modules Installer
    11-09-2018 17:38:55 Windows Modules Installer
    ==================== Faulty Device Manager Devices =============

    ==================== Event log errors: =========================
    Application errors:
    ==================
    Error: (09/12/2018 04:15:21 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
    Description: Event-ID 0
    Error: (09/12/2018 03:46:43 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: Dragon Gaming Center.exe, version: 2.0.1701.601, time stamp: 0x586f3340
    Faulting module name: KERNELBASE.dll, version: 10.0.17134.165, time stamp: 0xb0bb231d
    Exception code: 0xe0434352
    Fault offset: 0x000000000003a388
    Faulting process id: 0x2fd4
    Faulting application start time: 0x01d44ad6f25f986b
    Faulting application path: C:\Program Files (x86)\MSI\Dragon Gaming Center\Dragon Gaming Center.exe
    Faulting module path: C:\Windows\System32\KERNELBASE.dll
    Report Id: 627b43a4-9b8c-43f8-9096-dff5ad2af378
    Faulting package full name:
    Faulting package-relative application ID:
    Error: (09/12/2018 03:46:42 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
    Description: Application: Dragon Gaming Center.exe
    Framework Version: v4.0.30319
    Description: The process was terminated due to an unhandled exception.
    Exception Info: System.InvalidCastException
    at System.StubHelpers.StubHelpers.GetCOMIPFromRCW(System.Object, IntPtr, IntPtr ByRef, Boolean ByRef)
    at System.Management.IWbemServices.CancelAsyncCall_(System.Management.IWbemObjectSink)
    at System.Management.SinkForEventQuery.Cancel()
    at System.Management.ManagementEventWatcher.Stop()
    at GameCenter.MainWindow.MainWindow_Closed(System.Object, System.EventArgs)
    at System.Windows.Window.OnClosed(System.EventArgs)
    at System.Windows.Window.WmDestroy()
    at System.Windows.Window.WindowFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
    at System.Windows.Interop.HwndSource.PublicHooksFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
    at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
    at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
    at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
    at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
    at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
    at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
    Error: (09/12/2018 08:30:08 AM) (Source: ESENT) (EventID: 455) (User: )
    Description: SettingSyncHost (7796,R,98) {C068311D-DF85-42E2-9DC9-F901C8450D1D}: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Users\lagoi\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb00009.log.
    Error: (09/11/2018 04:15:21 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
    Description: Event-ID 0
    Error: (09/10/2018 05:44:04 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
    Description: Event-ID 0
    Error: (09/09/2018 07:07:39 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: Utherverse.exe, version: 0.0.0.0, time stamp: 0x574e0f43
    Faulting module name: ntdll.dll, version: 10.0.17134.254, time stamp: 0xbf2f8c99
    Exception code: 0xc0000374
    Fault offset: 0x000d8869
    Faulting process id: 0x6f4
    Faulting application start time: 0x01d4487d02608ac6
    Faulting application path: C:\Program Files (x86)\Utherverse Digital Inc\Utherverse VWW Client\Utherverse.exe
    Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
    Report Id: df3b8e4e-fcf7-4798-ac2b-12ae8f1409fd
    Faulting package full name:
    Faulting package-relative application ID:
    Error: (09/09/2018 04:15:21 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
    Description: Event-ID 0

    System errors:
    =============
    Error: (09/12/2018 08:42:52 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-522SFFR)
    Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
    {8BC3F05E-D86B-11D0-A075-00C04FB68820}
    and APPID
    {8BC3F05E-D86B-11D0-A075-00C04FB68820}
    to the user DESKTOP-522SFFR\lagoi SID (S-1-5-21-3334273066-253836076-2869940219-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
    Error: (09/12/2018 08:07:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    and APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
    Error: (09/12/2018 08:07:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    and APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
    Error: (09/12/2018 07:47:52 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-522SFFR)
    Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
    Error: (09/12/2018 07:47:52 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-522SFFR)
    Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
    Error: (09/12/2018 07:47:52 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-522SFFR)
    Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
    Error: (09/12/2018 07:47:52 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-522SFFR)
    Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
    Error: (09/12/2018 07:47:52 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-522SFFR)
    Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.

    Windows Defender:
    ===================================
    Date: 2018-09-10 19:22:03.390
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {81E4494D-0A26-43D8-B136-1667192BBDAF}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    Date: 2018-09-06 00:32:46.880
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {C980AF71-5B47-4FD0-AF24-63C09792B826}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    Date: 2018-08-16 00:48:41.497
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {B3010151-B74A-4E66-9C09-850671B3E175}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    Date: 2018-08-16 00:41:49.580
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {8FBBEAB8-97D5-4B56-953C-D16B456153D4}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    Date: 2018-08-16 00:36:22.400
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {9BCF5502-E2E8-45D9-8343-83B84CAA9819}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    CodeIntegrity:
    ===================================
    Date: 2018-09-12 15:41:12.720
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-12 15:41:12.347
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-12 15:41:11.894
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-12 15:41:11.873
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-12 15:41:00.158
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-12 15:40:59.703
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-12 15:40:51.533
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-12 15:40:51.533
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    ==================== Memory info ===========================
    Processor: Intel(R) Core(TM) i7-5700HQ CPU @ 2.70GHz
    Percentage of memory in use: 46%
    Total physical RAM: 16263.45 MB
    Available physical RAM: 8689.32 MB
    Total Virtual: 18695.45 MB
    Available Virtual: 10549.77 MB
    ==================== Drives ================================
    Drive c: () (Fixed) (Total:476.34 GB) (Free:426.63 GB) NTFS
    \\?\Volume{ab5ba419-4714-482e-8e3b-d6f689bbcd23}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.13 GB) NTFS
    \\?\Volume{9ea6d5a8-296c-4255-abe9-eaf81fe94c1d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
    ==================== MBR & Partition Table ==================
    ========================================================
    Disk: 0 (Size: 476.9 GB) (Disk ID: 67024E82)
    Partition: GPT.
    ==================== End of Addition.txt ============================
     
    jimbo0706,
    #6
  8. 2018/09/13
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Please, observe following rules:
    • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
    • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
    • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
    • Never run more than one scan at a time.
    • Keep updating me regarding your computer behavior, good, or bad.
    • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
    • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
    • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

    =========================================

    [​IMG] Download RogueKiller from one of the following links and save it to your Desktop:

    Link 1
    Link 2
    • Close all the running programs
    • Double click on downloaded setup.exe file to install the program.
    • Click on Start Scan button.
    • Click on another Start Scan button.
    • Wait until the Status box shows Scan Finished
    • Click on Remove Selected.
    • Wait until the Status box shows Deleting Finished.
    • Click on Report and copy/paste the content of the Notepad into your next reply.
    • RKreport.txt could also be found on your desktop.
    • If more than one log is produced post all logs.
    [​IMG] Please download Malwarebytes to your desktop.
    • Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
    • Then click Finish.
    • Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
    • If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
    • When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
    • Restart your computer when prompted to do so.
    • The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.
    [​IMG] Please download AdwCleaner by Xplode and save to your Desktop.
    • Double click on AdwCleaner.exe to run the tool.
      Vista/Windows 7/8/10 users right-click and select Run As Administrator
    • The tool will start to update the database if one is required.
    • Click on the Scan button.
    • AdwCleaner will begin...be patient as the scan may take some time to complete.
    • After the scan has finished, click on the Logfile button.
    • A window will open which lists the logs of your scans.
    • Click on the Scan tab.
    • Double-click the most recent scan which will be at the top of the list....the log will appear.
    • Review the results...see note below
    • After reviewing the log, click on the Clean button.
    • Press OK when asked to close all programs and follow the onscreen prompts.
    • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
    • After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
    • To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
    • Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
    • A copy of all logfiles are saved to C:\AdwCleaner.
    -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.
     
    broni,
    #7
  9. 2018/09/13
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    RogueKiller V12.13.0.0 (x64) [Sep 10 2018] (Free) by Adlice Software
    mail : http://www.adlice.com/contact/
    Feedback : https://forum.adlice.com
    Website : http://www.adlice.com/download/roguekiller/
    Blog : http://www.adlice.com
    Operating System : Windows 10 (10.0.17134) 64 bits version
    Started in : Normal mode
    User : lagoi [Administrator]
    Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
    Mode : Delete -- Date : 09/13/2018 20:42:41 (Duration : 00:18:21)
    ¤¤¤ Processes : 0 ¤¤¤
    ¤¤¤ Registry : 4 ¤¤¤
    [PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\SlimWare Utilities Inc -> Deleted
    [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\SlimWare Utilities Inc -> Deleted
    [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-3334273066-253836076-2869940219-1001\Software\SlimWare Utilities Inc -> Deleted
    [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-3334273066-253836076-2869940219-1001\Software\SlimWare Utilities Inc -> Deleted
    ¤¤¤ Tasks : 0 ¤¤¤
    ¤¤¤ Files : 1 ¤¤¤
    [PUP.Gen1][Folder] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc -> Deleted
    [PUP.Gen1][File] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\DriverUpdate\htmlayout.dll -> Deleted
    [PUP.Gen1][File] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Logs\2018-09-06 12-13-43 0.log -> Deleted
    [PUP.Gen1][File] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Logs\2018-09-06 12-13-50 0.log -> Deleted
    [PUP.Gen1][Folder] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Logs -> Deleted
    [PUP.Gen1][File] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Messaging\dontshowagain.json -> Deleted
    [PUP.Gen1][File] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Messaging\messages.json -> Deleted
    [PUP.Gen1][Folder] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Messaging -> Deleted
    [PUP.Gen1][File] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\DriverUpdate\settings.db -> Deleted
    [PUP.Gen1][Folder] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\DriverUpdate -> Deleted
    [PUP.Gen1][File] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\Installers\US-131807278370809363.log -> Deleted
    [PUP.Gen1][Folder] C:\Users\lagoi\AppData\Local\SlimWare Utilities Inc\Installers -> Deleted
    ¤¤¤ WMI : 0 ¤¤¤
    ¤¤¤ Hosts File : 0 ¤¤¤
    ¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤
    ¤¤¤ Web browsers : 0 ¤¤¤
    ¤¤¤ MBR Check : ¤¤¤
    +++++ PhysicalDrive0: SPCC Solid State Disk +++++
    --- User ---
    [MBR] 299bc04695eaa5088097a9568efe09cf
    [BSP] 3382fdf5191a3806c9a180de580de12a : Empty|VT.Unknown MBR Code
    Partition table:
    0 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 499 MB
    1 - [MAN-MOUNT] EFI system partition | Offset (sectors): 1024000 | Size: 100 MB
    2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1228800 | Size: 16 MB
    3 - Basic data partition | Offset (sectors): 1261568 | Size: 487770 MB
    User = LL1 ... OK
    User = LL2 ... OK
     
    jimbo0706,
    #8
  10. 2018/09/13
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    Malwarebytes
    www.malwarebytes.com
    -Log Details-
    Scan Date: 9/13/18
    Scan Time: 9:11 PM
    Log File: 87915108-b7c3-11e8-8f09-d8cb8a81fb1a.json
    -Software Information-
    Version: 3.5.1.2522
    Components Version: 1.0.441
    Update Package Version: 1.0.6819
    License: Trial
    -System Information-
    OS: Windows 10 (Build 17134.285)
    CPU: x64
    File System: NTFS
    User: DESKTOP-522SFFR\lagoi
    -Scan Summary-
    Scan Type: Threat Scan
    Scan Initiated By: Manual
    Result: Completed
    Objects Scanned: 285743
    Threats Detected: 0
    (No malicious items detected)
    Threats Quarantined: 0
    (No malicious items detected)
    Time Elapsed: 0 min, 38 sec
    -Scan Options-
    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Detect
    PUM: Detect
    -Scan Details-
    Process: 0
    (No malicious items detected)
    Module: 0
    (No malicious items detected)
    Registry Key: 0
    (No malicious items detected)
    Registry Value: 0
    (No malicious items detected)
    Registry Data: 0
    (No malicious items detected)
    Data Stream: 0
    (No malicious items detected)
    Folder: 0
    (No malicious items detected)
    File: 0
    (No malicious items detected)
    Physical Sector: 0
    (No malicious items detected)
    WMI: 0
    (No malicious items detected)

    (end)
     
    jimbo0706,
    #9
  11. 2018/09/13
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    # -------------------------------
    # Malwarebytes AdwCleaner 7.2.3.0
    # -------------------------------
    # Build: 08-30-2018
    # Database: 2018-09-13.1 (Cloud)
    # Support: https://www.malwarebytes.com/support
    #
    # -------------------------------
    # Mode: Clean
    # -------------------------------
    # Start: 09-13-2018
    # Duration: 00:00:01
    # OS: Windows 10 Home
    # Cleaned: 19
    # Failed: 0

    ***** [ Services ] *****
    No malicious services cleaned.
    ***** [ Folders ] *****
    Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
    Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
    Deleted C:\Users\lagoi\AppData\LocalLow\IObit\Advanced SystemCare
    Deleted C:\Users\lagoi\AppData\Roaming\IObit\Advanced SystemCare
    Deleted C:\Users\Public\Documents\Downloaded Installers
    ***** [ Files ] *****
    No malicious files cleaned.
    ***** [ DLL ] *****
    No malicious DLLs cleaned.
    ***** [ WMI ] *****
    No malicious WMI cleaned.
    ***** [ Shortcuts ] *****
    No malicious shortcuts cleaned.
    ***** [ Tasks ] *****
    No malicious tasks cleaned.
    ***** [ Registry ] *****
    Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Advanced SystemCare 11
    Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
    Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
    Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
    Deleted HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
    Deleted HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
    Deleted HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
    Deleted HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
    Deleted HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
    Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
    Deleted HKLM\Software\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
    Deleted HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
    Deleted HKLM\Software\Wow6432Node\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
    Deleted HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
    ***** [ Chromium (and derivatives) ] *****
    No malicious Chromium entries cleaned.
    ***** [ Chromium URLs ] *****
    No malicious Chromium URLs cleaned.
    ***** [ Firefox (and derivatives) ] *****
    No malicious Firefox entries cleaned.
    ***** [ Firefox URLs ] *****
    No malicious Firefox URLs cleaned.

    *************************
    [+] Delete Tracing Keys
    [+] Reset Winsock
    *************************
    AdwCleaner[S00].txt - [3148 octets] - [13/09/2018 21:18:37]
    ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
     
    jimbo0706,
    #10
  12. 2018/09/13
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

    • Double click to run it.
    • Make sure you checkmark Addition.txt box.
    • Press Scan button.
    • Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.
     
    broni,
    #11
  13. 2018/09/14
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.09.2018
    Ran by lagoi (administrator) on DESKTOP-522SFFR (14-09-2018 14:42:31)
    Running from C:\Users\lagoi\OneDrive\Desktop
    Loaded Profiles: lagoi & (Available Profiles: lagoi)
    Platform: Windows 10 Home Version 1803 17134.285 (X64) Language: English (United States)
    Internet Explorer Version 11 (Default browser: Edge)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
    ==================== Processes (Whitelisted) =================
    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
    (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    (Intel Corporation) C:\Windows\System32\ibtsiva.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
    (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
    (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
    (Micro-Star International Co., Ltd.) C:\Windows\SysWOW64\MSIService.exe
    (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1807.18075-0\MsMpEng.exe
    (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1807.18075-0\NisSrv.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    (Intel Corporation) C:\Windows\System32\igfxEM.exe
    (Intel Corporation) C:\Windows\System32\igfxHK.exe
    () C:\Windows\System32\igfxTray.exe
    (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
    (Microsoft Corporation) C:\Windows\System32\browser_broker.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Gaming Center\Dragon Gaming Center.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
    (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
    (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
    (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
    ==================== Registry (Whitelisted) ===========================
    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
    HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9268672 2018-09-04] (Realtek Semiconductor)
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd)
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09142018144037452\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd)
    ==================== Internet (Whitelisted) ====================
    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
    Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
    Tcpip\..\Interfaces\{2f562065-3d06-48fe-8efa-c37d81e1897e}: [DhcpNameServer] 192.168.1.1
    Tcpip\..\Interfaces\{62502753-ed87-439f-ba46-e70e73f11a44}: [DhcpNameServer] 192.168.1.1
    Internet Explorer:
    ==================
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yahoo.com/
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09142018144037452\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yahoo.com/
    BHO: No Name -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> No File
    BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-09-10] (Microsoft Corporation)
    Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-10] (Microsoft Corporation)
    Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-10] (Microsoft Corporation)
    Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-10] (Microsoft Corporation)
    Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-10] (Microsoft Corporation)
    FireFox:
    ========
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-10] (Microsoft Corporation)
    Chrome:
    =======
    CHR Profile: C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default [2018-09-12]
    CHR Extension: (Docs) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-22]
    CHR Extension: (Google Drive) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-22]
    CHR Extension: (YouTube) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-22]
    CHR Extension: (Chrome Web Store Payments) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-22]
    CHR Extension: (Gmail) - C:\Users\lagoi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-08-22]
    ==================== Services (Whitelisted) ====================
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9659456 2018-08-30] (Microsoft Corporation)
    R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [541896 2018-05-10] (Intel Corporation)
    R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
    R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
    R2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.) [File not signed]
    R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
    S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
    S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
    R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [279096 2017-12-06] (Synaptics Incorporated)
    R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-08-14] (Microsoft Corporation)
    R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-08-14] (Microsoft Corporation)
    R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
    R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
    ===================== Drivers (Whitelisted) ======================
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [152688 2018-07-12] (Malwarebytes)
    R3 ETDSMBus; C:\Windows\System32\drivers\ETDSMBus.sys [31816 2018-09-04] (ELAN Microelectronic Corp.)
    R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-09-04] (REALiX(tm))
    R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [136720 2018-05-10] (Intel Corporation)
    R3 KillerEth; C:\Windows\System32\drivers\e2xw10x64.sys [145920 2018-04-11] (Qualcomm Atheros, Inc.)
    R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193256 2018-09-13] (Malwarebytes)
    R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [117472 2018-09-13] (Malwarebytes)
    R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [52328 2018-09-13] (Malwarebytes)
    R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [259360 2018-09-13] (Malwarebytes)
    R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [109872 2018-09-14] (Malwarebytes)
    R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3586072 2018-09-04] (Intel Corporation)
    R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_76bb9a50a59f3335\nvlddmkm.sys [17213832 2018-09-06] (NVIDIA Corporation)
    S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-12] (NVIDIA Corporation)
    R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69544 2018-06-07] (NVIDIA Corporation)
    R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation)
    R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [433096 2018-05-23] (Realsil Semiconductor Corporation)
    S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46584 2018-08-14] (Microsoft Corporation)
    R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [340008 2018-08-14] (Microsoft Corporation)
    R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [61992 2018-08-14] (Microsoft Corporation)
    R3 WINIO; C:\Program Files (x86)\MSI\Dragon Gaming Center\winio64.sys [15160 2010-06-07] ()
    S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]
    ==================== NetSvcs (Whitelisted) ===================
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    ==================== One Month Created files and folders ========
    (If an entry is included in the fixlist, the file/folder will be moved.)
    2018-09-14 14:40 - 2018-09-14 14:40 - 000109872 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
    2018-09-14 14:39 - 2018-09-14 14:39 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
    2018-09-13 21:21 - 2018-09-13 21:21 - 000259360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
    2018-09-13 21:21 - 2018-09-13 21:21 - 000117472 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
    2018-09-13 21:21 - 2018-09-13 21:21 - 000052328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
    2018-09-13 21:18 - 2018-09-13 21:21 - 000000000 ____D C:\AdwCleaner
    2018-09-13 21:11 - 2018-09-13 21:11 - 000193256 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
    2018-09-13 21:11 - 2018-09-13 21:11 - 000001920 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
    2018-09-13 21:11 - 2018-09-13 21:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
    2018-09-13 21:11 - 2018-09-13 21:11 - 000000000 ____D C:\ProgramData\Malwarebytes
    2018-09-13 21:11 - 2018-07-12 08:42 - 000152688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
    2018-09-13 20:42 - 2018-09-13 21:17 - 000000000 ____D C:\ProgramData\RogueKiller
    2018-09-13 20:42 - 2018-09-13 20:42 - 000028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
    2018-09-13 20:41 - 2018-09-13 20:41 - 000000905 _____ C:\Users\Public\Desktop\RogueKiller.lnk
    2018-09-13 20:41 - 2018-09-13 20:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
    2018-09-13 20:41 - 2018-09-13 20:41 - 000000000 ____D C:\Program Files\RogueKiller
    2018-09-13 20:35 - 2018-09-04 17:36 - 001476904 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
    2018-09-13 02:47 - 2018-09-13 02:47 - 000000837 _____ C:\Users\Public\Desktop\Speccy.lnk
    2018-09-13 02:47 - 2018-09-13 02:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
    2018-09-13 02:47 - 2018-09-13 02:47 - 000000000 ____D C:\Program Files\Speccy
    2018-09-12 23:46 - 2018-09-14 14:42 - 000000000 ____D C:\FRST
    2018-09-12 23:00 - 2018-09-12 23:00 - 000760520 _____ C:\Users\lagoi\AppData\Local\census.cache
    2018-09-12 23:00 - 2018-09-12 23:00 - 000326934 _____ C:\Users\lagoi\AppData\Local\ars.cache
    2018-09-12 22:55 - 2018-09-12 22:55 - 000000036 _____ C:\Users\lagoi\AppData\Local\housecall.guid.cache
    2018-09-12 22:55 - 2017-10-17 11:40 - 000334488 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys
    2018-09-12 16:41 - 2018-09-12 16:41 - 000007601 _____ C:\Users\lagoi\AppData\Local\Resmon.ResmonCfg
    2018-09-12 15:47 - 2018-08-31 02:43 - 001524152 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
    2018-09-12 15:47 - 2018-08-31 01:53 - 001327504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
    2018-09-12 15:47 - 2018-08-30 22:44 - 001222440 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
    2018-09-12 15:47 - 2018-08-30 22:44 - 001030952 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
    2018-09-12 15:47 - 2018-08-30 22:42 - 009090016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2018-09-12 15:47 - 2018-08-30 22:42 - 007520064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
    2018-09-12 15:47 - 2018-08-30 22:42 - 007436192 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
    2018-09-12 15:47 - 2018-08-30 22:42 - 002824672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2018-09-12 15:47 - 2018-08-30 22:42 - 002461312 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
    2018-09-12 15:47 - 2018-08-30 22:28 - 006570040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
    2018-09-12 15:47 - 2018-08-30 22:28 - 006043680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
    2018-09-12 15:47 - 2018-08-30 22:28 - 001989496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
    2018-09-12 15:47 - 2018-08-30 22:26 - 025847808 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
    2018-09-12 15:47 - 2018-08-30 22:21 - 022008320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
    2018-09-12 15:47 - 2018-08-30 22:20 - 022715904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2018-09-12 15:47 - 2018-08-30 22:18 - 008189440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
    2018-09-12 15:47 - 2018-08-30 22:16 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2018-09-12 15:47 - 2018-08-30 22:16 - 006661120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
    2018-09-12 15:47 - 2018-08-30 22:16 - 004382720 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
    2018-09-12 15:47 - 2018-08-30 22:15 - 007577088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
    2018-09-12 15:47 - 2018-08-30 22:15 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2018-09-12 15:47 - 2018-08-30 22:15 - 003392512 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
    2018-09-12 15:47 - 2018-08-30 22:14 - 002700288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
    2018-09-12 15:47 - 2018-08-30 22:14 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
    2018-09-12 15:47 - 2018-08-30 22:13 - 002738688 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
    2018-09-12 15:47 - 2018-08-30 22:11 - 001854976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
    2018-09-12 15:47 - 2018-08-30 22:11 - 001804288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2018-09-12 15:47 - 2018-08-30 22:10 - 005777920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
    2018-09-12 15:47 - 2018-08-30 22:10 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2018-09-12 15:47 - 2018-08-30 22:10 - 001375744 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
    2018-09-12 15:47 - 2018-08-30 22:09 - 002258944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
    2018-09-12 15:47 - 2018-08-30 22:07 - 001627648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2018-09-12 15:47 - 2018-08-28 02:17 - 023862784 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
    2018-09-12 15:46 - 2018-08-31 02:46 - 000542504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
    2018-09-12 15:46 - 2018-08-31 02:45 - 000348328 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
    2018-09-12 15:46 - 2018-08-31 02:42 - 001636232 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
    2018-09-12 15:46 - 2018-08-31 02:27 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
    2018-09-12 15:46 - 2018-08-31 02:27 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
    2018-09-12 15:46 - 2018-08-31 02:26 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
    2018-09-12 15:46 - 2018-08-31 02:25 - 000270336 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
    2018-09-12 15:46 - 2018-08-31 02:25 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2018-09-12 15:46 - 2018-08-31 02:24 - 001127936 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
    2018-09-12 15:46 - 2018-08-31 02:24 - 000482304 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2018-09-12 15:46 - 2018-08-31 02:24 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2018-09-12 15:46 - 2018-08-31 02:23 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
    2018-09-12 15:46 - 2018-08-31 02:23 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
    2018-09-12 15:46 - 2018-08-31 02:22 - 001855488 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2018-09-12 15:46 - 2018-08-31 02:22 - 001661440 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
    2018-09-12 15:46 - 2018-08-31 01:55 - 001455960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
    2018-09-12 15:46 - 2018-08-31 01:41 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
    2018-09-12 15:46 - 2018-08-31 01:41 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
    2018-09-12 15:46 - 2018-08-31 01:40 - 000216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
    2018-09-12 15:46 - 2018-08-31 01:37 - 001585664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
    2018-09-12 15:46 - 2018-08-31 01:37 - 000622080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
    2018-09-12 15:46 - 2018-08-31 01:37 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2018-09-12 15:46 - 2018-08-31 01:36 - 001469952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
    2018-09-12 15:46 - 2018-08-30 22:50 - 000273720 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
    2018-09-12 15:46 - 2018-08-30 22:50 - 000270648 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
    2018-09-12 15:46 - 2018-08-30 22:44 - 001064744 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
    2018-09-12 15:46 - 2018-08-30 22:44 - 000568600 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
    2018-09-12 15:46 - 2018-08-30 22:44 - 000136488 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
    2018-09-12 15:46 - 2018-08-30 22:44 - 000076256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
    2018-09-12 15:46 - 2018-08-30 22:43 - 002719216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
    2018-09-12 15:46 - 2018-08-30 22:43 - 000722880 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 001767064 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 001458552 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
    2018-09-12 15:46 - 2018-08-30 22:42 - 001258352 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2018-09-12 15:46 - 2018-08-30 22:42 - 001142000 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
    2018-09-12 15:46 - 2018-08-30 22:42 - 001097720 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000983080 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
    2018-09-12 15:46 - 2018-08-30 22:42 - 000885928 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000632296 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000604640 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
    2018-09-12 15:46 - 2018-08-30 22:42 - 000527328 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000494472 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
    2018-09-12 15:46 - 2018-08-30 22:42 - 000155112 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 001514352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 001129728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 000568568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 000453104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpx.dll
    2018-09-12 15:46 - 2018-08-30 22:28 - 000134936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
    2018-09-12 15:46 - 2018-08-30 22:17 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
    2018-09-12 15:46 - 2018-08-30 22:17 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
    2018-09-12 15:46 - 2018-08-30 22:15 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
    2018-09-12 15:46 - 2018-08-30 22:15 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
    2018-09-12 15:46 - 2018-08-30 22:15 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
    2018-09-12 15:46 - 2018-08-30 22:14 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
    2018-09-12 15:46 - 2018-08-30 22:14 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2018-09-12 15:46 - 2018-08-30 22:14 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
    2018-09-12 15:46 - 2018-08-30 22:13 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
    2018-09-12 15:46 - 2018-08-30 22:13 - 000402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
    2018-09-12 15:46 - 2018-08-30 22:12 - 000736256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
    2018-09-12 15:46 - 2018-08-30 22:12 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
    2018-09-12 15:46 - 2018-08-30 22:11 - 002236928 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
    2018-09-12 15:46 - 2018-08-30 22:11 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
    2018-09-12 15:46 - 2018-08-30 22:11 - 000796672 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
    2018-09-12 15:46 - 2018-08-30 22:11 - 000604160 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
    2018-09-12 15:46 - 2018-08-30 22:11 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
    2018-09-12 15:46 - 2018-08-30 22:10 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000889344 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
    2018-09-12 15:46 - 2018-08-30 22:10 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
    2018-09-12 15:46 - 2018-08-30 22:09 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
    2018-09-12 15:46 - 2018-08-30 22:08 - 000619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
    2018-09-12 15:46 - 2018-08-30 22:07 - 000856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
    2018-09-12 15:46 - 2018-08-30 22:07 - 000735744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
    2018-09-12 15:46 - 2018-08-30 22:06 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
     
    jimbo0706,
    #12
  14. 2018/09/14
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    2018-09-12 15:46 - 2018-08-30 20:57 - 000001308 _____ C:\Windows\system32\tcbres.wim
    2018-09-12 15:46 - 2018-08-28 01:56 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
    2018-09-12 15:46 - 2018-08-28 01:49 - 000677376 _____ (Microsoft Corporation) C:\Windows\system32\HeadTrackerStorage.dll
    2018-09-12 15:46 - 2018-08-28 01:48 - 001274368 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll
    2018-09-12 15:46 - 2018-08-28 01:45 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\SharedRealitySvc.dll
    2018-09-12 15:46 - 2018-08-28 00:51 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
    2018-09-12 15:46 - 2018-08-13 21:14 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
    2018-09-12 15:46 - 2018-08-13 21:14 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
    2018-09-12 15:26 - 2018-09-11 17:39 - 000835144 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2018-09-12 15:26 - 2018-09-11 17:39 - 000179808 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2018-09-12 15:02 - 2018-09-12 15:02 - 000000000 ____D C:\Users\lagoi\AppData\Local\mbam
    2018-09-12 15:02 - 2018-09-12 15:02 - 000000000 ____D C:\Program Files\Malwarebytes
    2018-09-10 19:26 - 2018-09-05 20:17 - 000124112 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 040346912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 035251264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 004352800 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 003768768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 002014832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6439924.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001565248 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001467832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6439924.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001420224 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001218624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 001093568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 000629120 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
    2018-09-10 19:24 - 2018-09-06 13:27 - 000518592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 031250800 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 025966472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 017756464 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 015170504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 013732232 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 011277048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 004858088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 004127984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 001349272 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 001159392 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 001065768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 000906904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 000816672 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
    2018-09-10 19:24 - 2018-09-06 13:26 - 000654864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
    2018-09-10 19:24 - 2018-09-05 21:58 - 000044335 _____ C:\Windows\system32\nvinfo.pb
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
    2018-09-10 17:57 - 2018-09-10 17:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
    2018-09-09 15:32 - 2018-09-13 21:21 - 096993280 _____ C:\Windows\system32\config\SOFTWARE
    2018-09-09 15:32 - 2018-09-13 21:21 - 000786432 _____ C:\Windows\system32\config\DEFAULT
    2018-09-09 15:32 - 2018-09-13 21:21 - 000040960 _____ C:\Windows\system32\config\SAM
    2018-09-09 15:32 - 2018-09-13 21:21 - 000032768 _____ C:\Windows\system32\config\SECURITY
    2018-09-06 00:47 - 2018-09-06 00:47 - 000000000 ____D C:\Users\lagoi\AppData\Local\Micro-Star_International_
    2018-09-05 18:06 - 2018-09-05 18:06 - 000003256 _____ C:\Windows\System32\Tasks\MSI_Dragon Gaming Center
    2018-09-05 18:06 - 2018-09-05 18:06 - 000002881 _____ C:\Users\Public\Desktop\Dragon Gaming Center.lnk
    2018-09-05 18:06 - 2018-09-05 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
    2018-09-05 18:06 - 2018-09-05 18:06 - 000000000 ____D C:\Program Files (x86)\MSI
    2018-09-05 18:06 - 2018-09-05 18:06 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
    2018-09-05 16:34 - 2018-09-09 15:32 - 093265920 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
    2018-09-05 16:34 - 2018-09-09 15:32 - 005296128 _____ C:\Windows\system32\config\DRIVERS.iodefrag.bak
    2018-09-05 16:34 - 2018-09-09 15:32 - 000585728 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
    2018-09-05 16:34 - 2018-09-09 15:32 - 000040960 _____ C:\Windows\system32\config\SAM.iodefrag.bak
    2018-09-05 16:34 - 2018-09-09 15:32 - 000032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
    2018-09-04 13:26 - 2018-09-04 14:08 - 000000000 ____D C:\ESD
    2018-09-04 12:26 - 2018-09-04 12:26 - 004535040 _____ C:\Windows\system32\Drivers\Netwfw02.dat
    2018-09-04 12:26 - 2018-09-04 12:26 - 003586072 _____ (Intel Corporation) C:\Windows\system32\Drivers\Netwbw02.sys
    2018-09-04 12:24 - 2018-09-04 12:24 - 072520680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
    2018-09-04 12:24 - 2018-09-04 12:24 - 016279845 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
    2018-09-04 12:24 - 2018-09-04 12:24 - 007178432 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 007101704 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 006270152 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 006114248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
    2018-09-04 12:24 - 2018-09-04 12:24 - 005346960 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 004112656 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003691368 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003677120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
    2018-09-04 12:24 - 2018-09-04 12:24 - 003452120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003417976 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003306784 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003223832 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003214672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 003128776 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 002930624 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 002444648 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 002197944 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001971336 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001965120 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001787920 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001598360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001516232 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001435104 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001382200 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001353288 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001340344 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001337608 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001268976 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001204336 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001159144 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001133560 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001037032 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 001000616 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000994648 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000964992 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000873424 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000852096 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000751256 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000734736 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000715616 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000714424 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000692128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000604760 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000541080 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000511608 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000480800 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
    2018-09-04 12:24 - 2018-09-04 12:24 - 000467120 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000453240 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000452704 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000448568 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000447144 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000416472 _____ (Harman) C:\Windows\system32\HMUI.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000392840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000381376 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000378344 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000367576 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000366080 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000360304 _____ (Harman) C:\Windows\system32\HMClariFi.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000343672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000341112 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000341112 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000332976 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000327240 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000327240 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000315944 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000278240 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000266512 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000261200 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000261168 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000260176 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000231880 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000230672 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000220352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000218232 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000203808 _____ (Harman) C:\Windows\system32\HMHVS.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000192944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000190896 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000190896 _____ (Harman) C:\Windows\system32\HMEQ.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000179560 _____ (Harman) C:\Windows\system32\HMLimiter.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000174904 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000158656 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000157312 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000154328 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000139720 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000122280 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000118552 _____ C:\Windows\system32\AcpiServiceVnA64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000116504 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000105272 _____ C:\Windows\system32\audioLibVc.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000093864 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000090880 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000090136 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000088288 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000083592 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000075504 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
    2018-09-04 12:24 - 2018-09-04 12:24 - 000023656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
    2018-09-04 12:23 - 2018-09-04 12:23 - 001804688 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
    2018-09-04 12:23 - 2018-09-04 12:23 - 001469952 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
    2018-09-04 12:23 - 2018-09-04 12:23 - 000031816 _____ (ELAN Microelectronic Corp.) C:\Windows\system32\Drivers\ETDSMBus.sys
    2018-09-04 12:22 - 2018-09-04 12:22 - 000206488 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverW8x64.sys
    2018-09-04 12:17 - 2018-09-04 12:17 - 000027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
    2018-09-04 12:17 - 2018-09-04 12:17 - 000000000 ____D C:\Windows\IObit
    2018-09-03 18:26 - 2018-09-10 17:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
    2018-09-03 18:26 - 2018-09-03 18:26 - 000000000 ____D C:\Program Files\Microsoft Office 15
    2018-09-03 17:42 - 2018-09-03 17:42 - 077254656 _____ C:\Windows\system32\config\SOFTWARE.iobit
    2018-09-03 17:42 - 2018-09-03 17:42 - 005328896 _____ C:\Windows\system32\config\DRIVERS.iobit
    2018-09-03 17:42 - 2018-09-03 17:42 - 000413696 _____ C:\Windows\system32\config\DEFAULT.iobit
    2018-09-03 17:42 - 2018-09-03 17:42 - 000040960 _____ C:\Windows\system32\config\SAM.iobit
    2018-09-03 17:42 - 2018-09-03 17:42 - 000032768 _____ C:\Windows\system32\config\SECURITY.iobit
    2018-09-03 17:37 - 2018-09-05 19:43 - 000000000 ____D C:\ProgramData\ProductData
    2018-09-03 17:36 - 2018-09-13 21:21 - 000000000 ____D C:\Users\lagoi\AppData\LocalLow\IObit
    2018-09-03 17:36 - 2018-09-03 17:36 - 000000000 ____D C:\Windows\Tasks\ImCleanDisabled
    2018-09-03 17:36 - 2018-09-03 17:36 - 000000000 ____D C:\ProgramData\{13CFD044-61E4-4EAC-AD61-02536D961216}
    2018-09-03 17:35 - 2018-09-13 21:21 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\IObit
    2018-08-31 16:57 - 2018-08-09 04:32 - 004527680 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
    2018-08-31 16:57 - 2018-08-09 04:31 - 001617728 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
    2018-08-31 16:57 - 2018-08-09 04:31 - 000766872 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
    2018-08-31 16:57 - 2018-08-09 04:31 - 000253544 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
    2018-08-31 16:57 - 2018-08-09 04:31 - 000236624 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
    2018-08-31 16:57 - 2018-08-09 04:17 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
    2018-08-31 16:57 - 2018-08-09 04:14 - 012709376 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2018-08-31 16:57 - 2018-08-09 04:14 - 000466944 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
    2018-08-31 16:57 - 2018-08-09 04:14 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
    2018-08-31 16:57 - 2018-08-09 04:14 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
    2018-08-31 16:57 - 2018-08-09 04:13 - 000521216 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
    2018-08-31 16:57 - 2018-08-09 04:13 - 000517120 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
    2018-08-31 16:57 - 2018-08-09 04:13 - 000340992 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll
    2018-08-31 16:57 - 2018-08-09 04:13 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\TtlsExt.dll
    2018-08-31 16:57 - 2018-08-09 04:12 - 002084864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2018-08-31 16:57 - 2018-08-09 04:12 - 001787392 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
    2018-08-31 16:57 - 2018-08-09 04:12 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2018-08-31 16:57 - 2018-08-09 04:11 - 003652608 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
    2018-08-31 16:57 - 2018-08-09 04:11 - 002051584 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
    2018-08-31 16:57 - 2018-08-09 04:11 - 001004032 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
    2018-08-31 16:57 - 2018-08-09 04:11 - 000615424 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
    2018-08-31 16:57 - 2018-08-09 04:11 - 000181248 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeHelper.dll
    2018-08-31 16:57 - 2018-08-09 04:10 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
    2018-08-31 16:57 - 2018-08-09 04:10 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
    2018-08-31 16:57 - 2018-08-09 04:10 - 000757248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2018-08-31 16:57 - 2018-08-09 04:09 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\dinput8.dll
    2018-08-31 16:57 - 2018-08-09 04:09 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\dinput.dll
    2018-08-31 16:57 - 2018-08-09 04:09 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
    2018-08-31 16:57 - 2018-08-09 03:36 - 000660896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
    2018-08-31 16:57 - 2018-08-09 03:36 - 000221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeManagerObj.dll
    2018-08-31 16:57 - 2018-08-09 03:24 - 011901952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2018-08-31 16:57 - 2018-08-09 03:24 - 000131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll
    2018-08-31 16:57 - 2018-08-09 03:23 - 001308160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
    2018-08-31 16:57 - 2018-08-09 03:23 - 000291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
    2018-08-31 16:57 - 2018-08-09 03:22 - 001452544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
    2018-08-31 16:57 - 2018-08-09 03:22 - 000668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2018-08-31 16:57 - 2018-08-09 03:22 - 000485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
    2018-08-31 16:57 - 2018-08-09 03:22 - 000429568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
    2018-08-31 16:57 - 2018-08-09 03:21 - 002894848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
    2018-08-31 16:57 - 2018-08-09 03:21 - 002016768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2018-08-31 16:57 - 2018-08-09 03:21 - 001274368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
    2018-08-31 16:57 - 2018-08-09 03:21 - 000775168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
    2018-08-31 16:57 - 2018-08-09 03:20 - 002401792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll
    2018-08-31 16:57 - 2018-08-09 03:20 - 000423424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
    2018-08-31 16:57 - 2018-08-09 03:20 - 000178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput8.dll
    2018-08-31 16:57 - 2018-08-09 03:20 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput.dll
    2018-08-31 16:57 - 2018-08-09 03:19 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
    2018-08-31 16:57 - 2018-08-09 00:02 - 001035144 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
    2018-08-31 16:57 - 2018-08-09 00:01 - 000777400 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
    2018-08-31 16:57 - 2018-08-08 23:55 - 000230304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
    2018-08-31 16:57 - 2018-08-08 23:54 - 001019016 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
    2018-08-31 16:57 - 2018-08-08 23:54 - 000709824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2018-08-31 16:57 - 2018-08-08 23:54 - 000375704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
    2018-08-31 16:57 - 2018-08-08 23:54 - 000203568 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
    2018-08-31 16:57 - 2018-08-08 23:54 - 000170912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2018-08-31 16:57 - 2018-08-08 23:53 - 002765440 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 001947720 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 001026456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
    2018-08-31 16:57 - 2018-08-08 23:53 - 000932136 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
    2018-08-31 16:57 - 2018-08-08 23:53 - 000714792 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 000482480 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\vertdll.dll
    2018-08-31 16:57 - 2018-08-08 23:53 - 000125600 _____ (Microsoft Corporation) C:\Windows\system32\cryptxml.dll
    2018-08-31 16:57 - 2018-08-08 23:30 - 000829856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
    2018-08-31 16:57 - 2018-08-08 23:30 - 000183992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 002253584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 001620880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 001174552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 000581696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
    2018-08-31 16:57 - 2018-08-08 23:29 - 000099208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptxml.dll
    2018-08-31 16:57 - 2018-08-08 23:28 - 003395072 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
    2018-08-31 16:57 - 2018-08-08 23:28 - 001589248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
    2018-08-31 16:57 - 2018-08-08 23:27 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
    2018-08-31 16:57 - 2018-08-08 23:27 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\eShims.dll
    2018-08-31 16:57 - 2018-08-08 23:27 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollCtrl.exe
    2018-08-31 16:57 - 2018-08-08 23:26 - 000990720 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
    2018-08-31 16:57 - 2018-08-08 23:26 - 000572416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
    2018-08-31 16:57 - 2018-08-08 23:26 - 000528384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
    2018-08-31 16:57 - 2018-08-08 23:26 - 000319488 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
    2018-08-31 16:57 - 2018-08-08 23:26 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\TtlsAuth.dll
    2018-08-31 16:57 - 2018-08-08 23:26 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\TtlsCfg.dll
    2018-08-31 16:57 - 2018-08-08 23:26 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 003320320 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000797184 _____ (Microsoft Corporation) C:\Windows\system32\certca.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000460288 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
    2018-08-31 16:57 - 2018-08-08 23:25 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
    2018-08-31 16:57 - 2018-08-08 23:24 - 002368512 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
    2018-08-31 16:57 - 2018-08-08 23:24 - 001535488 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2018-08-31 16:57 - 2018-08-08 23:23 - 003148288 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
    2018-08-31 16:57 - 2018-08-08 23:23 - 002904064 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2018-08-31 16:57 - 2018-08-08 23:23 - 002172928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
    2018-08-31 16:57 - 2018-08-08 23:23 - 000916992 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
    2018-08-31 16:57 - 2018-08-08 23:22 - 004615680 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2018-08-31 16:57 - 2018-08-08 23:22 - 001586176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2018-08-31 16:57 - 2018-08-08 23:22 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
    2018-08-31 16:57 - 2018-08-08 23:22 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
    2018-08-31 16:57 - 2018-08-08 23:21 - 000505344 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
    2018-08-31 16:57 - 2018-08-08 23:13 - 001189376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
    2018-08-31 16:57 - 2018-08-08 23:13 - 000042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollCtrl.exe
    2018-08-31 16:57 - 2018-08-08 23:12 - 000652288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certca.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 002900992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000350208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000178176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsAuth.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsCfg.dll
    2018-08-31 16:57 - 2018-08-08 23:11 - 000122368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
    2018-08-31 16:57 - 2018-08-08 23:10 - 002893824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
    2018-08-31 16:57 - 2018-08-08 23:10 - 000835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
    2018-08-31 16:57 - 2018-08-08 23:10 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
    2018-08-31 16:57 - 2018-08-08 23:09 - 004191232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2018-08-31 16:57 - 2018-08-08 23:09 - 001466368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2018-08-31 16:57 - 2018-08-08 23:08 - 000195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
    2018-08-31 16:57 - 2018-08-08 22:08 - 000806416 _____ C:\Windows\SysWOW64\locale.nls
    2018-08-31 16:57 - 2018-08-08 22:08 - 000806416 _____ C:\Windows\system32\locale.nls
     
    jimbo0706,
    #13
  15. 2018/09/14
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    2018-08-31 16:57 - 2018-06-08 13:44 - 001121792 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
    2018-08-29 18:37 - 2018-08-29 18:37 - 000000000 ____D C:\Users\lagoi\AppData\Local\Uniden
    2018-08-29 18:35 - 2018-08-29 18:35 - 000002627 _____ C:\Users\Public\Desktop\BCDx36HP_Sentinel.lnk
    2018-08-29 18:35 - 2018-08-29 18:35 - 000000000 ____D C:\ProgramData\Uniden
    2018-08-29 18:35 - 2018-08-29 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniden
    2018-08-29 18:35 - 2018-08-29 18:35 - 000000000 ____D C:\Program Files (x86)\Uniden
    2018-08-29 18:31 - 2018-08-29 18:31 - 000000000 ____D C:\Program Files\Reference Assemblies
    2018-08-29 18:31 - 2018-08-29 18:31 - 000000000 ____D C:\Program Files\MSBuild
    2018-08-29 18:31 - 2018-08-29 18:31 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
    2018-08-29 18:31 - 2018-08-29 18:31 - 000000000 ____D C:\Program Files (x86)\MSBuild
    2018-08-29 18:30 - 2018-03-05 16:07 - 000778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
    2018-08-29 18:30 - 2018-03-05 16:07 - 000103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
    2018-08-29 18:30 - 2018-03-05 16:07 - 000035456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
    2018-08-29 18:30 - 2018-02-14 16:21 - 001166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
    2018-08-29 18:30 - 2018-02-14 16:21 - 000124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2018-08-29 18:30 - 2018-02-14 16:21 - 000035456 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
    2018-08-27 23:26 - 2018-08-27 23:26 - 000675984 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000457512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000386712 _____ (Microsoft Corporation) C:\Windows\system32\vccorlib140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000343192 _____ (Microsoft Corporation) C:\Windows\system32\concrt140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000274072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000248624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\concrt140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000089248 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000087352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000031896 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_1.dll
    2018-08-27 23:26 - 2018-08-27 23:26 - 000028472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_1.dll
    2018-08-27 19:00 - 2018-08-22 11:13 - 002016600 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6439907.dll
    2018-08-27 19:00 - 2018-08-22 11:13 - 001469144 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6439907.dll
    2018-08-22 17:23 - 2018-09-03 17:43 - 000003048 _____ C:\Windows\System32\Tasks\CCleaner Update
    2018-08-22 17:23 - 2018-08-30 12:44 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
    2018-08-22 17:23 - 2018-08-22 17:23 - 000002870 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
    2018-08-22 17:23 - 2018-08-22 17:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
    2018-08-22 17:23 - 2018-08-22 17:23 - 000000000 ____D C:\Program Files\CCleaner
    2018-08-22 17:22 - 2018-08-22 17:28 - 000000000 ____D C:\Program Files (x86)\Google
    2018-08-22 17:22 - 2018-08-22 17:23 - 000000000 ____D C:\Users\lagoi\AppData\Local\Google
    2018-08-19 12:23 - 2018-08-19 12:23 - 000000000 ____D C:\Users\lagoi\AppData\LocalLow\The Virtual World Web Inc_
    2018-08-19 09:25 - 2018-09-14 14:42 - 000004166 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{A66D66FD-4C3E-4F0A-8C0F-E297B1A29D53}
    2018-08-18 23:24 - 2018-09-13 19:55 - 000000000 ____D C:\Users\lagoi\AppData\Local\CrashDumps
    ==================== One Month Modified files and folders ========
    (If an entry is included in the fixlist, the file/folder will be moved.)
    2018-09-14 14:42 - 2018-08-14 20:11 - 000000000 ____D C:\ProgramData\NVIDIA
    2018-09-14 14:39 - 2018-08-14 20:15 - 000000000 __SHD C:\Users\lagoi\IntelGraphicsProfiles
    2018-09-14 14:39 - 2018-04-11 18:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
    2018-09-13 21:53 - 2018-08-14 20:11 - 000000000 ___HD C:\Users\lagoi\MicrosoftEdgeBackups
    2018-09-13 21:26 - 2018-08-14 20:12 - 000838560 _____ C:\Windows\system32\PerfStringBackup.INI
    2018-09-13 21:25 - 2018-04-11 18:36 - 000000000 ____D C:\Windows\INF
    2018-09-13 21:21 - 2018-08-14 22:06 - 000000006 ____H C:\Windows\Tasks\SA.DAT
    2018-09-13 21:21 - 2018-04-11 16:04 - 000786432 _____ C:\Windows\system32\config\BBI
    2018-09-13 20:59 - 2018-04-11 18:38 - 000000000 ___HD C:\Windows\system32\GroupPolicy
    2018-09-13 20:36 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\AppReadiness
    2018-09-13 20:35 - 2018-04-11 18:30 - 000000000 ____D C:\Windows\CbsTemp
    2018-09-13 13:23 - 2018-08-14 22:06 - 000000000 ____D C:\Windows\system32\SleepStudy
    2018-09-13 12:05 - 2018-04-11 18:38 - 000000000 ___HD C:\Program Files\WindowsApps
    2018-09-13 01:01 - 2018-08-14 20:42 - 000000000 ____D C:\Windows\system32\Drivers\RivetNetworks
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\zu-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\yo-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\xh-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\wo-SN
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\uz-Latn-UZ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\tn-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ti-ET
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\tg-Cyrl-TJ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-RS
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-BA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\sd-Arab-PK
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\rw-RW
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\quc-Latn-GT
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\pa-Arab-PK
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\nso-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ku-Arab-IQ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ig-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ha-Latn-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\chr-CHER-US
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\ca-ES-valencia
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\bs-Latn-BA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\SysWOW64\az-Latn-AZ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\zu-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\yo-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\xh-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\wo-SN
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\uz-Latn-UZ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\tn-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ti-ET
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\tg-Cyrl-TJ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\sr-Cyrl-RS
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\sr-Cyrl-BA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\sd-Arab-PK
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\rw-RW
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\quc-Latn-GT
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\pa-Arab-PK
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\nso-ZA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ku-Arab-IQ
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ig-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ha-Latn-NG
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\chr-CHER-US
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\ca-ES-valencia
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\bs-Latn-BA
    2018-09-12 16:46 - 2018-04-12 04:19 - 000000000 ____D C:\Windows\system32\az-Latn-AZ
    2018-09-12 16:46 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\TextInput
    2018-09-12 16:46 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\bcastdvr
    2018-09-12 15:46 - 2018-08-14 20:41 - 000000000 ____D C:\Windows\system32\MRT
    2018-09-12 15:45 - 2018-08-14 20:40 - 139184408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2018-09-10 19:26 - 2018-08-14 20:27 - 000000000 ____D C:\Program Files (x86)\VulkanRT
    2018-09-09 15:31 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\LiveKernelReports
    2018-09-08 18:59 - 2018-08-14 20:58 - 000000000 ____D C:\ProgramData\Packages
    2018-09-05 20:18 - 2018-08-14 20:12 - 005947704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
    2018-09-05 20:18 - 2018-08-14 20:12 - 002612616 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
    2018-09-05 20:17 - 2018-08-14 20:12 - 008330242 _____ C:\Windows\system32\nvcoproc.bin
    2018-09-05 20:17 - 2018-08-14 20:12 - 001767280 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
    2018-09-05 20:17 - 2018-08-14 20:12 - 000634248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
    2018-09-05 20:17 - 2018-08-14 20:12 - 000450416 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
    2018-09-05 20:17 - 2018-08-14 20:12 - 000083256 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
    2018-09-05 18:08 - 2018-08-14 20:13 - 000000000 ____D C:\Users\lagoi\AppData\Local\PlaceholderTileLogoFolder
    2018-09-05 18:08 - 2018-08-14 20:11 - 000000000 ____D C:\Users\lagoi\AppData\Local\Packages
    2018-09-05 13:12 - 2018-08-14 20:11 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
    2018-09-05 00:21 - 2018-08-14 20:13 - 000000000 ___RD C:\Users\lagoi\OneDrive
    2018-09-04 14:08 - 2018-08-14 23:05 - 000000000 ____D C:\Windows\Panther
    2018-09-04 12:25 - 2018-08-14 20:20 - 000000000 ____D C:\Users\lagoi\AppData\Local\NVIDIA Corporation
    2018-09-04 12:25 - 2018-08-14 20:14 - 000000000 ____D C:\Windows\system32\DAX2
    2018-09-04 12:25 - 2018-08-14 20:13 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
    2018-09-03 20:45 - 2018-08-14 22:06 - 000404904 _____ C:\Windows\system32\FNTCACHE.DAT
    2018-09-03 18:38 - 2018-08-14 20:12 - 000000000 ____D C:\Users\lagoi\AppData\Local\Comms
    2018-09-03 18:34 - 2018-08-14 21:01 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\Skype
    2018-09-03 18:26 - 2018-04-11 18:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
    2018-09-03 17:43 - 2018-08-14 20:20 - 000003256 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-09-03 17:43 - 2018-08-14 20:20 - 000002974 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-09-03 17:43 - 2018-08-14 20:20 - 000002898 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-09-03 17:43 - 2018-08-14 20:20 - 000002804 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2018-08-31 20:47 - 2018-08-14 21:01 - 000001379 _____ C:\Users\Public\Desktop\Skype.lnk
    2018-08-31 20:47 - 2018-08-14 21:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
    2018-08-31 17:03 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\SysWOW64\Dism
    2018-08-31 17:03 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\oobe
    2018-08-31 17:03 - 2018-04-11 16:04 - 000000000 ____D C:\Windows\system32\Dism
    2018-08-27 19:02 - 2018-08-14 20:11 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
    2018-08-24 16:26 - 2018-08-14 21:05 - 000000000 ____D C:\Users\lagoi\AppData\Roaming\Utherverse
    2018-08-22 00:29 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
    2018-08-15 15:14 - 2018-04-11 18:38 - 000000000 ____D C:\Windows\appcompat
    ==================== Files in the root of some directories =======
    2018-09-12 23:00 - 2018-09-12 23:00 - 000326934 _____ () C:\Users\lagoi\AppData\Local\ars.cache
    2018-09-12 23:00 - 2018-09-12 23:00 - 000760520 _____ () C:\Users\lagoi\AppData\Local\census.cache
    2018-09-12 22:55 - 2018-09-12 22:55 - 000000036 _____ () C:\Users\lagoi\AppData\Local\housecall.guid.cache
    2018-09-12 16:41 - 2018-09-12 16:41 - 000007601 _____ () C:\Users\lagoi\AppData\Local\Resmon.ResmonCfg
    Some files in TEMP:
    ====================
    2018-09-13 01:04 - 2018-09-13 01:04 - 000258976 _____ () C:\Users\lagoi\AppData\Local\Temp\CustomActions.CA.dll
    2018-09-13 20:42 - 2018-08-08 23:53 - 001947720 _____ (Microsoft Corporation) C:\Users\lagoi\AppData\Local\Temp\dllnt_dump.dll
    ==================== Bamital & volsnap ======================
    (There is no automatic fix for files that do not pass verification.)
    C:\Windows\system32\winlogon.exe => File is digitally signed
    C:\Windows\system32\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\system32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\system32\services.exe => File is digitally signed
    C:\Windows\system32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\system32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\system32\rpcss.dll => File is digitally signed
    C:\Windows\system32\dnsapi.dll => File is digitally signed
    C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
    C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
    LastRegBack: 2018-08-14 22:05
    ==================== End of FRST.txt ============================
     
    jimbo0706,
    #14
  16. 2018/09/14
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.09.2018
    Ran by lagoi (14-09-2018 14:42:57)
    Running from C:\Users\lagoi\OneDrive\Desktop
    Windows 10 Home Version 1803 17134.285 (X64) (2018-08-15 03:07:31)
    Boot Mode: Normal
    ==========================================================

    ==================== Accounts: =============================
    Administrator (S-1-5-21-3334273066-253836076-2869940219-500 - Administrator - Disabled)
    DefaultAccount (S-1-5-21-3334273066-253836076-2869940219-503 - Limited - Disabled)
    Guest (S-1-5-21-3334273066-253836076-2869940219-501 - Limited - Disabled)
    lagoi (S-1-5-21-3334273066-253836076-2869940219-1001 - Administrator - Enabled) => C:\Users\lagoi
    WDAGUtilityAccount (S-1-5-21-3334273066-253836076-2869940219-504 - Limited - Disabled)
    ==================== Security Center ========================
    (If an entry is included in the fixlist, it will be removed.)
    AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    ==================== Installed Programs ======================
    (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
    BCDx36HP Sentinel (HKLM-x32\...\{F53C9C91-9671-4792-A428-80C39CEAF161}) (Version: 2.00.10 - Uniden)
    CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
    DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.24 - NVIDIA Corporation) Hidden
    Dragon Gaming Center (HKLM-x32\...\{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 2.0.1701.0601 - Micro-Star International Co., Ltd.) Hidden
    Dragon Gaming Center (HKLM-x32\...\InstallShield_{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 2.0.1701.0601 - Micro-Star International Co., Ltd.)
    Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
    Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
    Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
    Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.10730.20088 - Microsoft Corporation)
    Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
    Microsoft OneDrive (HKU\S-1-5-21-3334273066-253836076-2869940219-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
    Microsoft OneDrive (HKU\S-1-5-21-3334273066-253836076-2869940219-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09142018144037452\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
    Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
    Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
    NVIDIA GeForce Experience 3.14.1.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.1.48 - NVIDIA Corporation)
    NVIDIA Graphics Driver 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.24 - NVIDIA Corporation)
    NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
    Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
    Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
    Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
    Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8395 - Realtek Semiconductor Corp.)
    Red Light Center 3D Client (HKLM-x32\...\Red Light Center 3D Client) (Version: 1.9.4773 - Utherverse Digital Inc)
    RogueKiller version 12.13.0.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.13.0.0 - Adlice Software)
    Skype version 8.29 (HKLM-x32\...\Skype_is1) (Version: 8.29 - Skype Technologies S.A.)
    Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
    Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.193 - Synaptics Incorporated)
    ==================== Custom CLSID (Whitelisted): ==========================
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
    ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
    ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
    ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-11-01] (Intel Corporation)
    ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-09-05] (NVIDIA Corporation)
    ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
    ==================== Scheduled Tasks (Whitelisted) =============
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    Task: {032E10BD-983D-401A-995D-F8A3F1A3B003} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-30] (Microsoft Corporation)
    Task: {0852FF0F-7041-4F08-A9B0-CC0B3577DA4F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation)
    Task: {1C38FB82-57E6-428C-9CF3-0AA27154C98C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-10] (Microsoft Corporation)
    Task: {2FE6C4BB-C4AE-44A5-85AD-E55B6B566A5A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation)
    Task: {38457E18-7215-4E60-80A1-FAA42246A718} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
    Task: {432B0607-6977-410B-9B79-0957EF29A7DC} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
    Task: {59ADE879-9178-4CE9-BBFB-72E3E9559D91} - System32\Tasks\MSI_Dragon Gaming Center => C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe [2014-01-23] (TODO: <公司名稱>)
    Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
    Task: {65B9526A-F17E-414A-B8BA-16D2A6081BF7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-07-19] (NVIDIA Corporation)
    Task: {700A2EDA-47D0-48C7-872D-E6D3326441FF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-14] (Microsoft Corporation)
    Task: {8A89ADD8-1385-4C17-B335-1CA2B0AA7A35} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation)
    Task: {8C5CA696-5456-47C7-82B0-012474F0AED6} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-10] (Microsoft Corporation)
    Task: {92CEB4F7-41A6-4FD7-A96F-99EFBB3019D0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-08-24] (Piriform Ltd)
    Task: {936496A0-DF63-4D98-B884-80DD171A4C5C} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
    Task: {94CA3A38-E2B1-477C-B2F0-9AE7E2208EAE} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
    Task: {97C46476-FBE3-4BC5-8C2C-F346E2E9E094} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-30] (Microsoft Corporation)
    Task: {A1AA7E00-A720-418D-8122-8BEA504C5AF8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation)
    Task: {A2645421-A7D5-402D-8B51-2CBE7674CDC0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-14] (Microsoft Corporation)
    Task: {A45FEDC6-250A-433E-BBE8-1D6739D8ADC4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-07-19] (NVIDIA Corporation)
    Task: {AA5EB054-803D-40B1-B3E5-A412E8DDD307} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-09-10] (Microsoft Corporation)
    Task: {AACAB13B-7ACC-4BE6-8581-E32355B205CB} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-09-10] (Microsoft Corporation)
    Task: {C49D8D97-FE85-4AB8-B0DD-BC7C4DBACD52} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-07-19] (NVIDIA Corporation)
    Task: {D4A1332B-50E2-474A-AA14-30A94D7D5EE2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-08-24] (Piriform Ltd)
    Task: {DCB6DF4D-9692-449F-8D11-1AC6C93176DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-14] (Microsoft Corporation)
    Task: {E9DACAC1-6CE7-4718-9087-C3203B9D4EF0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-14] (Microsoft Corporation)
    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    ==================== Shortcuts & WMI ========================
    (The entries could be listed to be restored or removed.)

    ==================== Loaded Modules (Whitelisted) ==============
    2018-08-14 20:20 - 2018-07-19 15:16 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
    2018-09-13 21:11 - 2018-07-24 12:32 - 002681424 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
    2018-09-13 21:11 - 2018-08-06 14:20 - 002769768 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
    2018-04-11 18:34 - 2018-04-11 18:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
    2017-03-17 22:34 - 2016-11-01 23:05 - 000401896 _____ () C:\Windows\system32\igfxTray.exe
    2018-04-11 18:34 - 2018-04-11 18:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
    2018-04-11 18:34 - 2018-04-11 18:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
    2018-09-12 15:47 - 2018-08-30 22:12 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
    2018-08-14 20:36 - 2018-08-14 20:36 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
    2018-08-14 20:36 - 2018-08-14 20:36 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
    2014-01-22 10:44 - 2014-01-22 10:44 - 000075912 _____ () C:\Program Files (x86)\MSI\Dragon Gaming Center\WinIo64.dll
    ==================== Alternate Data Streams (Whitelisted) =========
    (If an entry is included in the fixlist, only the ADS will be removed.)

    ==================== Safe Mode (Whitelisted) ===================
    (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
    ==================== Association (Whitelisted) ===============
    (If an entry is included in the fixlist, the registry item will be restored to default or removed.)

    ==================== Internet Explorer trusted/restricted ===============
    (If an entry is included in the fixlist, it will be removed from the registry.)

    ==================== Hosts content: ===============================
    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
    2018-04-11 18:38 - 2018-04-11 18:36 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts

    ==================== Other Areas ============================
    (Currently there is no automatic fix for this section.)
    HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09142018144037421\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
    HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09142018144037436\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lagoi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\july-4-pictures-3.jpg
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09142018144037452\Control Panel\Desktop\\Wallpaper -> C:\Users\lagoi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\july-4-pictures-3.jpg
    DNS Servers: 192.168.1.1
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
    Windows Firewall is enabled.
    ==================== MSCONFIG/TASK MANAGER disabled items ==
    HKLM\...\StartupApproved\Run: => "RTHDVCPL"
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
    HKU\S-1-5-21-3334273066-253836076-2869940219-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09142018144037452\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
    ==================== FirewallRules (Whitelisted) ===============
    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
    FirewallRules: [{6193DF15-E601-4E92-ACEF-7AF004872D05}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{F82BB06D-1B5A-437B-8179-B14911B998F2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{7A1E987C-44BF-4E3C-842C-614D1F5218CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{DB537812-6708-4611-8702-811A68CE2BE3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{316A1634-57E8-4A1F-8FF8-77990F47E4EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{8A5ACA31-BC2F-4161-863D-D453B99A0069}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{6468D816-8942-48E3-ABCE-2748800C2843}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    FirewallRules: [{A66CBA6C-8643-41E4-A0D0-992FDECC663E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    FirewallRules: [TCP Query User{8A413FDA-F170-48EF-AA9D-BD24F9FE1D0F}C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe] => (Allow) C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe
    FirewallRules: [UDP Query User{DCBA8BF3-A0B6-4F45-AF42-F1AA2593EB31}C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe] => (Allow) C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe
    FirewallRules: [{5906F50F-1A0F-4B14-ACA7-F3B31F9C3C13}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
    FirewallRules: [{854A2422-F65A-4A3E-B797-123B9D0C1833}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
    FirewallRules: [{58EFBD06-331F-42B0-A899-3F62DD598D30}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    FirewallRules: [{5AE2F652-7221-4B74-85ED-93A15638EA89}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
    FirewallRules: [{51E98C07-C21E-41E3-B3B6-ADF423EC3428}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
    ==================== Restore Points =========================
    03-09-2018 22:45:56 Windows Modules Installer
    04-09-2018 12:21:46 Driver Booster : Standard SATA AHCI Controller
    05-09-2018 00:33:35 Windows Modules Installer
    06-09-2018 02:57:13 Windows Modules Installer
    06-09-2018 12:17:17 Removed DriverUpdate
    07-09-2018 10:35:02 Windows Modules Installer
    08-09-2018 18:35:04 Windows Modules Installer
    10-09-2018 19:21:19 Windows Modules Installer
    10-09-2018 19:34:35 Windows Modules Installer
    11-09-2018 17:38:55 Windows Modules Installer
    13-09-2018 11:03:11 Windows Modules Installer
    ==================== Faulty Device Manager Devices =============

    ==================== Event log errors: =========================
    Application errors:
    ==================
    Error: (09/13/2018 07:55:34 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: Utherverse.exe, version: 0.0.0.0, time stamp: 0x574e0f43
    Faulting module name: ntdll.dll, version: 10.0.17134.254, time stamp: 0xbf2f8c99
    Exception code: 0xc0000374
    Fault offset: 0x000d8869
    Faulting process id: 0x2cc
    Faulting application start time: 0x01d44baf7c789326
    Faulting application path: C:\Program Files (x86)\Utherverse Digital Inc\Utherverse VWW Client\Utherverse.exe
    Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
    Report Id: 9204857e-6934-41b3-bb5c-ba56f10375fd
    Faulting package full name:
    Faulting package-relative application ID:
    Error: (09/13/2018 04:37:21 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: MicrosoftEdgeCP.exe, version: 11.0.17134.48, time stamp: 0x5ae3f17b
    Faulting module name: ntdll.dll, version: 10.0.17134.254, time stamp: 0xa5a334d4
    Exception code: 0xc0000374
    Fault offset: 0x00000000000f4d3b
    Faulting process id: 0x2604
    Faulting application start time: 0x01d44ba9eccafdc1
    Faulting application path: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
    Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
    Report Id: 2a5362d5-2fc4-4db0-ad8e-a9ddd39e4cb5
    Faulting package full name: Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe
    Faulting package-relative application ID: ContentProcess
    Error: (09/13/2018 04:15:21 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
    Description: Event-ID 0
    Error: (09/13/2018 11:38:25 AM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: SystemSettings.exe, version: 10.0.17134.112, time stamp: 0x2a3c4e62
    Faulting module name: ntdll.dll, version: 10.0.17134.254, time stamp: 0xa5a334d4
    Exception code: 0xc0000005
    Fault offset: 0x00000000000918c4
    Faulting process id: 0x1808
    Faulting application start time: 0x01d44b7d44da3f8e
    Faulting application path: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
    Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
    Report Id: de98aef6-fed7-4696-9094-fd69e5c969c3
    Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
    Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel
    Error: (09/13/2018 01:37:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: The program Utherverse.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
    Process ID: 1b8c
    Start Time: 01d44b2860b709fa
    Termination Time: 4294967295
    Application Path: C:\Program Files (x86)\Utherverse Digital Inc\Utherverse VWW Client\Utherverse.exe
    Report Id: f4c45779-c548-4e89-b7c1-ec352ede9384
    Faulting package full name:
    Faulting package-relative application ID:
    Error: (09/13/2018 01:37:04 AM) (Source: Perflib) (EventID: 1008) (User: )
    Description: The Open Procedure for service "WmiApRpl" in DLL "C:\Windows\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
    Error: (09/13/2018 01:37:04 AM) (Source: PerfNet) (EventID: 2004) (User: )
    Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
    Error: (09/13/2018 01:37:04 AM) (Source: Perflib) (EventID: 1008) (User: )
    Description: The Open Procedure for service "MSDTC" in DLL "C:\Windows\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

    System errors:
    =============
    Error: (09/14/2018 02:39:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    and APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
    Error: (09/14/2018 02:39:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    and APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
    Error: (09/13/2018 09:23:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
    Windows.SecurityCenter.WscDataProtection
    and APPID
    Unavailable
    to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
    Error: (09/13/2018 09:22:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    and APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
    Error: (09/13/2018 09:22:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    and APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
    Error: (09/13/2018 09:21:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
    Error: (09/13/2018 09:21:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The Microsoft Office Click-to-Run Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
    Error: (09/13/2018 09:21:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The NVIDIA Telemetry Container service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.

    Windows Defender:
    ===================================
    Date: 2018-09-13 20:55:05.452
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {DB45C0BA-F3E3-414C-8650-0652D9C841C6}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    Date: 2018-09-10 19:22:03.390
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {81E4494D-0A26-43D8-B136-1667192BBDAF}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    Date: 2018-09-06 00:32:46.880
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {C980AF71-5B47-4FD0-AF24-63C09792B826}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    Date: 2018-08-16 00:48:41.497
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {B3010151-B74A-4E66-9C09-850671B3E175}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    Date: 2018-08-16 00:41:49.580
    Description:
    Windows Defender Antivirus scan has been stopped before completion.
    Scan ID: {8FBBEAB8-97D5-4B56-953C-D16B456153D4}
    Scan Type: Antimalware
    Scan Parameters: Quick Scan
    CodeIntegrity:
    ===================================
    Date: 2018-09-14 14:41:06.995
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-14 14:40:51.581
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-14 14:40:06.261
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-14 14:39:42.170
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-14 14:39:41.883
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-14 14:39:26.445
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-14 14:39:26.445
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    Date: 2018-09-13 21:53:50.212
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
    ==================== Memory info ===========================
    Processor: Intel(R) Core(TM) i7-5700HQ CPU @ 2.70GHz
    Percentage of memory in use: 20%
    Total physical RAM: 16263.45 MB
    Available physical RAM: 12955.21 MB
    Total Virtual: 18695.45 MB
    Available Virtual: 15082.53 MB
    ==================== Drives ================================
    Drive c: () (Fixed) (Total:476.34 GB) (Free:425.46 GB) NTFS
    \\?\Volume{ab5ba419-4714-482e-8e3b-d6f689bbcd23}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.13 GB) NTFS
    \\?\Volume{9ea6d5a8-296c-4255-abe9-eaf81fe94c1d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
    ==================== MBR & Partition Table ==================
    ========================================================
    Disk: 0 (Size: 476.9 GB) (Disk ID: 67024E82)
    Partition: GPT.
    ==================== End of Addition.txt ============================
     
    jimbo0706,
    #15
  17. 2018/09/14
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

    Run FRST(FRST64) and press the Fix button just once and wait.
    The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
     

    Attached Files:

    broni,
    #16
  18. 2018/09/14
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    Fix result of Farbar Recovery Scan Tool (x64) Version: 09.09.2018
    Ran by lagoi (14-09-2018 18:41:25) Run:1
    Running from C:\Users\lagoi\OneDrive\Desktop\virus 1
    Loaded Profiles: lagoi & (Available Profiles: lagoi)
    Boot Mode: Normal
    ==============================================
    fixlist content:
    *****************
    BHO: No Name -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> No File
    S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]
    2018-09-12 23:00 - 2018-09-12 23:00 - 000326934 _____ () C:\Users\lagoi\AppData\Local\ars.cache
    2018-09-12 23:00 - 2018-09-12 23:00 - 000760520 _____ () C:\Users\lagoi\AppData\Local\census.cache
    2018-09-12 22:55 - 2018-09-12 22:55 - 000000036 _____ () C:\Users\lagoi\AppData\Local\housecall.guid.cache
    2018-09-12 16:41 - 2018-09-12 16:41 - 000007601 _____ () C:\Users\lagoi\AppData\Local\Resmon.ResmonCfg
    2018-09-13 01:04 - 2018-09-13 01:04 - 000258976 _____ () C:\Users\lagoi\AppData\Local\Temp\CustomActions.CA.dll
    2018-09-13 20:42 - 2018-08-08 23:53 - 001947720 _____ (Microsoft Corporation) C:\Users\lagoi\AppData\Local\Temp\dllnt_dump.dll
    ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
    ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
    *****************
    "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => removed successfully
    HKLM\Software\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} => not found
    "HKLM\System\CurrentControlSet\Services\iobit_monitor_server" => removed successfully
    iobit_monitor_server => service removed successfully
    C:\Users\lagoi\AppData\Local\ars.cache => moved successfully
    C:\Users\lagoi\AppData\Local\census.cache => moved successfully
    C:\Users\lagoi\AppData\Local\housecall.guid.cache => moved successfully
    C:\Users\lagoi\AppData\Local\Resmon.ResmonCfg => moved successfully
    C:\Users\lagoi\AppData\Local\Temp\CustomActions.CA.dll => moved successfully
    C:\Users\lagoi\AppData\Local\Temp\dllnt_dump.dll => moved successfully
    "HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\IObitUnstaler" => removed successfully
    HKLM\Software\Classes\CLSID\{836AB26C-2DE4-41D3-AC24-4C6C2699B960} => not found
    "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => removed successfully
    HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
     
    jimbo0706,
    #17
  19. 2018/09/14
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Last scans...

    [​IMG] Download Security Check from here or here and save it to your Desktop.
    • Double-click SecurityCheck.exe
    • Follow the onscreen instructions inside of the black box.
    • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

    NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
    NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
    NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run


    [​IMG] Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
    Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update
    • Windows Defender
    • Other Services

    Press "Scan".
    It will create a log (FSS.txt) in the same directory the tool is run.
    Please copy and paste the log to your reply.


    [​IMG] Download Temp File Cleaner (TFC)
    Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
    • Double click on TFC.exe to run the program.
    • Click on Start button to begin cleaning process.
    • TFC will close all running programs, and it may ask you to restart computer.


    [​IMG] Download Sophos Free Virus Removal Tool and save it to your desktop.
    • Double click the icon and select Run
    • Click Next
    • Select I accept the terms in this license agreement, then click Next twice
    • Click Install
    • Click Finish to launch the program
    • Once the virus database has been updated click Start Scanning
    • If any threats are found click Details, then View log file... (bottom left hand corner)
    • Copy and paste the results in your reply
    • Close the Notepad document, close the Threat Details screen, then click Start cleanup
    • Click Exit to close the program
     
    broni,
    #18
  20. 2018/09/14
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    Results of screen317's Security Check version 1.014 --- 12/23/15
    x64 (UAC is enabled)
    Internet Explorer 11
    ``````````````Antivirus/Firewall Check:``````````````
    Windows Firewall Enabled!
    Windows Defender
    WMI entry may not exist for antivirus; attempting automatic update.
    `````````Anti-malware/Other Utilities Check:`````````
    ````````Process Check: objlist.exe by Laurent````````
    Windows Defender MSMpEng.exe
    Malwarebytes Anti-Malware mbamservice.exe
    Malwarebytes Anti-Malware mbamtray.exe
    `````````````````System Health check`````````````````
    Total Fragmentation on Drive C: %
    ````````````````````End of Log``````````````````````
     
    jimbo0706,
    #19
  21. 2018/09/14
    jimbo0706

    jimbo0706 Well-Known Member Thread Starter

    Joined:
    2004/06/08
    Messages:
    244
    Likes Received:
    2
    System Restore Policy:
    ========================

    Security Center:
    ============

    Windows Update:
    ============
    Windows Autoupdate Disabled Policy:
    ============================

    Windows Defender:
    ==============
    Other Services:
    ==============

    File Check:
    ========
    C:\Windows\System32\nsisvc.dll => File is digitally signed
    C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
    C:\Windows\System32\drivers\afd.sys => File is digitally signed
    C:\Windows\System32\drivers\tdx.sys => File is digitally signed
    C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
    C:\Windows\System32\dnsrslvr.dll => File is digitally signed
    C:\Windows\System32\dnsapi.dll => File is digitally signed
    C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
    C:\Windows\System32\mpssvc.dll => File is digitally signed
    C:\Windows\System32\bfe.dll => File is digitally signed
    C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
    C:\Windows\System32\SDRSVC.dll => File is digitally signed
    C:\Windows\System32\vssvc.exe => File is digitally signed
    C:\Windows\System32\wscsvc.dll => File is digitally signed
    C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
    C:\Windows\System32\wuaueng.dll => File is digitally signed
    C:\Windows\System32\qmgr.dll => File is digitally signed
    C:\Windows\System32\es.dll => File is digitally signed
    C:\Windows\System32\cryptsvc.dll => File is digitally signed
    C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
    C:\Windows\System32\ipnathlp.dll => File is digitally signed
    C:\Windows\System32\iphlpsvc.dll => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed

    **** End of log ****
     
    jimbo0706,
    #20
Page 1 of 2

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...