API tools faq
paste
Advertisement
Guest User

Mono

a guest
Dec 19th, 2016
1,612
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 81.42 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-12-2016
  2. Ran by Wasted Time (administrator) on X17-2G7-W92 (19-12-2016 17:16:17)
  3. Running from C:\Users\Wasted Time\Downloads
  4. Loaded Profiles: Wasted Time (Available Profiles: Owner & Wasted Time & Cyemonkey)
  5. Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
  6. Internet Explorer Version 11 (Default browser: Opera)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
  15. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
  16. (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
  17. (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
  18. (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
  19. () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
  20. (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
  21. () C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
  22. (TorchMedia Inc.) C:\Users\Exepe_000\AppData\Local\Torch\Update\TorchCrashHandler.exe
  23. (Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
  24. (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
  25. (NETGEAR) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
  26. (A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
  27. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
  28. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  29. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
  30. () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
  31. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  32. (Intel Corporation) C:\Windows\System32\igfxEM.exe
  33. (Intel Corporation) C:\Windows\System32\igfxHK.exe
  34. (Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
  35. (Intel Corporation) C:\Windows\System32\igfxext.exe
  36. (Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe
  37. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
  38. (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
  39. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
  40. (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
  41. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
  42. (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
  43. (Spotify Ltd) C:\Users\Wasted Time\AppData\Roaming\Spotify\SpotifyWebHelper.exe
  44. () C:\Users\Wasted Time\AppData\Local\Amazon Music\Amazon Music Helper.exe
  45. (Hammer & Chisel, Inc.) C:\Users\Wasted Time\AppData\Local\DiscordPTB\app-0.0.31\DiscordPTB.exe
  46. (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
  47. (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
  48. (Curse, Inc) C:\Users\Wasted Time\AppData\Roaming\Curse Client\Bin\Curse.exe
  49. (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
  50. (ShareX Team) C:\Program Files\ShareX\ShareX.exe
  51. (Curse, Inc.) C:\Users\Wasted Time\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe
  52. () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
  53. (Curse, Inc.) C:\Users\Wasted Time\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe
  54. (Curse, Inc.) C:\Users\Wasted Time\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe
  55. (Curse, Inc.) C:\Users\Wasted Time\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe
  56. (Hammer & Chisel, Inc.) C:\ProgramData\Wasted Time\Discord\app-0.0.296\Discord.exe
  57. (Hammer & Chisel, Inc.) C:\ProgramData\Wasted Time\Discord\app-0.0.296\Discord.exe
  58. (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
  59. (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
  60. (Hammer & Chisel, Inc.) C:\ProgramData\Wasted Time\Discord\app-0.0.296\Discord.exe
  61. (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
  62. () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
  63. (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
  64. (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
  65. (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
  66. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  67. (Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
  68. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera_crashreporter.exe
  69. (Razer, Inc.) C:\Users\Wasted Time\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
  70. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  71. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  72. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  73. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  74. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  75. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  76. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  77. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  78. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  79. () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
  80. (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
  81. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  82. (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
  83. (Opera Software) C:\Program Files (x86)\Opera\42.0.2393.85\opera.exe
  84.  
  85. ==================== Registry (Whitelisted) ====================
  86.  
  87. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  88.  
  89. HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-09-17] (Realtek Semiconductor)
  90. HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15033976 2015-11-20] (Logitech Inc.)
  91. HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
  92. HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2786768 2016-11-29] (Malwarebytes)
  93. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
  94. HKLM-x32\...\Run: [] => [X]
  95. HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-08-22] (Razer Inc.)
  96. HKLM-x32\...\Run: [DiscordPTB] => C:\ProgramData\SquirrelMachineInstalls\DiscordPTB.exe [46669488 2016-01-22] (Hammer & Chisel, Inc.)
  97. HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated)
  98. HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [50343608 2016-12-19] (Hammer & Chisel, Inc.)
  99. Winlogon\Notify\igfxcui: igfxdev.dll [X]
  100. HKU\S-1-5-21-4065172224-1480893673-3259940331-1011\...\Run: [Spotify Web Helper] => C:\Users\Wasted Time\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1444976 2016-12-09] (Spotify Ltd)
  101. HKU\S-1-5-21-4065172224-1480893673-3259940331-1011\...\Run: [Amazon Music] => C:\Users\Wasted Time\AppData\Local\Amazon Music\Amazon Music Helper.exe [5907944 2016-04-14] ()
  102. HKU\S-1-5-21-4065172224-1480893673-3259940331-1011\...\Run: [Spotify] => C:\Users\Wasted Time\AppData\Roaming\Spotify\Spotify.exe [7095408 2016-12-09] (Spotify Ltd)
  103. HKU\S-1-5-21-4065172224-1480893673-3259940331-1011\...\Run: [DiscordPTB] => C:\Users\Wasted Time\AppData\Local\DiscordPTB\app-0.0.31\DiscordPTB.exe [64270336 2016-12-06] (Hammer & Chisel, Inc.)
  104. HKU\S-1-5-21-4065172224-1480893673-3259940331-1011\...\Run: [Discord] => C:\ProgramData\Wasted Time\Discord\app-0.0.296\Discord.exe [62471352 2016-08-24] (Hammer & Chisel, Inc.)
  105. AppInit_DLLs: C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files => No File
  106. ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
  107. ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
  108. ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
  109. Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk [2016-11-23]
  110. ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
  111. Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2016-11-23]
  112. ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
  113. Startup: C:\Users\Cyemonkey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2016-11-18]
  114. ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Wasted Time\AppData\Local\Facebook\Games\FacebookGameroom.exe (No File)
  115. Startup: C:\Users\Exepe_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-10-01]
  116. ShortcutTarget: Curse.lnk -> C:\Users\Wasted Time\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
  117. Startup: C:\Users\Wasted Time\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2016-12-01]
  118. ShortcutTarget: Curse.lnk -> C:\Users\Wasted Time\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
  119. Startup: C:\Users\Wasted Time\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2016-12-07]
  120. ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team)
  121. GroupPolicyUsers\S-1-5-21-4065172224-1480893673-3259940331-1001\User: Restriction <======= ATTENTION
  122. CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
  123.  
  124. ==================== Internet (Whitelisted) ====================
  125.  
  126. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  127.  
  128. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
  129. Tcpip\..\Interfaces\{659a110b-bfb4-447a-a0e7-4e65597de828}: [NameServer] 8.8.8.8,8.8.4.4
  130. Tcpip\..\Interfaces\{659a110b-bfb4-447a-a0e7-4e65597de828}: [DhcpNameServer] 192.168.1.1
  131. Tcpip\..\Interfaces\{7a616093-7c46-4c91-9d41-8fe416e727bf}: [NameServer] 8.8.8.8,8.8.4.4
  132. Tcpip\..\Interfaces\{7a616093-7c46-4c91-9d41-8fe416e727bf}: [DhcpNameServer] 192.168.1.1
  133. Tcpip\..\Interfaces\{80979261-D638-4990-8E64-D95F0E67F43A}: [DhcpNameServer] 109.201.137.37 109.201.137.38
  134. Tcpip\..\Interfaces\{ed3b192a-86a7-4481-bb0d-0e5b0048372b}: [NameServer] 184.172.114.130,208.43.110.90
  135.  
  136. Internet Explorer:
  137. ==================
  138. HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
  139. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
  140. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
  141. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
  142. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
  143. HKU\S-1-5-21-4065172224-1480893673-3259940331-1011\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://samsung13.msn.com
  144. HKU\S-1-5-21-4065172224-1480893673-3259940331-1011\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung13.msn.com
  145. SearchScopes: HKU\S-1-5-21-4065172224-1480893673-3259940331-1011 -> DefaultScope {B4AAF7F3-BB97-4703-BE58-9C581D411D69} URL =
  146. SearchScopes: HKU\S-1-5-21-4065172224-1480893673-3259940331-1011 -> {B4AAF7F3-BB97-4703-BE58-9C581D411D69} URL =
  147. BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-10] (Qualcomm Atheros Commnucations)
  148. BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2016-11-23] (LastPass)
  149. BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
  150. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-11] (Oracle Corporation)
  151. BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2016-11-23] (LastPass)
  152. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-11] (Oracle Corporation)
  153. Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2016-11-23] (LastPass)
  154. Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2016-11-23] (LastPass)
  155. DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
  156. DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com/bin/srldetect_intel_4.5.24.0.cab
  157. DPF: HKLM-x32 {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} hxxp://3dlifeplayer.dl.3dvia.com/player/install/3DVIA_player_installer.exe
  158.  
  159. Edge:
  160. ======
  161. Edge HomeButtonPage: HKU\S-1-5-21-4065172224-1480893673-3259940331-1011 -> hxxp://www.google.com/
  162.  
  163. FireFox:
  164. ========
  165. FF DefaultProfile: 01nb2njy.default
  166. FF ProfilePath: C:\Users\Wasted Time\AppData\Roaming\Mozilla\Firefox\Profiles\01nb2njy.default [2016-12-18]
  167. FF Homepage: Mozilla\Firefox\Profiles\01nb2njy.default -> hxxps://google.com
  168. FF Extension: (Adguard AdBlocker) - C:\Users\Wasted Time\AppData\Roaming\Mozilla\Firefox\Profiles\01nb2njy.default\Extensions\adguardadblocker@adguard.com.xpi [2016-10-27]
  169. FF Extension: (Long URL Please) - C:\Users\Wasted Time\AppData\Roaming\Mozilla\Firefox\Profiles\01nb2njy.default\Extensions\longurlplease@darragh.curran.xpi [2016-09-18]
  170. FF HKLM-x32\...\Firefox\Extensions: [{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}] - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension => not found
  171. FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-13] ()
  172. FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-11-23] (LastPass)
  173. FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
  174. FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems)
  175. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-13] ()
  176. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
  177. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
  178. FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-07-11] (Oracle Corporation)
  179. FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-07-11] (Oracle Corporation)
  180. FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-11-23] (LastPass)
  181. FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
  182. FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-07-27] (Microsoft Corporation)
  183. FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll [No File]
  184. FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-08-30] (Pando Networks)
  185. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
  186. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
  187. FF Plugin-x32: @virtools.com/3DviaPlayer -> C:\Program Files (x86)\Virtools\3D Life Player\npvirtools.dll [2012-04-05] (Dassault Systèmes)
  188. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
  189. FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems)
  190. FF Plugin HKU\S-1-5-21-4065172224-1480893673-3259940331-1011: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Wasted Time\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies ApS)
  191.  
  192. Chrome:
  193. =======
  194. CHR DefaultSearchKeyword: Default -> lp
  195. CHR Profile: C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default [2016-12-14]
  196. CHR Extension: (Google Slides) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-19]
  197. CHR Extension: (BetterTTV) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2016-06-04]
  198. CHR Extension: (TechSmith Snagit (Extension)) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\annopcfmbiofommjmcmcfmhklhgbhkce [2016-05-12]
  199. CHR Extension: (Google Docs) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-19]
  200. CHR Extension: (Google Drive) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-19]
  201. CHR Extension: (Adguard AdBlocker) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2016-12-13]
  202. CHR Extension: (YouTube) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-19]
  203. CHR Extension: (Slinky Elegant) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln [2016-03-20]
  204. CHR Extension: (Black Menu for Google™) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\eignhdfgaldabilaaegmdfbajngjmoke [2016-12-13]
  205. CHR Extension: (Gmail Offline) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2016-03-19]
  206. CHR Extension: (Google Sheets) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-19]
  207. CHR Extension: (Google Docs Offline) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
  208. CHR Extension: (AdBlock) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-12-13]
  209. CHR Extension: (Grammarly for Chrome) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2016-12-13]
  210. CHR Extension: (Momentum) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\laookkfknpbbblfpciffpaejjkokdgca [2016-12-13]
  211. CHR Extension: (Google Dictionary (by Google)) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2016-04-19]
  212. CHR Extension: (Chrome Web Store Payments) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
  213. CHR Extension: (Browsec VPN - Privacy and Security Online) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\omghfjlpggmjjaagoclmmobgdodcjboh [2016-12-13]
  214. CHR Extension: (Gmail) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-19]
  215. CHR Extension: (Chrome Media Router) - C:\Users\Wasted Time\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-13]
  216. CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
  217. CHR HKLM-x32\...\Chrome\Extension: [fmgckcapmffomaifonnhgkfdgljnkpgi] - C:\Program Files\Trend Micro\AMSP\module\20013\ChromeExt\chromeextension\TmOspreychromeExt.crx <not found>
  218. CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
  219.  
  220. Opera:
  221. =======
  222. OPR Extension: (Adguard AdBlocker) - C:\Users\Wasted Time\AppData\Roaming\Opera Software\Opera Stable\Extensions\bopfaehpakahokaelnomggbohfbimcia [2016-12-09]
  223. OPR Extension: (SurfEasy Proxy, an Opera Software Company) - C:\Users\Wasted Time\AppData\Roaming\Opera Software\Opera Stable\Extensions\ebpielhlnnpkiddeeacoephkilopgblc [2016-10-31]
  224. OPR Extension: (LastPass: Free Password Manager) - C:\Users\Wasted Time\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2016-11-23]
  225.  
  226. ==================== Services (Whitelisted) ====================
  227.  
  228. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  229.  
  230. R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
  231. R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2218712 2016-12-13] (Adobe Systems, Incorporated)
  232. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1447944 2016-12-16] ()
  233. R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593976 2012-09-04] (Samsung Electronics CO., LTD.)
  234. S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [249104 2016-11-25] (EasyAntiCheat Ltd)
  235. S3 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
  236. R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-10-24] (Intel Corporation)
  237. R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
  238. R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193144 2015-11-20] (Logitech Inc.)
  239. R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4317648 2016-11-29] (Malwarebytes)
  240. R2 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [231752 2012-09-25] (NETGEAR)
  241. R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187824 2016-07-19] ()
  242. R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4255232 2016-02-15] (A-Volute) [File not signed]
  243. R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
  244. R2 TorchCrashHandler; C:\Users\Exepe_000\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217400 2015-12-26] (TorchMedia Inc.) <==== ATTENTION
  245. S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
  246. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
  247. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
  248. R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-10] (Atheros) [File not signed]
  249.  
  250. ===================== Drivers (Whitelisted) ======================
  251.  
  252. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  253.  
  254. R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-24] (CyberLink)
  255. R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [15920 2009-08-14] (Windows (R) Codename Longhorn DDK provider)
  256. R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
  257. R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [68384 2015-06-10] (Logitech Inc.)
  258. R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [176064 2016-12-19] (Malwarebytes)
  259. S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2016-12-19] (Malwarebytes)
  260. R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [250816 2016-12-19] (Malwarebytes)
  261. S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
  262. R2 NPF; C:\windows\system32\drivers\npf.sys [35344 2012-11-19] (CACE Technologies, Inc.)
  263. R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
  264. R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-05-06] (Razer, Inc.)
  265. R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [136312 2016-06-27] (Razer, Inc.)
  266. R3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [40640 2016-02-15] (Windows (R) Win 7 DDK provider)
  267. S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
  268. S0 tmel; C:\WINDOWS\System32\DRIVERS\tmel.sys [37904 2013-07-10] (Trend Micro Inc.)
  269. R2 tmusa; C:\WINDOWS\system32\DRIVERS\tmusa.sys [103712 2013-07-07] (Trend Micro Inc.)
  270. S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
  271. S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
  272. S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
  273. U3 WMPNetworkSvc; no ImagePath
  274.  
  275. ==================== NetSvcs (Whitelisted) ===================
  276.  
  277. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  278.  
  279.  
  280. ==================== One Month Created files and folders ========
  281.  
  282. (If an entry is included in the fixlist, the file/folder will be moved.)
  283.  
  284. 2016-12-19 17:16 - 2016-12-19 17:19 - 00027785 _____ C:\Users\Wasted Time\Downloads\FRST.txt
  285. 2016-12-19 17:15 - 2016-12-19 17:16 - 00000000 ____D C:\FRST
  286. 2016-12-19 17:15 - 2016-12-19 17:15 - 02420224 _____ (Farbar) C:\Users\Wasted Time\Downloads\FRST64.exe
  287. 2016-12-19 17:14 - 2016-12-19 17:14 - 01762304 _____ (Farbar) C:\Users\Wasted Time\Downloads\FRST.exe
  288. 2016-12-19 17:04 - 2016-12-19 17:04 - 17175976 _____ (Bandisoft) C:\Users\Wasted Time\Downloads\bdcamsetup.exe
  289. 2016-12-19 16:46 - 2016-12-19 16:49 - 00000000 ____D C:\Users\Wasted Time\AppData\Roaming\discord
  290. 2016-12-19 16:46 - 2016-12-19 16:46 - 00000000 ____D C:\Users\Wasted Time\AppData\Roaming\discordptb
  291. 2016-12-19 16:26 - 2016-12-19 16:26 - 00000000 ____D C:\ProgramData\Wasted Time
  292. 2016-12-18 02:19 - 2016-12-18 02:19 - 00250816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\061507B3.sys
  293. 2016-12-17 17:48 - 2016-12-19 16:41 - 00176064 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
  294. 2016-12-17 17:46 - 2016-12-19 16:41 - 00102856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
  295. 2016-12-17 17:46 - 2016-12-19 16:41 - 00091584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
  296. 2016-12-17 17:46 - 2016-12-19 16:41 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
  297. 2016-12-17 17:45 - 2016-12-19 16:41 - 00250816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
  298. 2016-12-17 17:45 - 2016-12-17 17:45 - 00001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
  299. 2016-12-17 17:45 - 2016-12-17 17:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
  300. 2016-12-17 17:45 - 2016-12-17 17:45 - 00000000 ____D C:\Program Files\Malwarebytes
  301. 2016-12-17 17:45 - 2016-11-29 06:27 - 00077408 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
  302. 2016-12-17 17:43 - 2016-12-17 17:43 - 51969976 _____ (Malwarebytes ) C:\Users\Wasted Time\Downloads\mb3-setup-consumer-3.0.4.1269.exe
  303. 2016-12-17 08:54 - 2016-12-19 16:27 - 00002059 _____ C:\Users\Wasted Time\Desktop\Discord.lnk
  304. 2016-12-17 08:53 - 2016-12-19 15:16 - 00000000 ____D C:\Users\Wasted Time\AppData\Local\Discord
  305. 2016-12-16 17:29 - 2016-12-16 17:29 - 00000000 ____D C:\Users\Wasted Time\AppData\Local\Chromium
  306. 2016-12-15 15:53 - 2016-12-15 15:53 - 00003294 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
  307. 2016-12-15 05:39 - 2016-12-15 05:39 - 00000000 ____D C:\WINDOWS\Minidump
  308. 2016-12-13 15:59 - 2016-12-16 22:37 - 00000000 ____D C:\Users\Wasted Time\AppData\Local\DiscordPTB
  309. 2016-12-10 13:44 - 2016-12-10 13:44 - 00000222 _____ C:\Users\Cyemonkey\Desktop\Don't Starve Together.url
  310. 2016-12-09 06:22 - 2016-11-11 05:22 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
  311. 2016-12-09 06:22 - 2016-11-11 05:14 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
  312. 2016-12-09 06:22 - 2016-11-11 05:13 - 01886344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
  313. 2016-12-09 06:22 - 2016-11-11 05:13 - 00352096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
  314. 2016-12-09 06:22 - 2016-11-11 05:03 - 01069720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
  315. 2016-12-09 06:22 - 2016-11-11 05:03 - 00266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
  316. 2016-12-09 06:22 - 2016-11-11 05:01 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
  317. 2016-12-09 06:22 - 2016-11-11 05:01 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
  318. 2016-12-09 06:22 - 2016-11-11 04:57 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
  319. 2016-12-09 06:22 - 2016-11-11 04:56 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
  320. 2016-12-09 06:22 - 2016-11-11 04:56 - 00424616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
  321. 2016-12-09 06:22 - 2016-11-11 04:56 - 00163752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
  322. 2016-12-09 06:22 - 2016-11-11 04:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
  323. 2016-12-09 06:22 - 2016-11-11 04:26 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
  324. 2016-12-09 06:22 - 2016-11-11 04:26 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
  325. 2016-12-09 06:22 - 2016-11-11 04:25 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
  326. 2016-12-09 06:22 - 2016-11-11 04:24 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
  327. 2016-12-09 06:22 - 2016-11-11 04:24 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
  328. 2016-12-09 06:22 - 2016-11-11 04:23 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
  329. 2016-12-09 06:22 - 2016-11-11 04:22 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
  330. 2016-12-09 06:22 - 2016-11-11 04:22 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
  331. 2016-12-09 06:22 - 2016-11-11 04:21 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
  332. 2016-12-09 06:22 - 2016-11-11 04:21 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
  333. 2016-12-09 06:22 - 2016-11-11 04:21 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
  334. 2016-12-09 06:22 - 2016-11-11 04:20 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
  335. 2016-12-09 06:22 - 2016-11-11 04:20 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
  336. 2016-12-09 06:22 - 2016-11-11 04:20 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
  337. 2016-12-09 06:22 - 2016-11-11 04:20 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
  338. 2016-12-09 06:22 - 2016-11-11 04:19 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
  339. 2016-12-09 06:22 - 2016-11-11 04:19 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
  340. 2016-12-09 06:22 - 2016-11-11 04:19 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
  341. 2016-12-09 06:22 - 2016-11-11 04:18 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
  342. 2016-12-09 06:22 - 2016-11-11 04:18 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
  343. 2016-12-09 06:22 - 2016-11-11 04:17 - 01004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
  344. 2016-12-09 06:22 - 2016-11-11 04:14 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
  345. 2016-12-09 06:22 - 2016-11-11 04:13 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
  346. 2016-12-09 06:22 - 2016-11-11 04:11 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
  347. 2016-12-09 06:22 - 2016-11-11 04:11 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
  348. 2016-12-09 06:22 - 2016-11-11 04:08 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
  349. 2016-12-09 06:22 - 2016-11-11 04:07 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
  350. 2016-12-09 06:22 - 2016-11-11 04:06 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
  351. 2016-12-09 06:22 - 2016-11-11 04:04 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
  352. 2016-12-09 06:22 - 2016-11-11 04:04 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
  353. 2016-12-09 06:22 - 2016-11-11 04:04 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
  354. 2016-12-09 06:22 - 2016-11-11 04:03 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
  355. 2016-12-09 06:22 - 2016-11-11 02:49 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
  356. 2016-12-09 06:22 - 2016-11-11 02:48 - 02277248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
  357. 2016-12-09 06:22 - 2016-11-11 02:47 - 00527880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
  358. 2016-12-09 06:22 - 2016-11-11 02:42 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
  359. 2016-12-09 06:22 - 2016-11-11 02:42 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
  360. 2016-12-09 06:22 - 2016-11-11 02:42 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
  361. 2016-12-09 06:22 - 2016-11-11 02:42 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
  362. 2016-12-09 06:22 - 2016-11-11 02:42 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfaudiocnv.dll
  363. 2016-12-09 06:22 - 2016-11-11 02:23 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
  364. 2016-12-09 06:22 - 2016-11-11 02:19 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
  365. 2016-12-09 06:22 - 2016-11-11 02:19 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
  366. 2016-12-09 06:22 - 2016-11-11 02:19 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
  367. 2016-12-09 06:22 - 2016-11-11 02:18 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
  368. 2016-12-09 06:22 - 2016-11-11 02:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
  369. 2016-12-09 06:22 - 2016-11-11 02:15 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
  370. 2016-12-09 06:22 - 2016-11-11 02:15 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
  371. 2016-12-09 06:22 - 2016-11-11 02:11 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
  372. 2016-12-09 06:22 - 2016-11-11 02:09 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
  373. 2016-12-09 06:22 - 2016-11-11 02:05 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
  374. 2016-12-09 06:22 - 2016-11-11 02:04 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
  375. 2016-12-09 06:22 - 2016-11-11 02:04 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
  376. 2016-12-09 06:22 - 2016-11-11 02:03 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
  377. 2016-12-09 06:21 - 2016-11-11 05:15 - 00198856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
  378. 2016-12-09 06:21 - 2016-11-11 05:15 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
  379. 2016-12-09 06:21 - 2016-11-11 05:14 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
  380. 2016-12-09 06:21 - 2016-11-11 05:14 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
  381. 2016-12-09 06:21 - 2016-11-11 05:13 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
  382. 2016-12-09 06:21 - 2016-11-11 05:13 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
  383. 2016-12-09 06:21 - 2016-11-11 05:12 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
  384. 2016-12-09 06:21 - 2016-11-11 05:10 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
  385. 2016-12-09 06:21 - 2016-11-11 05:09 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
  386. 2016-12-09 06:21 - 2016-11-11 05:08 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
  387. 2016-12-09 06:21 - 2016-11-11 05:03 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
  388. 2016-12-09 06:21 - 2016-11-11 05:02 - 02828376 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
  389. 2016-12-09 06:21 - 2016-11-11 05:02 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
  390. 2016-12-09 06:21 - 2016-11-11 05:01 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
  391. 2016-12-09 06:21 - 2016-11-11 05:01 - 00637400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
  392. 2016-12-09 06:21 - 2016-11-11 05:00 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
  393. 2016-12-09 06:21 - 2016-11-11 05:00 - 00219488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
  394. 2016-12-09 06:21 - 2016-11-11 04:59 - 02913136 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
  395. 2016-12-09 06:21 - 2016-11-11 04:59 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
  396. 2016-12-09 06:21 - 2016-11-11 04:57 - 08170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
  397. 2016-12-09 06:21 - 2016-11-11 04:57 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
  398. 2016-12-09 06:21 - 2016-11-11 04:57 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
  399. 2016-12-09 06:21 - 2016-11-11 04:57 - 01473048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
  400. 2016-12-09 06:21 - 2016-11-11 04:56 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
  401. 2016-12-09 06:21 - 2016-11-11 04:56 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
  402. 2016-12-09 06:21 - 2016-11-11 04:56 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
  403. 2016-12-09 06:21 - 2016-11-11 04:56 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
  404. 2016-12-09 06:21 - 2016-11-11 04:56 - 00187520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
  405. 2016-12-09 06:21 - 2016-11-11 04:56 - 00126568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
  406. 2016-12-09 06:21 - 2016-11-11 04:55 - 01600624 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
  407. 2016-12-09 06:21 - 2016-11-11 04:55 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
  408. 2016-12-09 06:21 - 2016-11-11 04:55 - 00743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
  409. 2016-12-09 06:21 - 2016-11-11 04:54 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
  410. 2016-12-09 06:21 - 2016-11-11 04:51 - 00454592 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
  411. 2016-12-09 06:21 - 2016-11-11 04:31 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
  412. 2016-12-09 06:21 - 2016-11-11 04:27 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
  413. 2016-12-09 06:21 - 2016-11-11 04:27 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
  414. 2016-12-09 06:21 - 2016-11-11 04:27 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
  415. 2016-12-09 06:21 - 2016-11-11 04:26 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
  416. 2016-12-09 06:21 - 2016-11-11 04:26 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
  417. 2016-12-09 06:21 - 2016-11-11 04:26 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
  418. 2016-12-09 06:21 - 2016-11-11 04:25 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
  419. 2016-12-09 06:21 - 2016-11-11 04:25 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
  420. 2016-12-09 06:21 - 2016-11-11 04:25 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
  421. 2016-12-09 06:21 - 2016-11-11 04:25 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
  422. 2016-12-09 06:21 - 2016-11-11 04:24 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
  423. 2016-12-09 06:21 - 2016-11-11 04:24 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
  424. 2016-12-09 06:21 - 2016-11-11 04:24 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
  425. 2016-12-09 06:21 - 2016-11-11 04:24 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
  426. 2016-12-09 06:21 - 2016-11-11 04:24 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
  427. 2016-12-09 06:21 - 2016-11-11 04:23 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
  428. 2016-12-09 06:21 - 2016-11-11 04:23 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
  429. 2016-12-09 06:21 - 2016-11-11 04:23 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
  430. 2016-12-09 06:21 - 2016-11-11 04:22 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
  431. 2016-12-09 06:21 - 2016-11-11 04:20 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
  432. 2016-12-09 06:21 - 2016-11-11 04:20 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
  433. 2016-12-09 06:21 - 2016-11-11 04:20 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
  434. 2016-12-09 06:21 - 2016-11-11 04:20 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
  435. 2016-12-09 06:21 - 2016-11-11 04:20 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
  436. 2016-12-09 06:21 - 2016-11-11 04:19 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
  437. 2016-12-09 06:21 - 2016-11-11 04:19 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
  438. 2016-12-09 06:21 - 2016-11-11 04:19 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
  439. 2016-12-09 06:21 - 2016-11-11 04:19 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
  440. 2016-12-09 06:21 - 2016-11-11 04:19 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
  441. 2016-12-09 06:21 - 2016-11-11 04:19 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
  442. 2016-12-09 06:21 - 2016-11-11 04:18 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
  443. 2016-12-09 06:21 - 2016-11-11 04:18 - 02084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
  444. 2016-12-09 06:21 - 2016-11-11 04:18 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
  445. 2016-12-09 06:21 - 2016-11-11 04:18 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
  446. 2016-12-09 06:21 - 2016-11-11 04:18 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
  447. 2016-12-09 06:21 - 2016-11-11 04:17 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
  448. 2016-12-09 06:21 - 2016-11-11 04:17 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
  449. 2016-12-09 06:21 - 2016-11-11 04:17 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
  450. 2016-12-09 06:21 - 2016-11-11 04:17 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
  451. 2016-12-09 06:21 - 2016-11-11 04:17 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
  452. 2016-12-09 06:21 - 2016-11-11 04:16 - 01477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
  453. 2016-12-09 06:21 - 2016-11-11 04:16 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
  454. 2016-12-09 06:21 - 2016-11-11 04:16 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
  455. 2016-12-09 06:21 - 2016-11-11 04:16 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
  456. 2016-12-09 06:21 - 2016-11-11 04:16 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
  457. 2016-12-09 06:21 - 2016-11-11 04:15 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
  458. 2016-12-09 06:21 - 2016-11-11 04:14 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
  459. 2016-12-09 06:21 - 2016-11-11 04:14 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
  460. 2016-12-09 06:21 - 2016-11-11 04:14 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
  461. 2016-12-09 06:21 - 2016-11-11 04:14 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
  462. 2016-12-09 06:21 - 2016-11-11 04:14 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
  463. 2016-12-09 06:21 - 2016-11-11 04:13 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
  464. 2016-12-09 06:21 - 2016-11-11 04:12 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
  465. 2016-12-09 06:21 - 2016-11-11 04:11 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
  466. 2016-12-09 06:21 - 2016-11-11 04:10 - 13084160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
  467. 2016-12-09 06:21 - 2016-11-11 04:09 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
  468. 2016-12-09 06:21 - 2016-11-11 04:09 - 01366016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
  469. 2016-12-09 06:21 - 2016-11-11 04:09 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
  470. 2016-12-09 06:21 - 2016-11-11 04:08 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
  471. 2016-12-09 06:21 - 2016-11-11 04:07 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
  472. 2016-12-09 06:21 - 2016-11-11 04:07 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
  473. 2016-12-09 06:21 - 2016-11-11 04:07 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
  474. 2016-12-09 06:21 - 2016-11-11 04:07 - 01691136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
  475. 2016-12-09 06:21 - 2016-11-11 04:07 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
  476. 2016-12-09 06:21 - 2016-11-11 04:06 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
  477. 2016-12-09 06:21 - 2016-11-11 04:06 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
  478. 2016-12-09 06:21 - 2016-11-11 04:05 - 04136448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
  479. 2016-12-09 06:21 - 2016-11-11 04:05 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
  480. 2016-12-09 06:21 - 2016-11-11 04:05 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
  481. 2016-12-09 06:21 - 2016-11-11 04:05 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
  482. 2016-12-09 06:21 - 2016-11-11 04:04 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
  483. 2016-12-09 06:21 - 2016-11-11 04:04 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
  484. 2016-12-09 06:21 - 2016-11-11 04:04 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
  485. 2016-12-09 06:21 - 2016-11-11 04:04 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
  486. 2016-12-09 06:21 - 2016-11-11 04:04 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
  487. 2016-12-09 06:21 - 2016-11-11 04:04 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
  488. 2016-12-09 06:21 - 2016-11-11 04:03 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
  489. 2016-12-09 06:21 - 2016-11-11 04:03 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
  490. 2016-12-09 06:21 - 2016-11-11 04:03 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
  491. 2016-12-09 06:21 - 2016-11-11 04:03 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
  492. 2016-12-09 06:21 - 2016-11-11 04:03 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
  493. 2016-12-09 06:21 - 2016-11-11 04:03 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
  494. 2016-12-09 06:21 - 2016-11-11 04:03 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
  495. 2016-12-09 06:21 - 2016-11-11 04:03 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
  496. 2016-12-09 06:21 - 2016-11-11 04:02 - 03542016 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
  497. 2016-12-09 06:21 - 2016-11-11 04:02 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
  498. 2016-12-09 06:21 - 2016-11-11 04:01 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
  499. 2016-12-09 06:21 - 2016-11-11 03:39 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
  500. 2016-12-09 06:21 - 2016-11-11 03:00 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
  501. 2016-12-09 06:21 - 2016-11-11 02:59 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
  502. 2016-12-09 06:21 - 2016-11-11 02:56 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
  503. 2016-12-09 06:21 - 2016-11-11 02:54 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
  504. 2016-12-09 06:21 - 2016-11-11 02:49 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
  505. 2016-12-09 06:21 - 2016-11-11 02:49 - 00248480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
  506. 2016-12-09 06:21 - 2016-11-11 02:47 - 05722832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
  507. 2016-12-09 06:21 - 2016-11-11 02:47 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
  508. 2016-12-09 06:21 - 2016-11-11 02:47 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
  509. 2016-12-09 06:21 - 2016-11-11 02:47 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
  510. 2016-12-09 06:21 - 2016-11-11 02:45 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
  511. 2016-12-09 06:21 - 2016-11-11 02:45 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
  512. 2016-12-09 06:21 - 2016-11-11 02:42 - 06668032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
  513. 2016-12-09 06:21 - 2016-11-11 02:42 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
  514. 2016-12-09 06:21 - 2016-11-11 02:42 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
  515. 2016-12-09 06:21 - 2016-11-11 02:42 - 00374448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
  516. 2016-12-09 06:21 - 2016-11-11 02:42 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
  517. 2016-12-09 06:21 - 2016-11-11 02:41 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
  518. 2016-12-09 06:21 - 2016-11-11 02:41 - 00157536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
  519. 2016-12-09 06:21 - 2016-11-11 02:38 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
  520. 2016-12-09 06:21 - 2016-11-11 02:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
  521. 2016-12-09 06:21 - 2016-11-11 02:27 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
  522. 2016-12-09 06:21 - 2016-11-11 02:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
  523. 2016-12-09 06:21 - 2016-11-11 02:26 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
  524. 2016-12-09 06:21 - 2016-11-11 02:26 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
  525. 2016-12-09 06:21 - 2016-11-11 02:25 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
  526. 2016-12-09 06:21 - 2016-11-11 02:25 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
  527. 2016-12-09 06:21 - 2016-11-11 02:24 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
  528. 2016-12-09 06:21 - 2016-11-11 02:24 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
  529. 2016-12-09 06:21 - 2016-11-11 02:24 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
  530. 2016-12-09 06:21 - 2016-11-11 02:24 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
  531. 2016-12-09 06:21 - 2016-11-11 02:23 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
  532. 2016-12-09 06:21 - 2016-11-11 02:22 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
  533. 2016-12-09 06:21 - 2016-11-11 02:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
  534. 2016-12-09 06:21 - 2016-11-11 02:21 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
  535. 2016-12-09 06:21 - 2016-11-11 02:21 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
  536. 2016-12-09 06:21 - 2016-11-11 02:21 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
  537. 2016-12-09 06:21 - 2016-11-11 02:20 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
  538. 2016-12-09 06:21 - 2016-11-11 02:20 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
  539. 2016-12-09 06:21 - 2016-11-11 02:20 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
  540. 2016-12-09 06:21 - 2016-11-11 02:20 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
  541. 2016-12-09 06:21 - 2016-11-11 02:19 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
  542. 2016-12-09 06:21 - 2016-11-11 02:19 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
  543. 2016-12-09 06:21 - 2016-11-11 02:19 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
  544. 2016-12-09 06:21 - 2016-11-11 02:19 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
  545. 2016-12-09 06:21 - 2016-11-11 02:19 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
  546. 2016-12-09 06:21 - 2016-11-11 02:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
  547. 2016-12-09 06:21 - 2016-11-11 02:18 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
  548. 2016-12-09 06:21 - 2016-11-11 02:18 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
  549. 2016-12-09 06:21 - 2016-11-11 02:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
  550. 2016-12-09 06:21 - 2016-11-11 02:18 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
  551. 2016-12-09 06:21 - 2016-11-11 02:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
  552. 2016-12-09 06:21 - 2016-11-11 02:16 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
  553. 2016-12-09 06:21 - 2016-11-11 02:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
  554. 2016-12-09 06:21 - 2016-11-11 02:15 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
  555. 2016-12-09 06:21 - 2016-11-11 02:15 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
  556. 2016-12-09 06:21 - 2016-11-11 02:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
  557. 2016-12-09 06:21 - 2016-11-11 02:15 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
  558. 2016-12-09 06:21 - 2016-11-11 02:14 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
  559. 2016-12-09 06:21 - 2016-11-11 02:14 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
  560. 2016-12-09 06:21 - 2016-11-11 02:13 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
  561. 2016-12-09 06:21 - 2016-11-11 02:13 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
  562. 2016-12-09 06:21 - 2016-11-11 02:12 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
  563. 2016-12-09 06:21 - 2016-11-11 02:10 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
  564. 2016-12-09 06:21 - 2016-11-11 02:10 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
  565. 2016-12-09 06:21 - 2016-11-11 02:10 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
  566. 2016-12-09 06:21 - 2016-11-11 02:09 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
  567. 2016-12-09 06:21 - 2016-11-11 02:09 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
  568. 2016-12-09 06:21 - 2016-11-11 02:08 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
  569. 2016-12-09 06:21 - 2016-11-11 02:06 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
  570. 2016-12-09 06:21 - 2016-11-11 02:06 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
  571. 2016-12-09 06:21 - 2016-11-11 02:06 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
  572. 2016-12-09 06:21 - 2016-11-11 02:06 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
  573. 2016-12-09 06:21 - 2016-11-11 02:06 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
  574. 2016-12-09 06:21 - 2016-11-11 02:06 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
  575. 2016-12-09 06:21 - 2016-11-11 02:06 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
  576. 2016-12-09 06:21 - 2016-11-11 02:06 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxclu.dll
  577. 2016-12-09 06:21 - 2016-11-11 02:05 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
  578. 2016-12-09 06:21 - 2016-11-11 02:05 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
  579. 2016-12-09 06:21 - 2016-11-11 02:04 - 01992704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
  580. 2016-12-09 06:21 - 2016-11-11 02:04 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
  581. 2016-12-09 06:21 - 2016-11-11 02:04 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
  582. 2016-12-09 06:21 - 2016-11-11 02:04 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
  583. 2016-12-09 06:21 - 2016-11-11 02:04 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
  584. 2016-12-09 06:21 - 2016-11-11 02:04 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
  585. 2016-12-09 06:21 - 2016-11-11 02:03 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
  586. 2016-12-09 06:21 - 2016-11-11 02:03 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
  587. 2016-12-09 06:21 - 2016-11-11 02:03 - 01576448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
  588. 2016-12-09 06:21 - 2016-11-11 02:03 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
  589. 2016-12-09 06:21 - 2016-11-11 02:03 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
  590. 2016-12-09 06:21 - 2016-11-11 02:02 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
  591. 2016-12-09 06:21 - 2016-11-11 02:01 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
  592. 2016-12-09 06:21 - 2016-11-11 01:40 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
  593. 2016-12-09 06:20 - 2016-11-11 05:01 - 02189152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
  594. 2016-12-09 06:20 - 2016-11-11 05:01 - 01738048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
  595. 2016-12-09 06:20 - 2016-11-11 05:01 - 00658264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
  596. 2016-12-09 06:20 - 2016-11-11 05:01 - 00401760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
  597. 2016-12-09 06:20 - 2016-11-11 05:00 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
  598. 2016-12-09 06:20 - 2016-11-11 04:59 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
  599. 2016-12-09 06:20 - 2016-11-11 04:56 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
  600. 2016-12-09 06:20 - 2016-11-11 04:51 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
  601. 2016-12-09 06:20 - 2016-11-11 04:31 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
  602. 2016-12-09 06:20 - 2016-11-11 04:28 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
  603. 2016-12-09 06:20 - 2016-11-11 04:28 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
  604. 2016-12-09 06:20 - 2016-11-11 04:25 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
  605. 2016-12-09 06:20 - 2016-11-11 04:25 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
  606. 2016-12-09 06:20 - 2016-11-11 04:24 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
  607. 2016-12-09 06:20 - 2016-11-11 04:24 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
  608. 2016-12-09 06:20 - 2016-11-11 04:23 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
  609. 2016-12-09 06:20 - 2016-11-11 04:22 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
  610. 2016-12-09 06:20 - 2016-11-11 04:21 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
  611. 2016-12-09 06:20 - 2016-11-11 04:21 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
  612. 2016-12-09 06:20 - 2016-11-11 04:21 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
  613. 2016-12-09 06:20 - 2016-11-11 04:20 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
  614. 2016-12-09 06:20 - 2016-11-11 04:20 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
  615. 2016-12-09 06:20 - 2016-11-11 04:20 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
  616. 2016-12-09 06:20 - 2016-11-11 04:20 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
  617. 2016-12-09 06:20 - 2016-11-11 04:20 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
  618. 2016-12-09 06:20 - 2016-11-11 04:19 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
  619. 2016-12-09 06:20 - 2016-11-11 04:19 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
  620. 2016-12-09 06:20 - 2016-11-11 04:16 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
  621. 2016-12-09 06:20 - 2016-11-11 04:15 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
  622. 2016-12-09 06:20 - 2016-11-11 04:14 - 07654400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
  623. 2016-12-09 06:20 - 2016-11-11 04:13 - 07812096 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
  624. 2016-12-09 06:20 - 2016-11-11 04:11 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
  625. 2016-12-09 06:20 - 2016-11-11 04:11 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
  626. 2016-12-09 06:20 - 2016-11-11 04:10 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
  627. 2016-12-09 06:20 - 2016-11-11 04:08 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
  628. 2016-12-09 06:20 - 2016-11-11 04:07 - 03441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
  629. 2016-12-09 06:20 - 2016-11-11 04:07 - 02953216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
  630. 2016-12-09 06:20 - 2016-11-11 04:07 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
  631. 2016-12-09 06:20 - 2016-11-11 04:06 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
  632. 2016-12-09 06:20 - 2016-11-11 04:05 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
  633. 2016-12-09 06:20 - 2016-11-11 04:05 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
  634. 2016-12-09 06:20 - 2016-11-11 04:04 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
  635. 2016-12-09 06:20 - 2016-11-11 04:04 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
  636. 2016-12-09 06:20 - 2016-11-11 04:04 - 02317312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
  637. 2016-12-09 06:20 - 2016-11-11 04:04 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
  638. 2016-12-09 06:20 - 2016-11-11 04:04 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
  639. 2016-12-09 06:20 - 2016-11-11 04:03 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
  640. 2016-12-09 06:20 - 2016-11-11 04:03 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
  641. 2016-12-09 06:20 - 2016-11-11 04:03 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
  642. 2016-12-09 06:20 - 2016-11-11 04:03 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
  643. 2016-12-09 06:20 - 2016-11-11 04:02 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
  644. 2016-12-09 06:20 - 2016-11-11 04:02 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
  645. 2016-12-09 06:20 - 2016-11-11 03:01 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
  646. 2016-12-09 06:20 - 2016-11-11 03:01 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
  647. 2016-12-09 06:20 - 2016-11-11 03:01 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
  648. 2016-12-09 06:20 - 2016-11-11 02:42 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
  649. 2016-12-09 06:20 - 2016-11-11 02:20 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
  650. 2016-12-09 06:20 - 2016-11-11 02:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
  651. 2016-12-09 06:20 - 2016-11-11 02:17 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
  652. 2016-12-09 06:20 - 2016-11-11 02:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
  653. 2016-12-09 06:20 - 2016-11-11 02:03 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
  654. 2016-12-09 06:20 - 2016-11-11 02:03 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
  655. 2016-12-07 05:47 - 2016-12-19 16:49 - 00000000 ____D C:\Users\Wasted Time\Documents\ShareX
  656. 2016-12-07 05:47 - 2016-12-07 05:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
  657. 2016-12-07 05:47 - 2016-12-07 05:47 - 00000000 ____D C:\Program Files\ShareX
  658. 2016-12-07 05:43 - 2016-12-07 05:46 - 04792069 _____ (ShareX Team ) C:\Users\Wasted Time\Downloads\ShareX-11.4.1-setup.exe
  659. 2016-12-06 21:14 - 2016-12-18 18:41 - 00000000 ____D C:\Users\Wasted Time\AppData\LocalLow\Mozilla
  660. 2016-12-06 20:53 - 2016-12-18 02:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
  661. 2016-12-04 19:12 - 2016-12-04 19:12 - 00002005 _____ C:\Users\Cyemonkey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\toast.lnk
  662. 2016-12-04 19:11 - 2016-12-10 17:48 - 00000000 ____D C:\Users\Cyemonkey\AppData\Local\u-launcher
  663. 2016-12-01 05:46 - 2016-12-01 05:46 - 00001140 _____ C:\Users\Wasted Time\Desktop\Curse.lnk
  664. 2016-12-01 05:46 - 2016-12-01 05:46 - 00001126 _____ C:\Users\Wasted Time\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
  665. 2016-12-01 05:45 - 2016-12-01 05:45 - 77903520 _____ (Curse) C:\Users\Wasted Time\Documents\CurseClientSetup.exe
  666. 2016-11-26 20:06 - 2016-11-26 20:06 - 00000000 ____D C:\Users\Cyemonkey\AppData\Roaming\Opera Software
  667. 2016-11-26 20:06 - 2016-11-26 20:06 - 00000000 ____D C:\Users\Cyemonkey\AppData\Local\Opera Software
  668. 2016-11-25 21:32 - 2016-12-04 19:23 - 00536312 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
  669. 2016-11-25 21:32 - 2016-11-25 21:32 - 00000000 ____D C:\Users\Cyemonkey\AppData\Local\CrashRpt
  670. 2016-11-25 21:31 - 2016-11-25 20:28 - 00249104 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
  671. 2016-11-25 21:22 - 2016-12-10 13:58 - 00000000 ____D C:\ProgramData\GFACE
  672. 2016-11-25 21:22 - 2016-11-26 20:04 - 00000000 ____D C:\Users\Cyemonkey\AppData\Local\wf-launcher
  673. 2016-11-25 20:28 - 2016-11-25 20:28 - 00000222 _____ C:\Users\Cyemonkey\Desktop\Warface.url
  674. 2016-11-25 11:34 - 2016-11-25 11:34 - 00000000 ____D C:\Users\Cyemonkey\AppData\LocalLow\LastPass
  675. 2016-11-23 22:54 - 2016-11-23 22:55 - 00000000 ____D C:\Users\Wasted Time\AppData\LocalLow\LastPass
  676. 2016-11-23 22:54 - 2016-11-23 22:55 - 00000000 ____D C:\Program Files (x86)\LastPass
  677. 2016-11-23 22:54 - 2016-11-23 22:54 - 00001152 _____ C:\Users\Public\Desktop\My LastPass Vault.lnk
  678. 2016-11-23 22:54 - 2016-11-23 22:54 - 00000000 ____D C:\Users\Wasted Time\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
  679. 2016-11-23 22:54 - 2016-11-23 22:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
  680. 2016-11-23 22:53 - 2016-11-23 22:53 - 21874200 _____ (LastPass) C:\Users\Wasted Time\Documents\lastpass_x64.exe
  681. 2016-11-21 19:21 - 2016-11-21 19:25 - 00000000 ____D C:\Users\Wasted Time\Documents\Klei
  682. 2016-11-20 19:35 - 2016-11-20 19:35 - 00000222 _____ C:\Users\Wasted Time\Desktop\Crypt of the NecroDancer.url
  683.  
  684. ==================== One Month Modified files and folders ========
  685.  
  686. (If an entry is included in the fixlist, the file/folder will be moved.)
  687.  
  688. 2016-12-19 17:18 - 2016-03-20 07:36 - 00000000 ____D C:\Users\Wasted Time\AppData\Roaming\Curse Client
  689. 2016-12-19 17:16 - 2016-07-16 06:36 - 00000000 ____D C:\WINDOWS\CbsTemp
  690. 2016-12-19 17:06 - 2016-03-21 17:14 - 00000000 ____D C:\Users\Wasted Time\AppData\Local\Spotify
  691. 2016-12-19 17:02 - 2016-01-07 15:42 - 00000000 _____ C:\WINDOWS\system32\RzSurroundVADAudioDeviceManager_log.txt
  692. 2016-12-19 16:59 - 2012-08-24 02:31 - 00000000 ____D C:\ProgramData\WinClon
  693. 2016-12-19 16:50 - 2016-03-21 17:13 - 00000000 ____D C:\Users\Wasted Time\AppData\Roaming\Spotify
  694. 2016-12-19 16:47 - 2016-03-19 20:51 - 00000000 ____D C:\Users\Wasted Time\AppData\Local\SquirrelTemp
  695. 2016-12-19 16:45 - 2016-01-03 15:33 - 00000000 ____D C:\ProgramData\TorchCrashHandler
  696. 2016-12-19 16:44 - 2016-03-19 20:49 - 00000000 __SHD C:\Users\Wasted Time\IntelGraphicsProfiles
  697. 2016-12-19 16:41 - 2016-10-24 20:02 - 00000000 ____D C:\Users\Wasted Time
  698. 2016-12-19 16:40 - 2016-10-24 20:34 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
  699. 2016-12-19 16:40 - 2016-10-24 19:53 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
  700. 2016-12-19 16:27 - 2016-03-19 20:52 - 00000000 ____D C:\Users\Wasted Time\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
  701. 2016-12-19 15:18 - 2016-01-23 09:03 - 00000000 ____D C:\ProgramData\SquirrelMachineInstalls
  702. 2016-12-19 15:02 - 2015-08-06 16:23 - 02757714 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  703. 2016-12-19 05:46 - 2016-06-26 14:59 - 00000000 ____D C:\Users\Wasted Time\AppData\Local\Adobe
  704. 2016-12-18 12:06 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\AppReadiness
  705. 2016-12-18 02:28 - 2016-03-06 20:12 - 00000000 ____D C:\Program Files (x86)\Steam
  706. 2016-12-18 02:14 - 2016-09-17 14:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  707. 2016-12-17 17:45 - 2014-06-30 01:21 - 00000000 ____D C:\ProgramData\Malwarebytes
  708. 2016-12-17 11:42 - 2016-07-16 06:47 - 00000000 ___HD C:\Program Files\WindowsApps
  709. 2016-12-16 17:29 - 2016-03-27 15:26 - 00000000 ____D C:\Users\Wasted Time\AppData\Local\Steam
  710. 2016-12-16 15:09 - 2016-10-24 20:34 - 00003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
  711. 2016-12-16 15:09 - 2016-10-24 20:34 - 00003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
  712. 2016-12-16 05:50 - 2016-10-24 20:34 - 00003962 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1474140175
  713. 2016-12-16 05:50 - 2016-09-17 14:23 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
  714. 2016-12-16 05:50 - 2016-09-17 14:21 - 00000000 ____D C:\Program Files (x86)\Opera
  715. 2016-12-15 15:53 - 2016-03-19 20:53 - 00002426 _____ C:\Users\Wasted Time\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
  716. 2016-12-15 15:53 - 2016-03-19 20:53 - 00000000 ___RD C:\Users\Wasted Time\OneDrive
  717. 2016-12-15 05:39 - 2016-11-01 16:09 - 00000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
  718. 2016-12-15 05:39 - 2015-08-10 09:45 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
  719. 2016-12-15 05:39 - 2014-06-25 00:48 - 580439545 _____ C:\WINDOWS\MEMORY.DMP
  720. 2016-12-14 19:59 - 2016-11-01 16:09 - 00003986 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
  721. 2016-12-14 19:59 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
  722. 2016-12-14 19:59 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
  723. 2016-12-14 16:53 - 2016-06-27 19:22 - 00000000 ____D C:\Users\Wasted Time\AppData\Roaming\.minecraft
  724. 2016-12-13 17:26 - 2013-08-14 10:35 - 00000000 ____D C:\WINDOWS\system32\MRT
  725. 2016-12-13 17:21 - 2013-03-08 12:16 - 135632432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
  726. 2016-12-13 15:32 - 2016-03-19 20:40 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  727. 2016-12-11 18:56 - 2016-07-16 06:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
  728. 2016-12-11 18:56 - 2016-07-16 06:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
  729. 2016-12-10 17:49 - 2016-10-24 20:02 - 00000000 ____D C:\Users\Cyemonkey
  730. 2016-12-10 14:49 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
  731. 2016-12-10 13:57 - 2016-07-05 14:14 - 00000000 ____D C:\Users\Cyemonkey\AppData\Roaming\discordptb
  732. 2016-12-10 13:54 - 2016-05-13 19:36 - 00000000 __SHD C:\Users\Cyemonkey\IntelGraphicsProfiles
  733. 2016-12-10 13:29 - 2016-05-13 19:39 - 00002343 _____ C:\Users\Cyemonkey\Desktop\Discord PTB.lnk
  734. 2016-12-10 13:29 - 2016-05-13 19:39 - 00000000 ____D C:\Users\Cyemonkey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
  735. 2016-12-10 13:29 - 2016-05-13 19:39 - 00000000 ____D C:\Users\Cyemonkey\AppData\Local\DiscordPTB
  736. 2016-12-10 13:26 - 2016-05-13 19:36 - 00000000 ____D C:\Users\Cyemonkey\AppData\Local\Packages
  737. 2016-12-10 13:25 - 2012-11-17 09:32 - 00000000 __RHD C:\Users\Public\AccountPictures
  738. 2016-12-10 09:38 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\rescache
  739. 2016-12-09 15:14 - 2016-07-16 06:45 - 00000000 ____D C:\WINDOWS\INF
  740. 2016-12-09 15:12 - 2016-10-24 19:52 - 00202448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  741. 2016-12-09 15:11 - 2016-07-16 01:04 - 01835008 _____ C:\WINDOWS\system32\config\BBI
  742. 2016-12-09 15:09 - 2016-07-16 06:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
  743. 2016-12-09 15:09 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
  744. 2016-12-09 15:09 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
  745. 2016-12-09 15:09 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\oobe
  746. 2016-12-09 15:09 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
  747. 2016-12-09 15:09 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\bcastdvr
  748. 2016-12-09 15:09 - 2016-07-16 01:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
  749. 2016-12-09 15:09 - 2016-07-16 01:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
  750. 2016-12-09 15:09 - 2016-07-16 01:04 - 00000000 ____D C:\WINDOWS\system32\Dism
  751. 2016-12-09 15:09 - 2016-07-16 01:04 - 00000000 ____D C:\WINDOWS\servicing
  752. 2016-12-09 05:46 - 2016-07-16 06:42 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
  753. 2016-12-07 05:48 - 2016-02-17 18:24 - 00000000 ____D C:\Program Files (x86)\Skillbrains
  754. 2016-12-03 22:36 - 2016-07-07 18:01 - 00000000 ____D C:\Users\Cyemonkey\AppData\LocalLow\Smartly Dressed Games
  755. 2016-12-02 19:27 - 2016-07-17 12:41 - 00000000 ____D C:\Users\Wasted Time\Documents\Lightshot
  756. 2016-12-01 15:07 - 2014-07-11 22:16 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
  757. 2016-11-25 21:23 - 2016-05-13 19:36 - 00000000 ____D C:\Users\Cyemonkey\AppData\Local\Google
  758. 2016-11-21 15:16 - 2016-03-19 20:49 - 00000000 ____D C:\Users\Wasted Time\AppData\Local\Packages
  759. 2016-11-20 19:35 - 2016-07-18 16:59 - 00000000 ____D C:\Users\Wasted Time\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
  760. 2016-11-20 12:51 - 2016-06-30 10:02 - 00000000 ____D C:\Users\Wasted Time\AppData\LocalLow\Smartly Dressed Games
  761. 2016-11-19 15:34 - 2016-11-18 20:13 - 00000000 ____D C:\Users\Cyemonkey\Documents\Klei
  762. 2016-11-19 13:23 - 2016-11-18 18:33 - 00000000 ____D C:\Users\Cyemonkey\AppData\Local\ConnectedDevicesPlatform
  763.  
  764. ==================== Files in the root of some directories =======
  765.  
  766. 2016-11-23 22:55 - 2016-11-23 22:55 - 21874200 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
  767. 2016-12-07 05:48 - 2016-12-07 05:48 - 0000003 _____ () C:\Users\Wasted Time\AppData\Local\updater.log
  768. 2014-02-01 23:50 - 2014-02-24 15:36 - 0002763 _____ () C:\ProgramData\connector.swf
  769. 2016-10-24 19:56 - 2016-10-24 19:56 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
  770. 2016-06-02 12:49 - 2016-06-02 12:49 - 0000259 _____ () C:\ProgramData\fontcacheev1.dat
  771. 2015-12-14 18:45 - 2015-10-15 18:45 - 0000032 ____R () C:\ProgramData\hash.dat
  772. 2012-08-24 02:36 - 2012-08-07 23:07 - 2258432 _____ (Samsung Electronics) C:\ProgramData\MakeMarkerFile.exe
  773. 2012-08-24 02:36 - 2012-08-07 05:11 - 0003196 _____ () C:\ProgramData\MakeMarkerFile.xml
  774. 2016-06-10 11:35 - 2016-06-10 11:35 - 0000016 _____ () C:\ProgramData\mntemp
  775.  
  776. Files to move or delete:
  777. ====================
  778. C:\ProgramData\fontcacheev1.dat
  779. C:\ProgramData\hash.dat
  780.  
  781.  
  782. Some files in TEMP:
  783. ====================
  784. C:\Users\Exepe_000\AppData\Local\Temp\bdfilters.dll
  785. C:\Users\Exepe_000\AppData\Local\Temp\BingSvc.exe
  786. C:\Users\Exepe_000\AppData\Local\Temp\BSvcProcessor.exe
  787. C:\Users\Exepe_000\AppData\Local\Temp\BSvcUpdater.exe
  788. C:\Users\Exepe_000\AppData\Local\Temp\Gw2.exe
  789. C:\Users\Exepe_000\AppData\Local\Temp\icqsetup.exe
  790. C:\Users\Exepe_000\AppData\Local\Temp\jansi-64-8490731712498213211.dll
  791. C:\Users\Exepe_000\AppData\Local\Temp\utils.dll
  792. C:\Users\Exepe_000\AppData\Local\Temp\xmlUpdater.exe
  793. C:\Users\Wasted Time\AppData\Local\Temp\npp.6.9.2.Installer.exe
  794. C:\Users\Wasted Time\AppData\Local\Temp\xmlUpdater.exe
  795.  
  796.  
  797. ==================== Bamital & volsnap ======================
  798.  
  799. (There is no automatic fix for files that do not pass verification.)
  800.  
  801. C:\WINDOWS\system32\winlogon.exe => File is digitally signed
  802. C:\WINDOWS\system32\wininit.exe => File is digitally signed
  803. C:\WINDOWS\explorer.exe => File is digitally signed
  804. C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
  805. C:\WINDOWS\system32\svchost.exe => File is digitally signed
  806. C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
  807. C:\WINDOWS\system32\services.exe => File is digitally signed
  808. C:\WINDOWS\system32\User32.dll => File is digitally signed
  809. C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
  810. C:\WINDOWS\system32\userinit.exe => File is digitally signed
  811. C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
  812. C:\WINDOWS\system32\rpcss.dll => File is digitally signed
  813. C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
  814. C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
  815. C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
  816.  
  817. LastRegBack: 2016-12-14 22:06
  818.  
  819. ==================== End of FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!