Trojaner-Board - Virus th.Hao123.com

Trojaner-Board (https://www.trojaner-board.de/)

- Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)

- - Virus th.Hao123.com (https://www.trojaner-board.de/196376-virus-th-hao123-com.html)

Virus th.Hao123.com

Guten Tag,

Ich wohne in Suedostasien und werde auf dem IE Edge browser wieder einmal mehr mit diesem Virus konfrontiert. Ich verwende im täglichen Gebrauch eigentlich immer nur den Opera browser, der bis jetzt vom Hao123 verschont worden ist. Herzlichen Dank schon jetzt für Eure Hilfe und Gruss:dankeschoen:

Alfred

Lesestoff:
Hinweise für Hilfensuchende

Für alle Hilfesuchenden! Was muss ich vor der Eröffnung eines Themas beachten?

Lesestoff:
Posten in CODE-Tags

Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

http://www.trojaner-board.de/picture...&pictureid=307

Hallo Cosinus,
Hab vielen Dank für Deine superschnelle Antwort. Hier FRST und Addition
Gruss
Alfred

FRST1/2

Code:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-09-2019

Ran by MSI_USER (administrator) on DESKTOP-TUSRUQC (MSI MS-7816) (10-09-2019 14:20:07)

Running from C:\Users\MSI_USER\Desktop

Loaded Profiles: MSI_USER (Available Profiles: MSI_USER)

Platform: Windows 10 Pro Version 1803 17134.950 (X64) Language: Englisch (Vereinigte Staaten)

Default browser: Opera

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Processes (Whitelisted) =================
 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 

() [File not signed] C:\Windows\KMS-R@1n.exe

() [File not signed] E:\FSX NEW\FlyLogic\SeasonFileSwitcherV2\SeasonFileSwitcherV2.exe

(12bPilot) [File not signed] C:\Program Files (x86)\12bPilot\SODE\SimObjectDisplayEngine.exe

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe

(AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe

(AVG Technologies CZ, s.r.o. -> AVG Netherlands B.V) C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe

(AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe

(AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe

(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe

(Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\fraps.exe

(Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\fraps64.dat

(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe

(LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe

(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe

(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe

(Microsoft Corporation -> Microsoft Corp.) E:\FSX NEW\fsx.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Users\MSI_USER\AppData\Local\Microsoft\OneDrive\OneDrive.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19061.18920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe

(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe

(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe

(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe

(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera_crashreporter.exe

(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe

(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe

(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(Rivet Networks) [File not signed] C:\Program Files\Killer Networking\Network Manager\KillerService.exe

(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe

(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe

(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

(VIRTUALI Sagl -> Gamecentric) C:\Program Files (x86)\Addon Manager\couatl\couatl.exe
 

==================== Registry (Whitelisted) ===========================
 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8783616 2015-12-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)

HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)

HKLM\...\Run: [] => [X]

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Run: [] => [X]

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19646312 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7882328 2019-09-09] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\MountPoints2: {18a0d6a0-1572-11e9-8871-448a5b81bf38} - "I:\AutoRun.exe" 

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [File not signed]

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [File not signed]

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-09-09] (Google LLC -> Google LLC)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2017-12-03]

ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-01-17]

ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks) [File not signed]

GroupPolicy: Restriction ? <==== ATTENTION
 

==================== Scheduled Tasks (Whitelisted) =============
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

Task: {066EDF97-4A41-4FA5-89AB-2619E5891059} - System32\Tasks\AVG Secure VPN Update => C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe [1426864 2019-09-09] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

Task: {0ED95778-AD21-48AB-9105-F53DA6E15283} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2757472 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

Task: {126790E4-28A4-4B2E-880C-77CFF961B8AF} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {157DABD9-E369-44D7-8FF4-999451B2A6F6} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION

Task: {19773CE1-1F8D-4488-9BFF-59D814B6130A} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2670944 2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

Task: {1A6C79F4-D8BF-4B1A-8E3D-C38D78C16415} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {1DF873CA-A91E-45A0-877D-8107F7230930} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {2895BD68-3429-4946-9815-96761EF156F9} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-07-23] (Solute GmbH -> Avira)

Task: {3B6A0D30-A14F-4AA4-B746-DA30B9D94D04} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {3FD2FDB2-909D-49E2-AD3E-8B2BD4ACDB3E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572808 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {409182A1-0D91-4B70-BE46-DEF2D08C3397} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {514BB74B-9358-4798-AEAC-62CAF0F14EC1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)

Task: {538882E1-97D8-45B2-A990-1C4B07214714} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-23] (Google Inc -> Google Inc.)

Task: {68626AEE-53B1-4435-87EF-569ACF4990A3} - System32\Tasks\Avira\System Speedup\Delayed Startup\MSI_USER\2 => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7882328 2019-09-09] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft) <==== ATTENTION

Task: {7047399C-026D-474E-B322-8475542D503B} - System32\Tasks\AVG Driver Updater Startup => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe [29273432 2017-01-30] (AVG Technologies CZ, s.r.o. -> AVG Netherlands B.V)

Task: {70955304-7334-4D77-BBC0-27D206AA56A0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724680 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {7177F64F-DBA8-4F66-A6AF-B0926304E414} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {745A4B6A-94F4-4F2D-BCA1-468B30F758D4} - System32\Tasks\Opera scheduled Autoupdate 1568030011 => C:\Users\MSI_USER\AppData\Local\Programs\Opera\launcher.exe [1520152 2019-09-03] (Opera Software AS -> Opera Software)

Task: {771E27B9-B2ED-44B0-B0EF-BAB07036ADA8} - System32\Tasks\AVG Driver Updater Scan => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe [29273432 2017-01-30] (AVG Technologies CZ, s.r.o. -> AVG Netherlands B.V)

Task: {8280091A-0DF6-4079-86C7-71DB6EC660D3} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-07-23] (Solute GmbH -> Avira)

Task: {88E09071-B3C7-43D5-9D4F-916EA872D4BD} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2671376 2015-09-05] (Beepa Pty Ltd -> Beepa P/L) [File not signed]

Task: {8BBB7F56-0B68-4EA7-A268-EDD1C17B45FE} - System32\Tasks\Abelssoft\UpdateYeti scan => C:\Program Files (x86)\UpdateYeti\UpdateYeti.exe [2433048 2016-05-10] (Ascora GmbH -> Abelssoft)

Task: {8CD3B911-ECB4-44EF-A7A8-FDBEBAF55AAE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14680792 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {90FDD616-13C6-4D11-9FDC-73F078B15F0E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)

Task: {A5DD9CF6-B1A3-45BD-9AF2-CE07066C6D10} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {A93D82E5-2314-4926-95F5-416271C36377} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-07-23] (Solute GmbH -> Avira)

Task: {AD276398-51DF-4857-A18A-82DBED65E142} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702856 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {BB3AF3B8-162E-43D4-AA54-0CA24233036C} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate

Task: {BD6C0DE0-19E0-46A4-BDFC-B1F08EA8777F} - System32\Tasks\Avira\System Speedup\Delayed Startup\MSI_USER\1 => C:\Program Files\CCleaner\CCleaner64.exe [19646312 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd) <==== ATTENTION

Task: {C47531A9-A89D-4084-AD47-6071037B86BE} - System32\Tasks\AVG EUpdate Task => C:\Program Files (x86)\AVG\Setup\avgsetupx.exe [4072504 2019-01-13] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)

Task: {CD130A0E-F19D-4874-AB52-765E60ED709D} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [323632 2019-01-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

Task: {CE637048-6FD7-49FF-8EDC-1C8D1F5550FD} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK

Task: {D801D61A-C72A-4EB4-932D-49855B97B8FC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-23] (Google Inc -> Google Inc.)

Task: {E037ACE1-1EC3-45B1-A5DF-7CCAC67AF05C} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [48718784 2019-02-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )

Task: {F68F6758-BD28-4284-99AB-6CBC447F2C09} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {FC86D5D6-BA7E-4F83-B828-7E83AC16B302} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 

Task: C:\WINDOWS\Tasks\AVG Driver Updater Scan.job => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe

Task: C:\WINDOWS\Tasks\AVG Driver Updater Startup.job => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe
 

==================== Internet (Whitelisted) ====================
 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{08c1f2ba-1c9a-4eb8-87d1-d506429d1677}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Tcpip\..\Interfaces\{1bb99608-1ac5-4e1c-94b3-483827386328}: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{5abab799-e802-4ffc-af34-a145ae5bda73}: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{5b7a3bd1-28d0-4adf-b8e0-cc1f8fef1dca}: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{846932a4-c1ad-4a46-a83a-99ce0e494c4b}: [NameServer] 77.234.40.79

Tcpip\..\Interfaces\{93112b67-926d-40af-920e-2157761c05a1}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Tcpip\..\Interfaces\{b4a6f22f-b139-4e9b-9426-8668023c962d}: [DhcpNameServer] 192.168.0.1 192.168.0.1
 

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131330795521653461&GUID=9C8C9424-6892-407E-811E-F5F60EA9EE71

SearchScopes: HKU\S-1-5-21-465342472-1690862640-1647311925-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

SearchScopes: HKU\S-1-5-21-465342472-1690862640-1647311925-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

SearchScopes: HKU\S-1-5-21-465342472-1690862640-1647311925-1001 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/results.php?pr=vmn&id=webcompa&ent=ch_WCYID10454__190129&q={searchTerms}
 

Edge: 

======

DownloadDir: 
 

FireFox:

========

FF DefaultProfile: b4eo7tkp.default

FF ProfilePath: C:\Users\MSI_USER\AppData\Roaming\Mozilla\Firefox\Profiles\b4eo7tkp.default [2019-04-05]

FF Extension: (Avira Password Manager) - C:\Users\MSI_USER\AppData\Roaming\Mozilla\Firefox\Profiles\b4eo7tkp.default\Extensions\passwordmanager@avira.com [2019-03-01]

FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-09-07] (Google Inc -> Google LLC)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-09-07] (Google Inc -> Google LLC)

FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)
 

Chrome: 

=======

CHR StartupUrls: Default -> "hxxp://www.google.com"

CHR Profile: C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default [2019-09-09]

CHR Extension: (Präsentationen) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-02-23]

CHR Extension: (Docs) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-09]

CHR Extension: (Google Drive) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-02-23]

CHR Extension: (YouTube) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-02-23]

CHR Extension: (Google Mail) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-02-23]

CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>

CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
 

==================== Services (Whitelisted) ====================
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1207624 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [535360 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [484144 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [484144 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [501600 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc. -> Apple Inc.)

R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)

R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [582016 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2979032 2019-01-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382216 2019-08-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [103840 2019-07-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]

R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [452096 2015-09-16] (Rivet Networks) [File not signed]

R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2019-01-11] () [File not signed]

R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [3894760 2017-10-19] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [105296 2015-06-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)

R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2227152 2016-07-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)

R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

R2 SecureVpn; C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe [7451056 2019-09-09] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5074128 2019-08-07] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10883824 2017-03-17] (TeamViewer GmbH -> TeamViewer GmbH)

R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [6598496 2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28760 2019-09-09] (LAVASOFT SOFTWARE CANADA INC -> )

S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\NisSrv.exe [4096976 2019-01-25] (Microsoft Corporation -> Microsoft Corporation)

S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MsMpEng.exe [113992 2019-01-25] (Microsoft Corporation -> Microsoft Corporation)

R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 

R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
 

===================== Drivers (Whitelisted) ======================
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-03-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [203440 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

S3 avgTap; C:\WINDOWS\System32\drivers\avgTap.sys [54888 2017-11-01] (AVG Technologies CZ, s.r.o. -> The OpenVPN Project)

R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [195648 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [142904 2015-09-16] (Rivet Networks LLC -> Rivet Networks, LLC.)

R3 chdrvr01; C:\WINDOWS\System32\drivers\chdrvr01.sys [248496 2012-08-25] (Joystick Technologies LLC -> CH Products)

R3 chdrvr02; C:\WINDOWS\System32\drivers\chdrvr02.sys [11440 2012-08-25] (Joystick Technologies LLC -> CH Products)

R3 chdrvr03; C:\WINDOWS\System32\drivers\chdrvr03.sys [24240 2012-08-25] (Joystick Technologies LLC -> CH Products)

R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)

R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [47008 2016-01-16] (Intel(R) Smart Connect software -> )

R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-04-12] (Microsoft Windows -> Qualcomm Atheros, Inc.)

R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-09-10] (Malwarebytes Corporation -> Malwarebytes)

S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [224408 2019-09-10] (Malwarebytes Corporation -> Malwarebytes)

R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2019-09-10] (Malwarebytes Corporation -> Malwarebytes)

R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-09-10] (Malwarebytes Corporation -> Malwarebytes)

R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [116112 2019-09-10] (Malwarebytes Corporation -> Malwarebytes)

R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2018-12-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)

R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)

R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9c0cfd0baad9a756\nvlddmkm.sys [20736440 2019-03-11] (NVIDIA Corporation -> NVIDIA Corporation)

S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-02] (NVIDIA Corporation -> NVIDIA Corporation)

R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-04] (NVIDIA Corporation -> NVIDIA Corporation)

S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2019-09-10] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)

R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-11-15] (AVG Technologies CZ, s.r.o. -> AVG Netherlands B.V.)

R1 UimBus; C:\WINDOWS\System32\drivers\uimbus.sys [108856 2017-04-11] (Paragon Software GmbH -> Paragon Software GmbH)

R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uimdevim.sys [44848 2017-04-11] (Paragon Software GmbH -> Paragon Software GmbH)

R3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Windows -> Microsoft Corporation)

S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46488 2019-01-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)

S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [343032 2019-01-25] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [63480 2019-01-25] (Microsoft Windows -> Microsoft Corporation)

R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2016-01-17] (Intel(R) Software -> Intel Corporation)
 

==================== NetSvcs (Whitelisted) ===================
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 

==================== One month (created) ========
 

(If an entry is included in the fixlist, the file/folder will be moved.)
 

2019-09-10 14:20 - 2019-09-10 14:20 - 000036969 _____ C:\Users\MSI_USER\Desktop\FRST.txt

2019-09-10 14:19 - 2019-09-10 14:20 - 000000000 ____D C:\FRST

2019-09-10 14:19 - 2019-09-10 14:19 - 001614848 _____ (Farbar) C:\Users\MSI_USER\Desktop\FRST64.exe

2019-09-10 12:39 - 2019-09-10 12:39 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys

2019-09-10 12:39 - 2019-09-10 12:39 - 000224408 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys

2019-09-10 12:39 - 2019-09-10 12:39 - 000199768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys

2019-09-10 12:39 - 2019-09-10 12:39 - 000116112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys

2019-09-10 12:39 - 2019-09-10 12:39 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys

2019-09-10 12:39 - 2019-09-10 12:39 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk

2019-09-10 12:39 - 2019-09-10 12:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes

2019-09-10 12:39 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys

2019-09-10 12:39 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys

2019-09-09 20:59 - 2019-09-09 21:01 - 001627907 _____ C:\Users\MSI_USER\Downloads\adwcleaner_7.3.exe

2019-09-09 20:06 - 2019-05-31 08:57 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2019-09-09 20:06 - 2019-05-31 08:57 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2019-09-09 19:40 - 2019-09-09 19:47 - 022851472 _____ (Malwarebytes ) C:\Users\MSI_USER\Downloads\mbam-setup-2.2.1.1043 (1).exe

2019-09-09 19:21 - 2019-09-09 19:21 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\mbam

2019-09-09 19:20 - 2019-09-09 19:20 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\mbamtray

2019-09-09 19:14 - 2019-09-09 19:15 - 064333800 _____ (Malwarebytes ) C:\Users\MSI_USER\Downloads\mb3-setup-43841.43841-3.8.3.2965-1.0.613-1.0.11270.exe

2019-09-09 19:00 - 2019-08-07 20:18 - 001786680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll

2019-09-09 19:00 - 2019-08-07 20:18 - 001427768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll

2019-09-09 19:00 - 2019-08-07 20:14 - 000303928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys

2019-09-09 19:00 - 2019-08-07 20:13 - 021389776 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2019-09-09 19:00 - 2019-08-07 20:13 - 001632112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll

2019-09-09 19:00 - 2019-08-07 20:13 - 001515904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll

2019-09-09 19:00 - 2019-08-07 20:13 - 000790208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2019-09-09 19:00 - 2019-08-07 19:58 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll

2019-09-09 19:00 - 2019-08-07 19:58 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll

2019-09-09 19:00 - 2019-08-07 19:55 - 008626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2019-09-09 19:00 - 2019-08-07 19:55 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll

2019-09-09 19:00 - 2019-08-07 19:55 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll

2019-09-09 19:00 - 2019-08-07 19:54 - 004783104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll

2019-09-09 19:00 - 2019-08-07 19:53 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2019-09-09 19:00 - 2019-08-07 19:53 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll

2019-09-09 19:00 - 2019-08-07 19:53 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll

2019-09-09 19:00 - 2019-08-07 19:52 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2019-09-09 19:00 - 2019-08-07 19:51 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll

2019-09-09 19:00 - 2019-08-07 19:43 - 001453416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll

2019-09-09 19:00 - 2019-08-07 19:41 - 001322688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll

2019-09-09 19:00 - 2019-08-07 19:41 - 000662112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2019-09-09 19:00 - 2019-08-07 19:40 - 020384344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2019-09-09 19:00 - 2019-08-07 19:30 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll

2019-09-09 19:00 - 2019-08-07 19:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll

2019-09-09 19:00 - 2019-08-07 19:27 - 007990272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2019-09-09 19:00 - 2019-08-07 19:26 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll

2019-09-09 19:00 - 2019-08-07 19:26 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll

2019-09-09 19:00 - 2019-08-07 19:25 - 004175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll

2019-09-09 19:00 - 2019-08-07 19:24 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys

2019-09-09 19:00 - 2019-08-07 19:24 - 001472000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2019-09-09 19:00 - 2019-08-07 19:24 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll

2019-09-09 19:00 - 2019-08-07 16:40 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll

2019-09-09 19:00 - 2019-08-07 15:09 - 001328440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll

2019-09-09 19:00 - 2019-08-07 15:09 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe

2019-09-09 19:00 - 2019-08-07 15:09 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll

2019-09-09 19:00 - 2019-08-07 15:09 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe

2019-09-09 19:00 - 2019-08-07 15:09 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe

2019-09-09 19:00 - 2019-08-07 15:09 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll

2019-09-09 19:00 - 2019-08-07 15:09 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys

2019-09-09 19:00 - 2019-08-07 15:09 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll

2019-09-09 19:00 - 2019-08-07 15:09 - 000095008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll

2019-09-09 19:00 - 2019-08-07 15:08 - 007435720 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2019-09-09 19:00 - 2019-08-07 15:08 - 002810680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2019-09-09 19:00 - 2019-08-07 15:08 - 002470648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll

2019-09-09 19:00 - 2019-08-07 15:08 - 001566736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll

2019-09-09 19:00 - 2019-08-07 15:08 - 001141712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2019-09-09 19:00 - 2019-08-07 15:08 - 000723216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll

2019-09-09 19:00 - 2019-08-07 15:08 - 000710232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2019-09-09 19:00 - 2019-08-07 15:08 - 000494992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll

2019-09-09 19:00 - 2019-08-07 15:08 - 000227744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll

2019-09-09 19:00 - 2019-08-07 15:08 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys

2019-09-09 19:00 - 2019-08-07 15:08 - 000130840 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll

2019-09-09 19:00 - 2019-08-07 15:08 - 000091568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys

2019-09-09 19:00 - 2019-08-07 15:07 - 009084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2019-09-09 19:00 - 2019-08-07 15:07 - 007520112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2019-09-09 19:00 - 2019-08-07 15:07 - 002719240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys

2019-09-09 19:00 - 2019-08-07 15:07 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2019-09-09 19:00 - 2019-08-07 15:07 - 001260992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2019-09-09 19:00 - 2019-08-07 15:07 - 001031696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys

2019-09-09 19:00 - 2019-08-07 15:07 - 000984152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2019-09-09 19:00 - 2019-08-07 15:07 - 000786288 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll

2019-09-09 19:00 - 2019-08-07 15:07 - 000115728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll

2019-09-09 19:00 - 2019-08-07 14:57 - 000081256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll

2019-09-09 19:00 - 2019-08-07 14:56 - 006570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2019-09-09 19:00 - 2019-08-07 14:56 - 006044008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2019-09-09 19:00 - 2019-08-07 14:56 - 001993344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll

2019-09-09 19:00 - 2019-08-07 14:56 - 001427768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll

2019-09-09 19:00 - 2019-08-07 14:56 - 000357336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll

2019-09-09 19:00 - 2019-08-07 14:56 - 000192608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll

2019-09-09 19:00 - 2019-08-07 14:56 - 000101400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll

2019-09-09 19:00 - 2019-08-07 14:55 - 000603792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll

2019-09-09 19:00 - 2019-08-07 14:49 - 025857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2019-09-09 19:00 - 2019-08-07 14:47 - 022017536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2019-09-09 19:00 - 2019-08-07 14:44 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll

2019-09-09 19:00 - 2019-08-07 14:42 - 022717952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2019-09-09 19:00 - 2019-08-07 14:39 - 019372544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2019-09-09 19:00 - 2019-08-07 14:38 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll

2019-09-09 19:00 - 2019-08-07 14:38 - 004385792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll

2019-09-09 19:00 - 2019-08-07 14:38 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll

2019-09-09 19:00 - 2019-08-07 14:38 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll

2019-09-09 19:00 - 2019-08-07 14:37 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll

2019-09-09 19:00 - 2019-08-07 14:37 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll

2019-09-09 19:00 - 2019-08-07 14:37 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll

2019-09-09 19:00 - 2019-08-07 14:36 - 007572480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2019-09-09 19:00 - 2019-08-07 14:36 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe

2019-09-09 19:00 - 2019-08-07 14:36 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll

2019-09-09 19:00 - 2019-08-07 14:36 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll

2019-09-09 19:00 - 2019-08-07 14:36 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll

2019-09-09 19:00 - 2019-08-07 14:36 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll

2019-09-09 19:00 - 2019-08-07 14:36 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll

2019-09-09 19:00 - 2019-08-07 14:35 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll

2019-09-09 19:00 - 2019-08-07 14:35 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys

2019-09-09 19:00 - 2019-08-07 14:35 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll

2019-09-09 19:00 - 2019-08-07 14:35 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll

2019-09-09 19:00 - 2019-08-07 14:35 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll

2019-09-09 19:00 - 2019-08-07 14:35 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

2019-09-09 19:00 - 2019-08-07 14:35 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll

2019-09-09 19:00 - 2019-08-07 14:34 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2019-09-09 19:00 - 2019-08-07 14:34 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll

2019-09-09 19:00 - 2019-08-07 14:34 - 001680384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll

2019-09-09 19:00 - 2019-08-07 14:34 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2019-09-09 19:00 - 2019-08-07 14:34 - 000786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll

2019-09-09 19:00 - 2019-08-07 14:34 - 000521216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll

2019-09-09 19:00 - 2019-08-07 14:34 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll

2019-09-09 19:00 - 2019-08-07 14:34 - 000278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll

2019-09-09 19:00 - 2019-08-07 14:34 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll

2019-09-09 19:00 - 2019-08-07 14:33 - 001220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2019-09-09 19:00 - 2019-08-07 14:33 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll

2019-09-09 19:00 - 2019-08-07 14:33 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll

2019-09-09 19:00 - 2019-08-07 14:32 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2019-09-09 19:00 - 2019-08-07 14:32 - 004516864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2019-09-09 19:00 - 2019-08-07 14:32 - 002165760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2019-09-09 19:00 - 2019-08-07 14:32 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll

2019-09-09 19:00 - 2019-08-07 14:32 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll

2019-09-09 19:00 - 2019-08-07 14:32 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2019-09-09 19:00 - 2019-08-07 14:32 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll

2019-09-09 19:00 - 2019-08-07 14:32 - 000318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll

2019-09-09 19:00 - 2019-08-07 14:32 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll

2019-09-09 19:00 - 2019-08-07 14:32 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll

2019-09-09 19:00 - 2019-08-07 14:31 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll

2019-09-09 19:00 - 2019-08-07 14:31 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2019-09-09 19:00 - 2019-08-07 14:31 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2019-09-09 19:00 - 2019-08-07 14:31 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2019-09-09 19:00 - 2019-08-07 14:31 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2019-09-09 19:00 - 2019-08-07 14:31 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2019-09-09 19:00 - 2019-08-07 14:31 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2019-09-09 19:00 - 2019-08-07 14:31 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2019-09-09 19:00 - 2019-08-07 14:31 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll

Code:

FRST 2/2

2019-09-09 19:00 - 2019-08-07 13:15 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim

2019-09-09 19:00 - 2019-07-11 13:48 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll

2019-09-09 19:00 - 2019-07-11 08:30 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll

2019-09-09 19:00 - 2019-07-11 08:30 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll

2019-09-09 19:00 - 2019-07-11 08:30 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 001627664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 001038352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 000954384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 000830480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 000827920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe

2019-09-09 19:00 - 2019-07-09 15:07 - 000825360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 000750096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 000670224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 000652304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe

2019-09-09 19:00 - 2019-07-09 15:07 - 000495632 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll

2019-09-09 19:00 - 2019-07-09 15:07 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll

2019-09-09 19:00 - 2019-07-09 15:04 - 000348664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe

2019-09-09 19:00 - 2019-07-09 15:01 - 004527792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe

2019-09-09 19:00 - 2019-07-09 15:00 - 001616824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll

2019-09-09 19:00 - 2019-07-09 14:44 - 012757504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2019-09-09 19:00 - 2019-07-09 14:44 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe

2019-09-09 19:00 - 2019-07-09 14:43 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll

2019-09-09 19:00 - 2019-07-09 14:43 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll

2019-09-09 19:00 - 2019-07-09 14:43 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll

2019-09-09 19:00 - 2019-07-09 14:41 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll

2019-09-09 19:00 - 2019-07-09 14:40 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

2019-09-09 19:00 - 2019-07-09 14:39 - 001210880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe

2019-09-09 19:00 - 2019-07-09 14:39 - 001193472 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll

2019-09-09 19:00 - 2019-07-09 14:39 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll

2019-09-09 19:00 - 2019-07-09 14:38 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2019-09-09 19:00 - 2019-07-09 14:37 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll

2019-09-09 19:00 - 2019-07-09 14:37 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll

2019-09-09 19:00 - 2019-07-09 14:37 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll

2019-09-09 19:00 - 2019-07-09 14:37 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe

2019-09-09 19:00 - 2019-07-09 13:59 - 000022840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hvsicontainerservice.dll

2019-09-09 19:00 - 2019-07-09 13:42 - 011943424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2019-09-09 19:00 - 2019-07-09 13:38 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll

2019-09-09 19:00 - 2019-07-09 13:37 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll

2019-09-09 19:00 - 2019-07-09 10:29 - 000375312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys

2019-09-09 19:00 - 2019-07-09 10:29 - 000230200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys

2019-09-09 19:00 - 2019-07-09 10:29 - 000031032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys

2019-09-09 19:00 - 2019-07-09 10:23 - 001213264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe

2019-09-09 19:00 - 2019-07-09 10:23 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe

2019-09-09 19:00 - 2019-07-09 10:21 - 005625160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll

2019-09-09 19:00 - 2019-07-09 10:21 - 000133136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll

2019-09-09 19:00 - 2019-07-09 10:20 - 000500536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys

2019-09-09 19:00 - 2019-07-09 10:20 - 000275512 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe

2019-09-09 19:00 - 2019-07-09 10:20 - 000227640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys

2019-09-09 19:00 - 2019-07-09 10:19 - 002769472 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2019-09-09 19:00 - 2019-07-09 10:19 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll

2019-09-09 19:00 - 2019-07-09 10:19 - 001674216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2019-09-09 19:00 - 2019-07-09 10:19 - 000799248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll

2019-09-09 19:00 - 2019-07-09 10:19 - 000767232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll

2019-09-09 19:00 - 2019-07-09 10:19 - 000713488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll

2019-09-09 19:00 - 2019-07-09 10:19 - 000152104 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll

2019-09-09 19:00 - 2019-07-09 10:19 - 000142352 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll

2019-09-09 19:00 - 2019-07-09 10:19 - 000046608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\werkernel.sys

2019-09-09 19:00 - 2019-07-09 10:12 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll

2019-09-09 19:00 - 2019-07-09 10:12 - 001286528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2019-09-09 19:00 - 2019-07-09 10:12 - 000573808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll

2019-09-09 19:00 - 2019-07-09 10:12 - 000125504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll

2019-09-09 19:00 - 2019-07-09 10:11 - 002257336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2019-09-09 19:00 - 2019-07-09 10:11 - 000576528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll

2019-09-09 19:00 - 2019-07-09 10:11 - 000108560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll

2019-09-09 19:00 - 2019-07-09 09:56 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll

2019-09-09 19:00 - 2019-07-09 09:56 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll

2019-09-09 19:00 - 2019-07-09 09:55 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll

2019-09-09 19:00 - 2019-07-09 09:55 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll

2019-09-09 19:00 - 2019-07-09 09:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll

2019-09-09 19:00 - 2019-07-09 09:53 - 003708416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2019-09-09 19:00 - 2019-07-09 09:53 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll

2019-09-09 19:00 - 2019-07-09 09:52 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2019-09-09 19:00 - 2019-07-09 09:52 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll

2019-09-09 19:00 - 2019-07-09 09:51 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll

2019-09-09 19:00 - 2019-07-09 09:51 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll

2019-09-09 19:00 - 2019-07-09 09:51 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll

2019-09-09 19:00 - 2019-07-09 09:51 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll

2019-09-09 19:00 - 2019-07-09 09:51 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll

2019-09-09 19:00 - 2019-07-09 09:51 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll

2019-09-09 19:00 - 2019-07-09 09:51 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll

2019-09-09 19:00 - 2019-07-09 09:51 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll

2019-09-09 19:00 - 2019-07-09 09:51 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe

2019-09-09 19:00 - 2019-07-09 09:50 - 004861440 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2019-09-09 19:00 - 2019-07-09 09:50 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll

2019-09-09 19:00 - 2019-07-09 09:50 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2019-09-09 19:00 - 2019-07-09 09:50 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll

2019-09-09 19:00 - 2019-07-09 09:50 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll

2019-09-09 19:00 - 2019-07-09 09:50 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys

2019-09-09 19:00 - 2019-07-09 09:50 - 000141312 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe

2019-09-09 19:00 - 2019-07-09 09:50 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe

2019-09-09 19:00 - 2019-07-09 09:50 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll

2019-09-09 19:00 - 2019-07-09 09:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll

2019-09-09 19:00 - 2019-07-09 09:49 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe

2019-09-09 19:00 - 2019-07-09 09:49 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll

2019-09-09 19:00 - 2019-07-09 09:49 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe

2019-09-09 19:00 - 2019-07-09 09:49 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll

2019-09-09 19:00 - 2019-07-09 09:49 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe

2019-09-09 19:00 - 2019-07-09 09:49 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe

2019-09-09 19:00 - 2019-07-09 09:49 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll

2019-09-09 19:00 - 2019-07-09 09:49 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll

2019-09-09 19:00 - 2019-07-09 09:48 - 003402240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2019-09-09 19:00 - 2019-07-09 09:48 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll

2019-09-09 19:00 - 2019-07-09 09:48 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll

2019-09-09 19:00 - 2019-07-09 09:48 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll

2019-09-09 19:00 - 2019-07-09 09:48 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe

2019-09-09 19:00 - 2019-07-09 09:48 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll

2019-09-09 19:00 - 2019-07-09 09:48 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll

2019-09-09 19:00 - 2019-07-09 09:47 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll

2019-09-09 19:00 - 2019-07-09 09:47 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2019-09-09 19:00 - 2019-07-09 09:47 - 002176000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll

2019-09-09 19:00 - 2019-07-09 09:47 - 000928768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll

2019-09-09 19:00 - 2019-07-09 09:47 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll

2019-09-09 19:00 - 2019-07-09 09:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll

2019-09-09 19:00 - 2019-07-09 09:47 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll

2019-09-09 19:00 - 2019-07-09 09:46 - 002912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2019-09-09 19:00 - 2019-07-09 09:46 - 001561088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll

2019-09-09 19:00 - 2019-07-09 09:46 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll

2019-09-09 19:00 - 2019-07-09 09:46 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll

2019-09-09 19:00 - 2019-07-09 09:45 - 001400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll

2019-09-09 19:00 - 2019-07-09 09:45 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll

2019-09-09 19:00 - 2019-07-09 09:45 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll

2019-09-09 19:00 - 2019-07-09 09:45 - 000510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll

2019-09-09 19:00 - 2019-07-09 09:45 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll

2019-09-09 19:00 - 2019-07-09 09:44 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

2019-09-09 19:00 - 2019-07-09 09:44 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll

2019-09-09 19:00 - 2019-07-09 09:44 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll

2019-09-09 19:00 - 2019-07-09 09:44 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll

2019-09-09 19:00 - 2019-07-09 09:44 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll

2019-09-09 19:00 - 2019-07-09 09:44 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe

2019-09-09 19:00 - 2019-07-09 09:44 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll

2019-09-09 19:00 - 2019-07-09 09:43 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll

2019-09-09 19:00 - 2019-07-09 09:43 - 001398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll

2019-09-09 19:00 - 2019-07-09 09:43 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2019-09-09 19:00 - 2019-07-09 09:43 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll

2019-09-09 19:00 - 2019-07-04 16:43 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll

2019-09-09 19:00 - 2019-07-04 16:22 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe

2019-09-09 19:00 - 2019-07-04 16:22 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll

2019-09-09 19:00 - 2019-07-04 16:20 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll

2019-09-09 19:00 - 2019-07-04 16:19 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe

2019-09-09 19:00 - 2019-07-04 11:58 - 000416312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll

2019-09-09 19:00 - 2019-07-04 11:57 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll

2019-09-09 19:00 - 2019-07-04 11:57 - 000986128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe

2019-09-09 19:00 - 2019-07-04 11:57 - 000776784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll

2019-09-09 19:00 - 2019-07-04 11:57 - 000362264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll

2019-09-09 19:00 - 2019-07-04 11:57 - 000209424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe

2019-09-09 19:00 - 2019-07-04 11:57 - 000137656 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll

2019-09-09 19:00 - 2019-07-04 11:56 - 002571640 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll

2019-09-09 19:00 - 2019-07-04 11:56 - 000734952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

2019-09-09 19:00 - 2019-07-04 11:56 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe

2019-09-09 19:00 - 2019-07-04 11:43 - 000832016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe

2019-09-09 19:00 - 2019-07-04 11:43 - 000665440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll

2019-09-09 19:00 - 2019-07-04 11:43 - 000328696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll

2019-09-09 19:00 - 2019-07-04 11:43 - 000287376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll

2019-09-09 19:00 - 2019-07-04 11:43 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe

2019-09-09 19:00 - 2019-07-04 11:42 - 002479176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll

2019-09-09 19:00 - 2019-07-04 11:42 - 001980984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll

2019-09-09 19:00 - 2019-07-04 11:42 - 000097272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll

2019-09-09 19:00 - 2019-07-04 11:41 - 000559328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll

2019-09-09 19:00 - 2019-07-04 11:26 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll

2019-09-09 19:00 - 2019-07-04 11:25 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll

2019-09-09 19:00 - 2019-07-04 11:24 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll

2019-09-09 19:00 - 2019-07-04 11:23 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2019-09-09 19:00 - 2019-07-04 11:23 - 001217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll

2019-09-09 19:00 - 2019-07-04 11:22 - 002587648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll

2019-09-09 19:00 - 2019-07-04 11:22 - 001175552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll

2019-09-09 19:00 - 2019-07-04 11:22 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll

2019-09-09 19:00 - 2019-07-04 11:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll

2019-09-09 19:00 - 2019-07-04 11:21 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll

2019-09-09 19:00 - 2019-07-04 11:21 - 003202560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2019-09-09 19:00 - 2019-07-04 11:21 - 001920000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2019-09-09 19:00 - 2019-07-04 11:21 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll

2019-09-09 19:00 - 2019-07-04 11:21 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll

2019-09-09 19:00 - 2019-07-04 11:19 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll

2019-09-09 19:00 - 2019-07-04 11:19 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll

2019-09-09 19:00 - 2019-07-04 11:18 - 002602496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll

2019-09-09 19:00 - 2019-07-04 11:18 - 001076224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll

2019-09-09 19:00 - 2019-07-04 11:18 - 000953344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll

2019-09-09 19:00 - 2019-06-21 15:50 - 000280584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys

2019-09-09 19:00 - 2019-06-20 09:21 - 000058882 _____ C:\WINDOWS\system32\srms.dat

2019-09-09 19:00 - 2019-06-13 19:15 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll

2019-09-09 19:00 - 2019-06-13 19:12 - 002871848 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe

2019-09-09 19:00 - 2019-06-13 19:05 - 000810296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll

2019-09-09 19:00 - 2019-06-13 19:04 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll

2019-09-09 19:00 - 2019-06-13 19:00 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll

2019-09-09 19:00 - 2019-06-13 18:59 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll

2019-09-09 19:00 - 2019-06-13 18:58 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll

2019-09-09 19:00 - 2019-06-13 18:58 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll

2019-09-09 19:00 - 2019-06-13 18:56 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe

2019-09-09 19:00 - 2019-06-13 18:43 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll

2019-09-09 19:00 - 2019-06-13 18:42 - 004038688 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2019-09-09 19:00 - 2019-06-13 18:42 - 002266936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll

2019-09-09 19:00 - 2019-06-13 18:42 - 000566536 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe

2019-09-09 19:00 - 2019-06-13 18:40 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll

2019-09-09 19:00 - 2019-06-13 18:38 - 000766264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll

2019-09-09 19:00 - 2019-06-13 18:37 - 000101192 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe

2019-09-09 19:00 - 2019-06-13 18:36 - 000251000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll

2019-09-09 19:00 - 2019-06-13 18:36 - 000236520 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll

2019-09-09 19:00 - 2019-06-13 18:35 - 001376688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll

2019-09-09 19:00 - 2019-06-13 18:34 - 000146888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe

2019-09-09 19:00 - 2019-06-13 18:18 - 006586880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2019-09-09 19:00 - 2019-06-13 18:18 - 004847104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2019-09-09 19:00 - 2019-06-13 18:17 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll

2019-09-09 19:00 - 2019-06-13 18:17 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll

2019-09-09 19:00 - 2019-06-13 18:17 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe

2019-09-09 19:00 - 2019-06-13 18:17 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe

2019-09-09 19:00 - 2019-06-13 18:16 - 000767488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll

2019-09-09 19:00 - 2019-06-13 18:15 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe

2019-09-09 19:00 - 2019-06-13 18:14 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll

2019-09-09 19:00 - 2019-06-13 18:14 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe

2019-09-09 19:00 - 2019-06-13 18:14 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll

2019-09-09 19:00 - 2019-06-13 18:14 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll

2019-09-09 19:00 - 2019-06-13 18:13 - 002920448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll

2019-09-09 19:00 - 2019-06-13 18:13 - 001339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll

2019-09-09 19:00 - 2019-06-13 18:13 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll

2019-09-09 19:00 - 2019-06-13 18:13 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll

2019-09-09 19:00 - 2019-06-13 18:13 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll

2019-09-09 19:00 - 2019-06-13 18:12 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll

2019-09-09 19:00 - 2019-06-13 18:10 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll

2019-09-09 19:00 - 2019-06-13 17:11 - 001539896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll

2019-09-09 19:00 - 2019-06-13 17:07 - 001027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll

2019-09-09 19:00 - 2019-06-13 17:07 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll

2019-09-09 19:00 - 2019-06-13 17:07 - 000221232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll

2019-09-09 19:00 - 2019-06-13 17:05 - 003700160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2019-09-09 19:00 - 2019-06-13 16:55 - 005657088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2019-09-09 19:00 - 2019-06-13 16:54 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll

2019-09-09 19:00 - 2019-06-13 16:53 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll

2019-09-09 19:00 - 2019-06-13 16:51 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll

2019-09-09 19:00 - 2019-06-13 16:50 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll

2019-09-09 19:00 - 2019-06-13 16:49 - 002406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll

2019-09-09 19:00 - 2019-06-13 16:49 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll

2019-09-09 19:00 - 2019-06-13 14:48 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll

2019-09-09 19:00 - 2019-06-13 14:46 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll

2019-09-09 19:00 - 2019-06-13 14:01 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll

2019-09-09 19:00 - 2019-06-13 14:01 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll

2019-09-09 19:00 - 2019-06-13 14:01 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe

2019-09-09 19:00 - 2019-06-13 13:59 - 000785264 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll

2019-09-09 19:00 - 2019-06-13 13:47 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi

2019-09-09 19:00 - 2019-06-13 13:46 - 001076536 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll

2019-09-09 19:00 - 2019-06-13 13:46 - 000510296 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll

2019-09-09 19:00 - 2019-06-13 13:45 - 002421560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2019-09-09 19:00 - 2019-06-13 13:44 - 002546704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll

2019-09-09 19:00 - 2019-06-13 13:44 - 001033696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll

2019-09-09 19:00 - 2019-06-13 13:44 - 000607112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll

2019-09-09 19:00 - 2019-06-13 13:44 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll

2019-09-09 19:00 - 2019-06-13 13:16 - 001626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2019-09-09 19:00 - 2019-06-13 13:16 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll

2019-09-09 19:00 - 2019-06-13 13:15 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe

2019-09-09 19:00 - 2019-06-13 13:15 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll

2019-09-09 19:00 - 2019-06-13 13:15 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll

2019-09-09 19:00 - 2019-06-13 13:15 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll

2019-09-09 19:00 - 2019-06-13 13:14 - 003318784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2019-09-09 19:00 - 2019-06-13 13:14 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll

2019-09-09 19:00 - 2019-06-13 13:14 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe

2019-09-09 19:00 - 2019-06-13 13:14 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll

2019-09-09 19:00 - 2019-06-13 13:13 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll

2019-09-09 19:00 - 2019-06-13 13:13 - 002370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll

2019-09-09 19:00 - 2019-06-13 13:13 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll

2019-09-09 19:00 - 2019-06-13 13:13 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll

2019-09-09 19:00 - 2019-06-13 13:12 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll

2019-09-09 19:00 - 2019-06-13 13:11 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll

2019-09-09 19:00 - 2019-06-13 13:11 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll

2019-09-09 19:00 - 2019-06-13 13:10 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll

2019-09-09 19:00 - 2019-06-13 13:10 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll

2019-09-09 19:00 - 2019-06-13 13:10 - 000849408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll

2019-09-09 19:00 - 2019-06-13 13:10 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll

2019-09-09 19:00 - 2019-06-13 13:09 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll

2019-09-09 19:00 - 2019-06-13 13:08 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll

2019-09-09 19:00 - 2019-06-13 12:14 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll

2019-09-09 19:00 - 2019-06-13 12:08 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll

2019-09-09 19:00 - 2019-06-13 12:06 - 001130776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll

2019-09-09 19:00 - 2019-06-13 12:06 - 000581600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll

2019-09-09 19:00 - 2019-06-13 11:49 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll

2019-09-09 19:00 - 2019-06-13 11:47 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll

2019-09-09 19:00 - 2019-06-13 11:47 - 002899456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

2019-09-09 19:00 - 2019-06-13 11:47 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll

2019-09-09 19:00 - 2019-06-13 11:46 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll

2019-09-09 19:00 - 2019-06-13 11:46 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll

2019-09-09 19:00 - 2019-06-13 11:45 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll

2019-09-09 19:00 - 2019-06-13 11:44 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll

2019-09-09 19:00 - 2019-06-13 11:44 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll

2019-09-09 19:00 - 2019-06-13 11:44 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2019-09-09 19:00 - 2019-06-13 11:44 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll

2019-09-09 19:00 - 2019-06-13 11:43 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll

2019-09-09 19:00 - 2019-06-13 11:43 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll

2019-09-09 19:00 - 2019-06-07 17:48 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll

2019-09-09 19:00 - 2019-06-07 17:47 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll

2019-09-09 19:00 - 2019-06-07 17:41 - 004055552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll

2019-09-09 19:00 - 2019-06-07 17:40 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll

2019-09-09 19:00 - 2019-06-07 17:10 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll

2019-09-09 19:00 - 2019-06-07 17:04 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll

2019-09-09 19:00 - 2019-06-07 13:07 - 000707384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys

2019-09-09 19:00 - 2019-06-07 12:58 - 000422416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll

2019-09-09 19:00 - 2019-06-07 12:58 - 000076304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys

2019-09-09 19:00 - 2019-06-07 12:57 - 001934808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2019-09-09 19:00 - 2019-06-07 12:57 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2019-09-09 19:00 - 2019-06-07 12:57 - 000792888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys

2019-09-09 19:00 - 2019-06-07 12:57 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe

2019-09-09 19:00 - 2019-06-07 12:57 - 000435000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll

2019-09-09 19:00 - 2019-06-07 12:57 - 000413720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll

2019-09-09 19:00 - 2019-06-07 12:57 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2019-09-09 19:00 - 2019-06-07 12:57 - 000383504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys

2019-09-09 19:00 - 2019-06-07 12:57 - 000148280 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll

2019-09-09 19:00 - 2019-06-07 12:47 - 000380432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll

2019-09-09 19:00 - 2019-06-07 12:46 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2019-09-09 19:00 - 2019-06-07 12:46 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2019-09-09 19:00 - 2019-06-07 12:46 - 000128792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll

2019-09-09 19:00 - 2019-06-07 12:23 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll

2019-09-09 19:00 - 2019-06-07 12:23 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll

2019-09-09 19:00 - 2019-06-07 12:22 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll

2019-09-09 19:00 - 2019-06-07 12:22 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll

2019-09-09 19:00 - 2019-06-07 12:21 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll

2019-09-09 19:00 - 2019-06-07 12:20 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll

2019-09-09 19:00 - 2019-06-07 12:19 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll

2019-09-09 19:00 - 2019-06-07 12:18 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2019-09-09 19:00 - 2019-06-07 12:17 - 000961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll

2019-09-09 19:00 - 2019-06-07 12:17 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll

2019-09-09 19:00 - 2019-06-07 12:16 - 000478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll

2019-09-09 19:00 - 2019-05-19 05:12 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll

2019-09-09 19:00 - 2019-05-19 05:12 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll

2019-09-09 19:00 - 2019-05-17 19:40 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL

2019-09-09 19:00 - 2019-05-17 19:25 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe

2019-09-09 19:00 - 2019-05-17 19:24 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismp6.sys

2019-09-09 19:00 - 2019-05-17 19:23 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll

2019-09-09 19:00 - 2019-05-17 19:23 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll

2019-09-09 19:00 - 2019-05-17 19:23 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll

2019-09-09 19:00 - 2019-05-17 19:22 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll

2019-09-09 19:00 - 2019-05-17 19:22 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll

2019-09-09 19:00 - 2019-05-17 19:21 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll

2019-09-09 19:00 - 2019-05-17 19:21 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll

2019-09-09 19:00 - 2019-05-17 19:21 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3gpui.dll

2019-09-09 19:00 - 2019-05-17 19:21 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2019-09-09 19:00 - 2019-05-17 19:20 - 002084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2019-09-09 19:00 - 2019-05-17 19:20 - 001970688 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll

2019-09-09 19:00 - 2019-05-17 19:20 - 000725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCacheProvider.dll

2019-09-09 19:00 - 2019-05-17 19:20 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSh.dll

2019-09-09 19:00 - 2019-05-17 19:20 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll

2019-09-09 19:00 - 2019-05-17 19:19 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2019-09-09 19:00 - 2019-05-17 19:07 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL

2019-09-09 19:00 - 2019-05-17 18:58 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe

2019-09-09 19:00 - 2019-05-17 18:58 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll

2019-09-09 19:00 - 2019-05-17 18:56 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll

2019-09-09 19:00 - 2019-05-17 18:56 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3gpui.dll

2019-09-09 19:00 - 2019-05-17 18:55 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll

2019-09-09 19:00 - 2019-05-17 18:55 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2019-09-09 19:00 - 2019-05-17 18:55 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll

2019-09-09 19:00 - 2019-05-17 18:55 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDistSh.dll

2019-09-09 19:00 - 2019-05-17 18:54 - 002016768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2019-09-09 19:00 - 2019-05-17 14:07 - 000105272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys

2019-09-09 19:00 - 2019-05-17 13:44 - 000829960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2019-09-09 19:00 - 2019-05-17 13:44 - 000550520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll

2019-09-09 19:00 - 2019-05-17 13:43 - 000297688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll

2019-09-09 19:00 - 2019-05-17 13:42 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2019-09-09 19:00 - 2019-05-17 13:42 - 001620264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2019-09-09 19:00 - 2019-05-17 13:42 - 001380096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll

2019-09-09 19:00 - 2019-05-17 13:42 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll

2019-09-09 19:00 - 2019-05-17 13:30 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2019-09-09 19:00 - 2019-05-17 13:26 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll

2019-09-09 19:00 - 2019-05-17 13:23 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe

2019-09-09 19:00 - 2019-05-17 13:22 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll

2019-09-09 19:00 - 2019-05-17 13:22 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll

2019-09-09 19:00 - 2019-05-17 13:21 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe

2019-09-09 19:00 - 2019-05-17 13:21 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll

2019-09-09 19:00 - 2019-05-17 13:20 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll

2019-09-09 19:00 - 2019-05-17 13:19 - 001630720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2019-09-09 19:00 - 2019-05-17 13:19 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll

2019-09-09 19:00 - 2019-05-17 13:19 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll

2019-09-09 19:00 - 2019-05-17 13:18 - 002796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll

2019-09-09 19:00 - 2019-05-17 13:18 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll

2019-09-09 19:00 - 2019-05-17 13:08 - 000491200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2019-09-09 19:00 - 2019-05-17 13:08 - 000401328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll

2019-09-09 19:00 - 2019-05-17 13:07 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2019-09-09 19:00 - 2019-05-17 13:07 - 001288712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2019-09-09 19:00 - 2019-05-17 13:07 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2019-09-09 19:00 - 2019-05-17 13:07 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll

2019-09-09 19:00 - 2019-05-17 13:07 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2019-09-09 19:00 - 2019-05-17 13:06 - 001943136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2019-09-09 19:00 - 2019-05-17 13:06 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll

2019-09-09 19:00 - 2019-05-17 13:06 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll

2019-09-09 19:00 - 2019-05-17 13:00 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll

2019-09-09 19:00 - 2019-05-17 12:44 - 016597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2019-09-09 19:00 - 2019-05-17 12:38 - 004709376 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll

2019-09-09 19:00 - 2019-05-17 12:37 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll

2019-09-09 19:00 - 2019-05-17 12:36 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys

2019-09-09 19:00 - 2019-05-17 12:36 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll

2019-09-09 19:00 - 2019-05-17 12:36 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll

2019-09-09 19:00 - 2019-05-17 12:35 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe

2019-09-09 19:00 - 2019-05-17 12:34 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2019-09-09 19:00 - 2019-05-17 12:34 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll

2019-09-09 19:00 - 2019-05-17 12:34 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe

2019-09-09 19:00 - 2019-05-17 12:34 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll

2019-09-09 19:00 - 2019-05-17 12:34 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll

2019-09-09 19:00 - 2019-05-17 12:33 - 003091456 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

2019-09-09 19:00 - 2019-05-17 12:33 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll

2019-09-09 19:00 - 2019-05-17 12:33 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys

2019-09-09 19:00 - 2019-05-17 12:33 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll

2019-09-09 19:00 - 2019-05-17 12:32 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll

2019-09-09 19:00 - 2019-05-17 12:32 - 000815104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll

2019-09-09 19:00 - 2019-05-17 12:31 - 003376640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2019-09-09 19:00 - 2019-05-17 12:31 - 003293184 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll

2019-09-09 19:00 - 2019-05-17 12:31 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2019-09-09 19:00 - 2019-05-17 12:31 - 001211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll

2019-09-09 19:00 - 2019-05-17 12:31 - 001027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll

2019-09-09 19:00 - 2019-05-17 12:30 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll

2019-09-09 19:00 - 2019-05-03 19:13 - 000396088 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2019-09-09 19:00 - 2019-05-03 18:52 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll

2019-09-09 19:00 - 2019-05-03 18:49 - 001288704 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll

2019-09-09 19:00 - 2019-05-03 18:49 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll

2019-09-09 19:00 - 2019-05-03 18:49 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE

2019-09-09 19:00 - 2019-05-03 18:27 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE

2019-09-09 19:00 - 2019-05-03 18:26 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll

2019-09-09 19:00 - 2019-05-03 13:43 - 000177128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys

2019-09-09 19:00 - 2019-05-03 13:34 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe

2019-09-09 19:00 - 2019-05-03 13:33 - 000063072 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll

2019-09-09 19:00 - 2019-05-03 13:32 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe

2019-09-09 19:00 - 2019-05-03 13:32 - 000438984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll

2019-09-09 19:00 - 2019-05-03 13:32 - 000164664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys

2019-09-09 19:00 - 2019-05-03 13:20 - 000434704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe

2019-09-09 19:00 - 2019-05-03 13:20 - 000384976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll

2019-09-09 19:00 - 2019-05-03 13:20 - 000146920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe

2019-09-09 19:00 - 2019-05-03 13:19 - 000056288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll

2019-09-09 19:00 - 2019-05-03 13:00 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll

2019-09-09 19:00 - 2019-05-03 13:00 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll

2019-09-09 19:00 - 2019-05-03 12:59 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll

2019-09-09 19:00 - 2019-05-03 12:54 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll

2019-09-09 19:00 - 2019-05-03 12:54 - 000778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL

2019-09-09 19:00 - 2019-05-03 12:54 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll

2019-09-09 19:00 - 2019-05-03 12:53 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys

2019-09-09 19:00 - 2019-05-03 12:53 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys

2019-09-09 19:00 - 2019-05-03 12:53 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys

2019-09-09 19:00 - 2019-05-03 12:53 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys

2019-09-09 19:00 - 2019-04-19 17:54 - 000720200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll

2019-09-09 19:00 - 2019-04-19 17:38 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe

2019-09-09 19:00 - 2019-04-19 17:38 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll

2019-09-09 19:00 - 2019-04-19 17:34 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv

2019-09-09 19:00 - 2019-04-19 16:37 - 000607960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll

2019-09-09 19:00 - 2019-04-19 16:30 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll

2019-09-09 19:00 - 2019-04-19 16:25 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv

2019-09-09 19:00 - 2019-04-19 11:43 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll

2019-09-09 19:00 - 2019-04-19 11:41 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe

2019-09-09 19:00 - 2019-04-19 11:40 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe

2019-09-09 19:00 - 2019-04-19 11:40 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll

2019-09-09 19:00 - 2019-04-19 11:40 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll

2019-09-09 19:00 - 2019-04-19 11:39 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll

2019-09-09 19:00 - 2019-04-19 11:39 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingASDS.dll

2019-09-09 19:00 - 2019-04-19 11:38 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll

2019-09-09 19:00 - 2019-04-19 11:38 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll

2019-09-09 19:00 - 2019-04-19 11:38 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll

2019-09-09 19:00 - 2019-04-19 11:37 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll

2019-09-09 19:00 - 2019-04-19 11:37 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll

2019-09-09 19:00 - 2019-04-19 11:37 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll

2019-09-09 19:00 - 2019-04-19 11:36 - 001300992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll

2019-09-09 19:00 - 2019-04-19 11:36 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll

2019-09-09 19:00 - 2019-04-19 11:36 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll

2019-09-09 19:00 - 2019-04-19 11:36 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll

2019-09-09 19:00 - 2019-04-19 11:36 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll

2019-09-09 19:00 - 2019-04-19 11:35 - 001938944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll

2019-09-09 19:00 - 2019-04-19 11:35 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll

2019-09-09 19:00 - 2019-04-19 11:35 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll

2019-09-09 19:00 - 2019-04-19 11:35 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll

2019-09-09 19:00 - 2019-04-19 11:35 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll

2019-09-09 19:00 - 2019-04-19 11:34 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll

2019-09-09 19:00 - 2019-04-19 11:34 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll

2019-09-09 19:00 - 2019-04-19 10:18 - 000806360 _____ C:\WINDOWS\SysWOW64\locale.nls

2019-09-09 19:00 - 2019-04-19 10:18 - 000806360 _____ C:\WINDOWS\system32\locale.nls

2019-09-09 19:00 - 2019-04-09 08:48 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll

2019-09-09 18:56 - 2019-03-28 16:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll

2019-09-09 18:56 - 2019-03-28 16:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll

2019-09-09 18:56 - 2019-03-28 16:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll

2019-09-09 18:56 - 2019-03-28 16:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll

2019-09-09 18:56 - 2019-03-28 13:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll

2019-09-09 18:56 - 2019-03-28 13:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll

2019-09-09 18:56 - 2019-03-28 13:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll

2019-09-09 18:56 - 2019-03-28 13:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll

2019-09-09 18:56 - 2019-03-28 13:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll

2019-09-09 18:56 - 2019-03-28 13:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll

2019-09-09 18:53 - 2019-09-09 18:53 - 000004252 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1568030011

2019-09-09 18:53 - 2019-09-09 18:53 - 000001402 _____ C:\Users\MSI_USER\Desktop\Opera-Browser.lnk

2019-09-09 18:53 - 2019-09-09 18:53 - 000001402 _____ C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk

2019-09-09 18:48 - 2019-09-09 18:48 - 002401928 _____ (Opera Software) C:\Users\MSI_USER\Downloads\OperaSetup (1).exe

2019-09-09 18:26 - 2019-04-02 19:16 - 001030144 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll

2019-09-09 18:26 - 2019-04-02 19:15 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll

2019-09-09 18:26 - 2019-04-02 19:11 - 001857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll

2019-09-09 18:26 - 2019-04-02 19:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys

2019-09-09 18:26 - 2019-04-02 19:10 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll

2019-09-09 18:26 - 2019-04-02 16:10 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll

2019-09-09 18:26 - 2019-04-02 16:07 - 001586688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll

2019-09-09 18:26 - 2019-04-02 14:48 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys

2019-09-09 18:26 - 2019-04-02 14:44 - 001724416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll

2019-09-09 18:26 - 2019-04-02 11:41 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll

2019-09-09 18:26 - 2019-03-14 21:52 - 000164664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppvVemgr.sys

2019-09-09 18:26 - 2019-03-14 21:51 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe

2019-09-09 18:26 - 2019-03-14 21:35 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll

2019-09-09 18:26 - 2019-03-14 21:33 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys

2019-09-09 18:26 - 2019-03-14 21:33 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys

2019-09-09 18:26 - 2019-03-14 21:33 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe

2019-09-09 18:26 - 2019-03-14 21:31 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll

2019-09-09 18:26 - 2019-03-14 21:30 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll

2019-09-09 18:26 - 2019-03-14 21:30 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll

2019-09-09 18:26 - 2019-03-14 21:29 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll

2019-09-09 18:26 - 2019-03-14 21:29 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll

2019-09-09 18:26 - 2019-03-14 21:28 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll

2019-09-09 18:26 - 2019-03-14 20:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll

2019-09-09 18:26 - 2019-03-14 20:55 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe

2019-09-09 18:26 - 2019-03-14 20:53 - 000625664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll

2019-09-09 18:26 - 2019-03-14 20:53 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll

2019-09-09 18:26 - 2019-03-14 20:53 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll

2019-09-09 18:26 - 2019-03-14 20:52 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll

2019-09-09 18:26 - 2019-03-14 15:57 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys

2019-09-09 18:26 - 2019-03-14 15:38 - 000090360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll

2019-09-09 18:26 - 2019-03-14 15:37 - 001171568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll

2019-09-09 18:26 - 2019-03-14 15:28 - 000152072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys

2019-09-09 18:26 - 2019-03-14 15:27 - 000097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll

2019-09-09 18:26 - 2019-03-14 15:26 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll

2019-09-09 18:26 - 2019-03-14 15:26 - 000481048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll

2019-09-09 18:26 - 2019-03-14 15:26 - 000175416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys

2019-09-09 18:26 - 2019-03-14 15:18 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll

2019-09-09 18:26 - 2019-03-14 15:18 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll

2019-09-09 18:26 - 2019-03-14 15:17 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll

2019-09-09 18:26 - 2019-03-14 15:17 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll

2019-09-09 18:26 - 2019-03-14 15:17 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll

2019-09-09 18:26 - 2019-03-14 15:15 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll

2019-09-09 18:26 - 2019-03-14 15:15 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll

2019-09-09 18:26 - 2019-03-14 15:15 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll

2019-09-09 18:26 - 2019-03-14 15:14 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll

2019-09-09 18:26 - 2019-03-14 15:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll

2019-09-09 18:26 - 2019-03-14 15:14 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll

2019-09-09 18:26 - 2019-03-14 15:13 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll

2019-09-09 18:26 - 2019-03-14 14:58 - 002509824 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe

2019-09-09 18:26 - 2019-03-14 14:56 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll

2019-09-09 18:26 - 2019-03-14 14:55 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll

2019-09-09 18:26 - 2019-03-14 14:55 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys

2019-09-09 18:26 - 2019-03-14 14:55 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll

2019-09-09 18:26 - 2019-03-14 14:55 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll

2019-09-09 18:26 - 2019-03-14 14:55 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll

2019-09-09 18:26 - 2019-03-14 14:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll

2019-09-09 18:26 - 2019-03-14 14:55 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll

2019-09-09 18:26 - 2019-03-14 14:55 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe

2019-09-09 18:26 - 2019-03-14 14:55 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll

2019-09-09 18:26 - 2019-03-14 14:54 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll

2019-09-09 18:26 - 2019-03-14 14:54 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll

2019-09-09 18:26 - 2019-03-14 14:54 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2019-09-09 18:26 - 2019-03-14 14:54 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll

2019-09-09 18:26 - 2019-03-14 14:53 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll

2019-09-09 18:26 - 2019-03-14 14:52 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll

2019-09-09 18:26 - 2019-03-14 14:52 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll

2019-09-09 18:26 - 2019-03-14 14:51 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll

2019-09-09 18:26 - 2019-03-14 14:50 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll

2019-09-09 18:26 - 2019-03-14 14:50 - 001410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll

2019-09-09 18:26 - 2019-03-14 14:50 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll

2019-09-09 18:26 - 2019-03-14 08:57 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll

2019-09-09 18:26 - 2019-03-06 22:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll

2019-09-09 18:26 - 2019-03-06 22:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE

2019-09-09 18:26 - 2019-03-06 22:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys

2019-09-09 18:26 - 2019-03-06 19:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll

2019-09-09 18:26 - 2019-03-06 16:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll

2019-09-09 18:26 - 2019-03-06 16:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2019-09-09 18:26 - 2019-03-06 16:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2019-09-09 18:26 - 2019-03-06 16:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll

2019-09-09 18:26 - 2019-03-06 16:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys

2019-09-09 18:26 - 2019-03-06 16:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys

2019-09-09 18:26 - 2019-03-06 16:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll

2019-09-09 18:26 - 2019-03-06 16:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys

2019-09-09 18:26 - 2019-03-06 16:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys

2019-09-09 18:26 - 2019-03-06 16:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2019-09-09 18:26 - 2019-03-06 15:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys

2019-09-09 18:26 - 2019-03-06 15:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys

2019-09-09 18:26 - 2019-03-06 15:32 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys

2019-09-09 18:26 - 2019-03-06 15:31 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys

2019-09-09 18:26 - 2019-03-06 15:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys

2019-09-09 18:26 - 2019-03-06 15:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys

2019-09-09 18:26 - 2019-03-06 15:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll

2019-09-09 18:26 - 2019-03-06 15:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys

2019-09-09 18:26 - 2019-03-06 15:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys

2019-09-09 18:26 - 2019-03-06 15:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys

2019-09-09 18:26 - 2019-03-06 15:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys

2019-09-09 18:26 - 2019-03-06 13:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll

2019-09-09 18:26 - 2019-03-06 13:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll

2019-09-09 18:26 - 2019-03-06 13:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2019-09-09 18:26 - 2019-03-06 12:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll

2019-09-09 18:26 - 2019-02-16 19:57 - 000257848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll

2019-09-09 18:26 - 2019-02-16 19:57 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe

2019-09-09 18:26 - 2019-02-16 19:57 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll

2019-09-09 18:26 - 2019-02-16 19:57 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll

2019-09-09 18:26 - 2019-02-16 19:57 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe

2019-09-09 18:26 - 2019-02-16 19:57 - 000180528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe

2019-09-09 18:26 - 2019-02-16 19:57 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe

2019-09-09 18:26 - 2019-02-16 19:57 - 000034104 _____ C:\WINDOWS\system32\SyncAppvPublishingServer.exe

2019-09-09 18:26 - 2019-02-16 19:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll

2019-09-09 18:26 - 2019-02-16 19:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll

2019-09-09 18:26 - 2019-02-16 19:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll

2019-09-09 18:26 - 2019-02-16 19:33 - 002194432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll

2019-09-09 18:26 - 2019-02-16 19:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll

2019-09-09 18:26 - 2019-02-16 19:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll

2019-09-09 18:26 - 2019-02-16 19:32 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe

2019-09-09 18:26 - 2019-02-16 19:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll

2019-09-09 18:26 - 2019-02-16 19:31 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll

2019-09-09 18:26 - 2019-02-16 19:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll

2019-09-09 18:26 - 2019-02-16 19:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll

2019-09-09 18:26 - 2019-02-16 19:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll

2019-09-09 18:26 - 2019-02-16 19:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe

2019-09-09 18:26 - 2019-02-16 19:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe

2019-09-09 18:26 - 2019-02-16 19:25 - 000148784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe

2019-09-09 18:26 - 2019-02-16 19:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll

2019-09-09 18:26 - 2019-02-16 19:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll

2019-09-09 18:26 - 2019-02-16 19:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll

2019-09-09 18:26 - 2019-02-16 19:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll

2019-09-09 18:26 - 2019-02-16 19:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll

2019-09-09 18:26 - 2019-02-16 19:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll

2019-09-09 18:26 - 2019-02-16 19:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll

2019-09-09 18:26 - 2019-02-16 19:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll

2019-09-09 18:26 - 2019-02-16 19:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe

2019-09-09 18:26 - 2019-02-16 19:02 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe

2019-09-09 18:26 - 2019-02-16 18:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll

2019-09-09 18:26 - 2019-02-16 17:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll

2019-09-09 18:26 - 2019-02-16 17:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll

2019-09-09 18:26 - 2019-02-16 15:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe

2019-09-09 18:26 - 2019-02-16 15:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll

2019-09-09 18:26 - 2019-02-16 15:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll

2019-09-09 18:26 - 2019-02-16 15:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll

2019-09-09 18:26 - 2019-02-16 15:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys

2019-09-09 18:26 - 2019-02-16 15:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys

2019-09-09 18:26 - 2019-02-16 15:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll

2019-09-09 18:26 - 2019-02-16 15:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll

2019-09-09 18:26 - 2019-02-16 15:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll

2019-09-09 18:26 - 2019-02-16 14:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll

2019-09-09 18:26 - 2019-02-16 14:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll

2019-09-09 18:26 - 2019-02-16 14:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll

2019-09-09 18:26 - 2019-02-16 14:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2019-09-09 18:26 - 2019-02-16 14:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2019-09-09 18:26 - 2019-02-16 14:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2019-09-09 18:26 - 2019-02-16 14:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2019-09-09 18:26 - 2019-02-16 14:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll

2019-09-09 18:26 - 2019-02-16 14:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll

2019-09-09 18:26 - 2019-02-16 14:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll

2019-09-09 18:26 - 2019-02-16 14:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll

2019-09-09 18:26 - 2019-02-16 14:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll

2019-09-09 18:26 - 2019-02-16 14:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll

2019-09-09 18:26 - 2019-02-16 14:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll

2019-09-09 18:26 - 2019-02-16 14:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll

2019-09-09 18:26 - 2019-02-16 14:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll

2019-09-09 18:26 - 2019-02-16 14:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll

2019-09-09 18:26 - 2019-02-16 14:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll

2019-09-09 18:26 - 2019-02-16 14:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll

2019-09-09 18:26 - 2019-02-16 14:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll

2019-09-09 18:26 - 2019-02-16 14:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll

2019-09-09 18:26 - 2019-02-16 14:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll

2019-09-09 18:26 - 2019-02-16 14:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll

2019-09-09 18:26 - 2019-02-16 14:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll

2019-09-09 18:26 - 2019-02-16 14:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll

2019-09-09 18:26 - 2019-02-16 14:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll

2019-09-09 18:26 - 2019-02-16 14:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll

2019-09-09 18:26 - 2019-02-16 14:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll

2019-09-09 18:26 - 2019-02-16 14:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll

2019-09-09 18:26 - 2019-02-16 14:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll

2019-09-09 18:26 - 2019-02-16 14:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll

2019-09-09 18:26 - 2019-02-16 14:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll

2019-09-09 18:26 - 2019-02-06 10:01 - 000720480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll

2019-09-09 18:26 - 2019-02-06 10:01 - 000033576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll

2019-09-09 18:26 - 2019-02-06 10:00 - 000899728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll

2019-09-09 18:26 - 2019-02-06 10:00 - 000466960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS

2019-09-09 18:26 - 2019-02-06 10:00 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe

2019-09-09 18:26 - 2019-02-06 10:00 - 000038792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll

2019-09-09 18:26 - 2019-02-06 09:59 - 000144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe

2019-09-09 18:26 - 2019-02-06 09:40 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll

2019-09-09 18:26 - 2019-02-06 09:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll

2019-09-09 18:26 - 2019-02-06 09:25 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll

2019-09-09 18:26 - 2019-02-06 09:23 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll

2019-09-09 18:26 - 2019-01-10 00:40 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll

2019-09-09 18:26 - 2019-01-10 00:36 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe

2019-09-09 18:26 - 2019-01-09 16:55 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll

2019-09-09 18:26 - 2019-01-09 12:43 - 000287640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2019-09-09 18:26 - 2019-01-09 12:43 - 000071456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe

2019-09-09 18:26 - 2019-01-09 12:42 - 000092704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys

2019-09-09 18:26 - 2019-01-09 12:39 - 000349656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2019-09-09 18:26 - 2019-01-09 12:39 - 000085472 _____ (Microsoft Corporation) C:\WINDOWS\system32\svchost.exe

2019-09-09 18:26 - 2019-01-09 12:27 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll

2019-09-09 18:26 - 2019-01-09 12:25 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll

2019-09-09 18:26 - 2019-01-09 12:24 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll

2019-09-09 18:26 - 2019-01-09 12:24 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll

2019-09-09 18:26 - 2019-01-09 12:23 - 001189888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll

2019-09-09 18:26 - 2019-01-09 12:23 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll

2019-09-09 18:26 - 2019-01-09 12:23 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll

2019-09-09 18:26 - 2019-01-09 12:22 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll

2019-09-09 18:26 - 2019-01-09 12:22 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll

2019-09-09 18:26 - 2019-01-09 12:22 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll

2019-09-09 18:26 - 2019-01-09 12:21 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll

2019-09-09 18:26 - 2019-01-09 12:19 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll

2019-09-09 18:26 - 2019-01-09 12:18 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll

2019-09-09 18:26 - 2019-01-08 10:06 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin

2019-09-09 18:19 - 2019-02-13 12:47 - 001909560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll

2019-09-09 17:45 - 2017-09-04 12:09 - 000855508 _____ C:\Users\MSI_USER\Desktop\Windows 10 Thai PC FSX aktivierung eines neuen keys.pdf
 

==================== One month (modified) ========
 

(If an entry is included in the fixlist, the file/folder will be moved.)
 

2019-09-10 13:25 - 2018-04-12 06:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2019-09-10 13:13 - 2018-04-12 06:30 - 000000000 ____D C:\WINDOWS\CbsTemp

2019-09-10 13:01 - 2016-01-19 20:33 - 000000888 _____ C:\Users\MSI_USER\Desktop\fsx - Shortcut.lnk

2019-09-10 13:01 - 2016-01-17 10:55 - 000000000 ____D C:\Users\MSI_USER\Documents\Flight Simulator X-Dateien

2019-09-10 12:47 - 2018-04-12 06:38 - 000000000 ___HD C:\Program Files\WindowsApps

2019-09-10 12:47 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\AppReadiness

2019-09-10 12:39 - 2018-04-12 06:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP

2019-09-10 12:39 - 2016-08-10 09:49 - 000000000 ____D C:\ProgramData\Malwarebytes

2019-09-10 12:38 - 2019-03-20 17:34 - 000017192 _____ C:\Users\MSI_USER\Desktop\pw 16.1.19 fsx pc th.txt

2019-09-10 12:35 - 2019-01-13 19:06 - 001720404 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2019-09-10 12:35 - 2019-01-13 18:09 - 000739694 _____ C:\WINDOWS\system32\perfh007.dat

2019-09-10 12:35 - 2019-01-13 18:09 - 000149194 _____ C:\WINDOWS\system32\perfc007.dat

2019-09-10 12:35 - 2018-04-12 06:36 - 000000000 ____D C:\WINDOWS\INF

2019-09-10 12:34 - 2017-11-04 06:21 - 000000000 ____D C:\ProgramData\NVIDIA

2019-09-10 12:32 - 2018-01-14 12:41 - 000000504 _____ C:\WINDOWS\Tasks\AVG Driver Updater Startup.job

2019-09-10 12:32 - 2018-01-14 12:40 - 000025608 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys

2019-09-09 20:42 - 2017-12-19 19:22 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\Packages

2019-09-09 20:35 - 2017-12-19 19:28 - 000000000 ___HD C:\Users\MSI_USER\MicrosoftEdgeBackups

2019-09-09 20:33 - 2017-03-12 10:21 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\ConnectedDevicesPlatform

2019-09-09 20:32 - 2019-01-29 09:43 - 000000000 ____D C:\Program Files (x86)\Avira

2019-09-09 20:30 - 2019-01-29 09:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira

2019-09-09 20:27 - 2019-02-11 16:48 - 000000000 ____D C:\Users\Public\Speedup Sessions

2019-09-09 20:26 - 2017-11-27 06:06 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2019-09-09 20:19 - 2019-01-13 19:03 - 000003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task

2019-09-09 20:16 - 2019-01-13 19:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT

2019-09-09 20:15 - 2018-04-12 04:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI

2019-09-09 20:11 - 2017-12-19 19:28 - 000000000 ___RD C:\Users\MSI_USER\3D Objects

2019-09-09 20:11 - 2016-11-21 01:54 - 000000000 __RHD C:\Users\Public\AccountPictures

2019-09-09 20:10 - 2019-01-13 18:56 - 000495152 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2019-09-09 20:09 - 2018-04-12 16:20 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ___SD C:\WINDOWS\system32\UNP

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\TextInput

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\system32\oobe

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\system32\appraiser

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\ShellExperiences

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\ShellComponents

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\Provisioning

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions

2019-09-09 20:09 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\bcastdvr

2019-09-09 20:09 - 2018-04-12 04:04 - 000000000 ____D C:\WINDOWS\system32\Dism

2019-09-09 20:04 - 2018-04-12 06:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12

2019-09-09 20:04 - 2018-04-12 06:38 - 000000000 ___SD C:\WINDOWS\system32\F12

2019-09-09 20:04 - 2018-04-12 06:38 - 000000000 ___RD C:\Program Files\Windows Defender

2019-09-09 20:04 - 2018-04-12 06:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender

2019-09-09 19:41 - 2019-01-29 09:44 - 000203440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

2019-09-09 19:41 - 2019-01-29 09:44 - 000195648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

2019-09-09 19:41 - 2019-01-29 09:44 - 000078936 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys

2019-09-09 19:23 - 2019-03-25 12:33 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\DesktopIconAmazon

2019-09-09 18:59 - 2017-10-29 19:13 - 000000000 ____D C:\Program Files\rempl

2019-09-09 18:56 - 2016-01-17 08:37 - 000000000 ____D C:\WINDOWS\system32\MRT

2019-09-09 18:54 - 2016-01-17 08:37 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2019-09-09 18:46 - 2016-01-23 10:44 - 000000000 ____D C:\Program Files (x86)\Opera

2019-09-09 18:40 - 2019-02-23 15:36 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2019-09-09 18:31 - 2019-01-13 19:03 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2019-09-09 18:30 - 2016-01-18 01:14 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2019-09-09 18:19 - 2019-01-13 19:03 - 000003384 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-465342472-1690862640-1647311925-1001

2019-09-09 18:19 - 2019-01-13 18:58 - 000002388 _____ C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2019-09-09 18:19 - 2016-01-17 07:37 - 000000000 ___RD C:\Users\MSI_USER\OneDrive

2019-09-09 18:16 - 2017-10-29 19:03 - 000000000 ____D C:\Program Files\UNP

2019-09-09 17:38 - 2019-02-05 22:16 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update

2019-09-09 17:38 - 2019-01-13 19:03 - 000004260 _____ C:\WINDOWS\System32\Tasks\AVG Secure VPN Update

2019-09-09 17:34 - 2017-03-26 14:52 - 000000000 ____D C:\Program Files (x86)\TeamViewer

2019-09-07 12:10 - 2019-02-23 15:34 - 000003418 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2019-09-07 12:10 - 2019-02-23 15:34 - 000003294 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2019-09-07 12:10 - 2016-01-17 08:01 - 000000000 ____D C:\ProgramData\Package Cache

2019-09-07 12:07 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\system32\NDF

2019-09-07 12:07 - 2016-01-18 14:49 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\ElevatedDiagnostics
 

==================== Files in the root of some directories ================
 

2016-08-16 11:02 - 2016-08-16 11:02 - 000000182 _____ () C:\Users\MSI_USER\FSDreamTeam_Geneva.reg

2016-08-27 18:59 - 2016-08-27 18:59 - 000000203 _____ () C:\Users\MSI_USER\FSDreamTeam_Hawaiian Airports Volume 1.reg

2016-08-27 19:02 - 2017-11-05 13:38 - 000000203 _____ () C:\Users\MSI_USER\FSDreamTeam_Hawaiian Airports Volume 2.reg

2016-08-27 11:57 - 2016-08-27 11:57 - 000000185 _____ () C:\Users\MSI_USER\FSDreamTeam_Honolulu.reg

2016-08-16 11:00 - 2019-02-17 21:26 - 000000180 _____ () C:\Users\MSI_USER\FSDreamTeam_ZurichX.reg

2016-01-22 23:01 - 2016-08-04 11:01 - 000000231 _____ () C:\Users\MSI_USER\AppData\Roaming\WB.CFG

2016-01-17 07:40 - 2016-01-17 07:40 - 000000000 _____ () C:\Users\MSI_USER\AppData\Local\Driver_LOM_8161Present.flag

2017-03-13 14:05 - 2017-03-13 14:05 - 000007628 _____ () C:\Users\MSI_USER\AppData\Local\Resmon.ResmonCfg
 

==================== SigCheck ===============================
 

(There is no automatic fix for files that do not pass verification.)
 

==================== End of FRST.txt ============================

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-09-2019

Ran by MSI_USER (10-09-2019 14:21:46)

Running from C:\Users\MSI_USER\Desktop

Windows 10 Pro Version 1803 17134.950 (X64) (2019-01-13 12:03:18)

Boot Mode: Normal

==========================================================
 
 

==================== Accounts: =============================
 

Administrator (S-1-5-21-465342472-1690862640-1647311925-500 - Administrator - Disabled)

DefaultAccount (S-1-5-21-465342472-1690862640-1647311925-503 - Limited - Disabled)

Guest (S-1-5-21-465342472-1690862640-1647311925-501 - Limited - Disabled)

MSI_USER (S-1-5-21-465342472-1690862640-1647311925-1001 - Administrator - Enabled) => C:\Users\MSI_USER

WDAGUtilityAccount (S-1-5-21-465342472-1690862640-1647311925-504 - Limited - Disabled)
 

==================== Security Center ========================
 

(If an entry is included in the fixlist, it will be removed.)
 

AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546}

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

AS: Avira Antivirus (Enabled - Up to date) {33CF8AA2-FA06-4AD4-98AB-332D53DD7FFB}

AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 

==================== Installed Programs ======================
 

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 

727 Captain (727-100) Base Pack [FSX/SE] 2.70 FSX (HKLM-x32\...\p721_fsx) (Version: 2.70 - © 1999-2016 Captain Sim)

727 Captain (727-200) Expansion Model [FSX/SE/P3D] 2.70 FSX (HKLM-x32\...\p722_fsx) (Version: 2.70 - © 1999-2016 Captain Sim)

737 Captain (737-100 Exterior Model) 0.2 (HKLM-x32\...\x730) (Version: 0.2.00 - ฉ 1999-2011 Captain Sim)

777 Captain (777-200 Exterior Model) 0.1 (HKLM-x32\...\x770) (Version: 0.1.00 - ฉ 1999-2011 Captain Sim)

Accu-Feel (HKLM-x32\...\Accu-Feel) (Version:  - )

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)

Aerosoft Mega Airport Munich v 1.00 for FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Aerosoft Mega Airport Munich v 1.00 for FSX) (Version:  - )

Aerosoft's - Aerosoft Launcher (HKLM-x32\...\{EE11CFFC-898C-4875-8A63-8B732A9AD43B}) (Version: 1.2.0.3 - Aerosoft)

aerosoft's - Lukla X - Mount Everest (HKLM-x32\...\{EF32F291-8B08-43EF-8BAA-58B9F8C9540F}) (Version: 1.00 - aerosoft)

Aerosoft's - Madeira X Evolution - FSX (HKLM-x32\...\Madeira X Evolution - FSX) (Version: 1.05a - Aerosoft)

Aerosoft's - Mega Airport Zurich 2012 - FSX (HKLM-x32\...\{463A571A-B793-459B-BEA8-028DC323AAB0}) (Version: 1.01 - Aerosoft)

aerosoft's - Menorca X for FSX (HKLM-x32\...\{5BD1BBB6-DC09-420F-B459-DD61DD351541}) (Version: 1.00 - aerosoft)

Aerosoft's - MonacoX (HKLM-x32\...\{B56D25A0-1316-4255-AB45-1147C9D01C5E}) (Version: 1.02 - Aerosoft)

aerosoft's - Nice Cote dAzur X (HKLM-x32\...\{90447E05-DE8E-470D-8D3E-C871D2AE74AF}) (Version: 1.10 - aerosoft)

AIMP (HKLM-x32\...\AIMP) (Version: v4.51.2084, 01.12.2018 - AIMP DevTeam)

Airbus A320 Family Mega Pack FSX & P3D (HKLM\...\{B3433E82-1261-4523-9D4E-BEC8CA678D50}) (Version: 1 - Project Airbus & its collaborators, François Doré, repack by Luis Quintero)

Aircraft Factory F4u Corsair (HKLM-x32\...\Aircraft Factory F4u Corsair) (Version:  - )

ALABEO Pitts S-2S (HKLM-x32\...\ALABEO Pitts S-2S) (Version: 1.00.00.00 - ALABEO)

Alphasim EFA Typhoon FSX & P3D (HKLM\...\{35F708C4-5C11-46C5-B4A1-EFA97EC214DE}) (Version: 1 - Alphasim/Virtavia)

Antonov An-2 0.9.7 (HKLM-x32\...\{7cd9d678-9999-4f1e-8ae0-24f71faad1a0}_is1) (Version: 0.9.7 - SibWings)

Apple Application Support (32-Bit) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)

Apple Application Support (64-Bit) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{BD6778C5-6FA5-492A-ADD6-E706339C2A7B}) (Version: 11.0.2.4 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)

AVG (HKLM\...\{136B57DF-DA9E-4361-A165-09AB4422BCD1}) (Version: 1.231.3 - AVG Technologies) Hidden

AVG Driver Updater (HKLM-x32\...\{BAAB946F-7E00-41F4-BEC7-B8CCF758E012}) (Version: 2.3.0 - AVG Netherlands B.V) Hidden

AVG Driver Updater (HKLM-x32\...\AVG Driver Updater) (Version: 2.3.0 - AVG Netherlands B.V)

AVG PC TuneUp (HKLM-x32\...\{52B6D655-9038-4290-B710-0E568F806155}) (Version: 16.80.3 - AVG Technologies) Hidden

AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.80.3.38236 - AVG Technologies)

AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.1.588.1 - AVG)

Avira (HKLM-x32\...\{1db45392-716a-490d-9b3e-2d96adbb5ab0}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG)

Avira (HKLM-x32\...\{CC898F82-66EF-4083-947F-5C69703DDBAF}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG) Hidden

Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.1908.1579 - Avira Operations GmbH & Co. KG)

Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.28.3.20557 - Avira Operations GmbH & Co. KG)

Avira Privacy Pal (HKLM-x32\...\{F2BC8305-DFBE-4C02-A906-9BBD8EE299A3}_is1) (Version: 1.8.0.1831 - Avira Operations GmbH & Co. KG)

Avira Safe Shopping (HKLM-x32\...\{099DC083-FEAC-45B0-9B0E-B858193D07F8}) (Version: 1.1.42.3954 - Avira Operations GmbH & Co. KG)

Avira Software Updater (HKLM-x32\...\{9A748448-7435-49AD-B175-087292C52A2E}) (Version: 2.0.6.17105 - Avira Operations GmbH & Co. KG)

Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 4.16.0.7822 - Avira Operations GmbH & Co. KG)

B1900D HD SERIES FSX/P3D (HKLM-x32\...\B1900D HD SERIES FSX/P3D) (Version: 1.00.00.00 - Carenado)

BAE Red Arrows Hawk T1 (HKLM-x32\...\BAE Red Arrows Hawk T1) (Version:  - )

Basler BT-67 Base Pack V2 FSX SP2 & P3D (HKLM\...\{EB6BE03D-1D14-4137-AAE8-6DEEBDB8575D}) (Version: 1 - Manfred Jahn, Daniel Fuernkaess, Alexander M. Metzger, Hansjoerg Naegele)

Boeing 737 Classic Multi Livery Pack (HKLM\...\{C85841E6-BA63-4C03-BFE6-C0688AD52771}) (Version: 1 - Eagle Rotorcraft Simulation, George A.Arana, Alejandro Rojas Lucena, package by Rikoooo)

Boeing 777-200ER Ultimate Pack (HKLM\...\{5849CFC1-98B4-4B0A-98F7-86322E790294}) (Version: 1 - Project OpenSky, update by Hanzalah Ravat)

Boeing B737-823 Advanced VC FSX & P3D (HKLM\...\{330F6375-B0DB-4CDD-B1EB-B83C43810D11}) (Version: 1 - Project OpenSky, Alejandro Rojas Lucenda, FSRepaintsGER, Adam Murphy)

Boeing P8-A Poseidon (HKLM\...\{0D1B836B-D6BC-4C8B-9B06-CE966304893D}) (Version: 1 - Model by TDS, enhanced by Alejandro Rojas Lucena, packaged by Chris Evans)

Bombardier CRJ-200 Full Pack (HKLM\...\{24BEBC74-49DD-429C-B85A-6E95DB3E093F}) (Version: 3 - Rikoooo)

Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)

C90B King Air HD SERIES FSX (HKLM-x32\...\C90B King Air HD SERIES FSX) (Version: 1.00.00.00 - Carenado)

Captain Sim 707 All-in-One (HKLM-x32\...\{0906F438-9315-477C-9DBB-4A3050699810}) (Version: 1.00 - SilverWingz)

Carenado Baron 58 FSX (HKLM-x32\...\Carenado Baron 58 FSX) (Version: 1.00.00.00 - Carenado)

Carenado C340 II FSX (HKLM-x32\...\Carenado C340 II FSX) (Version: 1.00.00.00 - Carenado)

Carenado F33A Bonanza (HKLM-x32\...\Carenado F33A Bonanza) (Version: 1.00.00.00 - Carenado)

Carenado PA28-181 ARCHER II FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Carenado PA28-181 ARCHER II FSX) (Version:  - )

Carenado Piper Cherokee FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Carenado Piper Cherokee FSX) (Version:  - )

Carenado V35B Bonanza for FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Carenado V35B Bonanza for FSX) (Version:  - )

CCleaner (HKLM\...\CCleaner) (Version: 5.53 - Piriform)

CE2400X FSX/P3D/STEAM (HKLM-x32\...\CE2400X FSX/P3D/STEAM) (Version: 1.0 - Carenado)

Cessna Citation Excel XLS+ (HKLM\...\{66DB8AF6-8736-40AB-BC09-7168A951B8B7}) (Version: 1 - Aryus Works, Alex Sandro Guedes Silva, Jeffrey S. Bryner, Christoffer Petersen, Bigmike)

CH Control Manager Software (HKLM-x32\...\CHControlManager_is1) (Version:  - )

CLS Piper Arrow (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\CLS Piper Arrow) (Version:  - )

CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version:  - ) <==== ATTENTION

Curtiss C46 Commando (HKLM-x32\...\{8FA2A715-0B8D-4A8C-979F-C4886053A6FB}) (Version: 1.00.000 - Just Flight)

DeHavilland DHC-7 Spantax (HKLM\...\{F9A46DAE-9088-4652-AA37-C11876E086FB}) (Version: 1 - By Milton Shupe, Mike Kelly, George Arana and Sim-Outhouse. FSX native conversion by Eagle Rotorcraft Simulations. Textures by Enrique Medal. Assembled for FSX/P3D v3 & 4 by Chris Evans)

DH104 Dove and Devon (HKLM-x32\...\{CE279BBA-E76C-4A0A-B9A0-45DBBF3BF045}) (Version: 1.00.000 - Just Flight)

DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden

Douglas A-20 Havoc (HKLM\...\{20CB9B16-10C0-4A1C-9297-B64878854036}) (Version: 1 - Rikoooo)

DX10 Scenery Fixer (HKLM-x32\...\{BEC93831-5B06-4A2B-911E-DCC135AFCA08}) (Version: 3.0.92.1 - Stevefx)

EMB500 Phenom 100 FSX/P3D (HKLM-x32\...\EMB500 Phenom 100 FSX/P3D) (Version: ${PRODUCT_VERSION} - Carenado)

EMB505 Phenom 300 v1.3 (HKLM-x32\...\EMB505 Phenom 300 v1.3with Navigraph Pack 1.1FSX) (Version: with Navigraph Pack 1.1 - Carenado)

Embraer EMB-120 Mega Pack (HKLM\...\{3517A4A7-53F2-4597-8420-D07F6A5FF79D}) (Version: 1 - Rikoooo)

F-8 Vought Crusader v2 (HKLM\...\{B88A5BAF-08DB-4704-A587-8B04DCDBA672}) (Version: 2 - Alphasim/Virtavia. Henk Schuitemaker)

F9F Panther (HKLM-x32\...\F9F Panther) (Version:  - )

Fiji Photoreal Package Western FSX & P3D (HKLM\...\{DC17D3A5-1F2A-47F2-8FDD-6F5550C6030E}) (Version: 1 - Tiberius Kowalski)

Flight1 Citation Mustang (HKLM-x32\...\f1mustang_FSX) (Version: 1.01 - Flight One Software)

FlyLogic's - Altenrhein X (HKLM-x32\...\{E5326C48-869C-43C0-A78E-B531CCFF066B}) (Version: 1.00 - FlyLogic)

FMW 1 (HKLM\...\{4CC5FB14-3F4D-4FA8-B921-00A9B40145C4}) (Version: 1.227.45 - AVG Technologies) Hidden

Fraps (HKLM-x32\...\Fraps) (Version:  - )

FSD Pilatus Porter Amphibian V2 for FS X (HKLM-x32\...\FSD Pilatus Porter Amphibian V 2 for FS X) (Version:  - )

FSD Pilatus Porter Landplane V2 for FS X (HKLM-x32\...\FSD Pilatus Porter Landplane V 2 for FS X) (Version:  - )

FSD Pilatus Porter Skiplane V2 for FS X (HKLM-x32\...\FSD Pilatus Porter Skiplane V 2 for FS X) (Version:  - )

FSDG-Paro (HKLM-x32\...\FSDG-Paro) (Version:  - )

FSDreamTeam Geneva version 2.0.2 (HKLM-x32\...\FSDreamTeam Geneva_is1) (Version: 2.0.2 - VIRTUALI Sagl)

FSDreamTeam Hawaiian Airports Volume 1 version 2.0.2 (HKLM-x32\...\FSDreamTeam Hawaiian Airports Volume 1_is1) (Version: 2.0.2 - VIRTUALI Sagl)

FSDreamTeam Hawaiian Airports Volume 2 version 2.0.2 (HKLM-x32\...\FSDreamTeam Hawaiian Airports Volume 2_is1) (Version: 2.0.2 - VIRTUALI Sagl)

FSDreamTeam Honolulu International version 2.0.2 (HKLM-x32\...\FSDreamTeam Honolulu International_is1) (Version: 2.0.2 - VIRTUALI Sagl)

FSDreamTeam ZurichX version 2.8.2 (HKLM-x32\...\FSDreamTeam ZurichX_is1) (Version: 2.8.2 - VIRTUALI Sagl)

FSJ - Hawaii Extra Contents Version 1.0 (HKLM-x32\...\{23EFA1FF-9364-4268-96F3-CA84C034312F}_is1) (Version: 1.0 - Flight Sim Jewels)

FSJ - Hawaii Photoreal Vol. 1 - Niihau, Kauai & Oahu Version 0.99 (HKLM-x32\...\{4D088B72-89C9-4678-AA5C-24C968E7406D}_is1) (Version: 0.99 - Flight Sim Jewels)

FSJ - Hawaii Photoreal Vol. 2 - Molokai, Lanai, Maui & Kahoolawe v.0.99 Version 0.99 (HKLM-x32\...\{6E8752DD-FE4E-4204-A08E-D50AFA0617CE}_is1) (Version: 0.99 - Flight Sim Jewels)

FSJ - Hawaii Photoreal Vol. 3 - The Big Island Version 0.97 (HKLM-x32\...\{3BB43A17-8A9E-4BA0-8213-BD33B9163FDE}_is1) (Version: 0.97 - Flight Sim Jewels)

FSJ - Hawaiian Airports by George Keogh Version 1.0 (HKLM-x32\...\{C327E80A-E3CA-4091-AEC0-00D1C312E2AB}_is1) (Version: 1.0 - Flight Sim Jewels)

FSX & P3D - Hawaii Photoreal Vol. 1 - Oahu v.0.97 Plus Version 0.97 (HKLM-x32\...\{B32B2669-7B1D-4200-9395-4DF2D70461B5}_is1) (Version: 0.97 - AveMetal Entertainment, Inc.)

FSX & P3D - Hawaii Photoreal Vol. 2 - Molokai v.0.99 Plus Version 0.99 (HKLM-x32\...\{4463C090-92E1-4EC1-B715-17C9A59FB76B}_is1) (Version: 0.99 - AveMetal Entertainment, Inc.)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.132 - Google LLC)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden

H25B_H850XP FSX/P3D (HKLM-x32\...\H25B_H850XP FSX/P3D) (Version: ${PRODUCT_VERSION} - Carenado)

High Definition Environment v2.1 (HKLM\...\{E46C2BF4-6090-4C42-9D26-21A6B3C143AF}) (Version: 1 - Original author Pablo Diaz, FSX update by Danny Glover and Erik BENDER (Rikoooo))

Ilyushin Il-18 FSX & P3D (HKLM\...\{988FEEF6-2B16-4516-AEC5-C306DEA5D90E}) (Version: 1 - Edgar Giunar)

Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden

Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)

Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden

Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)

Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)

ItalySim-LICA 2016 (HKLM-x32\...\ISD-LICA2016-18199E96-4C34-473F-9530-E949D9209CE6_is1) (Version: 1.0.0.0 - SimMarket)

iTunes (HKLM\...\{9E84991B-6078-4311-A714-0A1360C3706C}) (Version: 12.9.0.167 - Apple Inc.)

JetStream Designs LFML X 2013 (HKLM-x32\...\FSX_JETSTREAM_DESIGN_LFML_X_2013_is1) (Version: 1.0.0.0 - SimMarket)

JetStream Designs Palermo LICJ (HKLM-x32\...\JETSTREAMDESIGN-PALERMOLICJ-08588E01-7F3A-401B-A~17A2AB48_is1) (Version: 1.0.0.0 - SimMarket)

Just Flight - DC-8 Jetliner Series 10 to 40 (HKLM-x32\...\{14410905-9476-45D9-AC33-3DEDC9BDD257}) (Version: 1.00.0000 - Just Flight)

Just Flight - MilViz F-15E Strike Eagle (HKLM-x32\...\{AFCBCDA6-98C4-4D33-BA8F-3168A1860608}) (Version: 1.00.000 - Just Flight)

Just Flight Constellation Professional (HKLM-x32\...\{070B2AFF-E7F2-4085-83CD-5ED64A4C9CE5}) (Version: 1.00.000 - )

Just Flight MD-81/82 Jetliner (HKLM-x32\...\{6AA6251B-B7C8-40FC-8FB9-DCB9D81BE4C7}) (Version: 1.00.000 - )

Killer Bandwidth Control Filter Driver (HKLM\...\{24BA7D32-B740-47A3-BE0E-2F4863A05D13}) (Version: 1.1.56.1120 - Rivet Networks) Hidden

Killer E220x Drivers (HKLM\...\{921ABFC0-9681-487D-9379-89C1712EFEBF}) (Version: 1.1.56.1120 - Rivet Networks) Hidden

Killer Network Manager (HKLM\...\{E21E50A4-4A55-4A7E-B1AA-16F8F9E255C8}) (Version: 1.1.56.1120 - Rivet Networks) Hidden

Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.56.1120 - Rivet Networks)

L-1011 Captain (1011-1 Exterior Model) 0.1 (HKLM-x32\...\l111) (Version: 0.1.00 - ฉ 1999-2013 Captain Sim)

LFKB Bastia Poretta v1.1 (HKLM-x32\...\RFSCENERYBUILDING_LFKB_is1) (Version: 1.1.0.0 - SimMarket)

LFLB - Chamb้ry Aix les Bains FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\LFLB - Chamb้ry Aix les Bains FSX) (Version:  - )

LFMD Cannes FSX version 1.01 (HKLM-x32\...\{75CBE292-551C-4CBD-89D4-D57733A4B14E}_is1) (Version: 1.01 - LMT SIMULATION)

LICC_Catania-Fontanarossa (HKLM-x32\...\RFS_LICC_CATANIA_FONTANAROSSA_is1) (Version: 1.1.0.0 - SimMarket)

LLH1 (HKLM-x32\...\LLH1) (Version:  - )

LLH9 (HKLM-x32\...\LLH9) (Version:  - )

Macrium Reflect Free Edition (HKLM\...\{84BD4249-F4BB-43EE-BE16-D08A27E54439}) (Version: 6.3.1849 - Paramount Software (UK) Ltd.) Hidden

Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 6.3 - Paramount Software (UK) Ltd.)

Mailsoft's - Birrfeld X (HKLM-x32\...\{F3F3CA83-5D04-4F6F-9234-0E3557CEADBD}) (Version: 1.00 - Mailsoft)

Malwarebytes Version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)

MeatWater FO Altitude Callouts v1.0 (HKLM-x32\...\MeatWater FO Altitude Callouts v1.0) (Version:  - )

Mega Route Rio São Paulo and Natal City Pack5 (HKLM-x32\...\FSX_MegaRiodeJaneiroX2012_is1) (Version: 1.0.0.0 - SimMarket)

MegaSceneryEarth Florida 001 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 001 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 002 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 002 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 003 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 003 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 004 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 004 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 005 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 005 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 006 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 006 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 007 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 007 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 008 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 008 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 009 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 009 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 010 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 010 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 011 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 011 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 012 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 012 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 013 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 013 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 014 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 014 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 015 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 015 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 016 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 016 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 017 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 017 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 018 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 018 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 019 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 019 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 020 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 020 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 021 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 021 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 022 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 022 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 023 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 023 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 024 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 024 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 025 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 025 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida Charts 2.0 (HKLM-x32\...\MegaSceneryEarth Florida Charts 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 001 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 001 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 002 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 002 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 003 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 003 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 004 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 004 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 005 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 005 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 006 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 006 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 007 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 007 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 008 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 008 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 009 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 009 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 010 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 010 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 011 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 011 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 012 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 012 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Washington Charts 2.0 (HKLM-x32\...\MegaSceneryEarth Washington Charts 2.0) (Version: 2.0 - MegaSceneryEarth)

Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)

Microsoft Flight Simulator X: Acceleration (HKLM-x32\...\FlightSim_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: 10.0.61637.0 - Microsoft Game Studios)

Microsoft OneDrive (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0007 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)

Mirage IIIC (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Mirage IIIC) (Version:  - )

MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.8 - MSI)

MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.021 - MSI)

MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)

Northrop Grumman E-11A Sentinel (HKLM\...\{4A5F6C64-A6EF-4CF4-81AF-B61CA6124FBF}) (Version: 2 - Rikoooo)

NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden

NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)

NVIDIA 3D Vision Treiber 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.35 - NVIDIA Corporation)

NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)

NVIDIA Grafiktreiber 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.35 - NVIDIA Corporation)

NVIDIA HD-Audiotreiber 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)

NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)

OpenAL (HKLM-x32\...\OpenAL) (Version:  - )

OpenOffice 4.1.4 (HKLM-x32\...\{5E9128B1-0AB8-40F5-9F71-69089C490855}) (Version: 4.14.9788 - Apache Software Foundation)

Opera Stable 63.0.3368.71 (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Opera 63.0.3368.71) (Version: 63.0.3368.71 - Opera Software)

P-3C Orion V3.31 (HKLM\...\{CE6DA500-D22D-4DDF-BE50-4ECFB65FE06E}) (Version: 2 - Team FS KBT)

PA32R SARATOGA SP FSX (HKLM-x32\...\PA32R SARATOGA SP FSX) (Version: 1.00.00.00 - Carenado)

PA34 200T SENECA II FSX (HKLM-x32\...\PA34 200T SENECA II FSX) (Version: 1.00.00.00 - Carenado)

PC-6 Patrouille Suisse Repaint FSX (HKLM-x32\...\{ECE6D6DA-42E3-4D54-A196-356A101E6BD2}) (Version: 1.0.0.0 - Design fuer Flugsimulation)

Phuket International Airport for FSX (HKLM-x32\...\PhuketIntFSX_is1) (Version: 1.0.0.0 - SimMarket)

QualityWings Ultimate 146 Collection FSX (HKLM-x32\...\QualityWings Ultimate 146 Collection FSX) (Version:  - )

RAZBAM LTV A-7 E & D Corsair II Volume I (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\RAZBAM LTV A-7 E & D Corsair II Volume I) (Version:  - )

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.)

REX File Transfer Manager (HKLM-x32\...\{B60F3334-ED72-4F7B-945E-22FF8E401E8A}) (Version: 1.10.2016.1111 - REX Game Studios, LLC.)

SAAB 91 Safir X 3.0.2 (HKLM-x32\...\{971F7265-110A-4A7E-A159-3DB0A3CE4C63}_is1) (Version: 3.0.2 - SibWings lab)

Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)

Samui International Airport for FSX (HKLM-x32\...\SamuiInternationalAirport_is1) (Version:  - SimMarket)

SBD Dauntless FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\SBD Dauntless FSX) (Version:  - )

SBGL v1.1.2 for FSX (HKLM\...\{B88C0221-3BC4-4256-B241-AC1627541B93}) (Version: 1.1.2 - BluePrint Simulations)

SimObject Display Engine (HKLM-x32\...\{CF01DDCE-487C-40D1-A798-BE842515661D}) (Version: 1.5.3 - 12bPilot)

Skydesigners - LFTZ Saint-Tropez La Mole Airport (HKLM-x32\...\FSX_SKYDESIGNERS_LFTZ_SAINT_TROPEZ_LA_MOLE_is1) (Version: 1.0.0.0 - SimMarket)

SOD Dragoneye HK v2 (HKLM-x32\...\SOD_DRAGONEYE_HK_V2_is1) (Version: 1.0.0.0 - SimMarket)

TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.75813 - TeamViewer)

True Iot Pocket WiFi Play 1 (HKLM-x32\...\{AEFF9E60-3E93-41EE-9895-311F7D1C5FFD}) (Version: 1.0.0.2 - )

UKMIL Buccaneer S2 PACKAGE FSX & P3D (HKLM\...\{A1BA46E2-9D56-4DDC-93E7-EBAE79BF4214}) (Version: 1 - UKMIL)

Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden

UpdateYeti (HKLM-x32\...\UpdateYeti_is1) (Version: 2.45 - Abelssoft)

Vickers Viking for FSX (HKLM-x32\...\{74DEA96E-53A5-4616-A267-71A714A10840}) (Version: 1.00.0000 - Jens B. Kristensen)

VIIN-FSX 2.0 (HKLM-x32\...\{7BB15D3A-377E-4D84-8527-531805A82C91}_is1) (Version:  - Philippe PENOT)

VIRTUALI Addon ManagerX FSX (HKLM-x32\...\VIRTUALI Addon ManagerX FSX_is1) (Version: 3.1.0.1 - VIRTUALI Sagl)

VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)

Web Companion (HKLM-x32\...\{9d1481c3-8582-4d6b-a9c9-593402236470}) (Version: 4.8.2078.3950 - Lavasoft)

WinPcap for Avira 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Domotz, Inc)

WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)

World of Tanks (HKLM-x32\...\World of Tanks) (Version:  - )

World Of Warships (HKLM-x32\...\World Of Warships) (Version:  - )

Your Uninstaller! 7 (HKLM-x32\...\YU2010_is1) (Version: 7.4.2012.5 - URSoft, Inc.)
 

Packages:

=========

Mail und Kalender -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-09-10] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]

Microsoft Begleiter für Telefon -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation)

Microsoft News – Nachrichten -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.12124.0_x64__8wekyb3d8bbwe [2019-09-10] (Microsoft Corporation) [MS Ad]

Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2019-09-09] (Microsoft Studios) [MS Ad]

Microsoft-Telefon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation)

MSN Finanzen -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-09-10] (Microsoft Corporation) [MS Ad]

MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-09-10] (Microsoft Corporation) [MS Ad]

MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-09-09] (Microsoft Corporation) [MS Ad]
 

==================== Custom CLSID (Whitelisted): ==========================
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File

ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2019-03-01] (Artem Izmaylov -> AIMP DevTeam)

ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson) [File not signed]

ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2015-10-12] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {ef263503-8f0e-3e6a-ae2e-fe0b4b441d52} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-01-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-10-01] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-10-01] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2015-10-12] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2019-03-01] (Artem Izmaylov -> AIMP DevTeam)

ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {3d52b24d-33bb-3895-99ea-a0156f24a3f9} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-01-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)

ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {cefaf456-bc17-3f4b-b7d9-75070925911b} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-01-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-10-01] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-10-01] (win.rar GmbH -> Alexander Roshal)
 

==================== Shortcuts & WMI ========================
 

(The entries could be listed to be restored or removed.)
 
 

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Pilatus PC-7 V2.0 FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\North American F-86 EF Sabre FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\North American F-86 EF Sabre FSX\www.sectionf8.com.lnk -> hxxp://www.sectionf8.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Lockheed L-1049H Super Constellation FSX\calclassic.proboards55.com.lnk -> hxxp://calclassic.proboards55.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Lockheed L-1049H Super Constellation FSX\www.calclassic.com.lnk -> hxxp://www.calclassic.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Lockheed L-1049H Super Constellation FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com
 

ShortcutWithArgument: C:\Users\MSI_USER\Documents\DESKTOP\ARCHIV 1\Shared WiFi 3.lnk -> C:\Program Files (x86)\Hostless Modem\Shared WiFi 3\LaunchWebUI.exe () -> hxxp://m.home

ShortcutWithArgument: C:\Users\MSI_USER\Desktop\PROGRAMM Verknüpfungen\True Iot Pocket WiFi Play 1.lnk -> C:\Program Files (x86)\True Iot Pocket WiFi Play 1\True Iot Pocket WiFi Play 1\LaunchWebUI.exe () -> hxxp://192.168.0.1

ShortcutWithArgument: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World Of Warships\World Of Warships.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://cpm.wargaming.net/l4k6lc56/?pub_id=100

ShortcutWithArgument: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks\World of Tanks.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://cpm.wargaming.net/3ebs472f/?pub_id=100

ShortcutWithArgument: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\World of Tanks.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://cpm.wargaming.net/3ebs472f/?pub_id=100

ShortcutWithArgument: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\World Of Warships.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://cpm.wargaming.net/l4k6lc56/?pub_id=100
 

==================== Loaded Modules (Whitelisted) ==============
 

2019-01-14 21:21 - 2017-05-22 18:12 - 001172992 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\_libastro.pyd

2019-01-14 21:21 - 2016-06-13 12:01 - 000032768 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\alut.dll

2019-01-14 21:21 - 2017-05-22 18:12 - 000014336 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\winsound.pyd

2019-01-14 21:21 - 2017-05-29 19:45 - 001054208 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_controls_.pyd

2019-01-14 21:21 - 2017-05-29 19:46 - 001152512 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_core_.pyd

2019-01-14 21:21 - 2017-05-29 19:46 - 000780288 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_gdi_.pyd

2019-01-14 21:21 - 2017-05-29 19:46 - 000725504 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_misc_.pyd

2019-01-14 21:21 - 2017-05-29 19:46 - 000805888 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_windows_.pyd

2019-01-14 21:21 - 2017-05-29 19:45 - 000153600 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_xrc.pyd

2017-12-03 15:16 - 2017-12-03 15:11 - 048920064 _____ () [File not signed] C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll

2016-08-04 11:33 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\Live Update\unrar.dll

2017-02-23 22:46 - 2016-08-19 08:39 - 000019968 _____ () [File not signed] E:\FSX NEW\d3dx10_34.dll

2017-02-23 22:46 - 2016-08-19 08:39 - 000562688 _____ () [File not signed] E:\FSX NEW\dx10fixerlib.DLL

2017-02-23 22:46 - 2016-08-19 08:38 - 000007168 _____ () [File not signed] E:\FSX NEW\dx10SharedLib.dll

2006-04-30 04:20 - 2019-03-11 20:32 - 000040960 _____ () [File not signed] E:\FSX NEW\GaugeSound.DLL

2019-03-22 13:50 - 2010-06-04 11:51 - 000023552 _____ () [File not signed] E:\FSX NEW\MD80.dll

2017-02-03 17:06 - 2012-09-13 09:22 - 000603648 _____ () [File not signed] E:\FSX NEW\Modules\A2A_Feel.dll

2017-02-03 17:06 - 2012-08-14 09:16 - 000190976 _____ () [File not signed] E:\FSX NEW\Modules\AccuFeelMenu.dll

2011-08-29 09:14 - 2010-10-27 14:08 - 000352256 _____ () [File not signed] E:\FSX NEW\ORBX\FTX_NA\FTX_AA_1WA6\Scenery\ObjectFlow_1WA6.dll

2015-09-05 15:05 - 2015-09-05 15:05 - 000255760 _____ (Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\FRAPS32.DLL

2015-09-05 15:11 - 2015-09-05 15:11 - 000102160 _____ (Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\fraps64.dat

2015-09-05 15:05 - 2015-09-05 15:05 - 000215824 _____ (Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\fraps64.dll

2013-02-23 11:47 - 2013-02-23 11:47 - 000166400 _____ (Brice Lambson) [File not signed] C:\Program Files\Image Resizer for Windows\ShellExtensions.dll

2004-11-11 07:30 - 2004-11-11 07:30 - 000885248 _____ (Carenado Team) [File not signed] E:\FSX NEW\SimObjects\Airplanes\Carenado Cherokee\panel\Cherokee0.GAU

2004-11-11 07:31 - 2004-11-11 07:31 - 000717824 _____ (Carenado Team) [File not signed] E:\FSX NEW\SimObjects\Airplanes\Carenado Cherokee\panel\Cherokee1.GAU

2004-11-11 07:31 - 2004-11-11 07:31 - 001022464 _____ (Carenado Team) [File not signed] E:\FSX NEW\SimObjects\Airplanes\Carenado Cherokee\panel\Cherokee2.GAU

2004-11-11 07:31 - 2004-11-11 07:31 - 000595968 _____ (Carenado Team) [File not signed] E:\FSX NEW\SimObjects\Airplanes\Carenado Cherokee\panel\Cherokee3.GAU

2004-11-11 07:31 - 2004-11-11 07:31 - 001054720 _____ (Carenado Team) [File not signed] E:\FSX NEW\SimObjects\Airplanes\Carenado Cherokee\panel\Cherokee4.GAU

2004-11-11 07:32 - 2004-11-11 07:32 - 001164800 _____ (Carenado Team) [File not signed] E:\FSX NEW\SimObjects\Airplanes\Carenado Cherokee\panel\Cherokee5.GAU

2004-11-11 07:32 - 2004-11-11 07:32 - 000764416 _____ (Carenado Team) [File not signed] E:\FSX NEW\SimObjects\Airplanes\Carenado Cherokee\panel\CherokeeM.GAU

2004-11-11 07:32 - 2004-11-11 07:32 - 001452544 _____ (Carenado Team) [File not signed] E:\FSX NEW\SimObjects\Airplanes\Carenado Cherokee\panel\CherokeeVFR.GAU

2004-11-11 07:32 - 2004-11-11 07:32 - 000666112 _____ (Carenado Team) [File not signed] E:\FSX NEW\SimObjects\Airplanes\Carenado Cherokee\panel\RadioCherokeeF.GAU

2015-06-23 16:00 - 2015-06-23 16:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll

2015-06-23 16:00 - 2015-06-23 16:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll

2006-04-30 04:22 - 2006-04-28 01:20 - 000015872 _____ (MeatWater) [File not signed] E:\FSX NEW\GAUGES\hs748_altcall.GAU

2019-01-13 18:58 - 2019-01-13 18:58 - 000037888 _____ (Microsoft Corp.) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.flightsimulator.simconnect_67c7c14424d61b5b_10.0.60905.0_none_dd92b94d8a196297\SimConnect.dll

2019-01-13 18:58 - 2019-01-13 18:58 - 000045568 _____ (Microsoft Corp.) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.flightsimulator.simconnect_67c7c14424d61b5b_10.0.61259.0_none_55f5ecdc14f60568\SimConnect.dll

2007-09-26 16:08 - 2016-08-09 15:26 - 000262720 _____ (Microsoft Corporation -> Microsoft Corp.) [File not signed] E:\FSX NEW\ai_player.dll

2019-01-13 18:58 - 2019-01-13 18:58 - 001233920 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9818.0_none_b7e811947b297f6d\MSXML4.DLL

2019-03-01 18:38 - 2019-03-01 18:38 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL

2019-03-01 18:38 - 2019-03-01 18:38 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80DEU.DLL

2019-01-14 21:21 - 2014-05-23 23:21 - 000110592 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\OpenAL32.dll

2019-01-14 21:21 - 2017-05-22 17:15 - 002826752 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\python27.dll

2019-01-11 13:59 - 2019-01-11 13:59 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\AVG\Secure VPN\libcrypto-1_1.dll

2019-01-14 21:21 - 2017-05-29 19:13 - 000161792 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxbase30u_net_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:13 - 002119680 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxbase30u_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:13 - 000138752 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxbase30u_xml_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:12 - 001296384 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxmsw30u_adv_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:12 - 004821504 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxmsw30u_core_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:12 - 000600576 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxmsw30u_html_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:13 - 000685568 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxmsw30u_xrc_vc_custom.dll
 

==================== Alternate Data Streams (Whitelisted) =========
 

(If an entry is included in the fixlist, only the ADS will be removed.)
 

AlternateDataStreams: C:\ProgramData\TEMP:00934A10 [119]
 

==================== Safe Mode (Whitelisted) ===================
 

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 

==================== Association (Whitelisted) ===============
 

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 

==================== Internet Explorer trusted/restricted ===============
 

(If an entry is included in the fixlist, it will be removed from the registry.)
 

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost

IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com

IE trusted site: HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\localhost -> localhost

IE trusted site: HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\webcompanion.com -> hxxp://webcompanion.com
 

==================== Hosts content: ===============================
 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 

2016-01-17 07:08 - 2017-11-26 22:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
 
 

==================== Other Areas ============================
 

(Currently there is no automatic fix for this section.)
 

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\MSI_USER\Desktop\Screenshot (718).png

DNS Servers: 192.168.0.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)

Windows Firewall is enabled.
 

==================== MSCONFIG/TASK MANAGER disabled items ==
 

If an entry is included in the fixlist, it will be removed.
 

HKLM\...\StartupApproved\StartupFolder: => "Killer Network Manager.lnk"

HKLM\...\StartupApproved\StartupFolder: => "AVG Secure VPN.lnk"

HKLM\...\StartupApproved\Run: => "MouseDriver"

HKLM\...\StartupApproved\Run: => "IAStorIcon"

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"

HKLM\...\StartupApproved\Run: => "iTunesHelper"

HKLM\...\StartupApproved\Run: => "AvgUi"

HKLM\...\StartupApproved\Run: => ""

HKLM\...\StartupApproved\Run32: => "Live Update"

HKLM\...\StartupApproved\Run32: => "Fast Boot"

HKLM\...\StartupApproved\Run32: => "USB Security"

HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"

HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"

HKLM\...\StartupApproved\Run32: => "adm_tray.exe"

HKLM\...\StartupApproved\Run32: => ""

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_566FF74826DC815D3E0370C0C29D28A3"

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\StartupApproved\Run: => ""
 

==================== FirewallRules (Whitelisted) ===============
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

FirewallRules: [{CAB9E442-65BC-4D26-8321-F64D3DE1A0D3}] => (Allow) C:\Windows\KMS-R@1n.exe () [File not signed]

FirewallRules: [{44F68DD6-4711-407C-B159-4E93E368FB6A}] => (Allow) C:\Windows\KMS-R@1n.exe () [File not signed]

FirewallRules: [{9057A54A-205D-4A2F-BEC2-5E831CEAA8A8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{5E30314C-6F6A-4E69-A6B2-9E107EE62A59}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{5983E1B5-3E16-48D8-A231-BF17AEB2ECD6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{CE46208A-95D0-450B-A93E-F52D0F1B6BD9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [UDP Query User{DFC29034-E9F3-45B6-8F27-9E2A7955E4C4}C:\users\msi_user\appdata\local\microsoft\onedrive\onedrive.exe] => (Allow) C:\users\msi_user\appdata\local\microsoft\onedrive\onedrive.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [TCP Query User{829D104F-3C9B-4B6B-ADFA-06C026871431}C:\users\msi_user\appdata\local\microsoft\onedrive\onedrive.exe] => (Allow) C:\users\msi_user\appdata\local\microsoft\onedrive\onedrive.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{694024F0-FC8F-4EFF-97AC-4118E714BC82}] => (Allow) C:\Users\MSI_USER\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [File not signed]

FirewallRules: [{0DB6C35C-3BCB-4070-A309-EFBA91EDFA41}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{4DB5F2DC-1688-41EC-9CA2-2C5257F5B36A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{A5B5CF15-232A-4360-86FF-B612C302ACBD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{5DF56E8C-6A83-4F27-A434-2054E29B809B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{1E8A2B2B-CF82-4D4F-BDA7-BE836C3472C5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{8B54F2F5-9799-473C-9BB3-90EF6121299B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{A38878EB-4321-41F8-A73A-A96D103DE4C4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{EB2FE336-FA97-441B-BF9B-6067BCDC7ECE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{9FF215F6-D147-45E6-AB6B-B7C9F4347513}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{64512AB7-358E-425D-8BCF-D9C42FD5143A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{39E29475-840C-4BF4-A4E0-A829B63F8B11}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{DABE951A-3DC7-459F-97ED-242EBEEE1921}] => (Allow) C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

FirewallRules: [{321B4731-9F33-45C4-9570-492F76EDC55F}] => (Allow) C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

FirewallRules: [{D0600634-EC89-4EA2-83DD-7050B581442A}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{44049211-AF23-45BE-AF75-B57891FE767C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{B36547AA-23EB-4519-B675-5E46358D89A7}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{835D8980-3FD3-4964-8F5D-38FFB6B4F720}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{58807947-972A-40FB-B5FA-3C769A23188D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{D486A7DF-14E8-4D6D-A099-21F4E181F692}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{9208FAA9-0163-4B5E-A61C-EAE4EFA5FACE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{472BF734-D17E-4DBD-A31E-0E05779F2885}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

FirewallRules: [{B44B79B2-A305-4AB1-B68F-C141D019314A}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

FirewallRules: [{81AFB9DB-C338-48FC-AF01-CE82DD2DF04B}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

FirewallRules: [{279529C3-6E4D-491C-BF8D-DC597FFA2402}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
 

==================== Restore Points =========================
 

ATTENTION: System Restore is disabled (Total:117.85 GB) (Free:28.77 GB) (24%)
 

==================== Faulty Device Manager Devices =============
 

Name: AVG TAP Adapter v3

Description: AVG TAP Adapter v3

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: TAP-Windows Provider V9

Service: avgTap

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (09/10/2019 01:30:04 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkQuarantineRetry
 

Error: (09/10/2019 01:30:04 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
 

Error: (09/10/2019 12:56:17 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
 

Error: (09/09/2019 08:53:40 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkQuarantineRetry
 

Error: (09/09/2019 08:53:29 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
 

Error: (09/09/2019 08:41:17 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
 

Error: (09/09/2019 08:15:42 PM) (Source: AviraOptimizerHost) (EventID: 0) (User: )

Description: Event-ID 0
 

Error: (09/09/2019 08:11:37 PM) (Source: Perflib) (EventID: 1023) (User: )

Description: Die erweiterbare Leistungsindikator-DLL rdyboost kann nicht geladen werden. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Windows-Fehlercode.
 
 

System errors:

=============

Error: (09/10/2019 12:34:56 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TUSRUQC)

Description: Durch die Berechtigungseinstellungen für "application-specific" wird dem Benutzer "DESKTOP-TUSRUQC\MSI_USER" (SID: S-1-5-21-465342472-1690862640-1647311925-1001) unter der Adresse "LocalHost (Using LRPC)" keine Berechtigung vom Typ "Local Activation" für die COM-Serveranwendung mit der CLSID 

{D63B10C5-BB46-4990-A94F-E40B9D520160}

 und der APPID 

{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}

 im Anwendungscontainer "Unavailable" (SID: Unavailable) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
 

Error: (09/10/2019 12:32:30 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TUSRUQC)

Description: Durch die Berechtigungseinstellungen für "application-specific" wird dem Benutzer "DESKTOP-TUSRUQC\MSI_USER" (SID: S-1-5-21-465342472-1690862640-1647311925-1001) unter der Adresse "LocalHost (Using LRPC)" keine Berechtigung vom Typ "Local Activation" für die COM-Serveranwendung mit der CLSID 

{8BC3F05E-D86B-11D0-A075-00C04FB68820}

 und der APPID 

{8BC3F05E-D86B-11D0-A075-00C04FB68820}

 im Anwendungscontainer "Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
 

Error: (09/09/2019 09:04:47 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)

Description: Der Server "{995C996E-D918-4A8C-A302-45719A6F4EA7}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/09/2019 09:04:47 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)

Description: Der Server "{995C996E-D918-4A8C-A302-45719A6F4EA7}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/09/2019 09:04:44 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TUSRUQC)

Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/09/2019 08:36:53 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TUSRUQC)

Description: Der Server "Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe!ContentProcess#{00091402-0079-0000-F698-100000000000}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/09/2019 08:35:32 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TUSRUQC)

Description: Durch die Berechtigungseinstellungen für "application-specific" wird dem Benutzer "DESKTOP-TUSRUQC\MSI_USER" (SID: S-1-5-21-465342472-1690862640-1647311925-1001) unter der Adresse "LocalHost (Using LRPC)" keine Berechtigung vom Typ "Local Activation" für die COM-Serveranwendung mit der CLSID 

{8BC3F05E-D86B-11D0-A075-00C04FB68820}

 und der APPID 

{8BC3F05E-D86B-11D0-A075-00C04FB68820}

 im Anwendungscontainer "Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
 

Error: (09/09/2019 08:25:39 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TUSRUQC)

Description: Durch die Berechtigungseinstellungen für "application-specific" wird dem Benutzer "DESKTOP-TUSRUQC\MSI_USER" (SID: S-1-5-21-465342472-1690862640-1647311925-1001) unter der Adresse "LocalHost (Using LRPC)" keine Berechtigung vom Typ "Local Activation" für die COM-Serveranwendung mit der CLSID 

{D63B10C5-BB46-4990-A94F-E40B9D520160}

 und der APPID 

{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}

 im Anwendungscontainer "Unavailable" (SID: Unavailable) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
 
 

Windows Defender:

===================================

Date: 2019-01-27 13:15:31.461

Description: 

Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.

Überprüfungs-ID: {13F6B8AA-11C5-45C4-959A-AC3367661EBB}

Überprüfungstyp: Antimalware

Überprüfungsparameter: Schnellüberprüfung

Benutzer: NT AUTHORITY\SYSTEM
 

Date: 2019-01-26 18:53:47.974

Description: 

Von Windows Defender Antivirus wurde Schadsoftware oder andere potenziell unerwünschte Software erkannt.

Weitere Informationen:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0

Name: HackTool:Win32/AutoKMS

ID: 2147685180

Schweregrad: High

Kategorie: Tool

Pfad: file:_C:\Users\MSI_USER\AppData\Roaming\KMSpico-setup.exe

Erkennungsursprung: Lokaler Computer

Erkennungstyp: Konkret

Erkennungsquelle: Echtzeitschutz

Benutzer: DESKTOP-TUSRUQC\MSI_USER

Prozessname: C:\Users\MSI_USER\Desktop\Neuer Ordner (3)\Setup.exe

Signaturversion: AV: 1.285.182.0, AS: 1.285.182.0, NIS: 1.285.182.0

Modulversion: AM: 1.1.15600.4, NIS: 1.1.15600.4
 

Date: 2019-01-15 15:51:55.668

Description: 

Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.

Überprüfungs-ID: {60002256-9742-4588-8395-DB2278DA0332}

Überprüfungstyp: Antimalware

Überprüfungsparameter: Schnellüberprüfung

Benutzer: NT AUTHORITY\SYSTEM
 

Date: 2019-01-28 19:54:46.618

Description: 

Fehler von Windows Defender Antivirus beim Aktualisieren von Signaturen.

Neue Signaturversion: 

Vorherige Signaturversion: 1.285.247.0

Updatequelle: Microsoft Update-Server

Signaturtyp: AntiVirus

Updatetyp: Voll

Benutzer: NT AUTHORITY\SYSTEM

Aktuelle Modulversion: 

Vorherige Modulversion: 1.1.15600.4

Fehlercode: 0x8024402c

Fehlerbeschreibung: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 

Date: 2019-01-28 19:34:45.073

Description: 

Fehler von Windows Defender Antivirus beim Aktualisieren von Signaturen.

Neue Signaturversion: 

Vorherige Signaturversion: 1.285.247.0

Updatequelle: Microsoft Update-Server

Signaturtyp: AntiVirus

Updatetyp: Voll

Benutzer: NT AUTHORITY\SYSTEM

Aktuelle Modulversion: 

Vorherige Modulversion: 1.1.15600.4

Fehlercode: 0x8024402c

Fehlerbeschreibung: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 

Date: 2019-01-28 15:11:39.195

Description: 

Fehler von Windows Defender Antivirus beim Aktualisieren von Signaturen.

Neue Signaturversion: 

Vorherige Signaturversion: 1.285.247.0

Updatequelle: Microsoft Update-Server

Signaturtyp: AntiVirus

Updatetyp: Voll

Benutzer: NT AUTHORITY\SYSTEM

Aktuelle Modulversion: 

Vorherige Modulversion: 1.1.15600.4

Fehlercode: 0x8024402c

Fehlerbeschreibung: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 

Date: 2019-01-28 11:04:14.395

Description: 

Fehler von Windows Defender Antivirus beim Aktualisieren von Signaturen.

Neue Signaturversion: 

Vorherige Signaturversion: 1.285.247.0

Updatequelle: Microsoft Update-Server

Signaturtyp: AntiVirus

Updatetyp: Voll

Benutzer: NT AUTHORITY\SYSTEM

Aktuelle Modulversion: 

Vorherige Modulversion: 1.1.15600.4

Fehlercode: 0x8024402c

Fehlerbeschreibung: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 

Date: 2019-01-23 20:41:22.376

Description: 

Fehler von Windows Defender Antivirus beim Aktualisieren von Signaturen.

Neue Signaturversion: 

Vorherige Signaturversion: 1.283.3486.0

Updatequelle: Microsoft Update-Server

Signaturtyp: AntiVirus

Updatetyp: Voll

Benutzer: NT AUTHORITY\SYSTEM

Aktuelle Modulversion: 

Vorherige Modulversion: 1.1.15500.2

Fehlercode: 0x8024402c

Fehlerbeschreibung: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 

CodeIntegrity:

===================================
 

Date: 2019-09-10 12:39:34.474

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
 

Date: 2019-09-09 20:26:18.718

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
 

Date: 2019-09-09 19:20:51.026

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
 

Date: 2019-04-08 07:20:01.722

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 

Date: 2019-04-07 07:08:37.165

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 

Date: 2019-04-04 21:51:39.416

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 

==================== Memory info =========================== 
 

BIOS: American Megatrends Inc. V10.7 05/18/2015

Motherboard: MSI Z87-G43 GAMING (MS-7816)

Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz

Percentage of memory in use: 71%

Total physical RAM: 8135.94 MB

Available physical RAM: 2359.16 MB

Total Virtual: 11351.42 MB

Available Virtual: 2007.78 MB
 

==================== Drives ================================
 

Drive c: () (Fixed) (Total:117.85 GB) (Free:28.77 GB) NTFS

Drive d: (Local Disk) (Fixed) (Total:931.51 GB) (Free:405.07 GB) NTFS

Drive e: (Local Disk) (Fixed) (Total:1863.01 GB) (Free:331.92 GB) NTFS
 

\\?\Volume{bd9540bb-66ec-4f88-be07-ad4807346eef}\ (Recovery) (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS

\\?\Volume{e0ef77ee-3d2a-4b7a-b517-03092a471ed4}\ () (Fixed) (Total:0.83 GB) (Free:0.34 GB) NTFS

\\?\Volume{22f94353-c4e4-485b-b85e-d1a572b21212}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (Size: 119.2 GB) (Disk ID: FADE989E)
 

Partition: GPT.
 

========================================================

Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1ED78F3D)

Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 

========================================================

Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 1ED78F3E)

Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
 

==================== End of Addition.txt ============================

Hallo Cosinus,
Gemäss Euren Anweisungen soll ich mich nach 3 Tagen melden, sollte ich noch keine Antwort von Euch erhalten haben. Heute wäre diese 3 Tageslimite nun erreicht.

Gruss
Alfred

Sry hab deinen Beitrag übersehen. AW kommt gleich.

Zitat:

Windows 10 Pro Version 1803

Du hast eine sehr alte Version von Windows 10. Hier macht es schon eher Sinn alle Daten zu sichern und dann mit der aktuellen Version 1903 eine Neuinstallation durchzuführen.

Hallo Cosinus,
super. Danke Dir sehr für die superschnelle Reaktion. Die neuste Version 1903 ist inzwischen bereits erfolgreich installiert worden, offenbar aber erst nach dem Versenden von FRST und ADDITION.

Dann sind neue FRST-Logs nötig.

FRST 1/2

Code:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-09-2019

Ran by MSI_USER (administrator) on DESKTOP-TUSRUQC (MSI MS-7816) (14-09-2019 10:01:39)

Running from C:\Users\MSI_USER\Desktop

Loaded Profiles: MSI_USER (Available Profiles: MSI_USER)

Platform: Windows 10 Pro Version 1903 18362.356 (X64) Language: Englisch (Vereinigte Staaten)

Default browser: Opera

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Processes (Whitelisted) =================
 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 

() [File not signed] E:\FSX NEW\FlyLogic\SeasonFileSwitcherV2\SeasonFileSwitcherV2.exe

(12bPilot) [File not signed] C:\Program Files (x86)\12bPilot\SODE\SimObjectDisplayEngine.exe

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe

(AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe

(AVG Technologies CZ, s.r.o. -> AVG Netherlands B.V) C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe

(AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe

(AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe

(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe

(Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\fraps.exe

(Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\fraps64.dat

(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe

(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe

(Microsoft Corporation -> Microsoft Corp.) E:\FSX NEW\fsx.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Users\MSI_USER\AppData\Local\Microsoft\OneDrive\OneDrive.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11909.1001.7.0_x64__8wekyb3d8bbwe\WinStore.App.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\slui.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\slui.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe

(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe

(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe

(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera.exe

(Opera Software AS -> Opera Software) C:\Users\MSI_USER\AppData\Local\Programs\Opera\63.0.3368.71\opera_crashreporter.exe

(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe

(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe

(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(Rivet Networks) [File not signed] C:\Program Files\Killer Networking\Network Manager\KillerService.exe

(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe

(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe

(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

(VIRTUALI Sagl -> Gamecentric) C:\Program Files (x86)\Addon Manager\couatl\couatl.exe
 

==================== Registry (Whitelisted) ===========================
 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8783616 2015-12-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)

HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19646312 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\MountPoints2: {18a0d6a0-1572-11e9-8871-448a5b81bf38} - "I:\AutoRun.exe" 

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [File not signed]

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [File not signed]

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.75\Installer\chrmstp.exe [2019-09-14] (Google LLC -> Google LLC)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2017-12-03]

ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-01-17]

ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks) [File not signed]

GroupPolicy: Restriction ? <==== ATTENTION
 

==================== Scheduled Tasks (Whitelisted) =============
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

Task: {066EDF97-4A41-4FA5-89AB-2619E5891059} - System32\Tasks\AVG Secure VPN Update => C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe [1426864 2019-09-09] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

Task: {0ED95778-AD21-48AB-9105-F53DA6E15283} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2757472 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

Task: {126790E4-28A4-4B2E-880C-77CFF961B8AF} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {157DABD9-E369-44D7-8FF4-999451B2A6F6} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION

Task: {19773CE1-1F8D-4488-9BFF-59D814B6130A} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2670944 2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

Task: {1A6C79F4-D8BF-4B1A-8E3D-C38D78C16415} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {1DF873CA-A91E-45A0-877D-8107F7230930} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {2895BD68-3429-4946-9815-96761EF156F9} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-07-23] (Solute GmbH -> Avira)

Task: {3B6A0D30-A14F-4AA4-B746-DA30B9D94D04} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {3FD2FDB2-909D-49E2-AD3E-8B2BD4ACDB3E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572808 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {409182A1-0D91-4B70-BE46-DEF2D08C3397} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {514BB74B-9358-4798-AEAC-62CAF0F14EC1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)

Task: {538882E1-97D8-45B2-A990-1C4B07214714} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-23] (Google Inc -> Google Inc.)

Task: {68626AEE-53B1-4435-87EF-569ACF4990A3} - System32\Tasks\Avira\System Speedup\Delayed Startup\MSI_USER\2 => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe <==== ATTENTION

Task: {7047399C-026D-474E-B322-8475542D503B} - System32\Tasks\AVG Driver Updater Startup => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe [29273432 2017-01-30] (AVG Technologies CZ, s.r.o. -> AVG Netherlands B.V)

Task: {70955304-7334-4D77-BBC0-27D206AA56A0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724680 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {7177F64F-DBA8-4F66-A6AF-B0926304E414} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {745A4B6A-94F4-4F2D-BCA1-468B30F758D4} - System32\Tasks\Opera scheduled Autoupdate 1568030011 => C:\Users\MSI_USER\AppData\Local\Programs\Opera\launcher.exe [1520152 2019-09-03] (Opera Software AS -> Opera Software)

Task: {771E27B9-B2ED-44B0-B0EF-BAB07036ADA8} - System32\Tasks\AVG Driver Updater Scan => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe [29273432 2017-01-30] (AVG Technologies CZ, s.r.o. -> AVG Netherlands B.V)

Task: {8280091A-0DF6-4079-86C7-71DB6EC660D3} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-07-23] (Solute GmbH -> Avira)

Task: {88E09071-B3C7-43D5-9D4F-916EA872D4BD} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2671376 2015-09-05] (Beepa Pty Ltd -> Beepa P/L) [File not signed]

Task: {8BBB7F56-0B68-4EA7-A268-EDD1C17B45FE} - System32\Tasks\Abelssoft\UpdateYeti scan => C:\Program Files (x86)\UpdateYeti\UpdateYeti.exe [2433048 2016-05-10] (Ascora GmbH -> Abelssoft)

Task: {8CD3B911-ECB4-44EF-A7A8-FDBEBAF55AAE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14680792 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {90FDD616-13C6-4D11-9FDC-73F078B15F0E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)

Task: {A5DD9CF6-B1A3-45BD-9AF2-CE07066C6D10} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {A93D82E5-2314-4926-95F5-416271C36377} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-07-23] (Solute GmbH -> Avira)

Task: {AD276398-51DF-4857-A18A-82DBED65E142} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702856 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {BB3AF3B8-162E-43D4-AA54-0CA24233036C} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate

Task: {BD6C0DE0-19E0-46A4-BDFC-B1F08EA8777F} - System32\Tasks\Avira\System Speedup\Delayed Startup\MSI_USER\1 => C:\Program Files\CCleaner\CCleaner64.exe [19646312 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd) <==== ATTENTION

Task: {C47531A9-A89D-4084-AD47-6071037B86BE} - System32\Tasks\AVG EUpdate Task => C:\Program Files (x86)\AVG\Setup\avgsetupx.exe [4072504 2019-01-13] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)

Task: {CD130A0E-F19D-4874-AB52-765E60ED709D} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [323632 2019-01-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

Task: {CE637048-6FD7-49FF-8EDC-1C8D1F5550FD} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK

Task: {D801D61A-C72A-4EB4-932D-49855B97B8FC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-23] (Google Inc -> Google Inc.)

Task: {E037ACE1-1EC3-45B1-A5DF-7CCAC67AF05C} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [48718784 2019-02-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )

Task: {F68F6758-BD28-4284-99AB-6CBC447F2C09} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {FC86D5D6-BA7E-4F83-B828-7E83AC16B302} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 

Task: C:\WINDOWS\Tasks\AVG Driver Updater Scan.job => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe

Task: C:\WINDOWS\Tasks\AVG Driver Updater Startup.job => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe
 

==================== Internet (Whitelisted) ====================
 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{08c1f2ba-1c9a-4eb8-87d1-d506429d1677}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Tcpip\..\Interfaces\{1bb99608-1ac5-4e1c-94b3-483827386328}: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{5b7a3bd1-28d0-4adf-b8e0-cc1f8fef1dca}: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{846932a4-c1ad-4a46-a83a-99ce0e494c4b}: [NameServer] 77.234.40.79

Tcpip\..\Interfaces\{93112b67-926d-40af-920e-2157761c05a1}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Tcpip\..\Interfaces\{a6cf147d-1dc9-4b02-8801-6fcd42e33b05}: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{b4a6f22f-b139-4e9b-9426-8668023c962d}: [DhcpNameServer] 192.168.0.1 192.168.0.1
 

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131330795521653461&GUID=9C8C9424-6892-407E-811E-F5F60EA9EE71

SearchScopes: HKU\S-1-5-21-465342472-1690862640-1647311925-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

SearchScopes: HKU\S-1-5-21-465342472-1690862640-1647311925-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

SearchScopes: HKU\S-1-5-21-465342472-1690862640-1647311925-1001 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/results.php?pr=vmn&id=webcompa&ent=ch_WCYID10454__190129&q={searchTerms}
 

Edge: 

======

DownloadDir: 
 

FireFox:

========

FF DefaultProfile: b4eo7tkp.default

FF ProfilePath: C:\Users\MSI_USER\AppData\Roaming\Mozilla\Firefox\Profiles\b4eo7tkp.default [2019-04-05]

FF Extension: (Avira Password Manager) - C:\Users\MSI_USER\AppData\Roaming\Mozilla\Firefox\Profiles\b4eo7tkp.default\Extensions\passwordmanager@avira.com [2019-03-01]

FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-09-07] (Google Inc -> Google LLC)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-09-07] (Google Inc -> Google LLC)

FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)
 

Chrome: 

=======

CHR StartupUrls: Default -> "hxxp://www.google.com"

CHR Profile: C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default [2019-09-09]

CHR Extension: (Präsentationen) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-02-23]

CHR Extension: (Docs) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-09]

CHR Extension: (Google Drive) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-02-23]

CHR Extension: (YouTube) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-02-23]

CHR Extension: (Google Mail) - C:\Users\MSI_USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-02-23]

CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>

CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
 

==================== Services (Whitelisted) ====================
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1207624 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [535360 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [484144 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [484144 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [501600 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc. -> Apple Inc.)

R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)

R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [582016 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2979032 2019-01-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382216 2019-08-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [103840 2019-07-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]

R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [452096 2015-09-16] (Rivet Networks) [File not signed]

R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [3894760 2017-10-19] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [105296 2015-06-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)

R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2227152 2016-07-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)

R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)

R2 SecureVpn; C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe [7451056 2019-09-09] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10883824 2017-03-17] (TeamViewer GmbH -> TeamViewer GmbH)

R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [6598496 2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)

S2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [X]

R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 

R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
 

===================== Drivers (Whitelisted) ======================
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-03-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [203440 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

S3 avgTap; C:\WINDOWS\System32\drivers\avgTap.sys [54888 2017-11-01] (AVG Technologies CZ, s.r.o. -> The OpenVPN Project)

R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [195648 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [142904 2015-09-16] (Rivet Networks LLC -> Rivet Networks, LLC.)

R3 chdrvr01; C:\WINDOWS\System32\drivers\chdrvr01.sys [248496 2012-08-25] (Joystick Technologies LLC -> CH Products)

R3 chdrvr02; C:\WINDOWS\System32\drivers\chdrvr02.sys [11440 2012-08-25] (Joystick Technologies LLC -> CH Products)

R3 chdrvr03; C:\WINDOWS\System32\drivers\chdrvr03.sys [24240 2012-08-25] (Joystick Technologies LLC -> CH Products)

R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)

R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [47008 2016-01-16] (Intel(R) Smart Connect software -> )

R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2019-03-19] (Microsoft Windows -> Qualcomm Atheros, Inc.)

R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-09-10] (Malwarebytes Corporation -> Malwarebytes)

S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [224408 2019-09-14] (Malwarebytes Corporation -> Malwarebytes)

R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2019-09-14] (Malwarebytes Corporation -> Malwarebytes)

R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-09-14] (Malwarebytes Corporation -> Malwarebytes)

R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [116112 2019-09-14] (Malwarebytes Corporation -> Malwarebytes)

R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2018-12-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)

R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)

R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9c0cfd0baad9a756\nvlddmkm.sys [20736440 2019-03-11] (NVIDIA Corporation -> NVIDIA Corporation)

S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-02] (NVIDIA Corporation -> NVIDIA Corporation)

R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-04] (NVIDIA Corporation -> NVIDIA Corporation)

S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2019-09-14] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)

R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-11-15] (AVG Technologies CZ, s.r.o. -> AVG Netherlands B.V.)

R1 UimBus; C:\WINDOWS\System32\drivers\uimbus.sys [108856 2017-04-11] (Paragon Software GmbH -> Paragon Software GmbH)

R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uimdevim.sys [44848 2017-04-11] (Paragon Software GmbH -> Paragon Software GmbH)

R3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-11] (Microsoft Windows -> Microsoft Corporation)

S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)

S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2016-01-17] (Intel(R) Software -> Intel Corporation)
 

==================== NetSvcs (Whitelisted) ===================
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 

==================== One month (created) ========
 

(If an entry is included in the fixlist, the file/folder will be moved.)
 

2019-09-14 10:01 - 2019-09-14 10:02 - 000034309 _____ C:\Users\MSI_USER\Desktop\FRST.txt

2019-09-14 09:43 - 2019-09-14 09:43 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys

2019-09-14 09:43 - 2019-09-14 09:43 - 000224408 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys

2019-09-14 09:43 - 2019-09-14 09:43 - 000116112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys

2019-09-14 09:43 - 2019-09-14 09:43 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys

2019-09-14 09:32 - 2019-09-14 09:39 - 000391983 _____ C:\Users\MSI_USER\Desktop\Avsim.MSE installation.Create New Topic - The AVSIM Community.pdf

2019-09-14 09:14 - 2019-09-14 09:14 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 025445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 022626304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 018019328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 008011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 007014912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 005916672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 004857856 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 003817472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe

2019-09-14 09:14 - 2019-09-14 09:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2019-09-14 09:14 - 2019-09-14 09:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2019-09-14 09:14 - 2019-09-14 09:14 - 002494232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 002314440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe

2019-09-14 09:14 - 2019-09-14 09:14 - 001098928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000516752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000431448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000362056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll

2019-09-14 09:14 - 2019-09-14 09:14 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 017787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 009927992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 007582752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 007261648 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 006516864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 006081744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 005848840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 005762032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 003724800 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 003701248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 003372448 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 002798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 002762296 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 002723840 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 002586816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 002576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 002120272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001691136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001664168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001633648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001439232 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001413624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001394488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 001261256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001158656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001149200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 001073168 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 001054656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000909736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000822416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000810808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000804880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000680976 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000676632 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000667272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000596008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000589600 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000561680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000454736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000401208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000338800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000334936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000267496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000146416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000088568 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys

2019-09-14 09:13 - 2019-09-14 09:13 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000020944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL

2019-09-14 09:13 - 2019-09-14 09:13 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL

2019-09-14 09:13 - 2019-09-14 09:13 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe

2019-09-14 09:13 - 2019-09-14 09:13 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll

2019-09-14 09:13 - 2019-09-14 09:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll

2019-09-11 15:26 - 2019-09-14 09:09 - 000018005 _____ C:\Users\MSI_USER\Desktop\pw  6.4.19.txt

2019-09-11 12:40 - 2019-09-11 12:40 - 000000000 ____D C:\Users\MSI_USER\Desktop\KNUW

2019-09-11 11:11 - 2019-09-10 20:22 - 000000000 ____D C:\Windows.old

2019-09-11 10:54 - 2019-09-11 11:11 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate

2019-09-11 10:53 - 2019-09-11 10:54 - 000000000 ____D C:\WINDOWS\ServiceProfiles

2019-09-11 10:53 - 2019-09-11 10:53 - 000008192 _____ C:\WINDOWS\system32\config\userdiff

2019-09-11 10:51 - 2019-09-11 10:51 - 019811328 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 007802224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 007196160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 006236160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 005941760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 005500928 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 005091840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 005083352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 004578816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 004481024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 004306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 003916048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 003750912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 003738376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 003487232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 003243080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002956984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002743808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002562048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002490712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002398720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002358584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002258640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002235936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002190648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002175288 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002147840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002132520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002072152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001957000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001954960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001913088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001893888 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001866064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001788944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001716776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001661544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001652536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001651848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001616568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001611576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001562640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001555688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001535288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001531656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001515008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaclient.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001510744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001505080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001501496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001488216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001473488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001458176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001383736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001356800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001334064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001305608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001301504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001297720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi

2019-09-11 10:51 - 2019-09-11 10:51 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001273344 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001273176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001263104 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001248256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL

2019-09-11 10:51 - 2019-09-11 10:51 - 001244728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001244672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001213240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AgentService.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 001181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001178608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001154952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001126400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 001122816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001105480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001079296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001067008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 001043768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001039872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL

2019-09-11 10:51 - 2019-09-11 10:51 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001007160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000957240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000928776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000892488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000842552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000830976 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000829776 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000828216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000827192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000816440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000800568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000800048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000781912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000777528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000772656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000769336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcIsoCtnr.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000744248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL

2019-09-11 10:51 - 2019-09-11 10:51 - 000743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000741176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000739328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000737552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL

2019-09-11 10:51 - 2019-09-11 10:51 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000727752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000682744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL

2019-09-11 10:51 - 2019-09-11 10:51 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000679368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL

2019-09-11 10:51 - 2019-09-11 10:51 - 000666128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000652288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000649016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000633344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000612352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000602224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000593112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000588256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_9.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000568336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000531464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000511488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000510984 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2019-09-11 10:51 - 2019-09-11 10:51 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000488056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000478800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000463272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000460288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000451896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000442304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000440256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000428544 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2019-09-11 10:51 - 2019-09-11 10:51 - 000420360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv

2019-09-11 10:51 - 2019-09-11 10:51 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000404392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000401832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000394040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\provplatformdesktop.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000386048 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\SysWOW64\curl.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000379192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000376832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webauthn.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000375512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000366184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000336928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000316216 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL

2019-09-11 10:51 - 2019-09-11 10:51 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000300176 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000284536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000283472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000279624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000267528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000261016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityUxHost.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000257848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provplatformdesktop.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000228664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE

2019-09-11 10:51 - 2019-09-11 10:51 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000199176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000193800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000187920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ifsutil.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE

2019-09-11 10:51 - 2019-09-11 10:51 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000181560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppvVemgr.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000170920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000167136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000153912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppvVfs.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000149512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ulib.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000145720 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000145208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000137528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppVStrm.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000135480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000135000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwclientres.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000116184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000110080 _____ C:\WINDOWS\system32\ResBParser.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameChatTranscription.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000098592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000096032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000093104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompMgmtLauncher.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmlib.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Groupinghc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000072816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzautoupdate.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coloradapterclient.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaproxystub.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll

FRST 2/2

Code:

2019-09-11 10:51 - 2019-09-11 10:51 - 000058825 _____ C:\WINDOWS\system32\srms.dat

2019-09-11 10:51 - 2019-09-11 10:51 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000056008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInput1_4.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000042512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000037688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInput1_4.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys

2019-09-11 10:51 - 2019-09-11 10:51 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecerts.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000021816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScriptRunner.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000021544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fvecerts.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winnlsres.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe

2019-09-11 10:51 - 2019-09-11 10:51 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwstreamingux.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll

2019-09-11 10:51 - 2019-09-11 10:51 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 007839120 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 007277568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 006408704 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 006226352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 006162432 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 004551352 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 004470784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 004034048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 004009472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003947520 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003590672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 003551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003353088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003327256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003261440 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003141120 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 003104768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002990096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002771520 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002703360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002698552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 002656768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002551096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002466512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002449432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002448384 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002321408 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002249216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002178048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaclient.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002119168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002113536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 002032640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001940952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001884200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConstraintIndex.Search.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001845616 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001830416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001822720 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001815040 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001784832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001761792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001754232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2019-09-11 10:50 - 2019-09-11 10:50 - 001744400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001717776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001654520 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001635328 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001616824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001608704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001553408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 001509728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 001505808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001482256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 001480704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 001423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001395600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001371648 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2019-09-11 10:50 - 2019-09-11 10:50 - 001337872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001301008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 001282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001259424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 001259008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001094144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001084728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001068560 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001065984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001042944 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL

2019-09-11 10:50 - 2019-09-11 10:50 - 001037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001020768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 001007120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000984376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000977688 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000977408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000975360 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000944664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000913168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000889960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000888056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000879792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL

2019-09-11 10:50 - 2019-09-11 10:50 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000818688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000818656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000811160 _____ C:\WINDOWS\SysWOW64\locale.nls

2019-09-11 10:50 - 2019-09-11 10:50 - 000811160 _____ C:\WINDOWS\system32\locale.nls

2019-09-11 10:50 - 2019-09-11 10:50 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000808960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000776704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000752792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000731960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000728576 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000722288 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000706760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000674072 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000642208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000639608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000606112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_9.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000586760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000551736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000544576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv

2019-09-11 10:50 - 2019-09-11 10:50 - 000537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS

2019-09-11 10:50 - 2019-09-11 10:50 - 000524216 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000515896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000511008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000481592 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000478264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000477712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS

2019-09-11 10:50 - 2019-09-11 10:50 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL

2019-09-11 10:50 - 2019-09-11 10:50 - 000466624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\webauthn.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000441360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000437776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000425264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000411128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000390456 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000386320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000363624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000358944 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000343104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000336960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000296976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000283144 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbaudio2.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000252944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000249656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000248088 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wosc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApproveChildRequest.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000237880 _____ C:\WINDOWS\system32\containerdevicemanagement.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000225080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000220680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000214032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ifsutil.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000210400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000205112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000202256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000194176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000182288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000180536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000180240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ulib.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000162384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000157752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaproxystub.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000149504 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000147184 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000146744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000144376 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000142136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000139472 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000132912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000129848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameChatTranscription.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000123920 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000120048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds_ps.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000106296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS

2019-09-11 10:50 - 2019-09-11 10:50 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000088488 _____ (Microsoft Corporation) C:\WINDOWS\system32\coloradapterclient.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000087048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000066360 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000065064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000055304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000047200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\devauthe.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000046632 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismp6.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000037888 _____ C:\WINDOWS\system32\usocoreps.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS

2019-09-11 10:50 - 2019-09-11 10:50 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsldr.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb80236.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000023352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\isapnp.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winnlsres.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000019256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msisadrv.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys

2019-09-11 10:50 - 2019-09-11 10:50 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe

2019-09-11 10:50 - 2019-09-11 10:50 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll

2019-09-11 10:50 - 2019-09-11 10:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll

2019-09-11 10:47 - 2019-09-11 10:47 - 000000000 ____D C:\WINDOWS\system32\th

2019-09-11 10:46 - 2019-09-14 09:53 - 000744778 _____ C:\WINDOWS\system32\perfh007.dat

2019-09-11 10:46 - 2019-09-14 09:53 - 000150600 _____ C:\WINDOWS\system32\perfc007.dat

2019-09-11 10:46 - 2019-09-11 10:46 - 000306166 _____ C:\WINDOWS\system32\perfi007.dat

2019-09-11 10:46 - 2019-09-11 10:46 - 000040520 _____ C:\WINDOWS\system32\perfd007.dat

2019-09-11 10:46 - 2019-09-11 10:46 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer

2019-09-11 10:46 - 2019-09-11 10:46 - 000000000 ____D C:\WINDOWS\SysWOW64\de

2019-09-11 10:46 - 2019-09-11 10:46 - 000000000 ____D C:\WINDOWS\system32\de

2019-09-11 10:44 - 2019-09-11 10:44 - 012039168 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0007.dll

2019-09-11 10:44 - 2019-09-11 10:44 - 011602432 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0007.dll

2019-09-11 10:44 - 2019-09-11 10:44 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe

2019-09-11 10:44 - 2019-09-11 10:44 - 002088448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0007.dll

2019-09-11 10:44 - 2019-09-11 10:44 - 002011648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0007.dll

2019-09-11 10:44 - 2019-09-11 10:44 - 000903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll

2019-09-11 10:44 - 2019-09-11 10:44 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll

2019-09-11 10:44 - 2019-09-11 10:44 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll

2019-09-11 10:44 - 2019-09-11 10:44 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll

2019-09-11 10:44 - 2019-09-11 10:44 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml

2019-09-11 10:44 - 2019-09-11 10:44 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml

2019-09-11 10:43 - 2019-09-11 10:43 - 006238208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons000c.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 002355200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000c.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 002280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000c.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 001166488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 001118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Models001E.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 000857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data001E.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 000783872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NL7Data001E.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 000778912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7001E.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 000510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB7001E.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Lexicons001E.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 000124568 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 000103072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2019-09-11 10:43 - 2019-09-11 10:43 - 000035592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2019-09-11 10:43 - 2019-09-11 10:43 - 000035592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2019-09-11 10:43 - 2019-09-11 10:43 - 000000697 _____ C:\WINDOWS\system32\NOISE.THA

2019-09-11 10:43 - 2019-09-11 10:43 - 000000000 ____D C:\Program Files\Reference Assemblies

2019-09-11 10:43 - 2019-09-11 10:43 - 000000000 ____D C:\Program Files\MSBuild

2019-09-11 10:43 - 2019-09-11 10:43 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies

2019-09-11 10:43 - 2019-09-11 10:43 - 000000000 ____D C:\Program Files (x86)\MSBuild

2019-09-10 20:24 - 2019-09-10 20:24 - 000000000 ____D C:\ProgramData\Microsoft OneDrive

2019-09-10 20:23 - 2019-09-14 09:53 - 001725104 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2019-09-10 20:22 - 2019-09-14 09:46 - 000003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task

2019-09-10 20:22 - 2019-09-14 09:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT

2019-09-10 20:22 - 2019-09-14 08:16 - 000004260 _____ C:\WINDOWS\System32\Tasks\AVG Secure VPN Update

2019-09-10 20:22 - 2019-09-14 08:16 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update

2019-09-10 20:22 - 2019-09-10 20:22 - 000003552 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1568030011

2019-09-10 20:22 - 2019-09-10 20:22 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2019-09-10 20:22 - 2019-09-10 20:22 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2019-09-10 20:22 - 2019-09-10 20:22 - 000003196 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000003152 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000003142 _____ C:\WINDOWS\System32\Tasks\AVG Driver Updater Scan

2019-09-10 20:22 - 2019-09-10 20:22 - 000003122 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2019-09-10 20:22 - 2019-09-10 20:22 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000003004 _____ C:\WINDOWS\System32\Tasks\AVG Driver Updater Startup

2019-09-10 20:22 - 2019-09-10 20:22 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000002858 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-465342472-1690862640-1647311925-1001

2019-09-10 20:22 - 2019-09-10 20:22 - 000002858 _____ C:\WINDOWS\System32\Tasks\AviraSystemSpeedupUpdate

2019-09-10 20:22 - 2019-09-10 20:22 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2019-09-10 20:22 - 2019-09-10 20:22 - 000002588 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask

2019-09-10 20:22 - 2019-09-10 20:22 - 000002566 _____ C:\WINDOWS\System32\Tasks\Avira_Antivirus_Systray

2019-09-10 20:22 - 2019-09-10 20:22 - 000002530 _____ C:\WINDOWS\System32\Tasks\FRAPS

2019-09-10 20:22 - 2019-09-10 20:22 - 000002236 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC

2019-09-10 20:22 - 2019-09-10 20:22 - 000002038 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance

2019-09-10 20:22 - 2019-09-10 20:22 - 000000020 ___SH C:\Users\MSI_USER\ntuser.ini

2019-09-10 20:22 - 2019-09-10 20:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\R@1n-KMS

2019-09-10 20:22 - 2019-09-10 20:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\Ivanti

2019-09-10 20:22 - 2019-09-10 20:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avira

2019-09-10 20:22 - 2019-09-10 20:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple

2019-09-10 20:22 - 2019-09-10 20:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\Abelssoft

2019-09-10 20:21 - 2019-09-10 20:22 - 000007623 _____ C:\WINDOWS\diagwrn.xml

2019-09-10 20:21 - 2019-09-10 20:22 - 000007623 _____ C:\WINDOWS\diagerr.xml

2019-09-10 20:15 - 2019-09-10 20:22 - 000000000 ____D C:\Users\MSI_USER

2019-09-10 20:15 - 2019-03-19 11:46 - 000001105 _____ C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2019-09-10 20:14 - 2019-09-11 10:50 - 002874368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2019-09-10 20:14 - 2019-09-10 20:14 - 000000000 ____D C:\ProgramData\USOShared

2019-09-10 20:14 - 2019-03-01 14:14 - 000133432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe

2019-09-10 20:11 - 2019-09-14 09:43 - 000533368 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2019-09-10 20:11 - 2019-09-10 20:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy

2019-09-10 17:25 - 2019-09-10 20:22 - 000000000 ___DC C:\WINDOWS\Panther

2019-09-10 15:03 - 2019-09-10 15:08 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\World_of_AI

2019-09-10 15:02 - 2019-09-10 15:07 - 000000000 ____D C:\Users\MSI_USER\Desktop\WOAI

2019-09-10 14:56 - 2019-09-10 14:57 - 003575790 _____ C:\Users\MSI_USER\Downloads\woa_air_france_by_regional_v2.zip

2019-09-10 14:56 - 2019-09-10 14:56 - 001472902 _____ C:\Users\MSI_USER\Downloads\woabcyv1.zip

2019-09-10 14:55 - 2019-09-10 14:55 - 014366359 _____ C:\Users\MSI_USER\Downloads\woaafrv5.zip

2019-09-10 14:54 - 2019-09-10 15:02 - 000983122 _____ C:\Users\MSI_USER\Downloads\woains24.zip

2019-09-10 14:19 - 2019-09-14 10:01 - 000000000 ____D C:\FRST

2019-09-10 14:19 - 2019-09-10 14:19 - 001614848 _____ (Farbar) C:\Users\MSI_USER\Desktop\FRST64.exe

2019-09-10 12:39 - 2019-09-11 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes

2019-09-10 12:39 - 2019-09-10 12:39 - 000199768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys

2019-09-10 12:39 - 2019-09-10 12:39 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk

2019-09-10 12:39 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys

2019-09-10 12:39 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys

2019-09-09 20:59 - 2019-09-09 21:01 - 001627907 _____ C:\Users\MSI_USER\Downloads\adwcleaner_7.3.exe

2019-09-09 19:40 - 2019-09-09 19:47 - 022851472 _____ (Malwarebytes ) C:\Users\MSI_USER\Downloads\mbam-setup-2.2.1.1043 (1).exe

2019-09-09 19:21 - 2019-09-09 19:21 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\mbam

2019-09-09 19:20 - 2019-09-09 19:20 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\mbamtray

2019-09-09 19:14 - 2019-09-09 19:15 - 064333800 _____ (Malwarebytes ) C:\Users\MSI_USER\Downloads\mb3-setup-43841.43841-3.8.3.2965-1.0.613-1.0.11270.exe

2019-09-09 18:53 - 2019-09-09 18:53 - 000001402 _____ C:\Users\MSI_USER\Desktop\Opera-Browser.lnk

2019-09-09 18:53 - 2019-09-09 18:53 - 000001402 _____ C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk

2019-09-09 18:48 - 2019-09-09 18:48 - 002401928 _____ (Opera Software) C:\Users\MSI_USER\Downloads\OperaSetup (1).exe

2019-09-09 17:45 - 2017-09-04 12:09 - 000855508 _____ C:\Users\MSI_USER\Desktop\Windows 10 Thai PC FSX aktivierung eines neuen keys.pdf
 

==================== One month (modified) ========
 

(If an entry is included in the fixlist, the file/folder will be moved.)
 

2019-09-14 09:54 - 2019-03-19 11:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2019-09-14 09:53 - 2019-03-19 11:50 - 000000000 ____D C:\WINDOWS\INF

2019-09-14 09:51 - 2016-09-07 10:16 - 000040249 _____ C:\Users\MSI_USER\Desktop\TO DO FSX.txt

2019-09-14 09:47 - 2016-01-19 20:33 - 000000888 _____ C:\Users\MSI_USER\Desktop\fsx - Shortcut.lnk

2019-09-14 09:47 - 2016-01-17 10:55 - 000000000 ____D C:\Users\MSI_USER\Documents\Flight Simulator X-Dateien

2019-09-14 09:46 - 2017-11-04 06:21 - 000000000 ____D C:\ProgramData\NVIDIA

2019-09-14 09:46 - 2017-02-15 19:32 - 000001163 _____ C:\Users\MSI_USER\Desktop\FlusiFix06.exe - Shortcut.lnk

2019-09-14 09:44 - 2019-01-11 13:34 - 000002298 __RSH C:\ProgramData\ntuser.pol

2019-09-14 09:44 - 2018-01-14 12:41 - 000000504 _____ C:\WINDOWS\Tasks\AVG Driver Updater Startup.job

2019-09-14 09:44 - 2018-01-14 12:40 - 000025608 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys

2019-09-14 09:44 - 2017-12-19 19:28 - 000000000 ___RD C:\Users\MSI_USER\3D Objects

2019-09-14 09:44 - 2016-11-21 01:54 - 000000000 __RHD C:\Users\Public\AccountPictures

2019-09-14 09:43 - 2019-03-19 11:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI

2019-09-14 09:42 - 2019-03-19 11:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs

2019-09-14 09:42 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SystemResources

2019-09-14 09:42 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\bcastdvr

2019-09-14 09:17 - 2019-02-23 15:36 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2019-09-14 09:16 - 2019-03-19 11:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2019-09-14 09:16 - 2019-03-19 11:56 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2019-09-14 09:16 - 2019-03-19 11:37 - 000000000 ____D C:\WINDOWS\CbsTemp

2019-09-14 09:15 - 2019-03-19 11:37 - 000000000 ____D C:\WINDOWS\servicing

2019-09-14 09:14 - 2019-03-20 17:34 - 000017140 _____ C:\Users\MSI_USER\Desktop\pw 16.1.19 fsx pc th.txt

2019-09-14 08:50 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\AppReadiness

2019-09-11 18:29 - 2017-10-29 19:13 - 000000000 ____D C:\Program Files\rempl

2019-09-11 11:11 - 2019-03-25 12:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UpdateYeti

2019-09-11 11:11 - 2019-03-19 11:56 - 000000000 ____D C:\WINDOWS\Setup

2019-09-11 11:11 - 2019-03-19 11:52 - 000000000 __RHD C:\Users\Public\Libraries

2019-09-11 11:11 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed

2019-09-11 11:11 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase

2019-09-11 11:11 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\spool

2019-09-11 11:11 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\oobe

2019-09-11 11:11 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\NDF

2019-09-11 11:11 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\Macromed

2019-09-11 11:11 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\Help

2019-09-11 11:11 - 2019-03-19 11:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared

2019-09-11 11:11 - 2019-03-19 11:49 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template

2019-09-11 11:11 - 2019-03-01 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP

2019-09-11 11:11 - 2019-02-05 22:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner

2019-09-11 11:11 - 2019-01-29 15:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vautour IIN - FSX

2019-09-11 11:11 - 2019-01-29 09:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira

2019-09-11 11:11 - 2019-01-20 20:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2019-09-11 11:11 - 2019-01-19 12:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSJ - Hawaii Photoreal Vol. 3 - The Big Island v.0.97

2019-09-11 11:11 - 2019-01-19 12:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSJ - Hawaiian Airports by George Keogh

2019-09-11 11:11 - 2019-01-15 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSJ - Hawaii Extra Contents

2019-09-11 11:11 - 2019-01-15 18:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSJ - Hawaii Photoreal Vol. 2 - Molokai, Lanai, Maui & Kahoolawe v.0.99

2019-09-11 11:11 - 2019-01-15 18:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSJ - Hawaii Photoreal Vol. 1 - Niihau, Kauai & Oahu v.0.99

2019-09-11 11:11 - 2019-01-13 15:06 - 000000000 ____D C:\WINDOWS\SysWOW64\SupportAppPBTrue Iot Pocket WiFi Play 1

2019-09-11 11:11 - 2019-01-13 15:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Iot Pocket WiFi Play 1

2019-09-11 11:11 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated

2019-09-11 11:11 - 2018-04-12 06:38 - 000000000 ____D C:\WINDOWS\InfusedApps

2019-09-11 11:11 - 2018-01-14 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Driver Updater

2019-09-11 11:11 - 2017-12-16 14:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft - Madeira X Evolution - FSX

2019-09-11 11:11 - 2017-12-11 13:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimObject Display Engine

2019-09-11 11:11 - 2017-12-08 10:26 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.4

2019-09-11 11:11 - 2017-12-03 15:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG

2019-09-11 11:11 - 2017-11-06 09:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REX Game Studios

2019-09-11 11:11 - 2017-10-31 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSX & P3D - Hawaii Photoreal Vol. 3 - The Big Island v.0.95 Plus

2019-09-11 11:11 - 2017-10-31 11:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSX & P3D - Hawaii Photoreal Vol. 2 - Molokai v.0.99 Plus

2019-09-11 11:11 - 2017-10-31 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSX & P3D - Hawaii Photoreal Vol. 2 - Maui v.0.97 Plus

2019-09-11 11:11 - 2017-10-31 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSX & P3D - Hawaii Photoreal Vol. 2 - Lanai v.1.0 Plus

2019-09-11 11:11 - 2017-10-31 11:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSX & P3D - Hawaii Photoreal Vol. 2 - Kahoolawe v.1.0 Plus

2019-09-11 11:11 - 2017-10-31 11:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSX & P3D - Hawaii Photoreal Vol. 1 - Niihau v.1.0 Plus

2019-09-11 11:11 - 2017-10-31 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSX & P3D - Hawaii Photoreal Vol. 1 - Oahu v.0.97 Plus

2019-09-11 11:11 - 2017-10-29 19:03 - 000000000 ____D C:\Program Files\UNP

2019-09-11 11:11 - 2017-03-14 14:25 - 000000000 ____D C:\Program Files\Microsoft Games

2019-09-11 11:11 - 2017-03-02 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps

2019-09-11 11:11 - 2017-02-24 19:33 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices

2019-09-11 11:11 - 2017-02-10 21:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSDG

2019-09-11 11:11 - 2016-09-18 17:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FSX & P3D - Hawaii Photoreal Vol. 3 - The Big Island v.0.93

2019-09-11 11:11 - 2016-09-09 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CH Products

2019-09-11 11:11 - 2016-08-30 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Resizer for Windows

2019-09-11 11:11 - 2016-08-23 07:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stevefx

2019-09-11 11:11 - 2016-08-09 11:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft

2019-09-11 11:11 - 2016-07-16 18:47 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy

2019-09-11 11:11 - 2016-02-08 22:20 - 000000000 ____D C:\WINDOWS\SysWOW64\LiveUpdate

2019-09-11 11:11 - 2016-01-26 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LFMD Cannes FSX

2019-09-11 11:11 - 2016-01-24 09:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Just Flight

2019-09-11 11:11 - 2016-01-22 22:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QualityWings

2019-09-11 11:11 - 2016-01-21 13:16 - 000000000 ____D C:\WINDOWS\system32\appmgmt

2019-09-11 11:11 - 2016-01-20 19:05 - 000000000 ____D C:\WINDOWS\SysWOW64\SupportAppPBHostless Modem

2019-09-11 11:11 - 2016-01-20 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shared WiFi 3

2019-09-11 11:11 - 2016-01-20 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MegaSceneryEarth

2019-09-11 11:11 - 2016-01-18 01:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2019-09-11 11:11 - 2016-01-18 01:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7

2019-09-11 11:11 - 2016-01-17 08:04 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2019-09-11 11:11 - 2016-01-17 08:04 - 000000000 ____D C:\Program Files\Intel

2019-09-11 11:11 - 2016-01-17 07:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2019-09-11 10:54 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\Resources

2019-09-11 10:54 - 2019-03-11 14:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BluePrint Simulations

2019-09-11 10:54 - 2019-02-04 12:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aircraft Factory

2019-09-11 10:54 - 2019-01-16 20:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation

2019-09-11 10:54 - 2018-01-17 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SilverWingz

2019-09-11 10:54 - 2017-12-16 22:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macrium

2019-09-11 10:54 - 2017-12-11 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Drzewiecki Design

2019-09-11 10:54 - 2017-11-04 06:21 - 000000000 ____D C:\Program Files\Realtek

2019-09-11 10:54 - 2017-03-13 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID

2019-09-11 10:54 - 2017-02-24 19:33 - 000000000 ____D C:\WINDOWS\system32\BestPractices

2019-09-11 10:54 - 2016-08-26 20:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vertigo Studios

2019-09-11 10:54 - 2016-08-26 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mailsoft

2019-09-11 10:54 - 2016-08-26 10:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlyLogic

2019-09-11 10:54 - 2016-08-14 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SibWings

2019-09-11 10:54 - 2016-01-28 11:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Captain Sim

2019-09-11 10:54 - 2016-01-26 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimMarket

2019-09-11 10:54 - 2016-01-20 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A2A Simulations

2019-09-11 10:54 - 2016-01-17 08:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI

2019-09-11 10:54 - 2016-01-17 07:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking

2019-09-11 10:53 - 2019-03-19 13:23 - 000000000 ___SD C:\WINDOWS\system32\AppV

2019-09-11 10:53 - 2019-03-19 13:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\TextInput

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\migwiz

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\appraiser

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\ShellExperiences

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\ShellComponents

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\Provisioning

2019-09-11 10:53 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions

2019-09-11 10:52 - 2019-03-19 13:23 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll

2019-09-11 10:52 - 2019-03-19 13:23 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml

2019-09-11 10:47 - 2019-03-19 13:23 - 000000000 ____D C:\Program Files\Windows Photo Viewer

2019-09-11 10:47 - 2019-03-19 13:23 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer

2019-09-11 10:47 - 2019-03-19 13:20 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN

2019-09-11 10:47 - 2019-03-19 13:20 - 000000000 ____D C:\WINDOWS\system32\WCN

2019-09-11 10:47 - 2019-03-19 11:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12

2019-09-11 10:47 - 2019-03-19 11:52 - 000000000 ___SD C:\WINDOWS\system32\F12

2019-09-11 10:47 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe

2019-09-11 10:47 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2019-09-11 10:47 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep

2019-09-11 10:47 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\IME

2019-09-11 10:47 - 2019-03-19 11:52 - 000000000 ____D C:\Program Files\Common Files\System

2019-09-11 10:47 - 2019-03-19 11:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender

2019-09-11 10:46 - 2019-03-19 13:20 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm

2019-09-11 10:46 - 2019-03-19 13:20 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr

2019-09-11 10:46 - 2019-03-19 13:20 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts

2019-09-11 10:46 - 2019-03-19 13:20 - 000000000 ____D C:\WINDOWS\system32\winrm

2019-09-11 10:46 - 2019-03-19 13:20 - 000000000 ____D C:\WINDOWS\system32\slmgr

2019-09-11 10:46 - 2019-03-19 13:20 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts

2019-09-11 10:46 - 2019-03-19 11:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs

2019-09-11 10:46 - 2019-03-19 11:52 - 000000000 ___SD C:\WINDOWS\system32\dsc

2019-09-11 10:46 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI

2019-09-11 10:46 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism

2019-09-11 10:46 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com

2019-09-11 10:46 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2019-09-11 10:46 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\MUI

2019-09-11 10:46 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\Dism

2019-09-11 10:46 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\Com

2019-09-11 10:44 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV

2019-09-11 10:44 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT

2019-09-11 10:44 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE

2019-09-11 10:44 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX

2019-09-11 10:44 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\lv-LV

2019-09-11 10:44 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\lt-LT

2019-09-11 10:44 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\et-EE

2019-09-11 10:44 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\system32\es-MX

2019-09-11 10:43 - 2019-03-19 13:22 - 000000000 ____D C:\WINDOWS\OCR

2019-09-11 09:57 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\appcompat

2019-09-10 20:39 - 2019-03-19 11:52 - 000000000 ___HD C:\Program Files\WindowsApps

2019-09-10 20:39 - 2019-01-13 19:05 - 000000000 ____D C:\ProgramData\Packages

2019-09-10 20:39 - 2017-12-19 19:22 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\Packages

2019-09-10 20:24 - 2019-01-15 13:49 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\PlaceholderTileLogoFolder

2019-09-10 20:23 - 2019-03-19 11:52 - 000000000 ____D C:\ProgramData\USOPrivate

2019-09-10 20:23 - 2019-02-11 16:48 - 000000000 ____D C:\Users\Public\Speedup Sessions

2019-09-10 20:22 - 2019-03-19 11:52 - 000000000 ____D C:\Program Files\Windows Defender

2019-09-10 20:22 - 2019-03-19 11:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM

2019-09-10 20:22 - 2017-03-12 10:21 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\ConnectedDevicesPlatform

2019-09-10 20:21 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\Registration

2019-09-10 20:18 - 2016-01-17 09:47 - 000022840 _____ C:\WINDOWS\system32\emptyregdb.dat

2019-09-10 20:16 - 2019-02-24 21:40 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FSD International

2019-09-10 20:16 - 2019-01-29 15:18 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MirageIIIB

2019-09-10 20:16 - 2019-01-26 21:24 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orbx

2019-09-10 20:16 - 2018-01-04 13:10 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aerosoft

2019-09-10 20:16 - 2017-12-29 14:20 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flight One Software

2019-09-10 20:16 - 2017-11-26 22:40 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World Of Warships

2019-09-10 20:16 - 2017-11-26 22:35 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks

2019-09-10 20:16 - 2016-10-08 11:52 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carenado V35B Bonanza for FSX

2019-09-10 20:16 - 2016-09-17 17:03 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RAZBAM LTV A-7 E & D Corsair II Volume I

2019-09-10 20:16 - 2016-09-01 17:19 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSMP Airbase Payerne Version 3

2019-09-10 20:16 - 2016-08-31 20:04 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Horizon

2019-09-10 20:16 - 2016-08-17 20:00 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LLH

2019-09-10 20:16 - 2016-08-15 14:27 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carenado PA28 ARCHER II FSX

2019-09-10 20:16 - 2016-08-15 13:50 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carenado Piper Cherokee FSX

2019-09-10 20:16 - 2016-08-13 20:45 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carenado EMB505 Phenom 300 v1.3 FSX

2019-09-10 20:16 - 2016-08-12 15:16 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CLS Arrow

2019-09-10 20:16 - 2016-02-08 21:22 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons

2019-09-10 20:16 - 2016-01-28 11:12 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Captain Sim

2019-09-10 20:16 - 2016-01-22 19:57 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MeatWater FO Altitude Callouts v1.0

2019-09-10 20:16 - 2016-01-22 15:02 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium

2019-09-10 20:16 - 2016-01-17 07:56 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2019-09-10 20:15 - 2019-03-19 11:52 - 000000000 ___RD C:\WINDOWS\PrintDialog

2019-09-10 20:14 - 2017-11-04 06:21 - 000000000 ____D C:\ProgramData\NVIDIA Corporation

2019-09-10 20:14 - 2017-11-04 06:21 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2019-09-10 20:14 - 2017-02-26 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation

2019-09-10 20:13 - 2017-11-04 06:21 - 000000000 ____D C:\Program Files\NVIDIA Corporation

2019-09-10 20:12 - 2019-03-19 11:52 - 000000000 ____D C:\WINDOWS\ServiceState

2019-09-10 20:12 - 2017-11-04 06:21 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM

2019-09-10 18:24 - 2016-01-17 07:37 - 000000000 ___RD C:\Users\MSI_USER\OneDrive

2019-09-10 12:39 - 2016-08-10 09:49 - 000000000 ____D C:\ProgramData\Malwarebytes

2019-09-09 20:35 - 2017-12-19 19:28 - 000000000 ___HD C:\Users\MSI_USER\MicrosoftEdgeBackups

2019-09-09 20:32 - 2019-01-29 09:43 - 000000000 ____D C:\Program Files (x86)\Avira

2019-09-09 20:26 - 2017-11-27 06:06 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2019-09-09 19:41 - 2019-01-29 09:44 - 000203440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

2019-09-09 19:41 - 2019-01-29 09:44 - 000195648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

2019-09-09 19:41 - 2019-01-29 09:44 - 000078936 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys

2019-09-09 19:23 - 2019-03-25 12:33 - 000000000 ____D C:\Users\MSI_USER\AppData\Roaming\DesktopIconAmazon

2019-09-09 18:56 - 2016-01-17 08:37 - 000000000 ____D C:\WINDOWS\system32\MRT

2019-09-09 18:54 - 2016-01-17 08:37 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2019-09-09 18:46 - 2016-01-23 10:44 - 000000000 ____D C:\Program Files (x86)\Opera

2019-09-09 18:30 - 2016-01-18 01:14 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2019-09-09 17:34 - 2017-03-26 14:52 - 000000000 ____D C:\Program Files (x86)\TeamViewer

2019-09-07 12:10 - 2016-01-17 08:01 - 000000000 ____D C:\ProgramData\Package Cache

2019-09-07 12:07 - 2016-01-18 14:49 - 000000000 ____D C:\Users\MSI_USER\AppData\Local\ElevatedDiagnostics
 

==================== Files in the root of some directories ================
 

2016-08-16 11:02 - 2016-08-16 11:02 - 000000182 _____ () C:\Users\MSI_USER\FSDreamTeam_Geneva.reg

2016-08-27 18:59 - 2016-08-27 18:59 - 000000203 _____ () C:\Users\MSI_USER\FSDreamTeam_Hawaiian Airports Volume 1.reg

2016-08-27 19:02 - 2017-11-05 13:38 - 000000203 _____ () C:\Users\MSI_USER\FSDreamTeam_Hawaiian Airports Volume 2.reg

2016-08-27 11:57 - 2016-08-27 11:57 - 000000185 _____ () C:\Users\MSI_USER\FSDreamTeam_Honolulu.reg

2016-08-16 11:00 - 2019-02-17 21:26 - 000000180 _____ () C:\Users\MSI_USER\FSDreamTeam_ZurichX.reg

2016-01-22 23:01 - 2016-08-04 11:01 - 000000231 _____ () C:\Users\MSI_USER\AppData\Roaming\WB.CFG

2016-01-17 07:40 - 2016-01-17 07:40 - 000000000 _____ () C:\Users\MSI_USER\AppData\Local\Driver_LOM_8161Present.flag

2017-03-13 14:05 - 2017-03-13 14:05 - 000007628 _____ () C:\Users\MSI_USER\AppData\Local\Resmon.ResmonCfg
 

==================== SigCheck ===============================
 

(There is no automatic fix for files that do not pass verification.)
 

==================== End of FRST.txt ============================

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-09-2019

Ran by MSI_USER (14-09-2019 10:03:21)

Running from C:\Users\MSI_USER\Desktop

Windows 10 Pro Version 1903 18362.356 (X64) (2019-09-10 13:22:18)

Boot Mode: Normal

==========================================================
 
 

==================== Accounts: =============================
 

Administrator (S-1-5-21-465342472-1690862640-1647311925-500 - Administrator - Disabled)

DefaultAccount (S-1-5-21-465342472-1690862640-1647311925-503 - Limited - Disabled)

Guest (S-1-5-21-465342472-1690862640-1647311925-501 - Limited - Disabled)

MSI_USER (S-1-5-21-465342472-1690862640-1647311925-1001 - Administrator - Enabled) => C:\Users\MSI_USER

WDAGUtilityAccount (S-1-5-21-465342472-1690862640-1647311925-504 - Limited - Disabled)
 

==================== Security Center ========================
 

(If an entry is included in the fixlist, it will be removed.)
 

AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546}

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

AS: Avira Antivirus (Enabled - Up to date) {33CF8AA2-FA06-4AD4-98AB-332D53DD7FFB}

AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 

==================== Installed Programs ======================
 

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 

727 Captain (727-100) Base Pack [FSX/SE] 2.70 FSX (HKLM-x32\...\p721_fsx) (Version: 2.70 - © 1999-2016 Captain Sim)

727 Captain (727-200) Expansion Model [FSX/SE/P3D] 2.70 FSX (HKLM-x32\...\p722_fsx) (Version: 2.70 - © 1999-2016 Captain Sim)

737 Captain (737-100 Exterior Model) 0.2 (HKLM-x32\...\x730) (Version: 0.2.00 - ฉ 1999-2011 Captain Sim)

777 Captain (777-200 Exterior Model) 0.1 (HKLM-x32\...\x770) (Version: 0.1.00 - ฉ 1999-2011 Captain Sim)

Accu-Feel (HKLM-x32\...\Accu-Feel) (Version:  - )

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)

Aerosoft Mega Airport Munich v 1.00 for FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Aerosoft Mega Airport Munich v 1.00 for FSX) (Version:  - )

Aerosoft's - Aerosoft Launcher (HKLM-x32\...\{EE11CFFC-898C-4875-8A63-8B732A9AD43B}) (Version: 1.2.0.3 - Aerosoft)

aerosoft's - Lukla X - Mount Everest (HKLM-x32\...\{EF32F291-8B08-43EF-8BAA-58B9F8C9540F}) (Version: 1.00 - aerosoft)

Aerosoft's - Madeira X Evolution - FSX (HKLM-x32\...\Madeira X Evolution - FSX) (Version: 1.05a - Aerosoft)

Aerosoft's - Mega Airport Zurich 2012 - FSX (HKLM-x32\...\{463A571A-B793-459B-BEA8-028DC323AAB0}) (Version: 1.01 - Aerosoft)

aerosoft's - Menorca X for FSX (HKLM-x32\...\{5BD1BBB6-DC09-420F-B459-DD61DD351541}) (Version: 1.00 - aerosoft)

Aerosoft's - MonacoX (HKLM-x32\...\{B56D25A0-1316-4255-AB45-1147C9D01C5E}) (Version: 1.02 - Aerosoft)

aerosoft's - Nice Cote dAzur X (HKLM-x32\...\{90447E05-DE8E-470D-8D3E-C871D2AE74AF}) (Version: 1.10 - aerosoft)

AIMP (HKLM-x32\...\AIMP) (Version: v4.51.2084, 01.12.2018 - AIMP DevTeam)

Airbus A320 Family Mega Pack FSX & P3D (HKLM\...\{B3433E82-1261-4523-9D4E-BEC8CA678D50}) (Version: 1 - Project Airbus & its collaborators, François Doré, repack by Luis Quintero)

Aircraft Factory F4u Corsair (HKLM-x32\...\Aircraft Factory F4u Corsair) (Version:  - )

ALABEO Pitts S-2S (HKLM-x32\...\ALABEO Pitts S-2S) (Version: 1.00.00.00 - ALABEO)

Alphasim EFA Typhoon FSX & P3D (HKLM\...\{35F708C4-5C11-46C5-B4A1-EFA97EC214DE}) (Version: 1 - Alphasim/Virtavia)

Antonov An-2 0.9.7 (HKLM-x32\...\{7cd9d678-9999-4f1e-8ae0-24f71faad1a0}_is1) (Version: 0.9.7 - SibWings)

Apple Application Support (32-Bit) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)

Apple Application Support (64-Bit) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{BD6778C5-6FA5-492A-ADD6-E706339C2A7B}) (Version: 11.0.2.4 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)

AVG (HKLM\...\{136B57DF-DA9E-4361-A165-09AB4422BCD1}) (Version: 1.231.3 - AVG Technologies) Hidden

AVG Driver Updater (HKLM-x32\...\{BAAB946F-7E00-41F4-BEC7-B8CCF758E012}) (Version: 2.3.0 - AVG Netherlands B.V) Hidden

AVG Driver Updater (HKLM-x32\...\AVG Driver Updater) (Version: 2.3.0 - AVG Netherlands B.V)

AVG PC TuneUp (HKLM-x32\...\{52B6D655-9038-4290-B710-0E568F806155}) (Version: 16.80.3 - AVG Technologies) Hidden

AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.80.3.38236 - AVG Technologies)

AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.1.588.1 - AVG)

Avira (HKLM-x32\...\{1db45392-716a-490d-9b3e-2d96adbb5ab0}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG)

Avira (HKLM-x32\...\{CC898F82-66EF-4083-947F-5C69703DDBAF}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG) Hidden

Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.1908.1579 - Avira Operations GmbH & Co. KG)

Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.28.3.20557 - Avira Operations GmbH & Co. KG)

Avira Privacy Pal (HKLM-x32\...\{F2BC8305-DFBE-4C02-A906-9BBD8EE299A3}_is1) (Version: 1.8.0.1831 - Avira Operations GmbH & Co. KG)

Avira Safe Shopping (HKLM-x32\...\{099DC083-FEAC-45B0-9B0E-B858193D07F8}) (Version: 1.1.42.3954 - Avira Operations GmbH & Co. KG)

Avira Software Updater (HKLM-x32\...\{9A748448-7435-49AD-B175-087292C52A2E}) (Version: 2.0.6.17105 - Avira Operations GmbH & Co. KG)

Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 4.16.0.7822 - Avira Operations GmbH & Co. KG)

B1900D HD SERIES FSX/P3D (HKLM-x32\...\B1900D HD SERIES FSX/P3D) (Version: 1.00.00.00 - Carenado)

BAE Red Arrows Hawk T1 (HKLM-x32\...\BAE Red Arrows Hawk T1) (Version:  - )

Basler BT-67 Base Pack V2 FSX SP2 & P3D (HKLM\...\{EB6BE03D-1D14-4137-AAE8-6DEEBDB8575D}) (Version: 1 - Manfred Jahn, Daniel Fuernkaess, Alexander M. Metzger, Hansjoerg Naegele)

Boeing 737 Classic Multi Livery Pack (HKLM\...\{C85841E6-BA63-4C03-BFE6-C0688AD52771}) (Version: 1 - Eagle Rotorcraft Simulation, George A.Arana, Alejandro Rojas Lucena, package by Rikoooo)

Boeing 777-200ER Ultimate Pack (HKLM\...\{5849CFC1-98B4-4B0A-98F7-86322E790294}) (Version: 1 - Project OpenSky, update by Hanzalah Ravat)

Boeing B737-823 Advanced VC FSX & P3D (HKLM\...\{330F6375-B0DB-4CDD-B1EB-B83C43810D11}) (Version: 1 - Project OpenSky, Alejandro Rojas Lucenda, FSRepaintsGER, Adam Murphy)

Boeing P8-A Poseidon (HKLM\...\{0D1B836B-D6BC-4C8B-9B06-CE966304893D}) (Version: 1 - Model by TDS, enhanced by Alejandro Rojas Lucena, packaged by Chris Evans)

Bombardier CRJ-200 Full Pack (HKLM\...\{24BEBC74-49DD-429C-B85A-6E95DB3E093F}) (Version: 3 - Rikoooo)

Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)

C90B King Air HD SERIES FSX (HKLM-x32\...\C90B King Air HD SERIES FSX) (Version: 1.00.00.00 - Carenado)

Captain Sim 707 All-in-One (HKLM-x32\...\{0906F438-9315-477C-9DBB-4A3050699810}) (Version: 1.00 - SilverWingz)

Carenado Baron 58 FSX (HKLM-x32\...\Carenado Baron 58 FSX) (Version: 1.00.00.00 - Carenado)

Carenado C340 II FSX (HKLM-x32\...\Carenado C340 II FSX) (Version: 1.00.00.00 - Carenado)

Carenado F33A Bonanza (HKLM-x32\...\Carenado F33A Bonanza) (Version: 1.00.00.00 - Carenado)

Carenado PA28-181 ARCHER II FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Carenado PA28-181 ARCHER II FSX) (Version:  - )

Carenado Piper Cherokee FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Carenado Piper Cherokee FSX) (Version:  - )

Carenado V35B Bonanza for FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Carenado V35B Bonanza for FSX) (Version:  - )

CCleaner (HKLM\...\CCleaner) (Version: 5.53 - Piriform)

CE2400X FSX/P3D/STEAM (HKLM-x32\...\CE2400X FSX/P3D/STEAM) (Version: 1.0 - Carenado)

Cessna Citation Excel XLS+ (HKLM\...\{66DB8AF6-8736-40AB-BC09-7168A951B8B7}) (Version: 1 - Aryus Works, Alex Sandro Guedes Silva, Jeffrey S. Bryner, Christoffer Petersen, Bigmike)

CH Control Manager Software (HKLM-x32\...\CHControlManager_is1) (Version:  - )

CLS Piper Arrow (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\CLS Piper Arrow) (Version:  - )

CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version:  - ) <==== ATTENTION

Curtiss C46 Commando (HKLM-x32\...\{8FA2A715-0B8D-4A8C-979F-C4886053A6FB}) (Version: 1.00.000 - Just Flight)

DeHavilland DHC-7 Spantax (HKLM\...\{F9A46DAE-9088-4652-AA37-C11876E086FB}) (Version: 1 - By Milton Shupe, Mike Kelly, George Arana and Sim-Outhouse. FSX native conversion by Eagle Rotorcraft Simulations. Textures by Enrique Medal. Assembled for FSX/P3D v3 & 4 by Chris Evans)

DH104 Dove and Devon (HKLM-x32\...\{CE279BBA-E76C-4A0A-B9A0-45DBBF3BF045}) (Version: 1.00.000 - Just Flight)

DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden

Douglas A-20 Havoc (HKLM\...\{20CB9B16-10C0-4A1C-9297-B64878854036}) (Version: 1 - Rikoooo)

DX10 Scenery Fixer (HKLM-x32\...\{BEC93831-5B06-4A2B-911E-DCC135AFCA08}) (Version: 3.0.92.1 - Stevefx)

EMB500 Phenom 100 FSX/P3D (HKLM-x32\...\EMB500 Phenom 100 FSX/P3D) (Version: ${PRODUCT_VERSION} - Carenado)

EMB505 Phenom 300 v1.3 (HKLM-x32\...\EMB505 Phenom 300 v1.3with Navigraph Pack 1.1FSX) (Version: with Navigraph Pack 1.1 - Carenado)

Embraer EMB-120 Mega Pack (HKLM\...\{3517A4A7-53F2-4597-8420-D07F6A5FF79D}) (Version: 1 - Rikoooo)

F-8 Vought Crusader v2 (HKLM\...\{B88A5BAF-08DB-4704-A587-8B04DCDBA672}) (Version: 2 - Alphasim/Virtavia. Henk Schuitemaker)

F9F Panther (HKLM-x32\...\F9F Panther) (Version:  - )

Fiji Photoreal Package Western FSX & P3D (HKLM\...\{DC17D3A5-1F2A-47F2-8FDD-6F5550C6030E}) (Version: 1 - Tiberius Kowalski)

Flight1 Citation Mustang (HKLM-x32\...\f1mustang_FSX) (Version: 1.01 - Flight One Software)

FlyLogic's - Altenrhein X (HKLM-x32\...\{E5326C48-869C-43C0-A78E-B531CCFF066B}) (Version: 1.00 - FlyLogic)

FMW 1 (HKLM\...\{4CC5FB14-3F4D-4FA8-B921-00A9B40145C4}) (Version: 1.227.45 - AVG Technologies) Hidden

Fraps (HKLM-x32\...\Fraps) (Version:  - )

FSD Pilatus Porter Amphibian V2 for FS X (HKLM-x32\...\FSD Pilatus Porter Amphibian V 2 for FS X) (Version:  - )

FSD Pilatus Porter Landplane V2 for FS X (HKLM-x32\...\FSD Pilatus Porter Landplane V 2 for FS X) (Version:  - )

FSD Pilatus Porter Skiplane V2 for FS X (HKLM-x32\...\FSD Pilatus Porter Skiplane V 2 for FS X) (Version:  - )

FSDG-Paro (HKLM-x32\...\FSDG-Paro) (Version:  - )

FSDreamTeam Geneva version 2.0.2 (HKLM-x32\...\FSDreamTeam Geneva_is1) (Version: 2.0.2 - VIRTUALI Sagl)

FSDreamTeam Hawaiian Airports Volume 1 version 2.0.2 (HKLM-x32\...\FSDreamTeam Hawaiian Airports Volume 1_is1) (Version: 2.0.2 - VIRTUALI Sagl)

FSDreamTeam Hawaiian Airports Volume 2 version 2.0.2 (HKLM-x32\...\FSDreamTeam Hawaiian Airports Volume 2_is1) (Version: 2.0.2 - VIRTUALI Sagl)

FSDreamTeam Honolulu International version 2.0.2 (HKLM-x32\...\FSDreamTeam Honolulu International_is1) (Version: 2.0.2 - VIRTUALI Sagl)

FSDreamTeam ZurichX version 2.8.2 (HKLM-x32\...\FSDreamTeam ZurichX_is1) (Version: 2.8.2 - VIRTUALI Sagl)

FSJ - Hawaii Extra Contents Version 1.0 (HKLM-x32\...\{23EFA1FF-9364-4268-96F3-CA84C034312F}_is1) (Version: 1.0 - Flight Sim Jewels)

FSJ - Hawaii Photoreal Vol. 1 - Niihau, Kauai & Oahu Version 0.99 (HKLM-x32\...\{4D088B72-89C9-4678-AA5C-24C968E7406D}_is1) (Version: 0.99 - Flight Sim Jewels)

FSJ - Hawaii Photoreal Vol. 2 - Molokai, Lanai, Maui & Kahoolawe v.0.99 Version 0.99 (HKLM-x32\...\{6E8752DD-FE4E-4204-A08E-D50AFA0617CE}_is1) (Version: 0.99 - Flight Sim Jewels)

FSJ - Hawaii Photoreal Vol. 3 - The Big Island Version 0.97 (HKLM-x32\...\{3BB43A17-8A9E-4BA0-8213-BD33B9163FDE}_is1) (Version: 0.97 - Flight Sim Jewels)

FSJ - Hawaiian Airports by George Keogh Version 1.0 (HKLM-x32\...\{C327E80A-E3CA-4091-AEC0-00D1C312E2AB}_is1) (Version: 1.0 - Flight Sim Jewels)

FSX & P3D - Hawaii Photoreal Vol. 1 - Oahu v.0.97 Plus Version 0.97 (HKLM-x32\...\{B32B2669-7B1D-4200-9395-4DF2D70461B5}_is1) (Version: 0.97 - AveMetal Entertainment, Inc.)

FSX & P3D - Hawaii Photoreal Vol. 2 - Molokai v.0.99 Plus Version 0.99 (HKLM-x32\...\{4463C090-92E1-4EC1-B715-17C9A59FB76B}_is1) (Version: 0.99 - AveMetal Entertainment, Inc.)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.75 - Google LLC)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden

H25B_H850XP FSX/P3D (HKLM-x32\...\H25B_H850XP FSX/P3D) (Version: ${PRODUCT_VERSION} - Carenado)

High Definition Environment v2.1 (HKLM\...\{E46C2BF4-6090-4C42-9D26-21A6B3C143AF}) (Version: 1 - Original author Pablo Diaz, FSX update by Danny Glover and Erik BENDER (Rikoooo))

Ilyushin Il-18 FSX & P3D (HKLM\...\{988FEEF6-2B16-4516-AEC5-C306DEA5D90E}) (Version: 1 - Edgar Giunar)

Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden

Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)

Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden

Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)

Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)

ItalySim-LICA 2016 (HKLM-x32\...\ISD-LICA2016-18199E96-4C34-473F-9530-E949D9209CE6_is1) (Version: 1.0.0.0 - SimMarket)

iTunes (HKLM\...\{9E84991B-6078-4311-A714-0A1360C3706C}) (Version: 12.9.0.167 - Apple Inc.)

JetStream Designs LFML X 2013 (HKLM-x32\...\FSX_JETSTREAM_DESIGN_LFML_X_2013_is1) (Version: 1.0.0.0 - SimMarket)

JetStream Designs Palermo LICJ (HKLM-x32\...\JETSTREAMDESIGN-PALERMOLICJ-08588E01-7F3A-401B-A~17A2AB48_is1) (Version: 1.0.0.0 - SimMarket)

Just Flight - DC-8 Jetliner Series 10 to 40 (HKLM-x32\...\{14410905-9476-45D9-AC33-3DEDC9BDD257}) (Version: 1.00.0000 - Just Flight)

Just Flight - MilViz F-15E Strike Eagle (HKLM-x32\...\{AFCBCDA6-98C4-4D33-BA8F-3168A1860608}) (Version: 1.00.000 - Just Flight)

Just Flight Constellation Professional (HKLM-x32\...\{070B2AFF-E7F2-4085-83CD-5ED64A4C9CE5}) (Version: 1.00.000 - )

Just Flight MD-81/82 Jetliner (HKLM-x32\...\{6AA6251B-B7C8-40FC-8FB9-DCB9D81BE4C7}) (Version: 1.00.000 - )

Killer Bandwidth Control Filter Driver (HKLM\...\{24BA7D32-B740-47A3-BE0E-2F4863A05D13}) (Version: 1.1.56.1120 - Rivet Networks) Hidden

Killer E220x Drivers (HKLM\...\{921ABFC0-9681-487D-9379-89C1712EFEBF}) (Version: 1.1.56.1120 - Rivet Networks) Hidden

Killer Network Manager (HKLM\...\{E21E50A4-4A55-4A7E-B1AA-16F8F9E255C8}) (Version: 1.1.56.1120 - Rivet Networks) Hidden

Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.56.1120 - Rivet Networks)

L-1011 Captain (1011-1 Exterior Model) 0.1 (HKLM-x32\...\l111) (Version: 0.1.00 - ฉ 1999-2013 Captain Sim)

LFKB Bastia Poretta v1.1 (HKLM-x32\...\RFSCENERYBUILDING_LFKB_is1) (Version: 1.1.0.0 - SimMarket)

LFLB - Chamb้ry Aix les Bains FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\LFLB - Chamb้ry Aix les Bains FSX) (Version:  - )

LFMD Cannes FSX version 1.01 (HKLM-x32\...\{75CBE292-551C-4CBD-89D4-D57733A4B14E}_is1) (Version: 1.01 - LMT SIMULATION)

LICC_Catania-Fontanarossa (HKLM-x32\...\RFS_LICC_CATANIA_FONTANAROSSA_is1) (Version: 1.1.0.0 - SimMarket)

LLH1 (HKLM-x32\...\LLH1) (Version:  - )

LLH9 (HKLM-x32\...\LLH9) (Version:  - )

Macrium Reflect Free Edition (HKLM\...\{84BD4249-F4BB-43EE-BE16-D08A27E54439}) (Version: 6.3.1849 - Paramount Software (UK) Ltd.) Hidden

Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 6.3 - Paramount Software (UK) Ltd.)

Mailsoft's - Birrfeld X (HKLM-x32\...\{F3F3CA83-5D04-4F6F-9234-0E3557CEADBD}) (Version: 1.00 - Mailsoft)

Malwarebytes Version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)

MeatWater FO Altitude Callouts v1.0 (HKLM-x32\...\MeatWater FO Altitude Callouts v1.0) (Version:  - )

Mega Route Rio São Paulo and Natal City Pack5 (HKLM-x32\...\FSX_MegaRiodeJaneiroX2012_is1) (Version: 1.0.0.0 - SimMarket)

MegaSceneryEarth Florida 001 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 001 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 002 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 002 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 003 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 003 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 004 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 004 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 005 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 005 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 006 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 006 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 007 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 007 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 008 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 008 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 009 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 009 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 010 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 010 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 011 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 011 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 012 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 012 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 013 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 013 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 014 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 014 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 015 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 015 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 016 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 016 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 017 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 017 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 018 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 018 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 019 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 019 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 020 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 020 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 021 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 021 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 022 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 022 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 023 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 023 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 024 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 024 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida 025 2.0 (HKLM-x32\...\MegaSceneryEarth Florida 025 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Florida Charts 2.0 (HKLM-x32\...\MegaSceneryEarth Florida Charts 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 001 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 001 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 002 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 002 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 003 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 003 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 004 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 004 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 005 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 005 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 006 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 006 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 007 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 007 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 008 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 008 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 009 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 009 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 010 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 010 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 011 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 011 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Seattle Ultra Res 012 2.0 (HKLM-x32\...\MegaSceneryEarth Seattle Ultra Res 012 2.0) (Version: 2.0 - MegaSceneryEarth)

MegaSceneryEarth Washington Charts 2.0 (HKLM-x32\...\MegaSceneryEarth Washington Charts 2.0) (Version: 2.0 - MegaSceneryEarth)

Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)

Microsoft Flight Simulator X: Acceleration (HKLM-x32\...\FlightSim_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: 10.0.61637.0 - Microsoft Game Studios)

Microsoft OneDrive (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0008 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)

Mirage IIIC (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Mirage IIIC) (Version:  - )

MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.8 - MSI)

MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.021 - MSI)

MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)

Northrop Grumman E-11A Sentinel (HKLM\...\{4A5F6C64-A6EF-4CF4-81AF-B61CA6124FBF}) (Version: 2 - Rikoooo)

NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden

NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)

NVIDIA 3D Vision Driver 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.35 - NVIDIA Corporation)

NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)

NVIDIA Graphics Driver 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.35 - NVIDIA Corporation)

NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)

OpenAL (HKLM-x32\...\OpenAL) (Version:  - )

OpenOffice 4.1.4 (HKLM-x32\...\{5E9128B1-0AB8-40F5-9F71-69089C490855}) (Version: 4.14.9788 - Apache Software Foundation)

Opera Stable 63.0.3368.71 (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\Opera 63.0.3368.71) (Version: 63.0.3368.71 - Opera Software)

P-3C Orion V3.31 (HKLM\...\{CE6DA500-D22D-4DDF-BE50-4ECFB65FE06E}) (Version: 2 - Team FS KBT)

PA32R SARATOGA SP FSX (HKLM-x32\...\PA32R SARATOGA SP FSX) (Version: 1.00.00.00 - Carenado)

PA34 200T SENECA II FSX (HKLM-x32\...\PA34 200T SENECA II FSX) (Version: 1.00.00.00 - Carenado)

PC-6 Patrouille Suisse Repaint FSX (HKLM-x32\...\{ECE6D6DA-42E3-4D54-A196-356A101E6BD2}) (Version: 1.0.0.0 - Design fuer Flugsimulation)

Phuket International Airport for FSX (HKLM-x32\...\PhuketIntFSX_is1) (Version: 1.0.0.0 - SimMarket)

QualityWings Ultimate 146 Collection FSX (HKLM-x32\...\QualityWings Ultimate 146 Collection FSX) (Version:  - )

RAZBAM LTV A-7 E & D Corsair II Volume I (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\RAZBAM LTV A-7 E & D Corsair II Volume I) (Version:  - )

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.)

REX File Transfer Manager (HKLM-x32\...\{B60F3334-ED72-4F7B-945E-22FF8E401E8A}) (Version: 1.10.2016.1111 - REX Game Studios, LLC.)

SAAB 91 Safir X 3.0.2 (HKLM-x32\...\{971F7265-110A-4A7E-A159-3DB0A3CE4C63}_is1) (Version: 3.0.2 - SibWings lab)

Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)

Samui International Airport for FSX (HKLM-x32\...\SamuiInternationalAirport_is1) (Version:  - SimMarket)

SBD Dauntless FSX (HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\SBD Dauntless FSX) (Version:  - )

SBGL v1.1.2 for FSX (HKLM\...\{B88C0221-3BC4-4256-B241-AC1627541B93}) (Version: 1.1.2 - BluePrint Simulations)

SimObject Display Engine (HKLM-x32\...\{CF01DDCE-487C-40D1-A798-BE842515661D}) (Version: 1.5.3 - 12bPilot)

Skydesigners - LFTZ Saint-Tropez La Mole Airport (HKLM-x32\...\FSX_SKYDESIGNERS_LFTZ_SAINT_TROPEZ_LA_MOLE_is1) (Version: 1.0.0.0 - SimMarket)

SOD Dragoneye HK v2 (HKLM-x32\...\SOD_DRAGONEYE_HK_V2_is1) (Version: 1.0.0.0 - SimMarket)

TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.75813 - TeamViewer)

True Iot Pocket WiFi Play 1 (HKLM-x32\...\{AEFF9E60-3E93-41EE-9895-311F7D1C5FFD}) (Version: 1.0.0.2 - )

UKMIL Buccaneer S2 PACKAGE FSX & P3D (HKLM\...\{A1BA46E2-9D56-4DDC-93E7-EBAE79BF4214}) (Version: 1 - UKMIL)

Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden

UpdateYeti (HKLM-x32\...\UpdateYeti_is1) (Version: 2.45 - Abelssoft)

Vickers Viking for FSX (HKLM-x32\...\{74DEA96E-53A5-4616-A267-71A714A10840}) (Version: 1.00.0000 - Jens B. Kristensen)

VIIN-FSX 2.0 (HKLM-x32\...\{7BB15D3A-377E-4D84-8527-531805A82C91}_is1) (Version:  - Philippe PENOT)

VIRTUALI Addon ManagerX FSX (HKLM-x32\...\VIRTUALI Addon ManagerX FSX_is1) (Version: 3.1.0.1 - VIRTUALI Sagl)

VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)

WinPcap for Avira 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Domotz, Inc)

WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)

World of Tanks (HKLM-x32\...\World of Tanks) (Version:  - )

World Of Warships (HKLM-x32\...\World Of Warships) (Version:  - )

Your Uninstaller! 7 (HKLM-x32\...\YU2010_is1) (Version: 7.4.2012.5 - URSoft, Inc.)
 

Packages:

=========

Mail und Kalender -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-09-10] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]

Microsoft News – Nachrichten -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.12124.0_x64__8wekyb3d8bbwe [2019-09-10] (Microsoft Corporation) [MS Ad]

Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2019-09-09] (Microsoft Studios) [MS Ad]

MSN Finanzen -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-09-10] (Microsoft Corporation) [MS Ad]

MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-09-10] (Microsoft Corporation) [MS Ad]

MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-09-09] (Microsoft Corporation) [MS Ad]
 

==================== Custom CLSID (Whitelisted): ==========================
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File

ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2019-03-01] (Artem Izmaylov -> AIMP DevTeam)

ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson) [File not signed]

ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2015-10-12] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {ef263503-8f0e-3e6a-ae2e-fe0b4b441d52} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-01-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-10-01] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-10-01] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2015-10-12] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2019-03-01] (Artem Izmaylov -> AIMP DevTeam)

ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)

ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {3d52b24d-33bb-3895-99ea-a0156f24a3f9} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-01-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)

ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {cefaf456-bc17-3f4b-b7d9-75070925911b} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-01-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-10-01] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-10-01] (win.rar GmbH -> Alexander Roshal)
 

==================== Shortcuts & WMI ========================
 

(The entries could be listed to be restored or removed.)
 
 

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Pilatus PC-7 V2.0 FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\North American F-86 EF Sabre FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\North American F-86 EF Sabre FSX\www.sectionf8.com.lnk -> hxxp://www.sectionf8.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Lockheed L-1049H Super Constellation FSX\calclassic.proboards55.com.lnk -> hxxp://calclassic.proboards55.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Lockheed L-1049H Super Constellation FSX\www.calclassic.com.lnk -> hxxp://www.calclassic.com

Shortcut: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Lockheed L-1049H Super Constellation FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com
 

ShortcutWithArgument: C:\Users\MSI_USER\Documents\DESKTOP\ARCHIV 1\Shared WiFi 3.lnk -> C:\Program Files (x86)\Hostless Modem\Shared WiFi 3\LaunchWebUI.exe () -> hxxp://m.home

ShortcutWithArgument: C:\Users\MSI_USER\Desktop\PROGRAMM Verknüpfungen\True Iot Pocket WiFi Play 1.lnk -> C:\Program Files (x86)\True Iot Pocket WiFi Play 1\True Iot Pocket WiFi Play 1\LaunchWebUI.exe () -> hxxp://192.168.0.1

ShortcutWithArgument: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World Of Warships\World Of Warships.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://cpm.wargaming.net/l4k6lc56/?pub_id=100

ShortcutWithArgument: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks\World of Tanks.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://cpm.wargaming.net/3ebs472f/?pub_id=100

ShortcutWithArgument: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\World of Tanks.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://cpm.wargaming.net/3ebs472f/?pub_id=100

ShortcutWithArgument: C:\Users\MSI_USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\World Of Warships.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://cpm.wargaming.net/l4k6lc56/?pub_id=100
 

==================== Loaded Modules (Whitelisted) ==============
 

2019-01-14 21:21 - 2017-05-22 18:12 - 001172992 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\_libastro.pyd

2019-01-14 21:21 - 2016-06-13 12:01 - 000032768 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\alut.dll

2019-01-14 21:21 - 2017-05-22 18:12 - 000014336 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\winsound.pyd

2019-01-14 21:21 - 2017-05-29 19:45 - 001054208 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_controls_.pyd

2019-01-14 21:21 - 2017-05-29 19:46 - 001152512 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_core_.pyd

2019-01-14 21:21 - 2017-05-29 19:46 - 000780288 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_gdi_.pyd

2019-01-14 21:21 - 2017-05-29 19:46 - 000725504 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_misc_.pyd

2019-01-14 21:21 - 2017-05-29 19:46 - 000805888 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_windows_.pyd

2019-01-14 21:21 - 2017-05-29 19:45 - 000153600 _____ () [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\_xrc.pyd

2017-12-03 15:16 - 2017-12-03 15:11 - 048920064 _____ () [File not signed] C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll

2016-08-04 11:33 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\Live Update\unrar.dll

2017-02-23 22:46 - 2016-08-19 08:39 - 000019968 _____ () [File not signed] E:\FSX NEW\d3dx10_34.dll

2017-02-23 22:46 - 2016-08-19 08:39 - 000562688 _____ () [File not signed] E:\FSX NEW\dx10fixerlib.DLL

2017-02-23 22:46 - 2016-08-19 08:38 - 000007168 _____ () [File not signed] E:\FSX NEW\dx10SharedLib.dll

2006-04-30 04:20 - 2019-03-11 20:32 - 000040960 _____ () [File not signed] E:\FSX NEW\GaugeSound.DLL

2019-03-22 13:50 - 2010-06-04 11:51 - 000023552 _____ () [File not signed] E:\FSX NEW\MD80.dll

2017-02-03 17:06 - 2012-09-13 09:22 - 000603648 _____ () [File not signed] E:\FSX NEW\Modules\A2A_Feel.dll

2017-02-03 17:06 - 2012-08-14 09:16 - 000190976 _____ () [File not signed] E:\FSX NEW\Modules\AccuFeelMenu.dll

2011-08-29 09:14 - 2010-10-27 14:08 - 000352256 _____ () [File not signed] E:\FSX NEW\ORBX\FTX_NA\FTX_AA_1WA6\Scenery\ObjectFlow_1WA6.dll

2015-09-05 15:05 - 2015-09-05 15:05 - 000255760 _____ (Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\FRAPS32.DLL

2015-09-05 15:11 - 2015-09-05 15:11 - 000102160 _____ (Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\fraps64.dat

2015-09-05 15:05 - 2015-09-05 15:05 - 000215824 _____ (Beepa Pty Ltd -> Beepa P/L) [File not signed] C:\Fraps\fraps64.dll

2013-02-23 11:47 - 2013-02-23 11:47 - 000166400 _____ (Brice Lambson) [File not signed] C:\Program Files\Image Resizer for Windows\ShellExtensions.dll

2015-06-23 16:00 - 2015-06-23 16:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll

2015-06-23 16:00 - 2015-06-23 16:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll

2006-04-30 04:22 - 2006-04-28 01:20 - 000015872 _____ (MeatWater) [File not signed] E:\FSX NEW\GAUGES\hs748_altcall.GAU

2019-09-11 11:00 - 2019-09-11 11:00 - 000037888 _____ (Microsoft Corp.) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.flightsimulator.simconnect_67c7c14424d61b5b_10.0.60905.0_none_dd92b94d8a196297\SimConnect.dll

2019-09-11 11:01 - 2019-09-11 11:01 - 000045568 _____ (Microsoft Corp.) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.flightsimulator.simconnect_67c7c14424d61b5b_10.0.61259.0_none_55f5ecdc14f60568\SimConnect.dll

2007-09-26 16:08 - 2016-08-09 15:26 - 000262720 _____ (Microsoft Corporation -> Microsoft Corp.) [File not signed] E:\FSX NEW\ai_player.dll

2019-09-11 11:01 - 2019-09-11 11:01 - 001233920 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9818.0_none_b7e811947b297f6d\MSXML4.DLL

2019-09-11 11:02 - 2019-09-11 11:02 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL

2019-09-11 11:02 - 2019-09-11 11:02 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80DEU.DLL

2019-01-14 21:21 - 2014-05-23 23:21 - 000110592 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\OpenAL32.dll

2019-01-14 21:21 - 2017-05-22 17:15 - 002826752 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\python27.dll

2019-01-11 13:59 - 2019-01-11 13:59 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\AVG\Secure VPN\libcrypto-1_1.dll

2019-01-14 21:21 - 2017-05-29 19:13 - 000161792 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxbase30u_net_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:13 - 002119680 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxbase30u_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:13 - 000138752 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxbase30u_xml_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:12 - 001296384 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxmsw30u_adv_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:12 - 004821504 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxmsw30u_core_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:12 - 000600576 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxmsw30u_html_vc_custom.dll

2019-01-14 21:21 - 2017-05-29 19:13 - 000685568 _____ (wxWidgets development team) [File not signed] C:\Program Files (x86)\Addon Manager\couatl\wx\wxmsw30u_xrc_vc_custom.dll
 

==================== Alternate Data Streams (Whitelisted) =========
 

(If an entry is included in the fixlist, only the ADS will be removed.)
 

AlternateDataStreams: C:\ProgramData\TEMP:00934A10 [119]
 

==================== Safe Mode (Whitelisted) ===================
 

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 

==================== Association (Whitelisted) ===============
 

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 

==================== Internet Explorer trusted/restricted ===============
 

(If an entry is included in the fixlist, it will be removed from the registry.)
 

IE trusted site: HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\localhost -> localhost

IE trusted site: HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\webcompanion.com -> hxxp://webcompanion.com
 

==================== Hosts content: ===============================
 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 

2016-01-17 07:08 - 2017-11-26 22:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
 
 

==================== Other Areas ============================
 

(Currently there is no automatic fix for this section.)
 

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\MSI_USER\Desktop\Screenshot (718).png

DNS Servers: 192.168.0.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)

Windows Firewall is enabled.
 

==================== MSCONFIG/TASK MANAGER disabled items ==
 

If an entry is included in the fixlist, it will be removed.
 

HKLM\...\StartupApproved\StartupFolder: => "Killer Network Manager.lnk"

HKLM\...\StartupApproved\StartupFolder: => "AVG Secure VPN.lnk"

HKLM\...\StartupApproved\Run: => "MouseDriver"

HKLM\...\StartupApproved\Run: => "IAStorIcon"

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"

HKLM\...\StartupApproved\Run: => "iTunesHelper"

HKLM\...\StartupApproved\Run: => "AvgUi"

HKLM\...\StartupApproved\Run: => ""

HKLM\...\StartupApproved\Run32: => "Live Update"

HKLM\...\StartupApproved\Run32: => "Fast Boot"

HKLM\...\StartupApproved\Run32: => "USB Security"

HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"

HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"

HKLM\...\StartupApproved\Run32: => "adm_tray.exe"

HKLM\...\StartupApproved\Run32: => ""

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_566FF74826DC815D3E0370C0C29D28A3"

HKU\S-1-5-21-465342472-1690862640-1647311925-1001\...\StartupApproved\Run: => ""
 

==================== FirewallRules (Whitelisted) ===============
 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

FirewallRules: [{9208FAA9-0163-4B5E-A61C-EAE4EFA5FACE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{D486A7DF-14E8-4D6D-A099-21F4E181F692}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{58807947-972A-40FB-B5FA-3C769A23188D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{835D8980-3FD3-4964-8F5D-38FFB6B4F720}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{B36547AA-23EB-4519-B675-5E46358D89A7}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{44049211-AF23-45BE-AF75-B57891FE767C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{D0600634-EC89-4EA2-83DD-7050B581442A}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{321B4731-9F33-45C4-9570-492F76EDC55F}] => (Allow) C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

FirewallRules: [{DABE951A-3DC7-459F-97ED-242EBEEE1921}] => (Allow) C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

FirewallRules: [{39E29475-840C-4BF4-A4E0-A829B63F8B11}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{64512AB7-358E-425D-8BCF-D9C42FD5143A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{9FF215F6-D147-45E6-AB6B-B7C9F4347513}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{EB2FE336-FA97-441B-BF9B-6067BCDC7ECE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{A38878EB-4321-41F8-A73A-A96D103DE4C4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{8B54F2F5-9799-473C-9BB3-90EF6121299B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{1E8A2B2B-CF82-4D4F-BDA7-BE836C3472C5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{5DF56E8C-6A83-4F27-A434-2054E29B809B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{A5B5CF15-232A-4360-86FF-B612C302ACBD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{4DB5F2DC-1688-41EC-9CA2-2C5257F5B36A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{0DB6C35C-3BCB-4070-A309-EFBA91EDFA41}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{694024F0-FC8F-4EFF-97AC-4118E714BC82}] => (Allow) C:\Users\MSI_USER\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [File not signed]

FirewallRules: [TCP Query User{829D104F-3C9B-4B6B-ADFA-06C026871431}C:\users\msi_user\appdata\local\microsoft\onedrive\onedrive.exe] => (Allow) C:\users\msi_user\appdata\local\microsoft\onedrive\onedrive.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [UDP Query User{DFC29034-E9F3-45B6-8F27-9E2A7955E4C4}C:\users\msi_user\appdata\local\microsoft\onedrive\onedrive.exe] => (Allow) C:\users\msi_user\appdata\local\microsoft\onedrive\onedrive.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{CE46208A-95D0-450B-A93E-F52D0F1B6BD9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{5983E1B5-3E16-48D8-A231-BF17AEB2ECD6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{5E30314C-6F6A-4E69-A6B2-9E107EE62A59}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{9057A54A-205D-4A2F-BEC2-5E831CEAA8A8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{44F68DD6-4711-407C-B159-4E93E368FB6A}] => (Allow) C:\Windows\KMS-R@1n.exe No File

FirewallRules: [{CAB9E442-65BC-4D26-8321-F64D3DE1A0D3}] => (Allow) C:\Windows\KMS-R@1n.exe No File

FirewallRules: [{644DFFF6-0CA1-418F-A4AF-15D1D38281F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

FirewallRules: [{ED0163DE-D60B-4E7A-9C22-5274810820F1}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

FirewallRules: [{AEE0650C-C4FF-47F2-BC2D-402A1704D5F3}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

FirewallRules: [{35F1D0C3-F270-44D5-9F61-0F7A1EBFF6EA}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
 

==================== Restore Points =========================
 

ATTENTION: System Restore is disabled (Total:117.34 GB) (Free:22.55 GB) (19%)
 

==================== Faulty Device Manager Devices =============
 

Name: AVG TAP Adapter v3

Description: AVG TAP Adapter v3

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: TAP-Windows Provider V9

Service: avgTap

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (09/14/2019 09:43:06 AM) (Source: AviraOptimizerHost) (EventID: 0) (User: )

Description: Event-ID 0
 

Error: (09/14/2019 09:42:31 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkQuarantineRetry
 

Error: (09/14/2019 09:42:31 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
 

Error: (09/14/2019 09:26:10 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
 

Error: (09/14/2019 08:48:23 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT-AUTORITÄT)

Description: Die erforderliche Puffergröße ist größer als die an die Collect-Funktion der DLL für erweiterbare Leistungsindikatoren "C:\Windows\System32\perfts.dll" für den Dienst "LSM" übergebene Größe. Die Puffergröße war 24848, und die erforderliche Größe betrug 31568.
 

Error: (09/14/2019 08:15:37 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=5
 

Error: (09/13/2019 08:44:10 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT-AUTORITÄT)

Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\sysmain.dll" nicht laden (Win32-Fehlercode 126).
 

Error: (09/13/2019 08:43:43 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:

hr=0xC004F074

Befehlszeilenargumente:

RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=TimerEvent
 
 

System errors:

=============

Error: (09/14/2019 09:46:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Der Dienst "KMS-R@1n" wurde aufgrund folgenden Fehlers nicht gestartet: 

Das System kann die angegebene Datei nicht finden.
 

Error: (09/14/2019 09:42:32 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TUSRUQC)

Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/14/2019 09:42:32 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TUSRUQC)

Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/14/2019 09:42:32 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TUSRUQC)

Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/14/2019 09:42:32 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TUSRUQC)

Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/14/2019 09:42:32 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TUSRUQC)

Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/14/2019 09:42:32 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TUSRUQC)

Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 

Error: (09/14/2019 09:42:32 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TUSRUQC)

Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
 
 

==================== Memory info =========================== 
 

BIOS: American Megatrends Inc. V10.7 05/18/2015

Motherboard: MSI Z87-G43 GAMING (MS-7816)

Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz

Percentage of memory in use: 70%

Total physical RAM: 8135.94 MB

Available physical RAM: 2393.82 MB

Total Virtual: 10055.94 MB

Available Virtual: 2300.05 MB
 

==================== Drives ================================
 

Drive c: () (Fixed) (Total:117.34 GB) (Free:22.55 GB) NTFS

Drive d: (Local Disk) (Fixed) (Total:931.51 GB) (Free:405.15 GB) NTFS

Drive e: (Local Disk) (Fixed) (Total:1863.01 GB) (Free:622.03 GB) NTFS

Drive g: (KINGSTON) (Removable) (Total:14.4 GB) (Free:6.15 GB) FAT32
 

\\?\Volume{bd9540bb-66ec-4f88-be07-ad4807346eef}\ (Recovery) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS

\\?\Volume{215076cf-21c5-4152-afb9-d6dcf04b8403}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS

\\?\Volume{e0ef77ee-3d2a-4b7a-b517-03092a471ed4}\ () (Fixed) (Total:0.83 GB) (Free:0.34 GB) NTFS

\\?\Volume{22f94353-c4e4-485b-b85e-d1a572b21212}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (Size: 119.2 GB) (Disk ID: FADE989E)
 

Partition: GPT.
 

========================================================

Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1ED78F3D)

Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 

========================================================

Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 1ED78F3E)

Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
 

========================================================

Disk: 3 (Size: 14.4 GB) (Disk ID: 4E6F2201)

Partition 1: (Active) - (Size=14.4 GB) - (Type=0B)
 

==================== End of Addition.txt ============================

Wieso klatscht du dein System derartig mit diesem Schlangenöl voll? :wtf:
Merkst du das nicht, dass Avira und AVG nichts bringen? Und dass eh kein Virenscanner alles erkennen kann? Und niemals niemals niemals installiert man so einen Müll wie Avira und AVG gleichzeitig!

Deinstalliere also diesen und weiteren unnötigen oder veralteten Krempel:

Adobe Acrobat Reader DC
AVG
AVG Driver Updater
AVG PC TuneUp
AVG Secure VPN
Avira
Avira Antivirus
Avira Phantom VPN
Avira Privacy Pal
Avira Safe Shopping
Avira Software Updater
Avira System Speedup
CCleaner
OpenOffice 4.1.4
TeamViewer 12

Hallo Cosinus,
mein PC hat kein Schlangenöl mehr...