1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Solved Win32:relevant-AB(PUP)

Discussion in 'Virus & Other Malware Removal' started by Robm1955, Nov 30, 2018.

Thread Status:
Not open for further replies.
Advertisement
  1. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    I run AVG antivirus free on my system, this morninng, I have a message that I can't get rid of, telling me that pmropn32.exe was moved to quarantine because it was invected with Win32:Relevant-AB[PUP]. I found instructions on removing this, but I can't find it on my system. Apparently, it's not potentially dangerous, but the annoying thing is the pop up from AVG that won't go away. There's a button which says upgrade your protection, but when I press it, the pop up closes, and takes me to another, to upgrade the software, then the pop up comes back again. It's a vicious circle.
    Here are my system details

    Tech Support Guy System Info Utility version 1.0.0.4
    OS Version: Microsoft Windows 10 Home, 64 bit
    Processor: AMD FX(tm)-8350 Eight-Core Processor, AMD64 Family 21 Model 2 Stepping 0
    Processor Count: 8
    RAM: 7661 Mb
    Graphics Card: ATI Radeon 3000 Graphics, 512 Mb
    Hard Drives: C: 930 GB (460 GB Free); Z: 1863 GB (1226 GB Free);
    Motherboard: Gigabyte Technology Co., Ltd., GA-78LMT-USB3 6.0
    Antivirus: Windows Defender, Disabled
     
  2. Joeicam

    Joeicam Malware Trainee

    Joined:
    Oct 11, 2017
    Messages:
    193
    Hello Robm1955, and welcome to Tech Support Guy

    My name is Joeicam :), you can call me Joe, and I will be assisting you every step of the way.

    Please Note: I am still in training and my fixes have to be approved by my instructor, so there may be a slight delay in my replies. Look at it as a good thing though, since you have two people looking at your problem.

    If you have any questions or comments, or aren't quite sure about what to do, STOP AND ASK.

    Before we begin, please familiarize yourself with the following:
    • Back up your files and folders, as sometimes malware infections can be severe. It's a good habit to plan for the worst.
    • Please follow my instructions exactly, and do not repeat any steps more than once, unless instructed.
    • Copy/Paste entire contents of your logs, and submit inside your post, instead of submitting as an attachment, unless told otherwise.
    • If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed.
    Finally:
    • As malware removal can be a complicated, multistep process, you should stick with me until I declare your system to be clean of all threats. It may seem like your system is running properly, but that does not mean that the infection is completely gone.
    • You must reply to this post within four days, if you do not, then the topic will be closed.
    • However, if you need more time to run the tools and fixes, or would like your topic to be reopened, please PM me or any Moderator to reactivate your topic.

    If I have not responded to your post within 24 hours, then send me a private message (PM).
    Otherwise, all communication is done in the forums.


    Let's get to work! :)

    ____________________________________________________________________________________________________

    The fixes presented are specific to your problem and should only be used for the issue on this machine!
    ____________________________________________________________________________________________________

    Step 1 of 1: FRST Scan

    Please download Farbar Recovery Scan Tool and save it to your Desktop.

    Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
    • Right click to run as administrator. When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will produce logs called FRST.txt and Addition.txt in the same directory the tool is run from.
    • Please copy and paste the logs back here.

    ===============================================

    When you reply to me, I need to see:
    • Any questions/concerns you might have, or if you were not able to complete any of the steps above
    • The copied and pasted results of the FRST.txt and Addition.txt logs
     
  3. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    Hi Joeicam. I have since replaced AVG with AVAST, and I am not getting the pop ups any more. However, I think it would be a good idea to follow your advice, and see what comes up. I will follow your instructions, and post log results.
     
  4. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    Unable to post the logs, as they are more than 1000 characters.
     
  5. Joeicam

    Joeicam Malware Trainee

    Joined:
    Oct 11, 2017
    Messages:
    193
    Please post the logs in separate posts . For example, post as much as you can in one, then in the next finish with the remaining lines.
     
  6. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01.12.2018 01
    Ran by user (administrator) on HOME-PC (02-12-2018 09:26:26)
    Running from C:\Users\user\Desktop
    Loaded Profiles: user (Available Profiles: user)
    Platform: Windows 10 Home Version 1803 17134.407 (X64) Language: English (United Kingdom)
    Internet Explorer Version 11 (Default browser: FF)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (Two Pilots) C:\Windows\VPDAgent_x64.exe
    () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
    (FreeDownloadManager.org) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe
    (AMD) C:\Windows\System32\atiesrxx.exe
    (AMD) C:\Windows\System32\atieclxx.exe
    (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    () C:\Program Files (x86)\AnyDesk\AnyDesk.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe
    () C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
    (McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
    (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
    (Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
    (LULU Software) C:\Program Files\Soda PDF Desktop 10\updater-ws.exe
    (Remote Utilities LLC) C:\Program Files (x86)\Remote Utilities - Host\rutserv.exe
    (SafeNet, Inc) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
    (SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
    (pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
    (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    (SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
    (© pdfforge GmbH.) C:\Program Files (x86)\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
    (Sony) C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
    (AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe
    () C:\Program Files (x86)\PureVPN\PureVPNService.exe
    (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
    (PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
    (Ellp) C:\Program Files\Ellp\ellp_service.exe
    (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
    (McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe
    (Remote Utilities LLC) C:\Program Files (x86)\Remote Utilities - Host\rfusclient.exe
    (Remote Utilities LLC) C:\Program Files (x86)\Remote Utilities - Host\rfusclient.exe
    (LULU Software) C:\Program Files\Soda PDF Desktop 10\ws.exe
    (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
    (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
    (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
    (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeApp.exe
    () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
    (Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\Hub.exe
    (AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
    (Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe
    (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
    (AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
    (Graphic Tablet Company Shenzhen) C:\PenTabletDriver\TabletDriver.exe
    () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
    (Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
    (Sony) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe
    (Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
    (FreeDownloadManager.org) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe
    (Cisco) C:\Users\user\AppData\Local\Cisco\VideoGuardPlayer\VideoGuardMonitor\CiscoVideoGuardMonitor.exe
    (Spotify Ltd) C:\Users\user\AppData\Roaming\Spotify\SpotifyWebHelper.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
    (Apowersoft Ltd.) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe
    (AntGROUP) C:\Program Files (x86)\Ant Download Manager\antMR.exe
    (AntGROUP) C:\Program Files (x86)\Ant Download Manager\AntDM.exe
    (Apeaksoft) C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\Screen Recorder.exe
    (VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmservice.exe
    (Almeza Company) C:\Users\user\Documents\LeaderTask\LeaderTask.exe
    (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    () C:\Program Files (x86)\AnyDesk\AnyDesk.exe
    (Logitech Inc.) C:\Program Files (x86)\Squeezebox\SqueezeTray.exe
    () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
    (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
    (AimerSoft) C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    (CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Vimicro Corporation) C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe
    (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
    (Apowersoft Ltd.) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe
    (Apowersoft Ltd.) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe
    (Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
    (Logitech Inc.) C:\Program Files (x86)\Squeezebox\server\SqueezeSvr.exe
    () C:\Program Files (x86)\Apowersoft\ApowerManager\ApowersoftAndroidDaemon.exe
    (Apowersoft) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe
    (IObit) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\Pub\PubMonitor.exe
    (Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
    (Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
    (Plex) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
    (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
    (Microsoft Corporation) C:\Windows\splwow64.exe
    (CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
    (VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmropn.exe
    (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
    (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
    (VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmropn64.exe
    (VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmropn32.exe
    () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    () C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.49.0_x64__xns73kv1ymhp2\AudibleRT.WindowsPhone.exe
    () C:\Program Files (x86)\PureVPN\purevpn.exe
    (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (AntGROUP) C:\Program Files (x86)\Ant Download Manager\antFF\antFF.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    () C:\Program Files (x86)\PureVPN\Dns\DnsLeakProtector.exe
    (LeaderTask LLC) C:\Users\user\Documents\LeaderTask\WebSync\LeaderTaskSync.exe
    (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
     
  7. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    Chrome:
    =======
    CHR DefaultProfile: Default
    CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms}
    CHR DefaultSearchKeyword: Default -> Adaware Secure
    CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2018-12-02]
    CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-04]
    CHR Extension: (DLHelper) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dalgiebmfcjackkbjfbfmlnflbdfbekj [2018-11-21]
    CHR Extension: (Allavsoft video downloader converter) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhancbnhabhandieicagelcddkdfgoif [2018-08-28]
    CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-12-01]
    CHR Extension: (McAfee® WebAdvisor) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-10-17]
    CHR Extension: (Chrome Remote Desktop) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2018-10-17]
    CHR Extension: (Avast Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-11-30]
    CHR Extension: (Chrome Remote Desktop) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2018-10-17]
    CHR Extension: (Chrome Web Store Payments) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-30]
    CHR Extension: (Spotify ✪ Deezer Music Downloader) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oefdcdmhklplgdmendjfnjeiijgcmabi [2018-10-17]
    CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-04]
    CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-17]
    CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
    CHR HKLM\...\Chrome\Extension: [pcahildbjonlnmkfcdeiglkeodeijdco] - hxxps://clients2.google.com/service/update2/crx
    CHR HKU\S-1-5-21-1077736426-23431034-3860886319-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dalgiebmfcjackkbjfbfmlnflbdfbekj] - C:\Program Files (x86)\Ant Download Manager\antCH\antCH.crx [2018-06-14]
    CHR HKLM-x32\...\Chrome\Extension: [dhancbnhabhandieicagelcddkdfgoif] - C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.16.1.6790\BVDChromeExt.crx [2018-08-20]
    CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [pcahildbjonlnmkfcdeiglkeodeijdco] - hxxps://clients2.google.com/service/update2/crx

    ==================== Services (Whitelisted) ====================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R2 Agent; C:\WINDOWS\VPDAgent_x64.exe [164368 2017-03-26] (Two Pilots)
    R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [1738952 2017-03-20] ()
    R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [8188768 2018-11-30] (AVAST Software)
    S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-11-30] (AVAST Software)
    R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [324000 2018-11-30] (AVAST Software)
    S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-11-30] (AVAST Software)
    S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2018-11-30] (AVAST Software)
    R2 AvidHubService; C:\Program Files\Avid\Cloud Client Services\Hub.exe [2249992 2017-05-23] (Avid Technology, Inc.)
    R2 AvidTransportClient; C:\Program Files\Avid\Cloud Client Services\TransportClient.exe [6663944 2017-05-23] (Avid Technology, Inc.)
    R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe [73048 2018-10-18] (Google Inc.)
    S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-25] (Dropbox, Inc.)
    S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-25] (Dropbox, Inc.)
    R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2018-11-28] (Dropbox, Inc.)
    R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] ()
    R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [675736 2018-09-07] (McAfee, Inc.)
    S3 OpenVpnService; C:\Program Files (x86)\PureVPN\bin\openvpnserv2.exe [15872 2016-11-24] ( ) [File not signed]
    S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2709176 2017-07-05] (pdfforge GmbH)
    S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [1051312 2017-07-05] (pdfforge GmbH)
    R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [859312 2017-07-05] (pdfforge GmbH)
    R2 PDF Architect 5 Manager; C:\Program Files (x86)\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (© pdfforge GmbH.)
    R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2241512 2018-09-21] (Plex, Inc.)
    R2 PremierOpinion; C:\Program Files (x86)\PremierOpinion\pmservice.exe [168704 2018-10-17] (VoiceFive, Inc.) <==== ATTENTION
    S2 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [47368 2018-04-26] ()
    R2 PureVPNService; C:\Program Files (x86)\PureVPN\PureVPNService.exe [105736 2018-11-12] ()
    R2 RManService; C:\Program Files (x86)\Remote Utilities - Host\rutserv.exe [9956368 2017-08-29] (Remote Utilities LLC)
    R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [328344 2018-07-09] (Sandboxie Holdings, LLC)
    R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [376832 2013-01-09] (SafeNet, Inc.) [File not signed]
    R2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1259872 2013-01-09] (SafeNet, Inc)
    R2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc.)
    R3 Soda PDF Desktop 10; C:\Program Files\Soda PDF Desktop 10\ws.exe [2452296 2018-08-28] (LULU Software)
    R2 Soda PDF Desktop 10 Update Service; C:\Program Files\Soda PDF Desktop 10\updater-ws.exe [1678152 2018-08-28] (LULU Software)
    S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software) [File not signed]
    S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
    R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7757552 2018-02-26] (TeamViewer GmbH)
    R2 vToolbarUpdater40.3.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [1371136 2018-03-22] (AVG Secure Search)
    S2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25888 2018-09-21] ()
    S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-08-22] (Microsoft Corporation)
    S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-08-22] (Microsoft Corporation)
    R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [811520 2018-03-22] ()
    R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2202112 2017-04-13] (Sony) [File not signed]
    R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation [X]
     
  8. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    ===================== Drivers (Whitelisted) ======================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R0 amdide64; C:\WINDOWS\System32\drivers\amdide64.sys [13848 2017-12-02] (Advanced Micro Devices Inc.)
    R1 AppleCharger; C:\WINDOWS\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] ()
    R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [201240 2018-11-30] (AVAST Software)
    R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [230344 2018-11-30] (AVAST Software)
    R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201768 2018-11-30] (AVAST Software)
    R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346592 2018-11-30] (AVAST Software)
    R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59496 2018-11-30] (AVAST Software)
    R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-11-30] (AVAST Software)
    R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239840 2018-11-30] (AVAST Software)
    S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46384 2018-11-30] (AVAST Software)
    R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2018-11-30] (AVAST Software)
    R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [163208 2018-11-30] (AVAST Software)
    R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111800 2018-11-30] (AVAST Software)
    R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87432 2018-11-30] (AVAST Software)
    R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1028680 2018-11-30] (AVAST Software)
    R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469272 2018-11-30] (AVAST Software)
    R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [208472 2018-11-30] (AVAST Software)
    R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380464 2018-11-30] (AVAST Software)
    R1 cgnetfilter1521; C:\WINDOWS\System32\drivers\cgnetfilter1521.sys [84768 2017-03-22] (Windows (R) Win 7 DDK provider)
    S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2018-01-22] (Samsung Electronics Co., Ltd.)
    R1 dokan1; C:\WINDOWS\System32\DRIVERS\dokan1.sys [102376 2017-11-28] (Dokan Project)
    S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-05-27] ()
    R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-12-02] (REALiX(tm))
    R3 Leawo_VAD; C:\WINDOWS\system32\drivers\leawo_vad.sys [44096 2017-09-18] (Shenzhen Moyea Software)
    S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [21208 2013-02-25] ()
    R3 mfesapsn; C:\Program Files\McAfee\WebAdvisor\mfesapsn.sys [111976 2018-09-07] (McAfee, Inc.)
    R3 MonitorFunction; C:\WINDOWS\System32\drivers\lockscr.sys [15904 2017-03-27] ()
    R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2015-08-21] (Riverbed Technology, Inc.)
    S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] ()
    S1 RrNetCapFilterDriver; C:\WINDOWS\system32\DRIVERS\RrNetCapFilterDriver.sys [34608 2016-04-25] (Audials AG)
    R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1010648 2017-12-02] (Realtek )
    R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [228176 2018-07-09] (Sandboxie Holdings, LLC)
    R2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc.)
    S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
    S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
    S1 UsbCharger; C:\WINDOWS\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] ()
    R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [19504 2016-01-13] (Windows (R) Win 7 DDK provider)
    S3 VMUVC; C:\WINDOWS\System32\Drivers\VMUVC.sys [198400 2009-03-11] (Vimicro Corporation)
    S3 vvftUVC; C:\WINDOWS\system32\drivers\vvftUVC.sys [303616 2008-07-01] (Vimicro Corporation)
    S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46584 2018-08-22] (Microsoft Corporation)
    S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [340008 2018-08-22] (Microsoft Corporation)
    S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (MBB)
    S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-08-22] (Microsoft Corporation)
    S3 WsAudioDevice_383; C:\WINDOWS\system32\drivers\VirtualAudio.sys [31080 2015-02-11] (Wondershare)
    U1 aswbdisk; no ImagePath
    S3 cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [X]

    ==================== NetSvcs (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


    ==================== One Month Created files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2018-12-02 09:26 - 2018-12-02 09:28 - 000039264 _____ C:\Users\user\Desktop\FRST.txt
    2018-12-02 09:26 - 2018-12-02 09:26 - 000000000 ____D C:\FRST
    2018-12-02 09:24 - 2018-12-01 14:00 - 002417152 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
    2018-12-01 16:50 - 2018-11-07 16:24 - 000001924 _____ C:\Users\user\Desktop\Kodi.lnk
    2018-12-01 16:30 - 2018-12-01 16:30 - 050020242 _____ C:\Users\user\Desktop\skin.aeon.nox.silvo-6.0.15 (Krypton).zip
    2018-12-01 16:17 - 2018-12-01 17:16 - 000000000 ____D C:\Users\user\Desktop\Robs Build
    2018-12-01 11:18 - 2018-11-29 02:29 - 000320024 _____ (Mozilla) C:\Users\user\Downloads\Firefox Installer.exe
    2018-12-01 11:11 - 2018-12-01 11:11 - 000000000 ____D C:\7thShareSave
    2018-12-01 10:46 - 2018-12-01 11:11 - 000000000 ____D C:\Users\user\AppData\Roaming\7thShareScreenRecorder
    2018-12-01 10:46 - 2018-12-01 10:46 - 000001475 _____ C:\Users\Public\Desktop\7thShare Screen Video Recorder.lnk
    2018-12-01 10:46 - 2018-12-01 10:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7thShare Screen Video Recorder
    2018-12-01 10:45 - 2018-12-01 10:45 - 000000000 ____D C:\Program Files (x86)\7thShare
    2018-11-30 12:56 - 2018-10-17 20:09 - 001114368 _____ (VoiceFive, Inc.) C:\WINDOWS\system32\pmls64.dl_
    2018-11-30 12:56 - 2018-10-17 20:09 - 000750848 _____ (VoiceFive, Inc.) C:\WINDOWS\SysWOW64\pmls.dl_
    2018-11-30 11:43 - 2018-11-30 12:37 - 000000000 ____D C:\WINDOWS\%LOCALAPPDATA%
    2018-11-30 11:31 - 2018-11-30 11:31 - 000002570 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
    2018-11-30 11:31 - 2018-11-30 11:31 - 000002535 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
    2018-11-30 11:29 - 2018-11-30 11:29 - 000003458 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA
    2018-11-30 11:29 - 2018-11-30 11:29 - 000003334 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore
    2018-11-30 11:28 - 2018-11-30 11:28 - 000000000 ____D C:\Program Files (x86)\AVAST Software
    2018-11-30 11:24 - 2018-11-30 11:24 - 000000000 ____D C:\Users\user\AppData\Roaming\AVAST Software
    2018-11-30 11:22 - 2018-11-30 13:02 - 000000000 ____D C:\Users\user\AppData\Local\AVAST Software
    2018-11-30 11:22 - 2018-11-30 11:22 - 000001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
    2018-11-30 11:22 - 2018-11-30 11:22 - 000001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
    2018-11-30 11:16 - 2018-11-30 11:16 - 000003990 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
    2018-11-30 11:11 - 2018-11-30 11:16 - 000239840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000469272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000380464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000378584 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
    2018-11-30 11:11 - 2018-11-30 11:09 - 000208472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000201240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000163208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000111800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000087432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000046384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
    2018-11-30 11:11 - 2018-11-30 11:09 - 000015360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
    2018-11-30 11:11 - 2018-11-30 11:08 - 001028680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
    2018-11-30 11:11 - 2018-11-30 11:07 - 000346592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
    2018-11-30 11:11 - 2018-11-30 11:07 - 000230344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
    2018-11-30 11:11 - 2018-11-30 11:07 - 000201768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
    2018-11-30 11:11 - 2018-11-30 11:07 - 000059496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
    2018-11-30 11:10 - 2018-11-30 11:10 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
    2018-11-30 11:06 - 2018-11-30 12:29 - 000000000 ____D C:\ProgramData\AVAST Software
    2018-11-30 11:06 - 2018-11-30 11:06 - 000000000 ____D C:\Program Files\AVAST Software
    2018-11-30 11:05 - 2018-11-15 14:42 - 007481664 _____ (AVAST Software) C:\Users\user\Downloads\avast_free_antivirus_setup_online_1.exe
    2018-11-30 11:00 - 2018-11-15 14:42 - 007481664 _____ (AVAST Software) C:\Users\user\Downloads\avast_free_antivirus_setup_online.exe
    2018-11-30 10:36 - 2018-11-30 10:36 - 000000000 ___HD C:\OneDriveTemp
    2018-11-30 10:24 - 2016-10-29 01:44 - 000748192 _____ (TechGuy, Inc.) C:\Users\user\Downloads\SysInfo.exe
    2018-11-29 19:57 - 2018-11-29 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
    2018-11-28 17:21 - 2018-11-28 17:43 - 000000000 ____D C:\Users\user\Desktop\Christmas
    2018-11-28 13:09 - 2018-11-28 13:09 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
    2018-11-28 13:09 - 2018-11-28 13:09 - 000047792 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
    2018-11-28 13:09 - 2018-11-28 13:09 - 000047792 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
    2018-11-28 13:09 - 2018-11-28 13:09 - 000045752 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
    2018-11-27 21:04 - 2018-11-27 21:04 - 000001502 _____ C:\Users\Public\Desktop\AnyMP4 Video Editor.lnk
    2018-11-27 21:04 - 2018-11-27 21:04 - 000000000 ____D C:\Users\user\AppData\Roaming\VideoFilters
    2018-11-27 21:04 - 2018-11-27 21:04 - 000000000 ____D C:\Users\user\AppData\Roaming\Transitions
    2018-11-27 21:04 - 2018-11-27 21:04 - 000000000 ____D C:\Users\user\AppData\Roaming\AudioFilters
    2018-11-27 21:04 - 2018-11-27 21:04 - 000000000 ____D C:\Users\user\AppData\Local\AnyMP4 Studio
    2018-11-27 21:04 - 2018-11-27 21:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyMP4
    2018-11-27 21:03 - 2018-11-27 21:03 - 000000000 ____D C:\ProgramData\AnyMP4 Studio
    2018-11-27 21:03 - 2018-11-27 21:03 - 000000000 ____D C:\Program Files (x86)\AnyMP4 Studio
    2018-11-24 10:07 - 2018-10-16 13:40 - 007651924 _____ C:\Users\user\Documents\Artisan Directory.pdf
    2018-11-23 09:53 - 2018-11-23 10:20 - 000000000 ____D C:\Users\user\AppData\Roaming\VideoProc
    2018-11-23 09:53 - 2018-11-23 09:53 - 000001223 _____ C:\Users\Public\Desktop\VideoProc.lnk
    2018-11-23 09:53 - 2018-11-23 09:53 - 000000000 ____D C:\Users\user\Documents\VideoProc
    2018-11-23 09:53 - 2018-11-23 09:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoProc
    2018-11-22 11:54 - 2018-11-22 11:54 - 000000000 ____D C:\ProgramData\pure_ovpn
    2018-11-22 11:53 - 2018-11-22 11:53 - 000000279 _____ C:\Users\user\AppData\Local\temp.bat
    2018-11-22 11:53 - 2018-11-22 11:53 - 000000000 ____D C:\Users\user\AppData\Local\purevpn
    2018-11-20 11:06 - 2018-11-20 11:06 - 000001052 _____ C:\Users\user\Desktop\VSDC Free Video Editor.lnk
    2018-11-20 11:06 - 2018-11-20 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro
    2018-11-20 11:04 - 2018-11-14 12:49 - 049888136 _____ (Flash-Integro LLC ) C:\Users\user\Downloads\video_editor_x64_1.exe
    2018-11-19 13:27 - 2018-11-19 13:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutOut 5
    2018-11-17 16:01 - 2018-11-16 23:00 - 000834960 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
    2018-11-17 16:01 - 2018-11-16 23:00 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
    2018-11-16 10:50 - 2018-11-16 10:50 - 000000000 ____D C:\Program Files\rempl
    2018-11-15 10:13 - 2018-11-15 10:13 - 000001174 _____ C:\Users\user\Desktop\Zortam Mp3 Media Studio.lnk
    2018-11-15 10:13 - 2018-11-15 10:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zortam
    2018-11-15 10:12 - 2018-11-15 10:13 - 000000000 ____D C:\Program Files (x86)\Zortam Mp3 Media Studio
    2018-11-14 11:24 - 2018-11-01 11:46 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
    2018-11-14 11:24 - 2018-11-01 11:45 - 004527776 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
    2018-11-14 11:24 - 2018-11-01 11:45 - 001617320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
    2018-11-14 11:24 - 2018-11-01 11:45 - 001376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
    2018-11-14 11:24 - 2018-11-01 11:31 - 006602240 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
    2018-11-14 11:24 - 2018-11-01 11:29 - 012710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
    2018-11-14 11:24 - 2018-11-01 11:28 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
    2018-11-14 11:24 - 2018-11-01 11:28 - 003649024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
    2018-11-14 11:24 - 2018-11-01 11:27 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
    2018-11-14 11:24 - 2018-11-01 11:26 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
    2018-11-14 11:24 - 2018-11-01 10:09 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
    2018-11-14 11:24 - 2018-11-01 09:59 - 005669888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
    2018-11-14 11:24 - 2018-11-01 09:56 - 011902464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
    2018-11-14 11:24 - 2018-11-01 09:54 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
    2018-11-14 11:24 - 2018-11-01 09:52 - 002892800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
    2018-11-14 11:24 - 2018-11-01 09:15 - 023861760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
    2018-11-14 11:24 - 2018-11-01 09:13 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
    2018-11-14 11:24 - 2018-11-01 07:39 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
    2018-11-14 11:24 - 2018-11-01 07:28 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
    2018-11-14 11:24 - 2018-11-01 07:28 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
    2018-11-14 11:24 - 2018-11-01 07:27 - 001017152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
    2018-11-14 11:24 - 2018-11-01 07:27 - 000491200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
    2018-11-14 11:24 - 2018-11-01 07:26 - 007432120 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
    2018-11-14 11:24 - 2018-11-01 07:26 - 003291640 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
    2018-11-14 11:24 - 2018-11-01 07:26 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
    2018-11-14 11:24 - 2018-11-01 07:26 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 009089848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
    2018-11-14 11:24 - 2018-11-01 07:25 - 007520088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 004404912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 002822456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
    2018-11-14 11:24 - 2018-11-01 07:25 - 002571320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 002371296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 001934808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 001784680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 001456728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
    2018-11-14 11:24 - 2018-11-01 07:25 - 001288920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 001257880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
    2018-11-14 11:24 - 2018-11-01 07:25 - 001209888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 001190248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 001140672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
    2018-11-14 11:24 - 2018-11-01 07:25 - 000982592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
    2018-11-14 11:24 - 2018-11-01 07:25 - 000594224 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
    2018-11-14 11:24 - 2018-11-01 07:25 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
    2018-11-14 11:24 - 2018-11-01 07:25 - 000268088 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
    2018-11-14 11:24 - 2018-11-01 07:09 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
    2018-11-14 11:24 - 2018-11-01 07:03 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
    2018-11-14 11:24 - 2018-11-01 07:01 - 022716416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
    2018-11-14 11:24 - 2018-11-01 07:01 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
    2018-11-14 11:24 - 2018-11-01 07:01 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
    2018-11-14 11:24 - 2018-11-01 07:00 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
    2018-11-14 11:24 - 2018-11-01 07:00 - 006031360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
    2018-11-14 11:24 - 2018-11-01 07:00 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
    2018-11-14 11:24 - 2018-11-01 07:00 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
    2018-11-14 11:24 - 2018-11-01 06:59 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
    2018-11-14 11:24 - 2018-11-01 06:58 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
    2018-11-14 11:24 - 2018-11-01 06:58 - 004867072 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
    2018-11-14 11:24 - 2018-11-01 06:58 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
    2018-11-14 11:24 - 2018-11-01 06:58 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
    2018-11-14 11:24 - 2018-11-01 06:57 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
    2018-11-14 11:24 - 2018-11-01 06:57 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
    2018-11-14 11:24 - 2018-11-01 06:57 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
    2018-11-14 11:24 - 2018-11-01 06:57 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
    2018-11-14 11:24 - 2018-11-01 06:57 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
    2018-11-14 11:24 - 2018-11-01 06:57 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
    2018-11-14 11:24 - 2018-11-01 06:56 - 002929664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
    2018-11-14 11:24 - 2018-11-01 06:56 - 002172928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
    2018-11-14 11:24 - 2018-11-01 06:56 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
    2018-11-14 11:24 - 2018-11-01 06:56 - 001395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
    2018-11-14 11:24 - 2018-11-01 06:56 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
    2018-11-14 11:24 - 2018-11-01 06:55 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
    2018-11-14 11:24 - 2018-11-01 06:55 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
    2018-11-14 11:24 - 2018-11-01 06:55 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
    2018-11-14 11:24 - 2018-11-01 06:54 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
    2018-11-14 11:24 - 2018-11-01 06:54 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
    2018-11-14 11:24 - 2018-11-01 06:54 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
    2018-11-14 11:24 - 2018-11-01 06:54 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
    2018-11-14 11:24 - 2018-11-01 06:54 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
    2018-11-14 11:24 - 2018-11-01 06:54 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
    2018-11-14 11:24 - 2018-11-01 06:54 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
    2018-11-14 11:24 - 2018-11-01 06:54 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
    2018-11-14 11:24 - 2018-11-01 06:53 - 002248192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
    2018-11-14 11:24 - 2018-11-01 06:53 - 001373696 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
    2018-11-14 11:24 - 2018-11-01 06:53 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
    2018-11-14 11:24 - 2018-11-01 06:53 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
    2018-11-14 11:24 - 2018-11-01 06:53 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
    2018-11-14 11:24 - 2018-11-01 05:08 - 002417952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
    2018-11-14 11:24 - 2018-11-01 04:50 - 000861712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
    2018-11-14 11:24 - 2018-11-01 04:50 - 000786288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
    2018-11-14 11:24 - 2018-11-01 04:48 - 006039064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
    2018-11-14 11:24 - 2018-11-01 04:48 - 004790184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
    2018-11-14 11:24 - 2018-11-01 04:48 - 002478872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
    2018-11-14 11:24 - 2018-11-01 04:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
    2018-11-14 11:24 - 2018-11-01 04:48 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
    2018-11-14 11:24 - 2018-11-01 04:48 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
    2018-11-14 11:24 - 2018-11-01 04:48 - 000384520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
    2018-11-14 11:24 - 2018-11-01 04:47 - 006570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
    2018-11-14 11:24 - 2018-11-01 04:47 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
    2018-11-14 11:24 - 2018-11-01 04:47 - 001379792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
    2018-11-14 11:24 - 2018-11-01 04:47 - 001020064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
    2018-11-14 11:24 - 2018-11-01 04:40 - 022015488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
    2018-11-14 11:24 - 2018-11-01 04:35 - 019403776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
    2018-11-14 11:24 - 2018-11-01 04:34 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
    2018-11-14 11:24 - 2018-11-01 04:33 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
    2018-11-14 11:24 - 2018-11-01 04:33 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
    2018-11-14 11:24 - 2018-11-01 04:32 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
    2018-11-14 11:24 - 2018-11-01 04:31 - 005307904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
    2018-11-14 11:24 - 2018-11-01 04:30 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
    2018-11-14 11:24 - 2018-11-01 04:30 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
    2018-11-14 11:24 - 2018-11-01 04:29 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
    2018-11-14 11:24 - 2018-11-01 04:29 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
    2018-11-14 11:24 - 2018-11-01 04:29 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
    2018-11-14 11:24 - 2018-11-01 04:29 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
    2018-11-14 11:24 - 2018-11-01 04:28 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
    2018-11-14 11:24 - 2018-11-01 04:27 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
    2018-11-14 11:24 - 2018-11-01 04:27 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
    2018-11-14 11:24 - 2018-11-01 04:27 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
    2018-11-14 11:24 - 2018-11-01 04:26 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
    2018-11-14 11:24 - 2018-10-21 13:00 - 021386368 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
    2018-11-14 11:24 - 2018-10-21 13:00 - 001639560 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
    2018-11-14 11:24 - 2018-10-21 13:00 - 001516120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
    2018-11-14 11:24 - 2018-10-21 13:00 - 000790416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
    2018-11-14 11:24 - 2018-10-21 12:46 - 013572096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
    2018-11-14 11:24 - 2018-10-21 12:46 - 004393472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
    2018-11-14 11:24 - 2018-10-21 12:43 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
    2018-11-14 11:24 - 2018-10-21 12:42 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
    2018-11-14 11:24 - 2018-10-21 12:42 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
    2018-11-14 11:24 - 2018-10-21 12:41 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
    2018-11-14 11:24 - 2018-10-21 11:38 - 001322376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
    2018-11-14 11:24 - 2018-10-21 11:37 - 020381808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
    2018-11-14 11:24 - 2018-10-21 11:37 - 001626656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
    2018-11-14 11:24 - 2018-10-21 11:28 - 012501504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
    2018-11-14 11:24 - 2018-10-21 11:23 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
    2018-11-14 11:24 - 2018-10-21 11:22 - 002405888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
    2018-11-14 11:24 - 2018-10-21 07:48 - 005602456 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
    2018-11-14 11:24 - 2018-10-21 07:46 - 000717112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
    2018-11-14 11:24 - 2018-10-21 07:46 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
    2018-11-14 11:24 - 2018-10-21 07:46 - 000560136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
    2018-11-14 11:24 - 2018-10-21 07:45 - 003283512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
    2018-11-14 11:24 - 2018-10-21 07:45 - 002719032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
    2018-11-14 11:24 - 2018-10-21 07:45 - 001946208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
    2018-11-14 11:24 - 2018-10-21 07:45 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
    2018-11-14 11:24 - 2018-10-21 07:45 - 000607136 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
    2018-11-14 11:24 - 2018-10-21 07:28 - 016592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
    2018-11-14 11:24 - 2018-10-21 07:22 - 004710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
    2018-11-14 11:24 - 2018-10-21 07:21 - 001589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
    2018-11-14 11:24 - 2018-10-21 07:19 - 002487088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
    2018-11-14 11:24 - 2018-10-21 07:19 - 001620776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
    2018-11-14 11:24 - 2018-10-21 07:19 - 001130768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
    2018-11-14 11:24 - 2018-10-21 07:19 - 000505616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
    2018-11-14 11:24 - 2018-10-21 07:17 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
    2018-11-14 11:24 - 2018-10-21 07:17 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
    2018-11-14 11:24 - 2018-10-21 07:17 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
    2018-11-14 11:24 - 2018-10-21 07:17 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
    2018-11-14 11:24 - 2018-10-21 07:17 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
    2018-11-14 11:24 - 2018-10-21 07:17 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvrcp.dll
    2018-11-14 11:24 - 2018-10-21 07:17 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
    2018-11-14 11:24 - 2018-10-21 07:16 - 002584576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
    2018-11-14 11:24 - 2018-10-21 07:16 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
    2018-11-14 11:24 - 2018-10-21 07:16 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
    2018-11-14 11:24 - 2018-10-21 07:16 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
    2018-11-14 11:24 - 2018-10-21 07:15 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
    2018-11-14 11:24 - 2018-10-21 07:15 - 002904064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
    2018-11-14 11:24 - 2018-10-21 07:15 - 000743936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL
    2018-11-14 11:24 - 2018-10-21 07:14 - 002224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
    2018-11-14 11:24 - 2018-10-21 07:14 - 001919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
    2018-11-14 11:24 - 2018-10-21 07:14 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
    2018-11-14 11:24 - 2018-10-21 07:14 - 001034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
    2018-11-14 11:24 - 2018-10-21 07:14 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
    2018-11-14 11:24 - 2018-10-21 07:09 - 013873664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
    2018-11-14 11:24 - 2018-10-21 07:02 - 002966528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
    2018-11-14 11:24 - 2018-10-21 07:01 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
    2018-11-14 11:24 - 2018-10-21 06:57 - 002611200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
    2018-11-14 11:24 - 2018-10-21 05:59 - 000806320 _____ C:\WINDOWS\SysWOW64\locale.nls
    2018-11-14 11:24 - 2018-10-21 05:59 - 000806320 _____ C:\WINDOWS\system32\locale.nls
    2018-11-14 11:23 - 2018-11-01 11:49 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
    2018-11-14 11:23 - 2018-11-01 11:32 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
    2018-11-14 11:23 - 2018-11-01 11:30 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
    2018-11-14 11:23 - 2018-11-01 11:30 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
    2018-11-14 11:23 - 2018-11-01 11:29 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
    2018-11-14 11:23 - 2018-11-01 11:28 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
    2018-11-14 11:23 - 2018-11-01 11:27 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
    2018-11-14 11:23 - 2018-11-01 11:26 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
    2018-11-14 11:23 - 2018-11-01 11:26 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
    2018-11-14 11:23 - 2018-11-01 11:25 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
    2018-11-14 11:23 - 2018-11-01 09:56 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
    2018-11-14 11:23 - 2018-11-01 09:56 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
    2018-11-14 11:23 - 2018-11-01 09:54 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
    2018-11-14 11:23 - 2018-11-01 09:53 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
    2018-11-14 11:23 - 2018-11-01 07:38 - 000269336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
    2018-11-14 11:23 - 2018-11-01 07:37 - 000272408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
    2018-11-14 11:23 - 2018-11-01 07:28 - 001062712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
    2018-11-14 11:23 - 2018-11-01 07:28 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
    2018-11-14 11:23 - 2018-11-01 07:28 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
    2018-11-14 11:23 - 2018-11-01 07:28 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
    2018-11-14 11:23 - 2018-11-01 07:25 - 000885968 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
    2018-11-14 11:23 - 2018-11-01 07:25 - 000793080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
    2018-11-14 11:23 - 2018-11-01 07:25 - 000713472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
    2018-11-14 11:23 - 2018-11-01 07:25 - 000413720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
    2018-11-14 11:23 - 2018-11-01 07:25 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
    2018-11-14 11:23 - 2018-11-01 07:25 - 000375824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
    2018-11-14 11:23 - 2018-11-01 07:25 - 000261000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
    2018-11-14 11:23 - 2018-11-01 07:03 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe
    2018-11-14 11:23 - 2018-11-01 07:02 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll
    2018-11-14 11:23 - 2018-11-01 07:02 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
    2018-11-14 11:23 - 2018-11-01 07:00 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
    2018-11-14 11:23 - 2018-11-01 06:59 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
    2018-11-14 11:23 - 2018-11-01 06:59 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
    2018-11-14 11:23 - 2018-11-01 06:59 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
    2018-11-14 11:23 - 2018-11-01 06:59 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
    2018-11-14 11:23 - 2018-11-01 06:58 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
    2018-11-14 11:23 - 2018-11-01 06:58 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
    2018-11-14 11:23 - 2018-11-01 06:58 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
    2018-11-14 11:23 - 2018-11-01 06:57 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
    2018-11-14 11:23 - 2018-11-01 06:57 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
    2018-11-14 11:23 - 2018-11-01 06:57 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
    2018-11-14 11:23 - 2018-11-01 06:57 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
    2018-11-14 11:23 - 2018-11-01 06:57 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
    2018-11-14 11:23 - 2018-11-01 06:57 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
    2018-11-14 11:23 - 2018-11-01 06:57 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
    2018-11-14 11:23 - 2018-11-01 06:54 - 001679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
    2018-11-14 11:23 - 2018-11-01 06:54 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
    2018-11-14 11:23 - 2018-11-01 06:54 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
    2018-11-14 11:23 - 2018-11-01 06:53 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
    2018-11-14 11:23 - 2018-11-01 05:39 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
    2018-11-14 11:23 - 2018-11-01 04:48 - 000880248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
    2018-11-14 11:23 - 2018-11-01 04:47 - 000581600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
    2018-11-14 11:23 - 2018-11-01 04:47 - 000567256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
    2018-11-14 11:23 - 2018-11-01 04:47 - 000129304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
    2018-11-14 11:23 - 2018-11-01 04:31 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
    2018-11-14 11:23 - 2018-11-01 04:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
    2018-11-14 11:23 - 2018-11-01 04:30 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
    2018-11-14 11:23 - 2018-11-01 04:30 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
    2018-11-14 11:23 - 2018-11-01 04:30 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
    2018-11-14 11:23 - 2018-11-01 04:30 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
    2018-11-14 11:23 - 2018-11-01 04:29 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
    2018-11-14 11:23 - 2018-11-01 04:29 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
    2018-11-14 11:23 - 2018-11-01 04:29 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
    2018-11-14 11:23 - 2018-11-01 04:28 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
    2018-11-14 11:23 - 2018-11-01 04:28 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
    2018-11-14 11:23 - 2018-11-01 04:27 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
    2018-11-14 11:23 - 2018-11-01 04:27 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
    2018-11-14 11:23 - 2018-11-01 04:26 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
    2018-11-14 11:23 - 2018-11-01 04:26 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
    2018-11-14 11:23 - 2018-10-21 13:00 - 000396304 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
    2018-11-14 11:23 - 2018-10-21 12:59 - 000766480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
    2018-11-14 11:23 - 2018-10-21 12:59 - 000236728 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
    2018-11-14 11:23 - 2018-10-21 12:45 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
    2018-11-14 11:23 - 2018-10-21 12:44 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
    2018-11-14 11:23 - 2018-10-21 12:44 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
    2018-11-14 11:23 - 2018-10-21 12:43 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
    2018-11-14 11:23 - 2018-10-21 12:43 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
    2018-11-14 11:23 - 2018-10-21 12:42 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
    2018-11-14 11:23 - 2018-10-21 12:42 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
    2018-11-14 11:23 - 2018-10-21 11:38 - 000662312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
    2018-11-14 11:23 - 2018-10-21 11:38 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
    2018-11-14 11:23 - 2018-10-21 11:38 - 000221216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
    2018-11-14 11:23 - 2018-10-21 11:28 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll
    2018-11-14 11:23 - 2018-10-21 11:23 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
    2018-11-14 11:23 - 2018-10-21 11:22 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
    2018-11-14 11:23 - 2018-10-21 09:29 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
    2018-11-14 11:23 - 2018-10-21 08:44 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
    2018-11-14 11:23 - 2018-10-21 07:47 - 000368440 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
    2018-11-14 11:23 - 2018-10-21 07:46 - 000709936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
    2018-11-14 11:23 - 2018-10-21 07:46 - 000497864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
    2018-11-14 11:23 - 2018-10-21 07:46 - 000171024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
    2018-11-14 11:23 - 2018-10-21 07:45 - 000185120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
    2018-11-14 11:23 - 2018-10-21 07:45 - 000175624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
    2018-11-14 11:23 - 2018-10-21 07:45 - 000139792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
    2018-11-14 11:23 - 2018-10-21 07:45 - 000058088 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
    2018-11-14 11:23 - 2018-10-21 07:21 - 000123424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
    2018-11-14 11:23 - 2018-10-21 07:20 - 000424000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
    2018-11-14 11:23 - 2018-10-21 07:20 - 000295224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
    2018-11-14 11:23 - 2018-10-21 07:20 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
    2018-11-14 11:23 - 2018-10-21 07:20 - 000141312 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
    2018-11-14 11:23 - 2018-10-21 07:20 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
    2018-11-14 11:23 - 2018-10-21 07:19 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
    2018-11-14 11:23 - 2018-10-21 07:19 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
    2018-11-14 11:23 - 2018-10-21 07:19 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
    2018-11-14 11:23 - 2018-10-21 07:19 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
    2018-11-14 11:23 - 2018-10-21 07:19 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
    2018-11-14 11:23 - 2018-10-21 07:19 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
    2018-11-14 11:23 - 2018-10-21 07:19 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
    2018-11-14 11:23 - 2018-10-21 07:19 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
    2018-11-14 11:23 - 2018-10-21 07:19 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvrcpAppSvc.dll
    2018-11-14 11:23 - 2018-10-21 07:19 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhf.sys
    2018-11-14 11:23 - 2018-10-21 07:19 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
    2018-11-14 11:23 - 2018-10-21 07:18 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
    2018-11-14 11:23 - 2018-10-21 07:18 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
    2018-11-14 11:23 - 2018-10-21 07:18 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvctpSvc.dll
    2018-11-14 11:23 - 2018-10-21 07:18 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
    2018-11-14 11:23 - 2018-10-21 07:18 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
    2018-11-14 11:23 - 2018-10-21 07:18 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
    2018-11-14 11:23 - 2018-10-21 07:18 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
    2018-11-14 11:23 - 2018-10-21 07:16 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
    2018-11-14 11:23 - 2018-10-21 07:16 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
    2018-11-14 11:23 - 2018-10-21 07:15 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
    2018-11-14 11:23 - 2018-10-21 07:14 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
    2018-11-14 11:23 - 2018-10-21 07:14 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
    2018-11-14 11:23 - 2018-10-21 07:14 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
    2018-11-14 11:23 - 2018-10-21 07:02 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
    2018-11-14 11:23 - 2018-10-21 07:01 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
    2018-11-14 11:23 - 2018-10-21 07:00 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
    2018-11-14 11:23 - 2018-10-21 06:59 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
    2018-11-14 11:23 - 2018-10-21 06:58 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
    2018-11-14 11:23 - 2018-10-21 06:58 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
    2018-11-14 11:23 - 2018-10-21 06:58 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
    2018-11-14 11:23 - 2018-04-28 04:02 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
    2018-11-14 11:05 - 2018-11-14 11:05 - 000000000 ____D C:\WINDOWS\VMUVC
    2018-11-14 11:05 - 2018-11-14 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digital microscope
    2018-11-14 11:04 - 2018-11-14 11:04 - 000000000 ____D C:\Program Files (x86)\Vimicro Corporation
    2018-11-14 11:04 - 2009-04-29 16:04 - 000877056 _____ (vimicro) C:\WINDOWS\system32\vmuvc.ax
    2018-11-14 11:04 - 2009-04-29 16:01 - 000516096 _____ (vimicro) C:\WINDOWS\SysWOW64\VMUVC.ax
    2018-11-14 11:04 - 2009-03-11 14:13 - 000198400 _____ (Vimicro Corporation) C:\WINDOWS\system32\Drivers\vmuvc.sys
    2018-11-14 11:04 - 2008-09-18 16:28 - 000098304 _____ (Vimicro Corporation) C:\WINDOWS\SysWOW64\VMCtrl.ax
    2018-11-14 11:04 - 2008-09-18 16:25 - 000745984 _____ (Vimicro Corporation) C:\WINDOWS\system32\vmctrl.ax
    2018-11-14 11:04 - 2008-09-02 18:18 - 000128512 _____ (Vimicro Cooperation) C:\WINDOWS\system32\vvftctrl.dll
    2018-11-14 11:04 - 2008-09-02 17:47 - 000094208 _____ (Vimicro Cooperation) C:\WINDOWS\SysWOW64\vvftctrl.dll
    2018-11-14 11:04 - 2008-07-01 11:19 - 000447488 _____ (Vimicro Corporation) C:\WINDOWS\system32\vvftUVCx64.ax
    2018-11-14 11:04 - 2008-07-01 11:16 - 000188416 _____ (Vimicro Corporation) C:\WINDOWS\SysWOW64\vvftUVC.ax
    2018-11-14 11:04 - 2008-07-01 11:14 - 000303616 _____ (Vimicro Corporation) C:\WINDOWS\system32\Drivers\vvftUVC.sys
    2018-11-14 11:04 - 2008-02-29 10:14 - 000012800 _____ (Vimicro Corporation) C:\WINDOWS\system32\VMUVC.dll
    2018-11-14 11:04 - 2007-04-12 22:59 - 000073728 _____ (Vimicro Corporation) C:\WINDOWS\SysWOW64\exvmuvc.ax
    2018-11-14 11:02 - 2018-11-14 11:02 - 000000000 ____D C:\Users\user\Desktop\CD_vms004_20111122
    2018-11-14 10:28 - 2018-11-14 11:02 - 000001142 _____ C:\Users\user\Desktop\MicroCapture_veho_vms004.lnk
    2018-11-14 10:28 - 2018-11-14 11:02 - 000000028 _____ C:\Users\user\AppData\Local\settings.ini
    2018-11-14 10:28 - 2018-11-14 10:29 - 000000000 ____D C:\Users\user\AppData\Local\microcapture
    2018-11-14 10:28 - 2018-11-14 10:28 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MicroCapture
    2018-11-14 10:28 - 2018-11-14 10:28 - 000000000 ____D C:\Program Files (x86)\MicroCapture
    2018-11-14 10:25 - 2012-11-09 10:46 - 000200360 _____ C:\Users\user\Documents\Drivers and Software+Microscopes+VMS-004 400x USB Microscope+Please read before downloading version 1 or 2 (1).pdf
    2018-11-13 20:53 - 2018-11-21 00:53 - 004463104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
    2018-11-13 15:07 - 2018-11-13 15:07 - 000055149 _____ C:\Users\user\Desktop\password (halford) for [email protected] is compromised.pdf
    2018-11-12 15:08 - 2018-11-12 15:24 - 000000000 ____D C:\Users\user\AppData\Roaming\Winamp
    2018-11-12 15:08 - 2018-11-12 15:09 - 000000000 ____D C:\Program Files (x86)\Winamp
    2018-11-12 15:08 - 2018-11-12 15:08 - 000001048 _____ C:\Users\Public\Desktop\Winamp.lnk
    2018-11-12 13:17 - 2018-10-22 16:16 - 008201952 _____ (Nullsoft, Inc.) C:\Users\user\Downloads\winamp58_3660_beta_full_en-us.exe
    2018-11-12 12:05 - 2018-11-12 12:05 - 000001599 _____ C:\Users\Public\Desktop\Aiseesoft Video Enhancer.lnk
    2018-11-12 12:05 - 2018-11-12 12:05 - 000000000 ____D C:\Users\user\Documents\Aiseesoft Studio
    2018-11-12 12:05 - 2018-11-12 12:05 - 000000000 ____D C:\Users\user\AppData\Local\Aiseesoft Studio
    2018-11-12 12:05 - 2018-11-12 12:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft
    2018-11-12 12:05 - 2018-11-12 12:05 - 000000000 ____D C:\ProgramData\Aiseesoft Studio
    2018-11-12 12:05 - 2018-11-12 12:05 - 000000000 ____D C:\Program Files (x86)\Aiseesoft Studio
    2018-11-07 20:27 - 2018-11-07 20:27 - 000072603 _____ C:\Users\user\Downloads\murdoch.mysteries.s11e03.web.h264-convoy.mkv_1.html
    2018-11-07 20:23 - 2018-11-07 20:23 - 000076978 _____ C:\Users\user\Downloads\murdoch.mysteries.s11e03.web.h264-convoy.mkv.html
    2018-11-07 16:24 - 2018-11-07 16:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
    2018-11-07 16:23 - 2018-11-07 16:24 - 000000000 ____D C:\Program Files (x86)\Kodi
    2018-11-07 16:14 - 2017-12-10 16:23 - 081779523 _____ (XBMC-Foundation) C:\Users\user\Downloads\kodi-17.6-Krypton-x86_1.exe
    2018-11-05 14:51 - 2018-11-05 14:51 - 000010313 _____ C:\Users\user\AppData\Local\recently-used.xbel
    2018-11-05 11:45 - 2018-11-05 11:45 - 000001289 _____ C:\Users\user\Desktop\iSumsoft Product Key Finder.lnk
    2018-11-05 11:45 - 2016-06-28 04:04 - 000451697 _____ C:\Users\user\Downloads\isumsoft-product-key-finder.exe
    2018-11-05 11:29 - 2018-11-05 11:29 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
    2018-11-05 11:29 - 2018-11-05 11:29 - 000002193 _____ C:\Users\Public\Desktop\Belarc Advisor.lnk
    2018-11-05 11:29 - 2018-11-05 11:29 - 000000000 ____D C:\Program Files (x86)\Belarc
    2018-11-05 11:29 - 2018-10-26 15:53 - 010163520 _____ C:\Users\user\Downloads\advisorinstaller.exe
    2018-11-05 11:23 - 2018-11-05 11:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
    2018-11-05 11:23 - 2018-11-05 11:23 - 000000000 ____D C:\Program Files (x86)\Magical Jelly Bean
    2018-11-05 11:23 - 2017-10-20 12:03 - 000928232 _____ (Magical Jelly Bean ) C:\Users\user\Downloads\KeyFinderInstaller.exe
    2018-11-04 12:36 - 2018-11-04 12:36 - 001161197 _____ C:\Users\user\Desktop\INSTALLING A NEW BUILD FOR KODI ON AMAZON FIRESTICK.pdf
    2018-11-04 09:58 - 2018-11-04 09:58 - 000001473 _____ C:\Users\Public\Desktop\Screen Recorder.lnk
    2018-11-04 09:57 - 2018-11-04 09:57 - 022984648 _____ (Apeaksoft Studio ) C:\Users\user\Downloads\screen-recorder-1.2.8.exe
    2018-11-03 16:19 - 2018-11-03 16:19 - 000000000 ____D C:\Program Files (x86)\FFmpeg for Audacity
    2018-11-03 16:17 - 2014-09-17 17:15 - 009957947 _____ ( ) C:\Users\user\Downloads\ffmpeg-win-2.2.2.exe
    2018-11-03 14:31 - 2017-12-10 16:23 - 081779523 _____ (XBMC-Foundation) C:\Users\user\Downloads\kodi-17.6-Krypton-x86.exe
    2018-11-03 10:26 - 2018-11-17 22:16 - 000000000 ____D C:\Users\user\Desktop\Kodi Build Install
     
  9. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    ==================== One Month Modified files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2018-12-02 09:29 - 2018-04-11 23:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
    2018-12-02 09:05 - 2018-05-23 18:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
    2018-12-02 06:38 - 2018-08-08 19:44 - 000000000 ____D C:\Users\user\AppData\Local\CrashDumps
    2018-12-02 06:38 - 2018-06-21 05:38 - 000000000 ____D C:\Users\user\AppData\Roaming\FileAdvisor
    2018-12-01 22:49 - 2018-10-02 10:36 - 000002424 _____ C:\WINDOWS\System32\Tasks\PrivaZer_SkipUAC
    2018-12-01 22:49 - 2018-09-01 08:56 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
    2018-12-01 22:49 - 2018-06-20 05:37 - 000002646 _____ C:\WINDOWS\System32\Tasks\FileAdvisorUpdate
    2018-12-01 22:49 - 2018-05-23 18:52 - 000003748 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
    2018-12-01 22:49 - 2018-05-23 18:52 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
    2018-12-01 22:49 - 2018-05-23 18:52 - 000003434 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
    2018-12-01 22:49 - 2018-05-23 18:52 - 000003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
    2018-12-01 22:49 - 2018-05-23 18:52 - 000003278 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
    2018-12-01 22:49 - 2018-05-23 18:52 - 000003210 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
    2018-12-01 22:49 - 2018-05-23 18:52 - 000003122 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
    2018-12-01 22:49 - 2018-05-23 18:52 - 000002852 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1077736426-23431034-3860886319-1001
    2018-12-01 22:49 - 2018-05-23 18:52 - 000002564 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
    2018-12-01 22:49 - 2018-05-23 18:52 - 000002482 _____ C:\WINDOWS\System32\Tasks\Ellp Service
    2018-12-01 22:49 - 2018-05-23 18:52 - 000002272 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (user)
    2018-12-01 22:49 - 2018-05-23 18:52 - 000002266 _____ C:\WINDOWS\System32\Tasks\{A06ED260-3695-4DF6-8DCA-F2BC2FDCE09A}
    2018-12-01 22:49 - 2018-05-23 18:52 - 000001944 _____ C:\WINDOWS\System32\Tasks\FreeDownloadManagerNetworkMonitor
    2018-12-01 22:49 - 2016-07-25 14:19 - 000000920 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
    2018-12-01 22:49 - 2016-07-25 14:19 - 000000916 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
    2018-12-01 19:56 - 2018-04-11 23:38 - 000000000 ___HD C:\Program Files\WindowsApps
    2018-12-01 19:56 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\AppReadiness
    2018-12-01 17:55 - 2018-03-23 11:41 - 000000000 ____D C:\Users\user\AppData\Roaming\Kodi
    2018-12-01 16:31 - 2018-01-04 09:33 - 000000000 ____D C:\Users\user\Compressed
    2018-12-01 13:23 - 2017-12-13 09:17 - 000000000 ____D C:\Users\user\AppData\Local\PlaceholderTileLogoFolder
    2018-12-01 13:23 - 2017-12-02 08:30 - 000000000 ____D C:\Users\user\AppData\Local\Packages
    2018-12-01 13:01 - 2018-02-10 10:48 - 000000000 ____D C:\Users\user\AppData\Local\Free Download Manager
    2018-12-01 12:42 - 2018-06-14 19:37 - 000000000 ____D C:\Users\user\AppData\Roaming\AntDM
    2018-12-01 11:43 - 2016-06-05 16:21 - 000000000 ____D C:\Users\user\AppData\Roaming\vlc
    2018-12-01 11:20 - 2016-11-18 15:56 - 000000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
    2018-12-01 11:19 - 2017-11-11 10:31 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
    2018-12-01 11:19 - 2017-11-11 10:31 - 000001216 _____ C:\Users\Public\Desktop\Firefox.lnk
    2018-12-01 11:19 - 2017-05-05 19:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
    2018-12-01 11:19 - 2016-06-04 13:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
    2018-12-01 05:56 - 2018-09-07 10:45 - 000000000 ____D C:\Program Files (x86)\PremierOpinion
    2018-11-30 13:52 - 2017-09-20 07:07 - 000000000 ____D C:\Program Files\Ellp
    2018-11-30 13:04 - 2016-05-27 22:17 - 000000000 ___RD C:\Users\user\OneDrive
    2018-11-30 13:02 - 2018-10-14 06:44 - 000000000 ____D C:\Users\user\Documents\LeaderTask
    2018-11-30 12:58 - 2018-09-25 07:47 - 000000000 ____D C:\Users\user\Documents\Log Files
    2018-11-30 12:51 - 2018-05-23 18:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
    2018-11-30 12:51 - 2016-06-04 16:53 - 000000000 ____D C:\Users\user\AppData\Roaming\AVG
    2018-11-30 12:51 - 2016-06-04 16:51 - 000000000 ____D C:\Program Files (x86)\AVG
    2018-11-30 12:51 - 2016-06-04 16:50 - 000000000 ____D C:\Users\user\AppData\Local\Avg
    2018-11-30 12:51 - 2016-06-04 16:50 - 000000000 ____D C:\ProgramData\Avg
    2018-11-30 12:50 - 2018-04-11 21:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
    2018-11-30 11:32 - 2018-10-17 09:28 - 000001658 _____ C:\WINDOWS\Sandboxie.ini
    2018-11-30 11:11 - 2018-04-11 23:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
    2018-11-30 11:00 - 2016-06-04 20:12 - 000592416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
    2018-11-30 10:35 - 2018-05-23 18:13 - 000002360 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
    2018-11-29 19:58 - 2016-07-25 14:19 - 000000000 ____D C:\Program Files (x86)\Dropbox
    2018-11-28 01:25 - 2016-05-27 22:36 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
    2018-11-26 10:31 - 2016-06-04 13:43 - 000000000 ____D C:\Users\user\AppData\Roaming\Mozilla
    2018-11-26 10:24 - 2018-07-19 09:59 - 000000000 ____D C:\Users\user\AppData\Roaming\Thunderbird
    2018-11-26 10:20 - 2018-05-30 15:34 - 000000000 ____D C:\Users\user\Desktop\Old Firefox Data
    2018-11-23 11:39 - 2018-10-20 12:53 - 000000000 ____D C:\ProgramData\purevpn
    2018-11-23 09:53 - 2018-06-02 09:21 - 000000000 ____D C:\Program Files (x86)\Digiarty
    2018-11-22 11:54 - 2018-10-20 12:55 - 000001408 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall PureVPN.lnk
    2018-11-22 11:54 - 2018-10-20 12:55 - 000001104 _____ C:\Users\user\Desktop\PureVPN.lnk
    2018-11-22 11:54 - 2018-10-20 12:54 - 000000000 ____D C:\Program Files (x86)\PureVPN
    2018-11-22 11:54 - 2016-06-04 13:49 - 000000000 ____D C:\ProgramData\Package Cache
    2018-11-21 17:20 - 2018-09-15 08:29 - 000018320 _____ C:\Users\user\Documents\Mini Figures Stock.ods
    2018-11-21 00:53 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
    2018-11-21 00:53 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
    2018-11-20 18:23 - 2018-04-11 23:30 - 000000000 ____D C:\WINDOWS\CbsTemp
    2018-11-20 11:06 - 2018-09-11 10:02 - 000000000 ____D C:\Program Files\FlashIntegro
    2018-11-19 13:27 - 2017-05-17 09:22 - 000000000 ____D C:\Users\user\AppData\Roaming\Light Developer
    2018-11-19 13:27 - 2016-11-16 09:42 - 000000000 ____D C:\Program Files\Franzis
    2018-11-19 07:25 - 2016-06-06 05:55 - 000000000 ____D C:\Program Files (x86)\TeamViewer
    2018-11-17 17:46 - 2016-06-11 12:23 - 000000000 ____D C:\Users\user\AppData\Local\Spotify
    2018-11-17 17:46 - 2016-06-11 12:22 - 000000000 ____D C:\Users\user\AppData\Roaming\Spotify
    2018-11-17 16:16 - 2018-05-23 18:27 - 000005592 _____ C:\WINDOWS\system32\PerfStringBackup.INI
    2018-11-17 16:11 - 2016-06-04 10:41 - 000000000 ___RD C:\Users\user\3D Objects
    2018-11-17 16:11 - 2016-05-27 22:15 - 000000000 __RHD C:\Users\Public\AccountPictures
    2018-11-17 16:06 - 2018-04-11 23:36 - 000000000 ____D C:\WINDOWS\INF
    2018-11-17 16:00 - 2018-10-17 16:06 - 000493952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
    2018-11-17 15:56 - 2018-04-11 23:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
    2018-11-17 15:56 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\TextInput
    2018-11-17 15:55 - 2018-04-11 23:38 - 000000000 ___SD C:\WINDOWS\system32\F12
    2018-11-17 15:55 - 2018-04-11 23:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
    2018-11-17 15:55 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
    2018-11-17 15:55 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
    2018-11-17 15:55 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\bcastdvr
    2018-11-15 10:20 - 2016-11-16 09:30 - 000000000 ____D C:\ProgramData\TEMP
    2018-11-15 09:38 - 2018-08-29 08:49 - 000000000 ____D C:\Users\user\Desktop\Sheffield
    2018-11-14 11:42 - 2016-06-04 13:16 - 000000000 ____D C:\WINDOWS\system32\MRT
    2018-11-14 11:36 - 2016-06-04 20:38 - 137810048 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
    2018-11-14 11:05 - 2017-12-14 14:18 - 000000000 ____D C:\ProgramData\InstallShield
    2018-11-14 11:04 - 2016-05-27 22:38 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
    2018-11-13 12:01 - 2016-06-09 19:51 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
    2018-11-12 15:58 - 2018-09-20 06:11 - 000000000 ____D C:\Users\user\Desktop\Phone 200918
    2018-11-12 14:59 - 2018-10-20 13:18 - 000022280 _____ C:\WINDOWS\SysWOW64\fix-dns-leak-32.dll
    2018-11-12 14:25 - 2016-06-09 13:25 - 000000000 ____D C:\Program Files (x86)\Bass Audio Decoder
    2018-11-08 17:00 - 2018-10-03 13:32 - 000000000 ____D C:\Users\user\Desktop\Gimp Tutorials
    2018-11-07 21:15 - 2016-06-14 08:22 - 000000000 ____D C:\Users\user\AppData\Local\ElevatedDiagnostics
    2018-11-07 18:53 - 2016-07-25 14:25 - 000000000 ___RD C:\Users\user\Dropbox
    2018-11-06 20:54 - 2018-10-20 15:04 - 000000000 ____D C:\Users\user\Desktop\Movies
    2018-11-05 16:21 - 2016-06-14 14:28 - 000000000 ____D C:\Users\user\AppData\Roaming\tixati
    2018-11-05 15:18 - 2018-09-18 17:06 - 000000000 ____D C:\Users\user\AppData\Local\babl-0.1
    2018-11-05 14:51 - 2016-07-12 14:48 - 000000000 ____D C:\Users\user\AppData\Local\gtk-2.0
    2018-11-04 09:58 - 2018-09-25 07:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apeaksoft
    2018-11-03 17:02 - 2016-06-25 08:29 - 000024064 _____ C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    2018-11-03 17:00 - 2016-06-09 09:00 - 000000000 ____D C:\Users\user\AppData\Roaming\Audacity
    2018-11-03 16:38 - 2018-02-04 11:42 - 000000000 ____D C:\Users\user\Desktop\Live Music & Video
    2018-11-03 16:05 - 2018-01-23 13:48 - 000000000 ____D C:\Users\user\AppData\Roaming\FlashIntegro

    ==================== Files in the root of some directories =======

    2011-01-12 01:00 - 2011-01-12 01:00 - 000146944 _____ () C:\Program Files (x86)\Common Files\dsfFLACDecoder.dll
    2011-01-12 01:00 - 2011-01-12 01:00 - 000221184 _____ () C:\Program Files (x86)\Common Files\dsfFLACEncoder.dll
    2011-01-12 01:00 - 2011-01-12 01:00 - 000204800 _____ () C:\Program Files (x86)\Common Files\dsfNativeFLACSource.dll
    2012-05-11 13:16 - 2012-05-11 13:16 - 000171520 _____ () C:\Program Files (x86)\Common Files\dsfOggDemux2.dll
    2011-01-12 01:00 - 2011-01-12 01:00 - 000240128 _____ () C:\Program Files (x86)\Common Files\dsfVorbisDecoder.dll
    2009-07-11 22:08 - 2009-07-11 22:08 - 000001860 _____ () C:\Program Files (x86)\Common Files\Microsoft.VC90.CRT.manifest
    2011-04-18 21:51 - 2011-04-18 21:51 - 000569680 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\MSVCP90.dll
    2011-04-18 21:51 - 2011-04-18 21:51 - 000653136 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\MSVCR90.dll
    2010-12-16 20:39 - 2010-12-16 20:39 - 000412672 _____ (Google) C:\Program Files (x86)\Common Files\vp8decoder.dll
    2010-12-16 20:39 - 2010-12-16 20:39 - 000701440 _____ (Google) C:\Program Files (x86)\Common Files\vp8encoder.dll
    2010-12-16 20:39 - 2010-12-16 20:39 - 000302592 _____ (Google) C:\Program Files (x86)\Common Files\webmmux.dll
    2010-12-16 20:39 - 2010-12-16 20:39 - 000292352 _____ (Google) C:\Program Files (x86)\Common Files\webmsplit.dll
    2011-01-12 01:00 - 2011-01-12 01:00 - 000030208 _____ () C:\Program Files (x86)\Common Files\wmpinfo.dll
    2017-12-14 14:14 - 2017-12-14 14:15 - 001456888 _____ () C:\Users\user\AppData\Roaming\AvidApplicationManager_Install.log
    2017-12-14 14:11 - 2017-12-14 14:12 - 000481280 _____ () C:\Users\user\AppData\Roaming\AvidCloudClientServices_Install.log
    2017-12-14 14:11 - 2017-12-14 14:11 - 000000861 _____ () C:\Users\user\AppData\Roaming\Avid_CCS_Service_Stop.log
    2017-07-11 05:46 - 2017-07-11 05:46 - 000000703 _____ () C:\Users\user\AppData\Roaming\codec.dll
    2018-03-05 11:02 - 2018-06-05 09:34 - 000000679 _____ () C:\Users\user\AppData\Roaming\paidashi.ini
    2017-07-03 09:48 - 2017-07-03 09:48 - 000000010 _____ () C:\Users\user\AppData\Roaming\pdfdrawcodec.dll
    2017-02-07 18:03 - 2017-09-09 16:14 - 000000418 _____ () C:\Users\user\AppData\Roaming\pdfshaper.ini
    2018-04-10 08:33 - 2017-05-04 13:05 - 000000002 _____ () C:\Users\user\AppData\Roaming\stlan.ini
    2018-04-10 08:35 - 2018-04-10 17:03 - 000000030 _____ () C:\Users\user\AppData\Roaming\stsetting.ini
    2018-04-10 08:33 - 2018-04-10 08:35 - 000000008 _____ () C:\Users\user\AppData\Roaming\stsound.dll
    2016-06-26 09:08 - 2016-06-26 09:08 - 000124488 _____ (TechApplet LLC) C:\Users\user\AppData\Roaming\USB Lock.exe
    2018-07-17 08:59 - 2018-07-17 08:59 - 000000716 ____H () C:\Users\user\AppData\Roaming\{90DEF604-BF04-629A-A223-44D43FBCEADF}
    2016-06-25 08:29 - 2018-11-03 17:02 - 000024064 _____ () C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    2017-02-02 11:30 - 2017-02-02 11:30 - 049290112 _____ (Sony) C:\Users\user\AppData\Local\pcc.exe
    2018-11-05 14:51 - 2018-11-05 14:51 - 000010313 _____ () C:\Users\user\AppData\Local\recently-used.xbel
    2018-11-14 10:28 - 2018-11-14 11:02 - 000000028 _____ () C:\Users\user\AppData\Local\settings.ini
    2018-11-22 11:53 - 2018-11-22 11:53 - 000000279 _____ () C:\Users\user\AppData\Local\temp.bat

    ==================== Bamital & volsnap ======================

    (There is no automatic fix for files that do not pass verification.)

    C:\WINDOWS\system32\winlogon.exe => File is digitally signed
    C:\WINDOWS\system32\wininit.exe => File is digitally signed
    C:\WINDOWS\explorer.exe => File is digitally signed
    C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
    C:\WINDOWS\system32\svchost.exe => File is digitally signed
    C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
    C:\WINDOWS\system32\services.exe => File is digitally signed
    C:\WINDOWS\system32\User32.dll => File is digitally signed
    C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
    C:\WINDOWS\system32\userinit.exe => File is digitally signed
    C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
    C:\WINDOWS\system32\rpcss.dll => File is digitally signed
    C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
    C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
    C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

    LastRegBack: 2018-05-23 18:07

    ==================== End of FRST.txt ============================
     
  10. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01.12.2018 01
    Ran by user (02-12-2018 09:29:37)
    Running from C:\Users\user\Desktop
    Windows 10 Home Version 1803 17134.407 (X64) (2018-05-23 18:53:16)
    Boot Mode: Normal
    ==========================================================


    ==================== Accounts: =============================

    Administrator (S-1-5-21-1077736426-23431034-3860886319-500 - Administrator - Disabled)
    DefaultAccount (S-1-5-21-1077736426-23431034-3860886319-503 - Limited - Disabled)
    Guest (S-1-5-21-1077736426-23431034-3860886319-501 - Limited - Disabled)
    user (S-1-5-21-1077736426-23431034-3860886319-1001 - Administrator - Enabled) => C:\Users\user
    WDAGUtilityAccount (S-1-5-21-1077736426-23431034-3860886319-504 - Limited - Disabled)

    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
    AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

    ==================== Installed Programs ======================

    (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    @bios (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.34 - GIGABYTE)
    1-abc.net Personal Information Center (HKLM-x32\...\1-abc.net Personal Information Center) (Version: - 1-abc.net Software Development and Distribution)
    1AV Sound Recorder registered to GiveAwayOfTheDay version 1.0.1.11 (HKLM-x32\...\{95C9DDF5-E989-4668-928F-46F9CEAAAB77}_is1) (Version: 1.0.1.11 - PCWinSoft Software)
    3DYD Youtube Source (remove only) (HKLM-x32\...\3DYD Youtube Source) (Version: - )
    7thShare Screen Video Recorder version 2.3.8.8 (HKLM-x32\...\{7thShareScreenRecorder}_is1) (Version: 2.3.8.8 - www.7thShare.com)
    7-Zip 16.00 (HKLM-x32\...\7-Zip) (Version: 16.00 - Igor Pavlov)
    AceThinker Music Recorder V1.0.0 (HKLM-x32\...\{398bc5b8-5f7a-4a3a-bd02-dbc809070f0c}_is1) (Version: 1.0.0 - ACETHINKER LIMITED)
    AceThinker Video Master V4.7.6 (HKLM-x32\...\{CDD36B59-DF4F-4401-92FF-0FF8417CDF4C}_is1) (Version: 4.7.6 - AceThinker)
    ActivePresenter (HKLM-x32\...\{A2A40277-D807-4754-95A3-2F294C2C51D3}_is1) (Version: 6.1.0 - Atomi Systems, Inc.)
    Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.008.20081 - Adobe Systems Incorporated)
    Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated)
    Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft)
    Aimersoft Music Recorder(Build 1.1.0.0) (HKLM-x32\...\Aimersoft Music Recorder_is1) (Version: 1.1.0.0 - Aimersoft Software Co.,Ltd.)
    Aimersoft Video Converter Ultimate(Build 9.0.0.2) (HKLM-x32\...\Aimersoft Video Converter Ultimate_is1) (Version: 9.0.0.2 - Aimersoft Software)
    Air Live Drive (HKLM\...\Air Live Drive) (Version: 1.1.3 - hxxp://www.airlivedrive.com)
    Aiseesoft Video Enhancer 9.2.18 (HKLM-x32\...\{0F8A1CB4-7F19-4fe9-A724-5F3DE1CB4513}_is1) (Version: 9.2.18 - Aiseesoft Studio)
    Album Art Downloader XUI 1.02 (HKLM-x32\...\Album Art Downloader XUI) (Version: 1.02 - hxxp://sourceforge.net/projects/album-art)
    Alex Buturuga - Muti ID3 Tag Editor 1.3b1 (HKLM-x32\...\Muti ID3 Tag Editor) (Version: - )
    Allavsoft 3.16.1.6790 (HKLM-x32\...\{6EBED4D8-13D9-4270-8D44-B57DDB7A787C}_is1) (Version: - Allavsoft Corporation)
    AllToMP3 0.3.4 (only current user) (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\c7605133-1e88-50dc-a31b-c14ca85089b6) (Version: 0.3.4 - Basile Bruneau)
    Amazing Any Video Converter version 1.6 (HKLM-x32\...\Amazing Any Video Converter_is1) (Version: 1.6 - Amazing Studio)
    Ant Download Manager version 1.7.9.promo.GiveawayOfTheDay.com (HKLM-x32\...\{754CB6A3-3FE2-40DA-9FE5-2864909BD1CC}_is1) (Version: 1.7.9.promo.GiveawayOfTheDay.com - AntGROUP, Inc.)
    AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 3.1.1 - philandro Software GmbH)
    AnyMP4 Video Editor 1.0.8 (HKLM-x32\...\{D2650AAA-B8FF-43F5-A3E9-26141B69045E}_is1) (Version: 1.0.8 - AnyMP4 Studio)
    AnyMusic 6.3.1 (only current user) (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\4e5f07cb-57d0-511b-8d72-f92e9ac978dd) (Version: 6.3.1 - AmoyShare Technology Company)
    AnyVid 6.3.1 (only current user) (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\5200923b-0018-51dc-a7ff-09b0ed1a637c) (Version: 6.3.1 - AmoyShare Technology Company)
    ApowerEdit V1.2.4 (HKLM-x32\...\{3089CCCD-BC5F-4309-A3C1-45B5ACA7A5E7}_is1) (Version: 1.2.4 - Apowersoft LIMITED)
    ApowerManager V3.1.8 (HKLM-x32\...\{D02368A2-6D57-4AE0-BECC-9E7DDE20B865}_is1) (Version: 3.1.8 - Apowersoft LIMITED)
    ApowerREC V1.1.3 (HKLM-x32\...\{6F2998B2-21F7-4CEF-94B2-C3919D939CF9}_is1) (Version: 1.1.3 - Apowersoft LIMITED)
    Apowersoft Video Converter Studio V4.7.8 (HKLM-x32\...\{195E8D7F-292B-4B04-A6E7-E96CAF04C767}_is1) (Version: 4.7.8 - APOWERSOFT LIMITED)
    Ashampoo Burning Studio 16 (HKLM-x32\...\{91B33C97-A730-69CE-7A4F-4ADF378BB993}_is1) (Version: 16.0.6 - Ashampoo GmbH & Co. KG)
    Ashampoo Cover Studio 2017 (HKLM-x32\...\{91B33C97-6D7D-102A-7711-56C011AFB81B}_is1) (Version: 3.0.0 - Ashampoo GmbH & Co. KG)
    Ashampoo Music Studio 6 (HKLM-x32\...\{91B33C97-F75E-DAE1-22C9-0E38FC779FCB}_is1) (Version: 6.0.2 - Ashampoo GmbH & Co. KG)
    Ashampoo Snap 9 (HKLM-x32\...\{0A11EA01-D628-EEFD-B5E8-864238AE9105}_is1) (Version: 9.0.6 - Ashampoo GmbH & Co. KG)
    Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
    Audials (HKLM-x32\...\{5C2A8D76-CB90-4C69-AA1F-3C273F3AFFDF}) (Version: 14.1.700.0 - Audials AG)
    AudibleManager (HKLM-x32\...\AudibleManager) (Version: 0.113.1703436.2002938400 - Audible, Inc.)
    AudioShell 2.3.6 (HKLM\...\AudioShell_is1) (Version: 2.3.6 - Softpointer Inc)
    Autodesk SketchBook (HKLM\...\{AE6C5657-D663-4968-BEB5-1E2ED89CB2D2}) (Version: 8.60.0000 - Autodesk)
    AV Music Morpher Gold (HKLM-x32\...\AV Music Morpher Gold) (Version: - )
    AV Tube (HKLM-x32\...\AV Tube) (Version: 1.0.24 - AVSoft Corp. (VN))
    Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software)
    Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 70.0.917.103 - AVAST Software)
    AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.9.626 - AVG Technologies)
    Avid Application Manager (HKLM\...\{E727EEFD-2A76-4D4B-B6BB-873BAAB05A7F}) (Version: 17.11.0.17840 - Avid Technology, Inc.)
    Avid Cloud Client Services (HKLM\...\{66E7D4F4-F044-428D-A734-59138A626A52}) (Version: 2.2.1.10735 - Avid Technology, Inc.)
    BBC iPlayer Downloads (HKLM-x32\...\{148784F3-3B6E-4DFA-B7A1-3400B277DAF3}) (Version: 1.14.2 - BBC)
    Belarc Advisor 8.6b (HKLM-x32\...\Belarc Advisor) (Version: 8.6.2.0 - Belarc Inc.)
    BleachBit (HKLM-x32\...\BleachBit) (Version: 2.0 - BleachBit)
    Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
    ByteScout PDF Multitool 8.6.0.2916 (FREEWARE) (HKLM-x32\...\ByteScout PDF Multitool_is1) (Version: - ByteScout)
    ByteScout Screen Capturing 3.0.0.61 (HKLM-x32\...\ByteScout Screen Capturing_is1) (Version: - ByteScout Inc.)
    calibre 64bit (HKLM\...\{69892FF1-CBA3-49AF-B80A-E074B3B755E5}) (Version: 2.85.1 - Kovid Goyal)
    Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
    Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
    Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.02 - Canon Inc.)
    Canon MG2500 series User Registration (HKLM-x32\...\Canon MG2500 series User Registration) (Version: - ‭Canon Inc.)
    Canon MG6300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6300_series) (Version: 1.01 - Canon Inc.)
    Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.5.2 - Canon Inc.)
    Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.5.2 - Canon Inc.)
    Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
    Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
    CardRecoveryPro 2.6.5 (HKLM-x32\...\{D9E1CADA-D103-47AE-B3F8-0C0CD0E5856E}_is1) (Version: 2.6.5 - LionSea Software co., ltd)
    Chapter and Verse (HKLM-x32\...\{56C796A7-9C34-4DD9-9EC5-42DBDAF8DC89}) (Version: 1.5.3.0 - Loden Software)
    Chrome Remote Desktop Host (HKLM-x32\...\{F51A03C4-2DD0-43B0-900F-EAD1C45DC542}) (Version: 71.0.3578.15 - Google Inc.)
    Cisco VideoGuard Player (HKLM-x32\...\{0d415397-2ac8-4273-afde-e6c887ffc827}) (Version: 9.0.1.4396 - Cisco Systems, Inc)
    ClipGrab 3.6.6 (HKLM-x32\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - Philipp Schmieder Medien)
    CollageIt 1.9.5 (HKLM-x32\...\{D9757258-30B2-496E-86F2-84920C5858E1}_is1) (Version: 1.9.5 - PearlMountain)
    concept/design onlineTV 13 (HKLM-x32\...\{32B1D875-8CFA-41DD-BDC6-A9CA59CECADE}_is1) (Version: 13.17.11.2 - concept/design GmbH)
    Coolmuster Mobile Transfer (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\Coolmuster Mobile Transfer) (Version: 1.1.145 - Coolmuster)
    Cut Out 4.0 (HKLM\...\Cut Out 4_is1) (Version: - Franzis.de)
    CutoMe (HKLM-x32\...\CutoMe) (Version: - Adoreshare, Inc.)
    CutOut 5.0 (HKLM\...\CutOut 5_is1) (Version: 5.0 - Franzis.de)
    CyberLink AudioDirector 6 (HKLM-x32\...\{4CB7DDA7-1134-4BA5-841C-3D64C5A0DAA7}) (Version: 6.0.7123.0 - CyberLink Corp.)
    CyberLink AudioDirector 7 (HKLM-x32\...\{18C5824A-FD59-453D-9DC1-5D86FA034357}) (Version: 7.0.8302.0 - CyberLink Corp.)
    CyberLink PhotoDirector 8 (HKLM-x32\...\{80986AB6-3CB0-49db-AB48-1600844D6374}) (Version: 8.0.3613.0 - CyberLink Corp.)
    DCoder Image Source (remove only) (HKLM-x32\...\DCoder Image Source) (Version: - )
    Deezer 0.11.1 (only current user) (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\67490f87-0893-5593-ae76-b1e5d0acd13f) (Version: 0.11.1 - Deezer)
    DeezLoader 3.0.15 (only current user) (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\8675f592-6f7d-534e-a92f-1cdf755ecc58) (Version: 3.0.15 - ExtendLord)
    DesignSpark Mechanical 2.0 (HKLM\...\{FBAB96FF-1075-467C-90D4-CEC468D275EE}) (Version: 10.0.0 - SpaceClaim Corporation)
    Digital microscope (HKLM-x32\...\{71A51A91-E7D3-11DB-A386-005056C00008}) (Version: 2009.03.18 - Vimicro Corp.)
    Dimo DVDmate version 4.1.0 (HKLM-x32\...\511AACC5-67EC-4559-8712-274356478D99_is1) (Version: 4.1.0 - DimoSoft, Inc.)
    Dimo HD Video Converter version 4.1.0 (HKLM-x32\...\4E8BB9F6-ECEA-414D-AF40-569C59E5D793_is1) (Version: 4.1.0 - DimoSoft, Inc.)
    Dimo Videomate version 4.1.0 (HKLM-x32\...\299AF5A5-0809-4CE0-8FD5-1E6EFD27E518_is1) (Version: 4.1.0 - DimoSoft, Inc.)
    Directory List & Print (Pro) (HKLM-x32\...\{6336F23D-1D20-4E02-9FBD-20B3A8210E4D}_is1) (Version: 3.24 - Infonautics GmbH, Switzerland)
    DirectVobSub (remove only) (HKLM-x32\...\DirectVobSub) (Version: - )
    Dokan Library 1.1.0.2000 (x64) (HKLM\...\{65A3A964-3DC3-0101-0000-180119092517}) (Version: 1.1.0.2000 - Dokany Project) Hidden
    Dokan Library 1.1.0.2000 Bundle (HKLM-x32\...\{4746934c-b8f1-4632-91a7-2be8b61db043}) (Version: 1.1.0.2000 - Dokany Project)
    Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.1.0 - IObit)
    Dropbox (HKLM-x32\...\Dropbox) (Version: 62.4.103 - Dropbox, Inc.)
    Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden
    EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
    Eassos System Restore 2.0.3 (HKLM\...\{37E567C7-EB03-4349-B068-1FD0A2CD55FE}_is1) (Version: - Eassos Co., Ltd.)
    Easy Photo Denoise 1.0 (HKLM-x32\...\Easy Photo Denoise_is1) (Version: 1.0 - SoftOrbits)
    Easy Photo Unblur 1.0 (HKLM-x32\...\Easy Photo Unblur_is1) (Version: 1.0 - SoftOrbits)
    Ellp version 1.5.1.1611 (HKLM\...\{EC18B730-3F5B-454F-9BBF-6493547C7995}_is1) (Version: 1.5.1.1611 - Ellp Limited)
    Epic Privacy Browser (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\Epic) (Version: 62.0.3202.94 - Epic)
    EqualizerPro (HKLM\...\EqualizerPro) (Version: 1.0.2 - Probit Software LTD) <==== ATTENTION
    ET6 B15.0210.1 (HKLM-x32\...\{35D86AE6-EC16-4C56-8CE7-B85F0E5EFFA4}) (Version: 1.00.0000 - GIGABYTE) Hidden
    ET6 B15.0210.1 (HKLM-x32\...\InstallShield_{35D86AE6-EC16-4C56-8CE7-B85F0E5EFFA4}) (Version: 1.00.0000 - GIGABYTE)
    eXpert PDF demo (HKLM-x32\...\{DC2DA25E-BC18-46ba-8BB5-73900F22FF31}) (Version: 10.00 - Avanquest)
    FFmpeg (Windows) for Audacity version 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
    File Type Advisor 1.7 (HKLM-x32\...\File Type Advisor_is1) (Version: - )
    Filename Lister (HKLM-x32\...\Filename Lister_is1) (Version: 2.2.0.0 - VOVSOFT)
    Flame Painter 3 (HKLM\...\Flame Painter 3_is1) (Version: 3.2.0 - Escape Motions, s.r.o)
    Folder Marker Free (HKLM\...\Folder Marker Free_is1) (Version: 4.2 - ArcticLine Software)
    FormatFactory 4.1.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.1.0.0 - Free Time)
    Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.34.6924 - FreeDownloadManager.ORG)
    Free M4a to MP3 Converter 9.5 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com)
    Free Windows Cleanup Tool (HKLM-x32\...\Free Windows Cleanup Tool) (Version: - )
    Freemake Video Converter version 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Ellora Assets Corporation)
    FreeTelly (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\FreeTelly) (Version: - ${COMPANY})
    get_iplayer 3.07.0 (HKLM-x32\...\get_iplayer_is1) (Version: 3.07.0 - The get_iplayer Contributors)
    GiliSoft Screen Recorder Pro 7.3.0 (HKLM-x32\...\{85B92051-32EF-61AA-AB7C-24B0B2DB29AC}_is1) (Version: 7.3.0 - GiliSoft International LLC.)
    GIMP 2.10.6 (HKLM\...\GIMP-2_is1) (Version: 2.10.6 - The GIMP Team)
    G'MIC for GIMP (Qt version) version 2.3.6 (HKLM-x32\...\G'MIC for GIMP (Qt version)_is1) (Version: 2.3.6 - )
    Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.110 - Google Inc.)
    Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
    Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
    Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
    Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
    Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden
    GoPlay Editor (HKLM-x32\...\GoPlay Editor) (Version: 1.2.7 - BEYOND PLAY LIMITED)
    HandBrake 1.1.1 (HKLM-x32\...\HandBrake) (Version: 1.1.1 - )
    HD Video Converter Factory Pro 16.2 (HKLM-x32\...\HD Video Converter Factory Pro) (Version: 16.2 - WonderFox Soft, Inc.)
    HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME)
    HitFilm Express 2017 (HKLM\...\{752C4EC4-8031-476E-A3A5-A7023C06AC2C}) (Version: 5.0.7012.39363 - FXHOME)
    iDealshare VideoGo 6.1.7.6835 (HKLM-x32\...\{CC4C06C4-7C78-4AAB-B5AF-33FB11CCD850}_is1) (Version: - iDealshare Corporation)
    InPixio Photo Clip 8 Demo (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\{9F45A8A5-0487-4aa6-A67E-46E103C927AD}) (Version: 8.00 - InPixio)
    IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.42 - Irfan Skiljan)
    iSumsoft Product Key Finder (HKLM-x32\...\iSumsoft Product Key Finder) (Version: 3.1.1 - iSumsoft)
    Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
    Joyoshare Screen Recorder 1.0.0.7 (HKLM-x32\...\Joyoshare Screen Recorder_is1) (Version: - Joyoshare, Inc.)
    Juice 2.2 (HKLM-x32\...\Juice) (Version: 2.2 - Juice Team)
    KC Softwares AudioGrail (HKLM-x32\...\KC Softwares AudioGrail_is1) (Version: 7.9.0.209 - KC Softwares)
    Kodi (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\Kodi) (Version: - XBMC-Foundation)
    LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
    LeaderTask 12.5.9 (HKLM-x32\...\LeaderTask_is1) (Version: - Organizer LeaderTask LLC)
    Leawo Music Recorder version 2.3.0.0 (HKLM-x32\...\{FAF11D3B-7633-402B-BAFA-4BCAAE030F20}_is1) (Version: 2.3.0.0 - Leawo Software)
    Leawo Prof. Media version 7.7.0.0 (HKLM-x32\...\{A5F041A4-812A-47C2-AD53-8893A81019FB}_is1) (Version: 7.7.0.0 - Leawo Software)
    Logitech Media Server 7.9.0 (HKLM-x32\...\Logitech Media Server_is1) (Version: 7.9.0 - Logitech)
    MadVR (remove only) (HKLM-x32\...\MadVR) (Version: - )
    Magical Jelly Bean KeyFinder (HKLM-x32\...\KeyFinder_is1) (Version: 2.0.10.13 - Magical Jelly Bean)
    Magoshare Data Recovery Trial 2.1 (HKLM-x32\...\Magoshare Data Recovery Trial 2.1_is1) (Version: - Magoshare)
    Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
    Manager (HKLM-x32\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden
    McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.8.20721 - McAfee, Inc.)
    MediaInfo 0.7.87 (HKLM\...\MediaInfo) (Version: 0.7.87 - MediaArea.net)
    MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
    MicroCapture 2.5 (HKLM-x32\...\MicroCapture) (Version: 2.5 - )
    Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
    Microsoft OneDrive (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\OneDriveSetup.exe) (Version: 18.212.1021.0008 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
    Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
    Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation)
    MovieJack free (HKLM-x32\...\{61D31B76-19A3-440C-9A21-BDE64BAED8D2}) (Version: 4.0.6851.9134 - Engelmann Software) Hidden
    MovieJack free (HKLM-x32\...\{8c49fdec-a922-491e-a86e-8666eb627afc}) (Version: 4.0.6851.9312 - Engelmann Software)
    Mozilla Firefox 64.0 (x64 en-GB) (HKLM\...\Mozilla Firefox 64.0 (x64 en-GB)) (Version: 64.0 - Mozilla)
    Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
    Mp3tag v2.81 (HKLM-x32\...\Mp3tag) (Version: 2.81 - Florian Heidenreich)
    MusicBee 3.0 (HKLM-x32\...\MusicBee) (Version: 3.0 - Steven Mayall)
    NeatMP3 Pro version 3.0.0 (HKLM-x32\...\{AC1EB83A-25B4-487F-8162-050133F7A764}_is1) (Version: 3.0.0 - )
    Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
    NOW TV Player 3.0.1.0 (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\com.bskyb.nowtvplayer_is1) (Version: 3.0.1.0 - NOW TV)
    OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.0 - OBS Project)
    ON_OFF Charge 2 B13.1028.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) Hidden
    ON_OFF Charge 2 B13.1028.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
    ON1 Effects 10 (HKLM\...\ON1 Effects 10 PE) (Version: 10.5.2 - ON1)
    Ondesoft Spotify Converter version 1.0.7 (HKLM-x32\...\{4E9A8CA6-50D7-4A86-8086-37DDE546D429}_is1) (Version: 1.0.7 - Ondesoft, Inc.)
    OpenOffice 4.1.2 (HKLM-x32\...\{E6AD67BB-1C33-4AB3-A387-E0D48137AB70}) (Version: 4.12.9782 - Apache Software Foundation)
    PACE License Support Win64 (HKLM\...\{87AA264E-CB0F-4a31-95D0-409CD02CC72D}) (Version: 3.1.3.1659 - PACE Anti-Piracy, Inc.) Hidden
    PACE License Support Win64 (HKLM-x32\...\InstallShield_{87AA264E-CB0F-4a31-95D0-409CD02CC72D}) (Version: 3.1.3.1659 - PACE Anti-Piracy, Inc.)
    Paragon Partition Manager™ 15 Home (HKLM\...\{986A654F-F1E4-11DD-9FCA-005056C00008}) (Version: 90.00.0003 - Paragon Software)
    PDF Architect 5 (HKLM-x32\...\PDF Architect 5) (Version: 5.0.22.32360 - pdfforge GmbH)
    PDF Architect 5 Create Module (HKLM\...\{0E25DE98-E56E-4259-B554-F1360BB2DC22}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
    PDF Architect 5 Edit Module (HKLM\...\{EE01D8D7-2DD0-4C43-BF42-D9C8FC8DAE99}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
    PDF Architect 5 View Module (HKLM\...\{4DC94B75-B036-474D-8AC8-E2D055C95FBD}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
    PDF Candy Desktop version 2.53 (HKLM-x32\...\{9A8B6868-AA65-45DB-B055-18CCC462E6F5}_is1) (Version: 2.53 - Icecream Apps)
    PDF Shaper Free 7.0 (HKLM-x32\...\PDF Shaper Free_is1) (Version: - Burnaware)
    PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.0.2 - pdfforge GmbH)
    PDFPasswordRemover 1.6.2 (HKLM-x32\...\PDFPasswordRemover_is1) (Version: - PDFPasswordRemover)
    PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
    PHOTO projects 3 (64-Bit) (HKLM\...\COLOR_PROJECTS_3_3_C935FDA1_is1) (Version: 3.34 - Franzis Verlag GmbH)
    Photolemur Express (HKLM\...\{64649971-AEF7-417D-9792-2B78D9C9691F}) (Version: 2.3.1.1931 - Photolemur) Hidden
    Photolemur Express (HKLM-x32\...\{62926279-4f54-49fc-807d-467b2dc6cb25}) (Version: 2.3.1.1931 - Photolemur)
    PicosmosTools 1.7.6.0 (HKLM-x32\...\PicosmosTools) (Version: 1.7.6.0 - Free Time)
    Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
    Plex Media Server (HKLM-x32\...\{36ADAD6B-32E5-4DA0-B251-3EBB6B39CBB8}) (Version: 1.13.8395 - Plex, Inc.) Hidden
    Plex Media Server (HKLM-x32\...\{6f591873-74e6-41ca-88e9-6b579c4d56ec}) (Version: 1.13.8.5395 - Plex, Inc.)
    PremierOpinion (HKLM-x32\...\{eeb86aef-4a5d-4b75-9d74-f16d438fc286}) (Version: 1.3.337.419 - VoiceFive, Inc.) <==== ATTENTION
    PrivaZer (HKLM-x32\...\PrivaZer) (Version: 3.0.53.0 - Goversoft LLC)
    Project Dogwaffle Artist version 11 (HKLM-x32\...\{D774A90E-4070-492F-8C93-097194291DE6}_is1) (Version: 11 - Daniel Ritchie)
    ProtonVPN (HKLM-x32\...\{D00EC622-A0A2-4145-9889-5721D8B6E1BC}) (Version: 1.3.6 - ProtonVPN AG) Hidden
    ProtonVPN (HKLM-x32\...\ProtonVPN 1.3.6) (Version: 1.3.6 - ProtonVPN AG)
    PureVPN (HKLM-x32\...\{5a4554ca-71a3-4c6e-81df-0cbfecee4836}) (Version: 6.3.0.0 - ) Hidden
    PureVPN (HKLM-x32\...\PureVPN) (Version: 6.3.0.0 - PureVPN)
    Quick Video Cutter (HKLM-x32\...\Quick Video Cutter) (Version: - Adoreshare, Inc.)
    RarmaRadio 2.71 (HKLM-x32\...\RarmaRadio_is1) (Version: - RaimerSoft)
    Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8395 - Realtek Semiconductor Corp.)
    Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
    Remote Utilities - Host (HKLM-x32\...\{E945283B-758C-4A40-B851-1066D0E49EA8}) (Version: 6.255.6801 - Remote Utilities LLC)
    Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
    Sandboxie 5.26 (64-bit) (HKLM\...\Sandboxie) (Version: 5.26 - Sandboxie Holdings, LLC)
    ScanTransfer 1.0 (HKLM-x32\...\ScanTransfer_is1) (Version: - hxxps://ScanTransfer.net)
    Screen Recorder 1.2.8 (HKLM-x32\...\{51949CCD-4D6E-4BB1-8183-A40570847B14}_is1) (Version: 1.2.8 - Apeaksoft Studio)
    Sentinel Protection Installer 7.6.6 (HKLM-x32\...\{8C2218AC-D1B1-4530-9E67-15164E0E52AB}) (Version: 7.6.6 - SafeNet, Inc.)
    Serif DrawPlus X6 (HKLM\...\{8A8AB2D3-53DE-4A65-8D35-68A09AA1AD7A}) (Version: 13.0.3.26 - Serif (Europe) Ltd)
    Soda PDF Desktop 10 (HKLM-x32\...\SodaDesktop10) (Version: 10.2.9.671 - LULU Software)
    Soda PDF Desktop 10 Asian Fonts Pack (HKLM\...\{1719F0AB-4040-4411-A52E-DCFF5F86EC22}) (Version: 10.2.9.1151 - LULU Software) Hidden
    Soda PDF Desktop 10 Convert Module (HKLM\...\{EA12FECF-70E0-4FC7-B2B0-1B9F63C9C799}) (Version: 10.2.9.1151 - LULU Software) Hidden
    Soda PDF Desktop 10 Create Module (HKLM\...\{8D918860-2F4C-4CA6-A35B-1CE87C8E6D68}) (Version: 10.2.9.1151 - LULU Software) Hidden
    Soda PDF Desktop 10 Edit Module (HKLM\...\{8D4629BA-B1FB-4C01-BF01-C368B8CAB457}) (Version: 10.2.9.1151 - LULU Software) Hidden
    Soda PDF Desktop 10 Forms Module (HKLM\...\{72E2C33C-E522-43BA-9688-851AB0C9C822}) (Version: 10.2.9.1151 - LULU Software) Hidden
    Soda PDF Desktop 10 Insert Module (HKLM\...\{66AF2198-223A-40FD-AFA9-0321C4F51229}) (Version: 10.2.9.1151 - LULU Software) Hidden
    Soda PDF Desktop 10 OCR TESS Module (HKLM\...\{CBC214A5-DA44-4BAF-B508-98F0C3106791}) (Version: 10.2.9.1151 - LULU Software) Hidden
    Soda PDF Desktop 10 Review Module (HKLM\...\{0FB03DBF-15F9-4CC9-A7F8-14B03ECA188C}) (Version: 10.2.9.1151 - LULU Software) Hidden
    Soda PDF Desktop 10 Secure Module (HKLM\...\{18A55899-8452-4C4A-BA4D-0E5178AA7C2C}) (Version: 10.2.9.1151 - LULU Software) Hidden
    Soda PDF Desktop 10 View Module (HKLM\...\{F266B002-83B6-4C52-AB75-BCC7E13D376C}) (Version: 10.2.9.1151 - LULU Software) Hidden
    SoftOrbits Photo Editor 3.2 (HKLM-x32\...\SoftOrbits Photo Editor_is1) (Version: 3.2 - SoftOrbits)
    SoftOrbits Photo Retoucher 4.1 (HKLM-x32\...\SoftOrbits Photo Retoucher_is1) (Version: 4.1 - SoftOrbits)
    Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.17.1.201701041432 - Sony Mobile Communications Inc.)
    Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
    Spotify (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\Spotify) (Version: 1.0.77.338.g758ebd78 - Spotify AB)
    Spotify Saver (HKLM-x32\...\{B011A142-8919-4EC1-B153-7C570B08A2F5}) (Version: 1.0.0.0 - Koubi Soft) Hidden
    Spotify Saver (HKLM-x32\...\Spotify Saver 1.0.0.0) (Version: 1.0.0.0 - Koubi Soft)
    Spotydl 0.9.37.0 (HKLM-x32\...\Spotydl_is1) (Version: 0.9.37.0 - spotydl.com)
    Stopping Plex (HKLM-x32\...\{86752C81-6599-4816-8131-81768538EE2C}) (Version: 1.13.8395 - Plex, Inc.) Hidden
    Streaming Audio Recorder V4.2.0 (HKLM-x32\...\{B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1) (Version: 4.2.0 - APOWERSOFT LIMITED)
    TagScanner 6.0.23 (HKLM-x32\...\TagScanner_is1) (Version: - Sergey Serkov)
    TAP-ProtonVPN 9.21.2 (HKLM\...\TAP-ProtonVPN) (Version: 9.21.2 - ProtonVPN AG)
    TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.93231 - TeamViewer)
    Tixati (HKLM-x32\...\tixati) (Version: - )
    TorrentRover v1.3.0 (HKLM-x32\...\{ED50735D-5B85-4EE3-917F-0187998349CB}) (Version: 1.3.0 - John Loper II (All Rights Reserved))
    TotalD (HKLM-x32\...\{5BB5F772-0259-4C8E-BB3D-93A334C9576F}_is1) (Version: 1.5.4 - www.totald.org)
    TuneFab Spotify Music Converter version 1.0.3 (HKLM-x32\...\{6C016F3A-9540-4513-9460-B5471166B3A8}_is1) (Version: 1.0.3 - TuneFab, Inc.)
    TuneMobie Spotify Music Converter version 1.0.1 (HKLM-x32\...\{EBB1F0D2-CC31-4A74-967F-62370015C939}_is1) (Version: 1.0.1 - TuneMobie, Inc.)
    TwistedBrush Paint Studio (HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\TwistedBrush Paint Studio) (Version: - )
    UninstallTabletDeviceDriver (HKLM\...\{39089688-F09E-4DAD-8C80-647D3DF68630}_is1) (Version: 12.2.17 - )
    Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C5FDDED7-DEC7-48B4-AFD8-DFB8A0FD199A}) (Version: 2.51.0.0 - Microsoft Corporation)
    Vegas Pro 13.0 (64-bit) (HKLM\...\{1EEE0BEE-0BC8-11E5-A19E-F04DA23A5C58}) (Version: 13.0.453 - Sony)
    VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
    Video Joiner (HKLM-x32\...\Video Joiner) (Version: - Adoreshare, Inc.)
    Videomizer 2 (HKLM-x32\...\{B84CB121-58A9-4D5E-0001-805171E318F3}) (Version: 2.0.16.504 - Engelmann Media GmbH)
    VideoProc (HKLM-x32\...\VideoProc) (Version: 3.0 - Digiarty, Inc.)
    Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
    Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
    VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
    VSDC Free Video Editor version 6.1.1.899 (HKLM\...\VSDC Free Video Editor_is1) (Version: 6.1.1.899 - Flash-Integro LLC)
    Web Companion (HKLM-x32\...\{460208f5-a172-409c-8ee8-5ab35ca49dec}) (Version: 4.3.1934.3766 - Lavasoft)
    Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA)
    Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17387 - Microsoft Corporation)
    Windows Driver Package - Graphics Tablet (WinUsb) USBDevice (04/10/2014 8.33.30.0) (HKLM\...\142118DF51345EA02D2B1583E102C8FB95FD6D52) (Version: 04/10/2014 8.33.30.0 - Graphics Tablet)
    WinPDFEditor V3.4 (HKLM-x32\...\WinPDFEditor_is1) (Version: - hxxp://www.WinPDFEditor.com)
    WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
    WinToUSB version 3.9 (HKLM\...\WinToUSB_is1) (Version: 3.9 - Hasleo Software.)
    WinX HD Video Converter Deluxe 5.12.1 (HKLM-x32\...\WinX HD Video Converter Deluxe_is1) (Version: - Digiarty Software, Inc.)
    Wondershare Data Recovery(Build 4.8.3.4) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 4.8.3.4 - Wondershare Software Co.,Ltd.)
    Wondershare Filmora(Build 8.2.1) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
    Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
    Wondershare TidyMyMusic(Build 1.5.0.1) (HKLM-x32\...\Wondershare TidyMyMusic_is1) (Version: 1.5.0.1 - Wondershare Software)
    Xperia Companion (HKLM-x32\...\{27b15812-304d-4fc2-80b7-55a920f30a28}) (Version: 1.6.5.0 - Sony)
    Xperia Companion (HKLM-x32\...\{9D56F227-FC8D-419D-ADEB-41E5734025BD}) (Version: 1.6.5.0 - Sony) Hidden
    Xperia Companion Service (HKLM\...\{941E0B86-5EC0-43BC-9DA9-9BC596150B4B}) (Version: 1.6.5.0 - Sony) Hidden
    ZD Soft Screen Recorder 11.1.10 (HKLM-x32\...\{1CA1D369-D09C-48D5-A850-3A0575710D8E}) (Version: 11.1.10.0 - ZD Soft)
    Zortam Mp3 Media Studio 24.30 (HKLM-x32\...\Zortam Mp3 Media Studio_is1) (Version: - Zortam)
     
  11. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    ==================== Custom CLSID (Whitelisted): ==========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
    ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
    ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
    ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-30] (AVAST Software)
    ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-30] (AVAST Software)
    ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => -> No File
    ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2016-05-10] (Igor Pavlov)
    ContextMenuHandlers1-x32: [AimersoftVideoConverterFileOpreation] -> {1AACB93E-AA97-47F1-BD02-8D2AF2815436} => C:\WINDOWS\SysWOW64\AiCM64.dll [2015-02-27] ()
    ContextMenuHandlers1-x32: [AudioShellContextMenu] -> {0BB9462B-BCDD-4341-8344-790CAE8A747D} => C:\Program Files\AudioShell\AudioShell64.dll [2016-06-06] (Softpointer Inc)
    ContextMenuHandlers1-x32: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-30] (AVAST Software)
    ContextMenuHandlers1-x32: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ContextMenuHandlers1-x32: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time)
    ContextMenuHandlers1-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
    ContextMenuHandlers1-x32: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-02-17] (Florian Heidenreich)
    ContextMenuHandlers1-x32: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-07-05] (pdfforge GmbH)
    ContextMenuHandlers1-x32: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\WINDOWS\system32\mscoree.dll [2018-04-11] (Microsoft Corporation)
    ContextMenuHandlers1-x32: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2018-10-02] ()
    ContextMenuHandlers1-x32: [SodaPDFDesktop10_ManagerExt] -> {D299F3FB-6AA2-4BC7-B192-D9937676B9DE} => C:\Program Files\Soda PDF Desktop 10\context-menu.dll [2018-08-28] (LULU Software)
    ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal)
    ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
    ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-02-17] (Florian Heidenreich)
    ContextMenuHandlers2: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2018-10-02] ()
    ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-30] (AVAST Software)
    ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
    ContextMenuHandlers3: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2018-10-02] ()
    ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2016-05-10] (Igor Pavlov)
    ContextMenuHandlers4-x32: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ContextMenuHandlers4-x32: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time)
    ContextMenuHandlers4-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
    ContextMenuHandlers4-x32: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-02-17] (Florian Heidenreich)
    ContextMenuHandlers4-x32: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2018-10-02] ()
    ContextMenuHandlers4-x32: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => -> No File
    ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-28] (Dropbox, Inc.)
    ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2016-05-10] (Igor Pavlov)
    ContextMenuHandlers6-x32: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-30] (AVAST Software)
    ContextMenuHandlers6-x32: [FMMenuExt] -> {47C91696-894C-46A1-B196-2C7CA1952F45} => C:\Program Files (x86)\Folder Marker\ShellExt64.dll [2013-08-21] (ArcticLine Software)
    ContextMenuHandlers6-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
    ContextMenuHandlers6-x32: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2018-10-02] ()
    ContextMenuHandlers6-x32: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => -> No File
    ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal)
    ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)

    ==================== Scheduled Tasks (Whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    Task: {002651C6-A434-4B95-9720-944B5ECD845F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-25] (Dropbox, Inc.)
    Task: {00A6AA5A-4BA1-4BC0-9314-6DAF3BAD11FE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
    Task: {2B57CA07-90BD-4729-9408-270AD19BE0F4} - System32\Tasks\{A06ED260-3695-4DF6-8DCA-F2BC2FDCE09A} => C:\Windows\system32\pcalua.exe -a C:\Users\user\Downloads\mp3DC206.exe -d C:\Users\user\Downloads
    Task: {35B7BD3A-9B18-4E75-AB98-641DBB9EB342} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [2018-02-22] (FreeDownloadManager.org)
    Task: {3A5F8078-7A6C-4F56-87C4-B5AA08FC3B34} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_153_Plugin.exe [2018-11-21] (Adobe Systems Incorporated)
    Task: {3DAA0A28-D903-4A97-9577-DC2AFE02A6CB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-11-30] (AVAST Software)
    Task: {42BA27C4-D335-42D0-99E3-6805857197BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-04] (Google Inc.)
    Task: {54F6717E-243C-410D-969B-B3E96791F798} - System32\Tasks\Ellp Service => C:\Program Files\Ellp\ellp_service.exe [2018-04-05] (Ellp)
    Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
    Task: {80A4878E-5679-4373-B287-7680912ED916} - System32\Tasks\Driver Booster SkipUAC (user) => C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe [2017-11-16] (IObit)
    Task: {894DDAFD-2C27-47D5-AFC3-227E0606FAD0} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-11-30] (AVAST Software)
    Task: {90A0A488-B414-461B-86E8-FCEBE5A5A1FB} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-11-30] (AVAST Software)
    Task: {A9F54E3D-6A40-437D-A537-7A2DBF800677} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\5.1.0\Scheduler.exe [2017-10-24] (IObit)
    Task: {B4646756-CC65-4FC4-89EF-BE1914167433} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2018-10-27] (AVG Technologies CZ, s.r.o.)
    Task: {B49E0909-B578-4D3E-BCDE-0B0BCEBC17CB} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-11-30] (AVAST Software)
    Task: {B5CA49D6-90EE-43BA-B83C-B57A4961A07E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-21] (Adobe Systems Incorporated)
    Task: {CA928A61-D70E-43C8-A5AB-3E80CEFCE7E5} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files (x86)\PrivaZer\PrivaZer.exe [2018-10-02] (Goversoft LLC)
    Task: {CFF7FDA4-5B15-4E1E-91E1-89F5F2681041} - System32\Tasks\FileAdvisorUpdate => C:\Program Files (x86)\File Type Advisor\fileadvisor.exe [2017-07-28] (File Type Advisor)
    Task: {E0D97F6F-3B2A-4B27-B12E-F0F4A10676D3} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-25] (Dropbox, Inc.)
    Task: {F8DC1180-D255-4D9B-B7C8-8FAAE15E76C2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-04] (Google Inc.)

    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
    Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

    ==================== Shortcuts & WMI ========================

    (The entries could be listed to be restored or removed.)


    ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Chrome Remote Desktop.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
    ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2b69239aeffb3861\HitFilm 4 Express Activation.lnk -> C:\Program Files\FXHOME\HitFilm 4 Express\ActivationApp\hitfilm-4-express.exe (The NWJS Community) -> --user-data-dir="C:\Users\user\AppData\Local\HitFilm 4 Express Activation\User Data" --profile-directory=Default --app-id=jbdgcoiicbhjmjpelekgpdamimehdecj

    ==================== Loaded Modules (Whitelisted) ==============

    2016-06-10 17:26 - 2018-03-22 02:58 - 000811520 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
    2018-02-10 10:48 - 2018-02-22 14:15 - 000037376 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\WinDivert.dll
    2017-10-24 10:02 - 2017-03-26 15:19 - 000063504 _____ () C:\WINDOWS\System32\ruppm.dll
    2017-03-20 17:39 - 2017-03-20 17:37 - 001738952 _____ () C:\Program Files (x86)\AnyDesk\AnyDesk.exe
    2018-10-03 12:20 - 2013-05-14 17:50 - 000140936 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
    2018-07-13 15:09 - 2018-11-12 14:59 - 000105736 _____ () C:\Program Files (x86)\PureVPN\PureVPNService.exe
    2018-04-11 23:34 - 2018-04-11 23:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
    2018-04-11 23:34 - 2018-04-11 23:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
    2018-04-11 23:34 - 2018-04-11 23:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
    2018-04-15 15:10 - 2015-02-27 13:38 - 000721263 _____ () C:\WINDOWS\SysWOW64\AiCM64.dll
    2018-10-02 10:32 - 2018-10-02 10:32 - 003525431 _____ () C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll
    2018-10-23 23:03 - 2018-10-23 23:03 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
    2018-11-14 11:09 - 2018-11-14 11:10 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
    2018-11-14 11:10 - 2018-11-14 11:12 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
    2018-11-14 11:09 - 2018-11-14 11:10 - 010873344 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\LibWrapper.dll
    2018-11-14 11:10 - 2018-11-14 11:12 - 002834432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\skypert.dll
    2018-11-14 11:10 - 2018-11-14 11:11 - 000685568 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
    2018-11-14 11:10 - 2018-11-14 11:12 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
    2017-05-23 16:21 - 2017-05-23 16:21 - 000098304 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\PXF\PXFPlugin.acf
    2017-05-23 16:23 - 2017-05-23 16:23 - 003500808 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\PXF\xqilla23_vc11_x64_u.dll
    2017-05-23 17:44 - 2017-05-23 17:44 - 001743360 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\TransportCog.acf
    2017-05-23 17:47 - 2017-05-23 17:47 - 002036736 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\ProjectSyncInterfaceCog.acf
    2017-05-23 17:46 - 2017-05-23 17:46 - 002702336 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\ProjectSyncCog.acf
    2017-05-23 17:42 - 2017-05-23 17:42 - 004344832 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\NetworkInterfaceCog.acf
    2017-05-23 17:49 - 2017-05-23 17:49 - 001672704 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\FileMgrCog.acf
    2017-05-23 17:49 - 2017-05-23 17:49 - 001985024 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\CompressionCog.acf
    2017-05-23 17:45 - 2017-05-23 17:45 - 002001920 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AvidAssetInterfaceCog.acf
    2017-05-23 17:43 - 2017-05-23 17:43 - 004457984 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AvidAssetCog.acf
    2017-05-23 17:48 - 2017-05-23 17:48 - 002076160 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AssetDeliveryInterfaceCog.acf
    2017-05-23 17:51 - 2017-05-23 17:51 - 004881920 _____ () C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AssetDeliveryCog.acf
    2018-10-23 23:03 - 2018-10-23 23:04 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
    2018-10-23 23:03 - 2018-10-23 23:03 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll
    2018-10-23 23:03 - 2018-10-23 23:03 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll
    2017-09-26 00:57 - 2017-09-26 00:58 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
    2018-10-23 23:03 - 2018-10-23 23:03 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll
    2018-03-01 20:06 - 2017-04-13 12:42 - 000485376 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\avutil-55.dll
    2018-03-01 20:06 - 2017-04-13 12:42 - 002158592 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\avformat-57.dll
    2018-03-01 20:06 - 2017-04-13 12:42 - 012242432 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\avcodec-57.dll
    2018-03-01 20:06 - 2017-04-13 12:42 - 001825792 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\avfilter-6.dll
    2018-03-01 20:06 - 2017-04-13 12:42 - 000662016 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\swscale-4.dll
    2018-03-01 20:06 - 2017-04-13 12:42 - 000138752 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\swresample-2.dll
    2018-02-10 10:48 - 2018-02-22 14:15 - 000048640 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winunivappfeatures.dll
    2018-02-10 10:48 - 2017-04-13 12:46 - 069740544 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\libcef.dll
    2018-02-10 10:48 - 2017-11-30 18:02 - 002521088 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\libglesv2.dll
    2018-02-10 10:48 - 2017-11-30 18:02 - 000015360 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\libegl.dll
    2016-06-10 17:26 - 2018-03-22 02:58 - 002195968 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
    2017-09-21 07:43 - 2017-08-30 10:16 - 000087552 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
    2018-11-28 01:24 - 2018-11-16 05:43 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.110\libglesv2.dll
    2018-11-28 01:24 - 2018-11-16 05:43 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.110\libegl.dll
    2018-05-03 07:02 - 2018-03-19 13:16 - 000892416 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\ApowersoftAndroidDaemon.exe
    2018-11-14 11:24 - 2018-11-01 06:55 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
    2018-11-14 11:12 - 2018-11-14 11:14 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
    2018-11-14 11:12 - 2018-11-14 11:14 - 066031104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
    2018-11-09 21:55 - 2018-11-09 21:56 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
    2017-10-04 22:40 - 2017-10-04 22:40 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
    2018-11-09 21:55 - 2018-11-09 21:55 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
    2018-11-09 21:55 - 2018-11-09 21:56 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
    2018-08-16 17:46 - 2018-08-16 17:47 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
    2018-08-16 17:46 - 2018-08-16 17:47 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_core320.dll
    2018-04-05 10:54 - 2018-04-05 10:55 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
    2018-11-14 11:12 - 2018-11-14 11:14 - 014097920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
    2018-11-09 21:55 - 2018-11-09 21:55 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngine.dll
    2018-11-14 11:12 - 2018-11-14 11:13 - 002863616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
    2018-08-31 07:54 - 2018-08-31 07:55 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
    2018-07-27 03:07 - 2018-07-27 03:07 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
    2018-10-29 10:12 - 2018-10-29 10:13 - 000019968 _____ () C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.49.0_x64__xns73kv1ymhp2\AudibleRT.WindowsPhone.exe
    2018-10-29 10:12 - 2018-10-29 10:13 - 041113088 _____ () C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.49.0_x64__xns73kv1ymhp2\AudibleRT.WindowsPhone.dll
    2018-06-02 06:30 - 2018-06-02 06:30 - 001123840 _____ () C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.49.0_x64__xns73kv1ymhp2\e_sqlite3.dll
    2018-10-29 10:12 - 2018-10-29 10:13 - 000052224 _____ () C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.49.0_x64__xns73kv1ymhp2\AudibleSystemFileWrapperRT.dll
    2018-08-21 21:16 - 2018-08-21 21:16 - 004445248 _____ () C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.49.0_x64__xns73kv1ymhp2\Microsoft.UI.Xaml.dll
    2018-07-13 15:09 - 2018-11-12 14:59 - 003522824 _____ () C:\Program Files (x86)\PureVPN\purevpn.exe
    2018-10-15 07:36 - 2018-11-12 15:00 - 000056072 _____ () C:\Program Files (x86)\PureVPN\Dns\DnsLeakProtector.exe
    2018-09-21 02:47 - 2018-09-21 02:47 - 000083432 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 000203240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
    2018-11-30 11:21 - 2018-11-30 11:21 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
    2018-11-30 11:08 - 2018-11-30 11:08 - 000596696 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
    2017-09-24 15:07 - 2018-09-21 14:18 - 000120096 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.AppCore.dll
    2017-02-07 18:01 - 2018-09-21 14:18 - 000105248 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Utils.dll
    2017-02-07 18:01 - 2018-09-21 14:18 - 000372512 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Business.dll
    2018-09-07 10:15 - 2018-09-21 14:18 - 000062752 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Events.dll
    2017-02-07 18:01 - 2018-09-21 14:18 - 000059168 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.adblocker.dll
    2017-02-07 18:01 - 2018-09-21 14:18 - 000084256 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SysInfo.dll
    2018-09-07 10:15 - 2018-09-21 14:18 - 000020768 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Compression.dll
    2018-09-07 10:15 - 2018-09-21 14:18 - 000065824 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\MozCompressor.dll
    2018-09-07 10:15 - 2018-09-21 14:18 - 000135464 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\liblz4.dll
    2017-02-07 18:01 - 2018-09-21 14:18 - 000040224 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll
    2017-02-07 18:01 - 2018-09-21 14:18 - 000021280 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Utils.SqlLite.dll
    2017-02-07 18:01 - 2018-09-21 14:18 - 000057632 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.CSharp.Utilities.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 001031656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 000059880 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 000115688 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 000772072 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 000025576 _____ () C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 001741288 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 001962984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 001549104 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 000127136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll
    2018-05-03 07:02 - 2018-04-26 08:47 - 001703424 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\ffmpeg.dll
    2018-09-25 07:47 - 2018-08-24 09:52 - 001179376 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\main.dll
    2018-09-25 07:47 - 2018-08-24 09:52 - 000027376 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\Utility.dll
    2018-09-25 07:47 - 2018-08-24 09:52 - 000034544 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\VCReport.dll
    2018-09-25 07:47 - 2018-08-24 09:51 - 000148720 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\CommonCtrls.dll
    2018-09-25 07:47 - 2018-08-24 09:51 - 001614064 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\Framework.dll
    2018-09-25 07:47 - 2018-08-24 09:52 - 000048368 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\TaskScheduler.dll
    2018-09-25 07:47 - 2018-08-24 09:51 - 000157936 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\GifCodec.dll
    2018-09-25 07:47 - 2018-08-24 09:51 - 000287472 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\AMDCodec2.dll
    2018-09-25 07:47 - 2018-08-24 09:51 - 000226544 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\IntelCodec.dll
    2018-09-25 07:47 - 2018-08-24 09:52 - 000190192 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\NvidiaCodec5.dll
    2018-09-25 07:47 - 2018-08-24 09:51 - 000235248 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\AMDCodec.dll
    2018-09-25 07:47 - 2018-08-24 09:52 - 000180464 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\NvidiaCodec8.dll
    2018-09-25 07:47 - 2018-08-24 09:51 - 000115440 _____ () C:\Program Files (x86)\Apeaksoft Studio\Screen Recorder\machineInfo.dll
    2018-10-14 06:44 - 2018-11-12 11:55 - 000517392 _____ () C:\Users\user\Documents\LeaderTask\basedbalm.dll
    2018-10-14 06:44 - 2018-11-12 11:55 - 000083216 _____ () C:\Users\user\Documents\LeaderTask\lt_plugins.dll
    2018-10-14 06:44 - 2018-07-11 13:58 - 004135936 _____ () C:\Users\user\Documents\LeaderTask\knbn.ltdat
    2018-10-14 06:44 - 2018-07-11 13:58 - 003039232 _____ () C:\Users\user\Documents\LeaderTask\hitarget.ltdat
    2018-10-14 06:44 - 2018-07-11 13:58 - 002960384 _____ () C:\Users\user\Documents\LeaderTask\ematrix.ltdat
    2018-10-14 06:44 - 2018-07-11 13:58 - 004806144 _____ () C:\Users\user\Documents\LeaderTask\repmen.ltdat
    2018-10-14 06:44 - 2017-05-25 11:06 - 002503168 _____ () C:\Users\user\Documents\LeaderTask\regular.ltdat
    2018-11-12 14:38 - 2018-07-11 13:58 - 005810176 _____ () C:\Users\user\Documents\LeaderTask\tomato.ltdat
    2018-11-12 14:38 - 2017-12-14 17:57 - 000110592 _____ () C:\Users\user\Documents\LeaderTask\xmmap.ltdat
    2018-10-14 06:44 - 2017-12-14 17:57 - 001888256 _____ () C:\Users\user\Documents\LeaderTask\gtdw.ltdat
    2018-11-12 14:38 - 2017-12-14 17:57 - 001426432 _____ () C:\Users\user\Documents\LeaderTask\wllf.ltdat
    2018-10-14 09:03 - 2018-07-11 13:58 - 004412416 _____ () C:\Users\user\Documents\LeaderTask\eawrds.ltdat
    2018-10-14 09:03 - 2018-07-11 13:58 - 003493376 _____ () C:\Users\user\Documents\LeaderTask\fnnc.ltdat
    2018-10-14 09:03 - 2018-07-11 13:58 - 003312640 _____ () C:\Users\user\Documents\LeaderTask\lvofemps.ltdat
    2018-10-14 09:03 - 2018-07-11 13:58 - 004926464 _____ () C:\Users\user\Documents\LeaderTask\orgchart.ltdat
    2018-10-14 09:03 - 2018-07-11 13:58 - 003390464 _____ () C:\Users\user\Documents\LeaderTask\smart.ltdat
    2018-11-30 12:57 - 2018-11-30 12:57 - 000028774 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\d1e7c33431cd8713f2ce3582829a8b14\Socket.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000024679 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\c5cce8d16a1bd48692b421dcf46d3396\Util.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000032878 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\7ef0d901bf4203fbcf7a0fff0e82aa5f\Encode.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000082033 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\df1ba73f49c38cbbc7a11c779c3506d2\OLE.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000024701 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\d10c2c06ba2044cccc247c4315f5c7d3\Process.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000028779 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\60ff464e01c2cd5526dbdad5a125081d\Dumper.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000020601 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\4461f48e31bde5c56b31b973b773de09\List.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000118918 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\eaeabd54205de2f10c00aea80bbf0d83\Registry.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000082048 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\3a7ccbf8181ee5a145227a6dfce3594c\WinError.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000020576 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\31638f63e39b38d3e250a9a57cb9d1c5\Cwd.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000036964 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\f233f63b6654362865c7577442edb9e3\Win32.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000020590 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\5ffd05b2cbd58528e56519784ca9c869\Hostname.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000024676 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\32785c19dc6898fbbbf06f3b776edd08\Fcntl.dll
    2018-11-30 12:57 - 2018-11-30 12:57 - 000061540 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\e56c61f7248672819579325af3387035\POSIX.dll
    2018-11-30 12:58 - 2018-11-30 12:58 - 000024701 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\93e7e3d6030f426844228042348210cf\Service.dll
    2018-11-30 12:58 - 2018-11-30 12:58 - 000094334 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\eb138ef0e4282611dbf485a302784646\LibYAML.dll
    2018-11-30 12:58 - 2018-11-30 12:58 - 000053340 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\de446fdd1ae335c7d2b9e62bb8cdf765\B.dll
    2018-11-30 12:58 - 2018-11-30 12:58 - 000184414 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-10516\bd5179a413bc0c4b82eedc22c6cab101\re.dll
    2018-11-29 19:57 - 2018-11-28 13:09 - 001141064 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
    2018-11-29 19:57 - 2018-11-28 13:09 - 002103112 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
    2018-10-25 19:27 - 2018-11-28 13:11 - 000023376 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000025456 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000148968 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 001878888 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:09 - 000118232 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll
    2018-10-25 19:27 - 2018-11-28 13:08 - 000109024 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000083784 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:09 - 000418776 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll
    2018-11-29 19:57 - 2018-11-28 13:10 - 000074072 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000049128 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000026600 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000131552 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000182752 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000119272 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000401752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000034664 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000062304 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:08 - 000023520 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000053736 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000065504 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000025944 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000068968 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000032224 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000156504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000092488 _____ () C:\Program Files (x86)\Dropbox\Client\sip.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 001778000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000518992 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000052056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 001929552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 003821392 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000044888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000132944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000218456 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000205656 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000061408 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000051552 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000027624 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000033632 _____ () C:\Program Files (x86)\Dropbox\Client\winreindex.compiled._winreindex.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000028008 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000031600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:08 - 000486880 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000102736 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000029040 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 011410256 _____ () C:\Program Files (x86)\Dropbox\Client\nucleus_python.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000029024 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:09 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
    2018-11-29 19:57 - 2018-11-28 13:10 - 000036712 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000272208 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
    2018-10-25 19:27 - 2018-11-28 13:11 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000433992 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
    2018-10-25 19:27 - 2018-11-28 13:11 - 000035680 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000025920 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
    2018-11-29 19:57 - 2018-11-28 13:10 - 001592128 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
    2018-10-25 19:27 - 2018-11-28 13:11 - 000095592 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shcore.compiled._winffi_shcore.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shell32.compiled._winffi_shell32.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.gdi32.compiled._winffi_gdi32.cp35-win32.pyd
    2018-10-25 19:27 - 2018-11-28 13:11 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000530768 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000348496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd
    2018-11-29 19:57 - 2018-11-28 13:10 - 000037200 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.cp35-win32.pyd
    2016-11-03 12:40 - 2016-10-08 16:03 - 001506304 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll
    2016-11-03 12:40 - 2016-07-21 09:54 - 000137728 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll
    2016-11-10 16:28 - 2018-08-04 10:56 - 000054784 _____ () C:\Program Files (x86)\Allavsoft\Video Downloader Converter\record\screen-capture-recorder.dll
    2018-05-03 07:02 - 2018-04-26 08:47 - 002517504 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\libglesv2.dll
    2018-05-03 07:02 - 2018-04-26 08:47 - 000015872 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\libegl.dll
    2018-11-30 12:59 - 2018-11-30 12:59 - 003066880 _____ () \\?\C:\Users\user\AppData\Local\Temp\A1DB.tmp.node
    2018-05-03 07:02 - 2018-04-26 09:11 - 000196608 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\XPhonePlus.dll
    2018-05-03 07:02 - 2018-04-26 09:11 - 002343424 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\AndroidMonitor.dll
    2018-05-03 07:02 - 2018-04-26 09:11 - 007743488 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\IOSMonitor.dll
    2018-05-03 07:02 - 2018-03-06 12:02 - 000751616 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\log4cplusU.dll
    2018-05-03 07:02 - 2018-03-06 12:02 - 000488448 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\turbojpeg.dll
    2018-05-03 07:02 - 2018-03-06 12:02 - 000359936 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\reader_heif.dll
    2018-05-03 07:02 - 2018-03-06 12:01 - 000176640 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\libyuv.dll
    2018-05-03 07:02 - 2018-03-06 12:01 - 000418304 _____ () C:\Program Files (x86)\Apowersoft\ApowerManager\libde265.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000118918 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\eaeabd54205de2f10c00aea80bbf0d83\Registry.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000082048 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\3a7ccbf8181ee5a145227a6dfce3594c\WinError.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000020576 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\31638f63e39b38d3e250a9a57cb9d1c5\Cwd.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000036964 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\f233f63b6654362865c7577442edb9e3\Win32.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000024676 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\32785c19dc6898fbbbf06f3b776edd08\Fcntl.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000061540 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\e56c61f7248672819579325af3387035\POSIX.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000020590 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\5ffd05b2cbd58528e56519784ca9c869\Hostname.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000082033 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\df1ba73f49c38cbbc7a11c779c3506d2\OLE.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000028779 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\60ff464e01c2cd5526dbdad5a125081d\Dumper.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000020601 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\4461f48e31bde5c56b31b973b773de09\List.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000024681 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\c199d3c1960e7aeeecb599487952bed2\HiRes.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000090213 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\961b0d62fa52b1dd29c795a822fbf1cf\DBI.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000024679 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\c5cce8d16a1bd48692b421dcf46d3396\Util.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000077824 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\7f177c338672436e01c4f0bdbcf94491\EV.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000138752 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\44727051c604ef6b79894b64d4c63832\Expat.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000041080 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\2b1fc61b36a6711ea149b18bf3b41500\Parser.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000030720 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\dacfd0ab9b5fd029ed8d29e4482b0775\XS.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000020590 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\fa9e3c814aa32db2ad5f17bdfbc22746\attributes.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000024694 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\c344fd5536724b2af2e6453833b60203\SHA1.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000094334 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\eb138ef0e4282611dbf485a302784646\LibYAML.dll
    2018-11-30 13:01 - 2018-11-30 13:01 - 000053340 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\de446fdd1ae335c7d2b9e62bb8cdf765\B.dll
    2018-11-30 13:01 - 2018-11-30 13:01 - 000184414 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\bd5179a413bc0c4b82eedc22c6cab101\re.dll
    2018-11-30 13:01 - 2018-11-30 13:01 - 000020592 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\b979ace6da01e63d651cce9ee2474fdc\Name.dll
    2018-11-30 13:01 - 2018-11-30 13:01 - 000028774 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\d1e7c33431cd8713f2ce3582829a8b14\Socket.dll
    2018-11-30 13:01 - 2018-11-30 13:01 - 000188416 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\79968656e80ea9a20c91906f4fa20dcb\Scan.dll
    2018-11-30 13:01 - 2018-11-30 13:01 - 000024672 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\17d0b152e63e6bfe81b4b19588538896\mro.dll
    2018-11-30 13:01 - 2018-11-30 13:01 - 000020596 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\3b7106dd14676048b10bbb09a990f74c\XS.dll
    2018-11-30 13:01 - 2018-11-30 13:01 - 000032878 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\7ef0d901bf4203fbcf7a0fff0e82aa5f\Encode.dll
    2018-11-30 13:02 - 2018-11-30 13:02 - 000024695 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\cf5fe81e2f5dcbfecfd0495e1648c991\Unicode.dll
    2018-11-30 13:02 - 2018-11-30 13:02 - 000024670 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\3a8764e0d7c5d453e01d9ad08cf7fb58\IO.dll
    2018-11-30 13:02 - 2018-11-30 13:02 - 000361472 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\aff7ee779ea184f884ed432c30a58f5d\Scale.dll
    2018-11-30 13:02 - 2018-11-30 13:02 - 000024701 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\d10c2c06ba2044cccc247c4315f5c7d3\Process.dll
    2018-11-30 13:02 - 2018-11-30 13:02 - 000061546 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\4f2c03383aab0133b8dc0a3fa2dd92fa\Storable.dll
    2018-11-30 13:02 - 2018-11-30 13:02 - 000110705 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\7f2598c08178217a0e2c754f3d568f28\Byte.dll
    2018-11-30 13:03 - 2018-11-30 13:03 - 000024679 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\c19d5e3dc664d9f4ce700001e2621cee\MD5.dll
    2018-11-30 13:03 - 2018-11-30 13:03 - 000030208 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\0665c25e931c1ac0151b062449e91028\XSAccessor.dll
    2018-11-30 13:03 - 2018-11-30 13:03 - 000020587 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\c668a322917d32a5ea22894518aa9897\Base64.dll
    2018-11-30 13:03 - 2018-11-30 13:03 - 001159286 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\33af46f603252ebd5ba855410dec0d93\SSLeay.dll
    2018-11-30 13:04 - 2018-11-30 13:04 - 000608256 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\e2e81dd6b3e5a36f0bdae076393cc11d\SQLite.dll
    2018-11-30 13:00 - 2018-11-30 13:00 - 000001024 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\e2e81dd6b3e5a36f0bdae076393cc11d\icudt46.dll
    2018-11-30 13:04 - 2018-11-30 13:04 - 000020596 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\d1c77e404b5c4b954fa537ed63c8fb7b\File.dll
    2018-11-30 13:05 - 2018-11-30 13:05 - 000017920 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\8fedeb86a4a984edfc1fb255d4ea965c\XS.dll
    2018-11-30 13:05 - 2018-11-30 13:05 - 000061547 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\bc147d83c7c868eeee67082dcf55430c\File.dll
    2018-11-30 13:05 - 2018-11-30 13:05 - 000032881 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\b6bd87c968599725b8ab2e5c25d3046a\API.dll
    2018-11-30 13:05 - 2018-11-30 13:05 - 000098415 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\19febd96672ffdb7ea244cef36aaa062\Zlib.dll
    2018-11-30 13:06 - 2018-11-30 13:06 - 000020584 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\b85a62b790c857e778d07594fda14f0d\Peek.dll
    2018-12-02 00:37 - 2018-12-02 00:37 - 000024704 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\1e38192c6899d056cd3bac90c35aac5b\Shortcut.dll
    2018-12-02 00:37 - 2018-12-02 00:37 - 000024689 ____R () C:\Users\user\AppData\Local\Temp\pdk-user-12324\fc02da2bf6cf444ed6ad589e94272526\encoding.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 000050152 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000071656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000024552 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000041448 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000930280 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000075240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 000200168 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
    2018-09-21 02:47 - 2018-09-21 02:47 - 000218088 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000018920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000095720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000143336 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000694248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
    2018-09-21 02:47 - 2018-09-21 02:47 - 000064488 _____ () C:\Program Files (x86)\Plex\Plex Media Server\TeVii.dll
     
  12. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    ==================== Alternate Data Streams (Whitelisted) =========

    (If an entry is included in the fixlist, only the ADS will be removed.)

    AlternateDataStreams: C:\ProgramData\TEMP:1ED915E2 [274]
    AlternateDataStreams: C:\ProgramData\TEMP:8331D35A [128]
    AlternateDataStreams: C:\Users\user\Documents\Getting Started.pdf:com.dropbox.attributes [168]

    ==================== Safe Mode (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== Association (Whitelisted) ===============

    (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


    ==================== Internet Explorer trusted/restricted ===============

    (If an entry is included in the fixlist, it will be removed from the registry.)

    IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
    IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
    IE trusted site: HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\localhost -> localhost
    IE trusted site: HKU\S-1-5-21-1077736426-23431034-3860886319-1001\...\webcompanion.com -> hxxp://webcompanion.com

    ==================== Hosts content: ===============================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2015-10-30 07:24 - 2018-11-15 18:46 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-1077736426-23431034-3860886319-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\IrfanView\IrfanView_Wallpaper.bmp
    DNS Servers: 188.72.95.3 - 188.72.95.5
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
    Windows Firewall is enabled.

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    If an entry is included in the fixlist, it will be removed.


    ==================== FirewallRules (Whitelisted) ===============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    FirewallRules: [{D77B4F46-01E7-471B-840C-FE0EDE5279A8}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Editor Pro\Video Editor Pro.exe
    FirewallRules: [{E2D0FBBD-D697-4F4B-9F19-D64964DAFF0B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Editor Pro\Video Editor Pro.exe
    FirewallRules: [UDP Query User{FB5D36CB-A6DA-4725-8B70-DDBBA42C1A0D}C:\program files (x86)\dimo dvdmate\dimovideoconverterultimate.exe] => (Block) C:\program files (x86)\dimo dvdmate\dimovideoconverterultimate.exe
    FirewallRules: [TCP Query User{03F97A84-9651-4241-8E46-24FDCAE6A5F7}C:\program files (x86)\dimo dvdmate\dimovideoconverterultimate.exe] => (Block) C:\program files (x86)\dimo dvdmate\dimovideoconverterultimate.exe
    FirewallRules: [UDP Query User{45C94AE2-9C4C-4636-9155-5FB5D91B8BE2}C:\users\user\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\user\appdata\local\programs\deezer-desktop\deezer.exe
    FirewallRules: [TCP Query User{1299CFC6-E4FE-4F81-AF82-E8FB77825C5C}C:\users\user\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\user\appdata\local\programs\deezer-desktop\deezer.exe
    FirewallRules: [{EE67A984-542A-4816-B5A2-3B423127ECDA}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe
    FirewallRules: [{6CDAC6E1-60C0-43A4-A4A5-2342AAEAD806}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe
    FirewallRules: [{04C882BE-58FE-4E00-9F4E-CD9738A3733F}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe
    FirewallRules: [{E3978F8F-6387-4B31-979E-8CD468D546DF}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe
    FirewallRules: [{234D1165-1BB7-4179-8526-0DBD38A95BCE}] => (Allow) C:\ScanTransferHost\core\apache2\bin\httpd_z.exe
    FirewallRules: [{360D8F32-88B2-4D73-88FD-5705DDDB064F}] => (Allow) C:\ScanTransferHost\core\apache2\bin\httpd_z.exe
    FirewallRules: [UDP Query User{9041C85A-ADBD-4546-9191-63C1CD13E588}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
    FirewallRules: [TCP Query User{4FDC2173-BDDC-4E6A-911E-005DFEB35666}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
    FirewallRules: [{C1FCD347-6CF2-468A-944C-DBFB6230D5C4}] => (Allow) C:\Program Files (x86)\concept design\onlineTV 13\onlineTV.exe
    FirewallRules: [{1F26B87E-D9F7-4B2D-9EBB-47734D693261}] => (Allow) C:\Program Files (x86)\concept design\onlineTV 13\onlineTV.exe
    FirewallRules: [{E3318BCD-E962-4A7E-86D5-66F17A588D1E}] => (Allow) C:\Program Files (x86)\AceThinker\AceThinker Video Master\AceThinker Video Master.exe
    FirewallRules: [{009C3BE8-439E-4BFD-8EB8-412318A3D689}] => (Allow) C:\Program Files (x86)\AceThinker\AceThinker Video Master\AceThinker Video Master.exe
    FirewallRules: [{9E790A3E-A593-4351-8933-1C1F92411996}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    FirewallRules: [{FC8F40AF-70C6-4C59-937E-B49512EF40DF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    FirewallRules: [{1808DFC7-CBDD-496B-BE2F-96A5E95EE909}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
    FirewallRules: [{3731426C-DED9-4844-BCBE-5131B0221354}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
    FirewallRules: [{C3BF9AEF-7F66-49E8-B46D-0680BD778FE0}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe
    FirewallRules: [{4EB76C6C-93AE-4C72-B2D5-2510227A9682}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe
    FirewallRules: [UDP Query User{66874A9B-72DA-4BA4-A6FA-08DFE886A176}C:\users\user\appdata\local\programs\deezloader\deezloader.exe] => (Allow) C:\users\user\appdata\local\programs\deezloader\deezloader.exe
    FirewallRules: [TCP Query User{52B8ED23-4A3B-4612-BA9F-3859EAE085FA}C:\users\user\appdata\local\programs\deezloader\deezloader.exe] => (Allow) C:\users\user\appdata\local\programs\deezloader\deezloader.exe
    FirewallRules: [{AA25B0BD-8A1F-4768-AE12-0D163EE9A334}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll
    FirewallRules: [{33162ACD-EA0F-4764-A034-02144C7735CF}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll
    FirewallRules: [{6524DFA4-EBC3-48B0-926C-7BDB4896FAC6}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
    FirewallRules: [{B866D31F-8955-484D-93BB-58E2173370BC}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
    FirewallRules: [{972C45B1-24BA-401B-8940-8FAA59ACAE65}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    FirewallRules: [{41E4D075-D7CE-4E62-BD8C-600392C04451}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    FirewallRules: [{4FD5EAD7-38B2-4B90-9B6F-A2B729B96AD5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
    FirewallRules: [{1BA20ABB-08C6-4D83-AB35-7F8B5F532E05}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
    FirewallRules: [{93950B00-5479-47BC-81C7-48B5680D99C9}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
    FirewallRules: [{8EF900E8-F1FC-4E9C-99F3-ED3904901321}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
    FirewallRules: [{7ADC7FD0-681E-4C77-81CB-ABACC2048096}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
    FirewallRules: [{03DDC25A-289D-4D9C-97DC-7F2360CDEC23}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
    FirewallRules: [{CA002295-0905-4680-9D01-7D43CF536EEE}] => (Allow) C:\Program Files\Avid\Application Manager\AvidAppManHelper.exe
    FirewallRules: [{7B7E19C6-3751-46A5-B1C6-61416305CD4F}] => (Allow) C:\Program Files\Avid\Application Manager\AvidApplicationManager.exe
    FirewallRules: [{A7A7CA8C-F50D-4622-B630-03E115803313}] => (Allow) C:\Program Files\Avid\Application Manager\jre\bin\java.exe
    FirewallRules: [{1F837AB7-72B1-4883-9869-33CCC0036A3F}] => (Allow) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe
    FirewallRules: [{4C77DC8A-484D-4FEF-982D-5665B289B5AF}] => (Allow) C:\Program Files\Avid\Cloud Client Services\Hub.exe
    FirewallRules: [{3E11B150-4282-4478-BB01-3D4F0C22765B}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\AutoUpdate.exe
    FirewallRules: [{8E9ACB1E-4D91-4EC9-8AEF-3B2A5E1885A9}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\AutoUpdate.exe
    FirewallRules: [{A55D515A-3BAF-44BB-998F-B5EC81FF86E8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DBDownloader.exe
    FirewallRules: [{7EFABA84-1A5D-40C2-A189-F75D7D229D5D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DBDownloader.exe
    FirewallRules: [{CA187B51-B791-4DB3-9458-F0F6AEFD6B47}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe
    FirewallRules: [{563C3015-56ED-45EB-8AC5-A22EE4A3B7F7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe
    FirewallRules: [{374AD205-9B6B-401B-BE72-87939719B821}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe
    FirewallRules: [{B30602B2-5C13-4ADC-BEEC-4B1B57D6D9D1}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
    FirewallRules: [{7B474D15-7C36-409D-A6E6-95C7EAC4535C}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
    FirewallRules: [{44A9401F-B88C-43C8-9AF4-B535D01433B2}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe
    FirewallRules: [{1EF8786A-AB5C-402D-BB09-DCDF72B605BE}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
    FirewallRules: [{17B04480-7506-45E5-A778-35A645BCFEFA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
    FirewallRules: [{D9E514E9-8D0D-43F2-84FE-9265E1DED9B1}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
    FirewallRules: [{48933A6B-6E35-4F3D-88CF-DB2C92FD8FDC}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
    FirewallRules: [{F6CE5BFF-6BBA-470A-A39C-FE63D4EB0BF8}] => (Allow) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
    FirewallRules: [{36180693-1F36-488E-A3D6-AA36AE64C3B0}] => (Allow) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
    FirewallRules: [{99AC93A9-66D1-4348-9DD4-B300E8CB78CB}] => (Allow) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
    FirewallRules: [{E9916DEA-62A5-43FE-B2A5-56590A6683D0}] => (Allow) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
    FirewallRules: [{EE656D86-8821-4417-B631-660104C19C90}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
    FirewallRules: [{DCC83E5E-15DF-4650-9DEB-7D2AC300DAFD}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
    FirewallRules: [{7208B8B5-58A0-4C78-A62A-98CB5124910C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
    FirewallRules: [{38BF6F1C-6C02-4438-AE2D-DA983325C663}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
    FirewallRules: [{9F854360-04D8-48E6-A7F7-DAEE34436546}] => (Allow) C:\Program Files (x86)\Squeezebox\server\SqueezeSvr.exe
    FirewallRules: [{77B51623-F342-4C6A-9255-058B1CBDF760}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    FirewallRules: [{59D44D74-1AC1-44EA-9A72-586FD54BCC6C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    FirewallRules: [{F39B8563-A941-4C6E-9A2C-38E8738C03FA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
    FirewallRules: [{23B7D26A-1EB6-42CA-98F9-82C1B8F54CE0}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
    FirewallRules: [{885A0404-B07A-4A0D-8EF8-4327D7ABE1FF}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
    FirewallRules: [{4237EBA1-E326-478B-9C2A-9FBF6BD2DAED}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
    FirewallRules: [{99F13E59-D3F1-4881-A081-63DA6EEC76E2}] => (Allow) C:\Program Files (x86)\Audials\Audials 2016\Audials.exe
    FirewallRules: [{A522FF49-8B02-4B7B-B267-ADCA523FF93D}] => (Allow) LPort=12972
    FirewallRules: [{86B8CB89-E745-4C25-A18B-F211F5015299}] => (Allow) LPort=14714
    FirewallRules: [{C0E66F2D-FBBE-4965-804A-ECF9F96CAF66}] => (Allow) LPort=31931
    FirewallRules: [TCP Query User{4920B0F9-1D22-4F13-B70D-D766C8C562EC}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe
    FirewallRules: [UDP Query User{DB55E126-17D3-49E2-BBE2-7A0716B0708B}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe
    FirewallRules: [TCP Query User{06D931F4-F282-4156-BC3E-D694BFBC75A4}C:\program files\tixati\tixati.exe] => (Allow) C:\program files\tixati\tixati.exe
    FirewallRules: [UDP Query User{F5DAC31D-51D4-4165-AF39-D6301D9896AE}C:\program files\tixati\tixati.exe] => (Allow) C:\program files\tixati\tixati.exe
    FirewallRules: [TCP Query User{3302E5F5-CDAE-46CE-8A14-214C02D5F272}C:\program files (x86)\plex\plex media server\plex dlna server.exe] => (Allow) C:\program files (x86)\plex\plex media server\plex dlna server.exe
    FirewallRules: [UDP Query User{94E77232-78DF-4A26-9977-91FAD8642FD5}C:\program files (x86)\plex\plex media server\plex dlna server.exe] => (Allow) C:\program files (x86)\plex\plex media server\plex dlna server.exe
    FirewallRules: [TCP Query User{B393624E-8C74-49B7-831E-59385649ED56}C:\program files (x86)\freetelly\freetelly.exe] => (Allow) C:\program files (x86)\freetelly\freetelly.exe
    FirewallRules: [UDP Query User{0DA5EEF0-C2FA-4ED8-8272-4CCBE2ADAE04}C:\program files (x86)\freetelly\freetelly.exe] => (Allow) C:\program files (x86)\freetelly\freetelly.exe
    FirewallRules: [{F538A535-F7B0-41F2-A109-F90F0ACD7130}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\ActivePresenter.exe
    FirewallRules: [{AB495428-2AFF-4C05-BD30-3301EE59D1C7}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\ActivePresenter.exe
    FirewallRules: [{8729C48B-1FD5-42D0-9888-50F75ACDA01C}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlhtmlrenderer.exe
    FirewallRules: [{238C26FD-9DC6-4931-AA55-1981411EF22D}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlhtmlrenderer.exe
    FirewallRules: [{0C1701BC-7669-4C36-9117-7897A72DD9CF}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlactivator.exe
    FirewallRules: [{82C0A7DD-7A4A-4D43-9152-0A940D31B928}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlactivator.exe
    FirewallRules: [{E7313BBB-8243-4527-B1BE-CF365275DE87}] => (Allow) C:\Program Files (x86)\Squeezebox\server\SqueezeSvr.exe
    FirewallRules: [TCP Query User{D0BC57F2-1ABA-45AD-8865-5C15D60334A2}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
    FirewallRules: [UDP Query User{3842FDDF-9F8A-4C07-82FE-739E9325A050}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
    FirewallRules: [{C35A91AC-F0CA-47B4-8F00-C856F20B3A6B}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe
    FirewallRules: [{D9EE0326-AB4A-41E1-B91A-F4ACF8754BA0}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe
    FirewallRules: [{2ED5979B-4F7E-4845-B836-4D790D8FFB8E}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe
    FirewallRules: [{5464DD12-544F-4353-B468-A8EAA8E103BA}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe
    FirewallRules: [{0CC1C569-7CBF-420A-B7C4-E5422C2A08FE}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
    FirewallRules: [{82887A9D-5982-44B9-AEEC-462E59C218CF}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
    FirewallRules: [{BF677B4F-C215-40F0-B86C-733163F87D02}] => (Allow) C:\Program Files (x86)\AceThinker\AceThinker Music Recorder\AceThinker Music Recorder.exe
    FirewallRules: [{D48166C0-06B6-4164-8CDD-26D19385B854}] => (Allow) C:\Program Files (x86)\AceThinker\AceThinker Music Recorder\AceThinker Music Recorder.exe
    FirewallRules: [{6166AD0F-AE47-459D-9CF2-086869769348}] => (Allow) C:\Program Files (x86)\AceThinker\AceThinker Music Recorder\ApowersoftVideoHelper.dll
    FirewallRules: [{B96065E3-E24C-44FF-BE93-477B8C44A426}] => (Allow) C:\Program Files (x86)\AceThinker\AceThinker Music Recorder\ApowersoftVideoHelper.dll
    FirewallRules: [TCP Query User{77F849F3-9489-4EB4-88BD-71F5DE19528F}C:\program files (x86)\koubi soft\spotify saver\spotifysaver.exe] => (Allow) C:\program files (x86)\koubi soft\spotify saver\spotifysaver.exe
    FirewallRules: [UDP Query User{64293965-40C1-4785-BE73-A66293A56945}C:\program files (x86)\koubi soft\spotify saver\spotifysaver.exe] => (Allow) C:\program files (x86)\koubi soft\spotify saver\spotifysaver.exe
    FirewallRules: [{9058BDC7-794D-4F52-B33D-95DEC9175079}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey (non-skinned).exe
    FirewallRules: [{8F3B3F2E-3A76-4667-AA5E-C731D9E81DF1}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey (non-skinned).exe
    FirewallRules: [{1943B8B3-AD70-40AB-B58E-91DB0A6FABA5}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey (non-skinned).exe
    FirewallRules: [TCP Query User{E6D0AE97-051E-432C-9C3B-7CC17CFCBBF4}C:\users\user\desktop\deezloader-win32-x64\deezloader.exe] => (Allow) C:\users\user\desktop\deezloader-win32-x64\deezloader.exe
    FirewallRules: [UDP Query User{B81E91BE-4937-44EC-801A-2803D23F47BC}C:\users\user\desktop\deezloader-win32-x64\deezloader.exe] => (Allow) C:\users\user\desktop\deezloader-win32-x64\deezloader.exe
    FirewallRules: [{FE115C0D-6D30-4726-A477-6CF7FB0D000A}] => (Allow) C:\Program Files (x86)\Remote Utilities - Host\rutserv.exe
    FirewallRules: [TCP Query User{D2AB6EEE-47A7-446E-990C-0156C0F82712}C:\program files\on1\on1 effects 10\on1 effects 10.exe] => (Allow) C:\program files\on1\on1 effects 10\on1 effects 10.exe
    FirewallRules: [UDP Query User{2E759E5F-5BF1-4C33-8063-864EF14E68F0}C:\program files\on1\on1 effects 10\on1 effects 10.exe] => (Allow) C:\program files\on1\on1 effects 10\on1 effects 10.exe
    FirewallRules: [{50A52D42-5613-43B3-8ADA-A72C515C61B2}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe
    FirewallRules: [{B8D88D29-EA03-4879-80CD-30095D659677}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe
    FirewallRules: [TCP Query User{AF69C6EF-35C0-4EF1-A3B7-DD00FFB31ADF}E:\kodi\kodi.exe.exe] => (Allow) E:\kodi\kodi.exe.exe
    FirewallRules: [UDP Query User{A7108D02-9668-469F-8652-6AD8F86FD5D6}E:\kodi\kodi.exe.exe] => (Allow) E:\kodi\kodi.exe.exe
    FirewallRules: [{58E51E17-16D4-425E-864B-2B461064DA9F}] => (Allow) C:\Users\user\Desktop\IperiusRemote.exe
    FirewallRules: [{2D42359C-0705-4AB6-87EC-24A2072EB48E}] => (Allow) C:\Users\user\Desktop\IperiusRemote.exe
    FirewallRules: [{0773B7A0-BD3C-4E6A-861A-3F07746F5FD9}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe
    FirewallRules: [{DA9B07F0-035F-4C2D-964C-97C1776AF821}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe
    FirewallRules: [TCP Query User{2A872092-A609-4249-AF59-4D91A7184234}C:\program files (x86)\totald\totald.exe] => (Allow) C:\program files (x86)\totald\totald.exe
    FirewallRules: [UDP Query User{7A46815C-7C68-4C60-BB55-800197730532}C:\program files (x86)\totald\totald.exe] => (Allow) C:\program files (x86)\totald\totald.exe
    FirewallRules: [{70105681-125C-4C48-8ADA-8EEAEF506EDD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
    FirewallRules: [{69EB255B-B08E-4D36-BA79-9F0562175EB7}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
    FirewallRules: [{04343333-8323-4E80-8AFD-02D2B2A13D37}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe
    FirewallRules: [TCP Query User{D3F66215-54DF-4C78-8BB8-7AA6CBC4E612}C:\program files (x86)\purevpn\purevpn.exe] => (Allow) C:\program files (x86)\purevpn\purevpn.exe
    FirewallRules: [UDP Query User{07DBAEF9-B875-4D0E-A81F-C2B23458AFBD}C:\program files (x86)\purevpn\purevpn.exe] => (Allow) C:\program files (x86)\purevpn\purevpn.exe
    FirewallRules: [{65CF4C9B-FCFE-4510-AFB5-63DCB2B0CB0B}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
    FirewallRules: [{4CBBCFAB-FD9B-49E7-822B-9FA9BC681D45}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
    FirewallRules: [{6C658DC8-C920-42D5-9FA8-DDE5977CEBBA}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
    FirewallRules: [{ADA9ACCD-997A-41AA-972C-B92997D00EB1}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
    FirewallRules: [{77784ACA-D417-41E0-BDE9-C218806EEA7D}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe
    FirewallRules: [{D03F1CFF-857F-4C70-9BD9-E55C8B61B839}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
    FirewallRules: [{AB695369-E7BA-4BE6-8AEC-765AECDFB360}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
    FirewallRules: [{296EACA6-1FB0-4FF7-B00B-58DD32B2B507}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe
    FirewallRules: [{94A78BBE-BB9F-4EF8-A594-AA540C88424E}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe
    FirewallRules: [{AD12A45E-FCBF-4B65-9F1B-F35F7029B20F}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe
    FirewallRules: [{A2D0A53E-E8B4-407B-929C-1A2B51442A8D}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe
    FirewallRules: [{56241635-984C-4068-A3BB-C9A8EC34C95E}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe
    FirewallRules: [{B4B28674-6721-49BD-A2F7-504AA18FD435}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe
    FirewallRules: [{7ECF35F8-2A5C-472A-8644-C27126FE2D19}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    FirewallRules: [{340B1790-CEC6-401D-901E-197EAE46EC70}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
    FirewallRules: [{CD4E3057-31C1-4A3E-B905-F58243B41A7C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
    FirewallRules: [{A02D67E5-E787-4CC5-96D2-E89B9FBA087C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
    FirewallRules: [{BFAA9663-1561-4A91-9A2C-8A884CEE80E1}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
    FirewallRules: [{662DCF93-352A-4DE2-A4DB-4E94C4F1E9A5}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
    FirewallRules: [{71D4CE4C-1B4E-471E-B957-69AB92601B7C}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
    FirewallRules: [{21E83678-9B33-45E1-94B7-57E72D273101}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
    FirewallRules: [{85C59530-EB7B-414F-A42A-AEFA2D2BA2C1}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
    FirewallRules: [{C1A052B5-9E1C-45D3-89A6-38F15328A79E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
    FirewallRules: [{D1A67C33-AA36-41C3-862C-C1538371615D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
    FirewallRules: [{97B4A649-E49B-45DC-899A-129DBDE4087B}] => (Allow) C:\Program Files (x86)\PremierOpinion\pmropn.exe
    FirewallRules: [{41327BE9-7C3B-4385-A5BA-78FFEC667B02}] => (Allow) C:\Program Files (x86)\PremierOpinion\pmropn.exe
    DomainProfile\GloballyOpenPorts: [9000:TCP] => Enabled:Logitech Media Server 9000 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9001:TCP] => Enabled:Logitech Media Server 9001 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9002:TCP] => Enabled:Logitech Media Server 9002 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9003:TCP] => Enabled:Logitech Media Server 9003 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9004:TCP] => Enabled:Logitech Media Server 9004 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9005:TCP] => Enabled:Logitech Media Server 9005 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9006:TCP] => Enabled:Logitech Media Server 9006 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9007:TCP] => Enabled:Logitech Media Server 9007 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9008:TCP] => Enabled:Logitech Media Server 9008 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9009:TCP] => Enabled:Logitech Media Server 9009 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9010:TCP] => Enabled:Logitech Media Server 9010 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9100:TCP] => Enabled:Logitech Media Server 9100 tcp (UI)
    DomainProfile\GloballyOpenPorts: [8000:TCP] => Enabled:Logitech Media Server 8000 tcp (UI)
    DomainProfile\GloballyOpenPorts: [10000:TCP] => Enabled:Logitech Media Server 10000 tcp (UI)
    DomainProfile\GloballyOpenPorts: [9090:TCP] => Enabled:Logitech Media Server 9090 tcp (UI)
    DomainProfile\GloballyOpenPorts: [3483:UDP] => Enabled:Logitech Media Server 3483 udp
    DomainProfile\GloballyOpenPorts: [3483:TCP] => Enabled:Logitech Media Server 3483 tcp
    StandardProfile\GloballyOpenPorts: [9000:TCP] => Enabled:Logitech Media Server 9000 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9001:TCP] => Enabled:Logitech Media Server 9001 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9002:TCP] => Enabled:Logitech Media Server 9002 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9003:TCP] => Enabled:Logitech Media Server 9003 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9004:TCP] => Enabled:Logitech Media Server 9004 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9005:TCP] => Enabled:Logitech Media Server 9005 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9006:TCP] => Enabled:Logitech Media Server 9006 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9007:TCP] => Enabled:Logitech Media Server 9007 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9008:TCP] => Enabled:Logitech Media Server 9008 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9009:TCP] => Enabled:Logitech Media Server 9009 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9010:TCP] => Enabled:Logitech Media Server 9010 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9100:TCP] => Enabled:Logitech Media Server 9100 tcp (UI)
    StandardProfile\GloballyOpenPorts: [8000:TCP] => Enabled:Logitech Media Server 8000 tcp (UI)
    StandardProfile\GloballyOpenPorts: [10000:TCP] => Enabled:Logitech Media Server 10000 tcp (UI)
    StandardProfile\GloballyOpenPorts: [9090:TCP] => Enabled:Logitech Media Server 9090 tcp (UI)
    StandardProfile\GloballyOpenPorts: [3483:UDP] => Enabled:Logitech Media Server 3483 udp
    StandardProfile\GloballyOpenPorts: [3483:TCP] => Enabled:Logitech Media Server 3483 tcp

    ==================== Restore Points =========================

    20-11-2018 18:21:26 Windows Update
    30-11-2018 12:04:21 Scheduled Checkpoint

    ==================== Faulty Device Manager Devices =============

    Name:
    Description:
    Class Guid:
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (12/02/2018 09:36:13 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
    Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

    Error: (12/02/2018 08:34:19 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
    Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

    Error: (12/02/2018 07:34:18 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
    Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

    Error: (12/02/2018 06:38:36 AM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: fileadvisor.exe, version: 1.7.0.18, time stamp: 0x597bf8b4
    Faulting module name: shell32.dll, version: 10.0.17134.376, time stamp: 0x356f2f1e
    Exception code: 0xc0000005
    Fault offset: 0x00175560
    Faulting process ID: 0x529c
    Faulting application start time: 0x01d48a0987e130bf
    Faulting application path: C:\Program Files (x86)\File Type Advisor\fileadvisor.exe
    Faulting module path: C:\WINDOWS\System32\shell32.dll
    Report ID: 255ef0ff-f532-4d59-9bc0-ab6d93eae42b
    Faulting package full name:
    Faulting package-relative application ID:

    Error: (12/02/2018 06:38:28 AM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: fileadvisor.exe, version: 1.7.0.18, time stamp: 0x597bf8b4
    Faulting module name: ntdll.dll, version: 10.0.17134.376, time stamp: 0x4358e406
    Exception code: 0xc0000005
    Fault offset: 0x0002ff90
    Faulting process ID: 0x529c
    Faulting application start time: 0x01d48a0987e130bf
    Faulting application path: C:\Program Files (x86)\File Type Advisor\fileadvisor.exe
    Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
    Report ID: 46cc0fd9-18d2-4c35-956a-f3b4854606ce
    Faulting package full name:
    Faulting package-relative application ID:

    Error: (12/02/2018 06:34:19 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
    Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

    Error: (12/02/2018 05:34:19 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
    Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

    Error: (12/02/2018 04:45:58 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: HOME-PC)
    Description: Skipping: Eap method DLL path validation failed. Error: typeId=254, authorId=311, vendorId=14122, vendorType=1


    System errors:
    =============
    Error: (12/01/2018 10:39:23 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The WpnUserService_4472a service terminated unexpectedly. It has done this 4 time(s).

    Error: (12/01/2018 10:38:58 AM) (Source: Application Popup) (EventID: 56) (User: )
    Description: SCSI000000

    Error: (12/01/2018 08:00:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The WpnUserService_4472a service terminated unexpectedly. It has done this 3 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

    Error: (11/30/2018 05:00:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The WpnUserService_4472a service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

    Error: (11/30/2018 02:44:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The WpnUserService_4472a service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

    Error: (11/30/2018 01:03:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error:
    The service did not respond to the start or control request in a timely fashion.

    Error: (11/30/2018 01:03:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Presentation Foundation Font Cache 3.0.0.0 service to connect.

    Error: (11/30/2018 12:59:51 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
    Description: The Downloaded Maps Manager service did not respond on starting.


    Windows Defender:
    ===================================
    Date: 2018-11-30 11:54:28.586
    Description:
    Windows Defender Antivirus has encountered an error trying to update the engine.
    New Engine Version: 1.1.15400.5
    Previous Engine Version: 1.1.15200.1
    Error Code: 0x80509004
    Error description: An unexpected problem occurred. Install any available updates, then try to start the program again. For information on installing updates, see Help and Support.

    CodeIntegrity:
    ===================================

    Date: 2018-12-02 09:44:06.136
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\pmls64.dll that did not meet the Microsoft signing level requirements.

    Date: 2018-12-02 09:39:05.911
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\pmls64.dll that did not meet the Microsoft signing level requirements.

    Date: 2018-12-02 09:34:05.933
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\pmls64.dll that did not meet the Microsoft signing level requirements.

    Date: 2018-12-02 09:29:05.958
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\pmls64.dll that did not meet the Microsoft signing level requirements.

    Date: 2018-12-02 09:24:05.922
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\pmls64.dll that did not meet the Microsoft signing level requirements.

    Date: 2018-12-02 09:19:05.904
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\pmls64.dll that did not meet the Microsoft signing level requirements.

    Date: 2018-12-02 09:14:05.951
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\pmls64.dll that did not meet the Microsoft signing level requirements.

    Date: 2018-12-02 09:09:05.927
    Description:
    Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\pmls64.dll that did not meet the Microsoft signing level requirements.

    ==================== Memory info ===========================

    Processor: AMD FX(tm)-8350 Eight-Core Processor
    Percentage of memory in use: 85%
    Total physical RAM: 7661.55 MB
    Available physical RAM: 1131.52 MB
    Total Virtual: 18925.55 MB
    Available Virtual: 8100.98 MB

    ==================== Drives ================================

    Drive c: () (Fixed) (Total:930.56 GB) (Free:469.23 GB) NTFS
    Drive e: (USB2) (Removable) (Total:59.51 GB) (Free:29.39 GB) FAT32
    Drive z: (Seagate Expansion Drive) (Fixed) (Total:1863.02 GB) (Free:1226.55 GB) NTFS

    \\?\Volume{4d0e5db7-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
    \\?\Volume{4d0e5db7-0000-0000-0000-30c3e8000000}\ () (Fixed) (Total:0.46 GB) (Free:0.07 GB) NTFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 4D0E5DB7)
    Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=930.6 GB) - (Type=07 NTFS)
    Partition 3: (Not Active) - (Size=472 MB) - (Type=27)

    ========================================================
    Disk: 1 (Size: 1863 GB) (Disk ID: 90A9EAC7)
    Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

    ========================================================
    Disk: 2 (MBR Code: Windows XP) (Size: 59.5 GB) (Disk ID: B8C078A5)
    Partition 1: (Not Active) - (Size=59.5 GB) - (Type=0C)

    ==================== End of Addition.txt ============================
     
  13. Joeicam

    Joeicam Malware Trainee

    Joined:
    Oct 11, 2017
    Messages:
    193
    Thanks for your logs Robm1955. I'm currently analyzing them and will get back to you shortly with a fix. Keep in mind I'm still in my training phase, so my fixes have to be approved before I post them here :).
     
  14. Joeicam

    Joeicam Malware Trainee

    Joined:
    Oct 11, 2017
    Messages:
    193
    Hi Robm1955, it looks like a few sections in the FRST didn't make it through in the copying/pasting. Please scan your computer with FRST again, and when it's finished, try attaching the FRST.txt and Addition.txt files to your post instead :).
     
  15. Robm1955

    Robm1955 Thread Starter

    Joined:
    Apr 28, 2009
    Messages:
    303
    Reports attached.
     

    Attached Files:

  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1219833

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice