Solved Computer Started Acting Funny

S

Snorlax

Posts: 21   +0
I came upon a thread where Broni helped someone clean their computer because programs kept getting uninstalled. Well, I have the same problem now and I don't know what to do.

It started with my computer opening and closing windows on its own, as though someone had remotely accessed it. To get rid of whatever it was, I downloaded a bunch of programs that helped me kill processes (I can't remember them and I know I probably shouldn't have done it, I'm sorry) then I reset my PC. All my files were wiped out as it should be, then the computer was back to its default settings.

So thinking there's nothing wrong with it anymore, I downloaded Garena and League of Legends. I was able to play it for a few hours just fine, then I turned off the laptop and went to sleep. When I got back on this morning though, I found out that League of Legends was uninstalled and I couldn't find the program files anywhere. Garena was still intact, but it asked me to INSTALL the game.

I am now installing it again, but I ran a scan with Malwarebytes (recently installed too) and it said there is nothing wrong. Please help me, I don't know how to fix this. Other programs might get uninstalled if I don't do anything.

Thank you in advance.
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10.10.2018
Ran by Snorlax (administrator) on DESKTOP-2VN95UH (23-10-2018 12:30:52)
Running from C:\Users\Snorlax\Desktop
Loaded Profiles: Snorlax (Available Profiles: Snorlax)
Platform: Windows 10 Pro Version 1803 17134.345 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1809.2-0\MsMpEng.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1809.2-0\NisSrv.exe
(Garena Online ) C:\Program Files (x86)\Garena\Garena\2.0.1808.0718\gxxsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
Tcpip\..\Interfaces\{622ececf-38b6-4dd4-bd57-b984da26c6de}: [DhcpNameServer] 192.168.254.254
Internet Explorer:
==================
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 GarenaPlatform; C:\Program Files (x86)\Garena\Garena\2.0.1808.0718\gxxsvc.exe [315712 2018-08-07] (Garena Online )
R2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [774584 2017-11-08] (Lenovo.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-10-19] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-11] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [259176 2016-10-03] (Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\NisSrv.exe [3847376 2018-10-23] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MsMpEng.exe [114200 2018-10-23] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131984 2017-05-19] (Samsung Electronics Co., Ltd.)
R3 e1cexpress; C:\WINDOWS\system32\DRIVERS\e1c65x64.sys [480040 2015-06-16] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [152688 2018-09-11] (Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [200232 2018-10-23] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [118584 2018-10-23] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [58400 2018-10-23] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [260384 2018-10-23] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [110424 2018-10-23] (Malwarebytes)
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3343872 2018-04-12] (Intel Corporation)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [43240 2017-11-08] (Lenovo.)
S3 smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [152064 2018-04-12] (Microsoft Corporation)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-19] (QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46184 2018-10-23] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [352424 2018-10-23] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60584 2018-10-23] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-10-23 13:24 - 2018-10-23 13:29 - 000000000 ____D C:\Windows.old
2018-10-23 13:24 - 2018-10-23 13:24 - 000000000 ____D C:\WINDOWS\InfusedApps
2018-10-23 13:24 - 2018-10-23 12:46 - 000000000 ____D C:\WINDOWS\Panther
2018-10-23 13:23 - 2018-10-23 13:23 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-10-23 13:23 - 2018-10-23 13:23 - 000000000 ____D C:\Program Files\Synaptics
2018-10-23 13:22 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\Setup
2018-10-23 13:21 - 2018-10-23 13:24 - 000000000 ____D C:\WINDOWS\containers
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\OCR
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\Program Files\MSBuild
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\winrm
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\WCN
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\slmgr
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\0409
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\DigitalLocker
2018-10-23 13:13 - 2018-04-12 07:34 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-10-23 13:13 - 2018-04-12 07:34 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-10-23 13:10 - 2018-10-23 13:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ___SD C:\WINDOWS\system32\UNP
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\TextInput
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ta-in
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\si-lk
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\setup
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\am-et
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\WINDOWS\Provisioning
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ___SD C:\WINDOWS\system32\dsc
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\com
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\com
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\IME
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\Help
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\Program Files\Common Files\system
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-10-23 13:10 - 2018-10-23 13:11 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __SHD C:\Program Files\Windows Sidebar
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __RSD C:\WINDOWS\media
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __RHD C:\Users\Public\Libraries
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\system32\Nui
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\system32\AppV
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Web
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\WaaS
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Vss
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\tracing
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\TAPI
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SystemApps
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\winevt
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\ras
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\my-mm
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\IME
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\icsxml
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\ias
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\hydrogen
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\DriverState
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\downlevel
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\DDFs
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\System
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SKB
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\security
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\schemas
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SchCache
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Resources
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\rescache
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\RemotePackages
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Registration
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\PLA
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Performance
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\ModemLogs
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\L2Schemas
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\InputMethod
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\IdentityCRL
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Globalization
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Cursors
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Branding
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\appcompat
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\addins
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\Windows Security
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\Windows Portable Devices
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\windows nt
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\Common Files\Services
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files (x86)\windows nt
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2018-10-23 13:10 - 2018-10-23 13:07 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2018-10-23 13:10 - 2018-10-23 13:07 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2018-10-23 13:10 - 2018-10-23 13:07 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2018-10-23 13:10 - 2018-10-23 13:07 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2018-10-23 13:10 - 2018-10-23 13:07 - 000027136 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2018-10-23 13:10 - 2018-10-23 13:07 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2018-10-23 13:10 - 2018-10-23 13:07 - 000017346 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2018-10-23 13:10 - 2018-10-23 13:07 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2018-10-23 13:10 - 2018-10-23 13:07 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2018-10-23 13:10 - 2018-10-23 13:07 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2018-10-23 13:10 - 2018-10-23 13:07 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2018-10-23 13:10 - 2018-10-23 13:07 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2018-10-23 13:10 - 2018-10-23 13:07 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2018-10-23 13:10 - 2018-10-23 13:07 - 000000219 _____ C:\WINDOWS\system.ini
2018-10-23 13:10 - 2018-10-23 13:07 - 000000092 _____ C:\WINDOWS\win.ini
2018-10-23 13:10 - 2018-10-23 12:47 - 000000000 ____D C:\WINDOWS\system32\spool
2018-10-23 13:10 - 2018-10-23 12:47 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2018-10-23 13:10 - 2018-10-23 12:44 - 000000000 ____D C:\WINDOWS\CSC
2018-10-23 13:10 - 2018-10-23 12:39 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-10-23 13:10 - 2018-10-23 12:39 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-10-23 13:10 - 2018-10-23 12:38 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-10-23 13:10 - 2018-10-23 12:37 - 000000000 ____D C:\ProgramData\USOPrivate
2018-10-23 13:10 - 2018-10-23 12:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-10-23 13:10 - 2018-10-23 09:28 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-10-23 13:10 - 2018-10-23 09:23 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-10-23 13:10 - 2018-10-23 09:22 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-10-23 13:10 - 2018-10-23 03:27 - 000000000 ____D C:\Program Files\Windows Defender
2018-10-23 13:10 - 2018-10-23 02:19 - 000000000 ___HD C:\Program Files\WindowsApps
2018-10-23 13:10 - 2018-10-23 01:57 - 000000000 ___RD C:\Program Files (x86)
2018-10-23 13:08 - 2018-10-23 09:24 - 000000000 ____D C:\WINDOWS\INF
2018-10-23 13:01 - 2018-10-22 22:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-10-23 12:57 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\servicing
2018-10-23 12:57 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\SMI
2018-10-23 12:57 - 2018-10-23 12:43 - 073400320 _____ C:\WINDOWS\system32\config\SOFTWARE
2018-10-23 12:57 - 2018-10-23 12:43 - 042467328 _____ C:\WINDOWS\system32\config\SYSTEM
2018-10-23 12:57 - 2018-10-23 12:43 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2018-10-23 12:57 - 2018-10-23 12:43 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-10-23 12:57 - 2018-10-23 12:43 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2018-10-23 12:57 - 2018-10-23 12:43 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY
2018-10-23 12:57 - 2018-10-22 22:11 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-10-23 12:51 - 2018-10-23 13:32 - 000000000 ___HD C:\$SysReset
2018-10-23 12:51 - 2018-10-23 12:51 - 000838560 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-10-23 12:47 - 2018-04-12 07:33 - 002752000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-10-23 12:45 - 2018-10-23 12:45 - 000000000 _SHDL C:\Users\Default User
2018-10-23 12:45 - 2018-10-23 12:45 - 000000000 _SHDL C:\Users\All Users
2018-10-23 12:45 - 2018-10-23 12:45 - 000000000 _SHDL C:\Documents and Settings
2018-10-23 12:38 - 2018-10-23 12:38 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2018-10-23 12:38 - 2018-10-23 12:38 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2018-10-23 12:38 - 2018-10-23 12:38 - 000000000 ____D C:\Program Files\AuthenTec
2018-10-23 12:38 - 2018-10-23 12:38 - 000000000 ____D C:\Intel
2018-10-23 12:37 - 2018-10-23 12:37 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2018-10-23 12:37 - 2018-10-23 12:37 - 000000000 ____D C:\ProgramData\USOShared
2018-10-23 12:35 - 2018-10-23 12:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-10-23 12:35 - 2018-10-23 03:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-10-23 12:34 - 2018-10-23 12:34 - 000234720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-10-23 12:34 - 2018-10-23 12:34 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-10-23 12:34 - 2018-10-23 10:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-10-23 12:30 - 2018-10-23 12:32 - 000006669 _____ C:\Users\Snorlax\Desktop\FRST.txt
2018-10-23 12:29 - 2018-10-23 12:30 - 000000000 ____D C:\FRST
2018-10-23 12:29 - 2018-10-23 12:29 - 000000000 ____D C:\Users\Snorlax\Desktop\FRST-OlderVersion
2018-10-23 12:28 - 2018-10-23 12:29 - 002414592 _____ (Farbar) C:\Users\Snorlax\Desktop\FRST64.exe
2018-10-23 09:49 - 2018-10-23 11:28 - 000110424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000260384 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000200232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000118584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000058400 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000000000 ____D C:\Users\Snorlax\AppData\Local\mbamtray
2018-10-23 09:49 - 2018-10-23 09:49 - 000000000 ____D C:\Users\Snorlax\AppData\Local\mbam
2018-10-23 09:48 - 2018-10-23 09:48 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-10-23 09:48 - 2018-10-23 09:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-10-23 09:48 - 2018-10-23 09:48 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-10-23 09:48 - 2018-10-23 09:48 - 000000000 ____D C:\Program Files\Malwarebytes
2018-10-23 09:48 - 2018-09-11 13:18 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-10-23 09:47 - 2018-10-23 09:47 - 080753320 _____ (Malwarebytes ) C:\Users\Snorlax\Downloads\mb3-setup-consumer-3.6.1.2711-1.0.463-1.0.7467.exe
2018-10-23 03:01 - 2018-10-23 03:01 - 000000000 ____D C:\Users\Snorlax\Documents\League of Legends
2018-10-23 03:00 - 2018-10-23 03:00 - 000000000 ____D C:\ProgramData\Riot Games
2018-10-23 02:02 - 2018-10-23 02:02 - 000000000 ____D C:\Users\Snorlax\AppData\Local\CEF
2018-10-23 02:02 - 2018-10-23 02:02 - 000000000 ____D C:\Garena
2018-10-23 01:58 - 2018-10-23 09:26 - 000003484 _____ C:\WINDOWS\System32\Tasks\gxx speed launcher
2018-10-23 01:58 - 2018-10-23 01:58 - 000001167 _____ C:\Users\Public\Desktop\Garena.lnk
2018-10-23 01:58 - 2018-10-23 01:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garena
2018-10-23 01:58 - 2018-10-23 01:58 - 000000000 ____D C:\ProgramData\Garena
2018-10-23 01:58 - 2018-10-23 01:58 - 000000000 ____D C:\ProgramData\boost_interprocess
2018-10-23 01:57 - 2018-10-23 01:57 - 000000000 ____D C:\Program Files (x86)\Garena
2018-10-23 01:55 - 2018-10-23 01:56 - 069149096 _____ (Garena) C:\Users\Snorlax\Downloads\Garena-v2.0-LOL.exe
2018-10-22 22:26 - 2018-10-22 22:26 - 000000000 ____D C:\Users\Snorlax\AppData\Local\Comms
2018-10-22 22:18 - 2018-10-23 02:14 - 000000000 ____D C:\ProgramData\Packages
2018-10-22 22:12 - 2018-10-22 22:12 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-122434779-2526441635-562969221-1002
2018-10-22 22:11 - 2018-10-22 22:12 - 000000000 ___RD C:\Users\Snorlax\OneDrive
2018-10-22 22:10 - 2018-10-23 02:16 - 000000000 ____D C:\Users\Snorlax\AppData\Local\PlaceholderTileLogoFolder
2018-10-22 22:10 - 2018-10-22 22:10 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-10-22 22:10 - 2018-10-22 22:00 - 000559880 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-10-22 22:09 - 2018-10-22 22:09 - 000001417 _____ C:\Users\Snorlax\Desktop\Microsoft Edge.lnk
2018-10-22 22:08 - 2018-10-23 10:22 - 000000000 ____D C:\Users\Snorlax\AppData\Local\ConnectedDevicesPlatform
2018-10-22 22:08 - 2018-10-23 02:16 - 000000000 ____D C:\Users\Snorlax\AppData\Local\Packages
2018-10-22 22:08 - 2018-10-22 22:35 - 000000000 ____D C:\Users\Snorlax\AppData\Local\Publishers
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ___RD C:\Users\Snorlax\3D Objects
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ___HD C:\Users\Snorlax\MicrosoftEdgeBackups
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ____D C:\Users\Snorlax\AppData\Roaming\Adobe
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ____D C:\Users\Snorlax\AppData\Local\VirtualStore
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ____D C:\Users\Snorlax\AppData\Local\MicrosoftEdge
2018-10-22 22:05 - 2018-10-22 22:12 - 000002369 _____ C:\Users\Snorlax\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-10-22 22:05 - 2018-10-22 22:11 - 000000000 ____D C:\Users\Snorlax
2018-10-22 22:05 - 2018-10-22 22:05 - 000000020 ___SH C:\Users\Snorlax\ntuser.ini
2018-10-19 21:18 - 2018-10-19 21:18 - 013572096 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 012500992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 006813744 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 006527056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 004790160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 004559872 ____N (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 004491264 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 004404720 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 004331008 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 003397632 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 002590400 ____N (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2018-10-19 21:18 - 2018-10-19 21:18 - 002563984 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002535032 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002371416 ____N (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002331576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002307336 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2018-10-19 21:18 - 2018-10-19 21:18 - 002163184 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002062488 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001946752 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001784584 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001773056 ____N (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001710240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001708544 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001611584 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001559368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001537024 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001397192 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001380192 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001361408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001342976 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001307648 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001305088 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001295360 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001288840 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001242112 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001153536 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001150408 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001148800 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001144664 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001143096 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001129544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001112600 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001097744 ____N (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001034096 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001020160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001017088 ____N (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001017080 ____N (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001012408 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000988640 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000861616 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000861096 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000845824 ____N (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000842240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000839680 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000800256 ____N (Microsoft Corporation)
 
C:\WINDOWS\system32\pwcreator.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000770152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000744976 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-10-19 21:18 - 2018-10-19 21:18 - 000713472 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000667136 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000581792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000561152 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2018-10-19 21:18 - 2018-10-19 21:18 - 000500552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000482304 ____N (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000472136 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000463872 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000457152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000416144 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000402944 ____N (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000327168 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000266752 ____N (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000261008 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000247984 ____N (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2018-10-19 21:18 - 2018-10-19 21:18 - 000232488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2018-10-19 21:18 - 2018-10-19 21:18 - 000223232 ____N (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000216576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000182784 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-10-19 21:18 - 2018-10-19 21:18 - 000129088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000127488 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000102400 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000101888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2018-10-19 21:18 - 2018-10-19 21:18 - 000082432 ____N (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000062976 ____N (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSHEIF.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000026112 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSHEIF.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000018432 ____N (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000015872 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000014336 ____N (Microsoft Corporation) C:\WINDOWS\system32\EasPolicyManagerBrokerPS.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 025851392 ____N (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 022013440 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 019404288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 011901952 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 007577088 ____N (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 005777920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 003711488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 002395056 ____N (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-10-19 21:17 - 2018-10-19 21:17 - 002206528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2018-10-19 21:17 - 2018-10-19 21:17 - 002016768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-10-19 21:17 - 2018-10-19 21:17 - 001586176 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 001466368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000908800 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2018-10-19 21:17 - 2018-10-19 21:17 - 000894464 ____N (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000814592 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000808448 ____N (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000776192 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000753056 ____N (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000669696 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000668160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000661056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000608768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000578560 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000561152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000365568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000344576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000154112 ____N (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 023862784 ____N (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 022715392 ____N (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 020381784 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 019525632 ____N (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 012709376 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 007987712 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 006569856 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 006039368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 005669888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 005391360 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 004866560 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 004469832 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 004191232 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 004050432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 003611368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 003444224 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 002900992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002841312 ____N C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002824704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002401792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002253696 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002084864 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-10-19 21:16 - 2018-10-19 21:16 - 001932288 ____N (Microsoft Corporation) C:\WINDOWS\system32\edgeangle.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001665920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001655296 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001627648 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001626656 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001620880 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001584128 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001540096 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001530368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001508352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdt.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 001490144 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001469952 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001454440 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001452544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001380864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001311744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001308672 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001274368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 001274368 ____N (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001110528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001032704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001026896 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001008640 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000993792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000950272 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000917408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000908288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000897536 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000871424 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000868864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000864768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2018-10-19 21:16 - 2018-10-19 21:16 - 000863232 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000860160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000851968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000831488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000829752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000807936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000788992 ____N (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000786176 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000757248 ____N (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000747520 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000740352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000729088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000726528 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000704000 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000672768 ____N (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000663128 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000660896 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000658432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000648192 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000646656 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000630784 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000625664 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000622080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000619520 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000593408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000581120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-10-19 21:16 - 2018-10-19 21:16 - 000568720 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000565248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000548864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000539168 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000534016 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000482080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000461312 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000453104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000444416 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000443216 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000429568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000423936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2018-10-19 21:16 - 2018-10-19 21:16 - 000392192 ____N (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000391168 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000387584 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000359424 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcfile.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000347136 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000343552 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000340480 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000331264 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000311296 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000291328 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollUI.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000286200 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000269104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000264704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000262656 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000257536 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000256000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000254464 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000251904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000238592 ____N (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000236032 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000231936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000228352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000224768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000223744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2018-10-19 21:16 - 2018-10-19 21:16 - 000221184 ____N (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000221120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000185856 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000181288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000178688 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000178176 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsAuth.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000172544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000164864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsCfg.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000159744 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000153088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Proxy.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000150016 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000150016 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000142848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000142848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000138752 ____N
(Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000138752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000133632 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000131072 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000118784 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000101288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000099840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000098304 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000086528 ____N (Microsoft Corporation) C:\WINDOWS\system32\PackageInspector.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000084992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000081920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProv2faHelper.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000080384 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000064000 ____N (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000060416 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000059392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000050208 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel.appcore.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000043008 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000022936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\hvsicontainerservice.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000022016 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000018716 ____N C:\WINDOWS\SysWOW64\srms-apr.dat
2018-10-19 21:15 - 2018-10-19 21:16 - 002449408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 013873152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 009089848 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 006661632 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 006647296 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 005883392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 005821544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 005505024 ____N (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 005307392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 004615680 ____N (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 004383744 ____N (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 003932672 ____N (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 003733320 ____N C:\WINDOWS\system32\Windows.Mirage.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 003553792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 003320320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002962944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002922496 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002868536 ____N (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 002789376 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002765344 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002719032 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 002700288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002583552 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002571128 ____N (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002486992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002421248 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 002417840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002368000 ____N (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002258944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001986560 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001980984 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
 
2018-10-19 21:15 - 2018-10-19 21:15 - 001947720 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001921944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 001805752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001804288 ____N (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001724928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001719808 ____N (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001703936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Controls.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001665024 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001661440 ____N (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001649760 ____N (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001634944 ____N (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001610552 ____N (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001543680 ____N (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001462824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001456720 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-10-19 21:15 - 2018-10-19 21:15 - 001456640 ____N (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001427968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001376576 ____N (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001359360 ____N (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001356800 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001299056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001285536 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 001257864 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 001251736 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001235968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001192448 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001190152 ____N (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001189376 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001180160 ____N (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001140672 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-10-19 21:15 - 2018-10-19 21:15 - 001124352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001114112 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001054720 ____N (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 001036288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001011968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001006080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001000448 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000986112 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000982600 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000978944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000978432 ____N (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000976384 ____N (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000972800 ____N (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000960512 ____N (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000949760 ____N (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000947712 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2018-10-19 21:15 - 2018-10-19 21:15 - 000945568 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000944640 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000932352 ____N (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000907776 ____N (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000899072 ____N (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000898560 ____N (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000856064 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000836608 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000804352 ____N (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000792376 ____N (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000790304 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000781824 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000775680 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000743320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000740864 ____N (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000736256 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000735744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000729088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000723360 ____N (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000717208 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000713216 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000713216 ____N (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000705024 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000695296 ____N (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-10-19 21:15 - 2018-10-19 21:15 - 000689464 ____N (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000681984 ____N (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000678400 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000677888 ____N (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000677376 ____N (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000675840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000645112 ____N (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000632296 ____N (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000622080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000613144 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000612360 ____N (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000593408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000593408 ____N (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000584192 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000582144 ____N
 
[LEFT](Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000560488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000540984 ____N (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000528384 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000528384 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000527328 ____N (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000527264 ____N (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000522240 ____N (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2018-10-19 21:15 - 2018-10-19 21:15 - 000506728 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000505344 ____N (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000500536 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000491520 ____N (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000485376 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000471552 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000465920 ____N (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000452112 ____N (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000433664 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000431104 ____N (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000414720 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000402432 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000392704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000392192 ____N (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000386048 ____N (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000375808 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000375712 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000368448 ____N (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000365568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000357056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000356352 ____N (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000355840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000345088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000329216 ____N (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000317440 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000314368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000311296 ____N (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000309560 ____N (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000295416 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000288768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000286824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000285184 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000282624 ____N (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000281080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000270336 ____N (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000266752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000249344 ____N (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2018-10-19 21:15 - 2018-10-19 21:15 - 000239104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000238592 ____N (Microsoft Corporation) C:\WINDOWS\system32\TtlsAuth.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000223232 ____N (Microsoft Corporation) C:\WINDOWS\system32\TtlsExt.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000221184 ____N (Microsoft Corporation) C:\WINDOWS\system32\TtlsCfg.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000217088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000208384 ____N (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000195584 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000192920 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000182272 ____N (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000182272 ____N (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000181760 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000178176 ____N (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000171520 ____N (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000169984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000165376 ____N (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000156160 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManagerAPI.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000144696 ____N (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000141312 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000139672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000135680 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000134936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000123392 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000115640 ____N (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000114176 ____N (Microsoft Corporation) C:\WINDOWS\system32\bthci.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000107008 ____N (Microsoft Corporation) C:\WINDOWS\system32\CredProv2faHelper.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000103424 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000099328 ____N (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000094720 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000088472 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000085504 ____N (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000081920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000079872 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000077040 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000075264 ____N (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000073728 ____N (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000069944 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000068096 ____N (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000064648 ____N (Microsoft Corporation) [/LEFT]
 
[LEFT]C:\WINDOWS\SysWOW64\LanguageOverlayUtil.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000059904 ____N (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000056320 ____N (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000046592 ____N (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000043520 ____N (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000038400 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000036352 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000032256 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000029696 ____N (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000029184 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000025088 ____N (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:15 - 2018-10-19 21:15 - 000018716 ____N C:\WINDOWS\system32\srms-apr.dat
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 021386888 ____N (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 008624128 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 007520096 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 006602240 ____N (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 004708864 ____N (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 004527680 ____N (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 004392448 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 004049408 ____N (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 003999232 ____N (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 003649024 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 003640832 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 003492864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 003396096 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 003376640 ____N (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 002874368 ____N (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 002364928 ____N (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 002328064 ____N (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 002172928 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 002052096 ____N (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 002019840 ____N (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001856000 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001787904 ____N (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001676800 ____N (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001659904 ____N (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001639352 ____N (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001627136 ____N (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001617728 ____N (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001560576 ____N (Microsoft Corporation) C:\WINDOWS\system32\msdt.exe
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001557504 ____N (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001551360 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001520744 ____N (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001288192 ____N (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001214976 ____N (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001180672 ____N (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001171968 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
[FONT=Arimo] [/FONT]
2018-10-19 21:14 - 2018-10-19 21:14 - 001127936 ____N (Microsoft Corporation) [/LEFT]
 
[LEFT]C:\WINDOWS\system32\nettrace.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 001121792 ____N (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 001046944 ____N (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 001035256 ____N (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe

2018-10-19 21:14 - 2018-10-19 21:14 - 000983040 ____N (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000941056 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000933376 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000932352 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000889344 ____N (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000882688 ____N (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000882688 ____N (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000878592 ____N (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000871424 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000869376 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000849408 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000835584 ____N (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000808960 ____N C:\WINDOWS\system32\MBR2GPT.EXE

2018-10-19 21:14 - 2018-10-19 21:14 - 000790528 ____N (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000766872 ____N (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000761344 ____N (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000760888 ____N (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe

2018-10-19 21:14 - 2018-10-19 21:14 - 000676864 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Devices.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000661160 ____N (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe

2018-10-19 21:14 - 2018-10-19 21:14 - 000636944 ____N (Microsoft Corporation) C:\WINDOWS\system32\services.exe

2018-10-19 21:14 - 2018-10-19 21:14 - 000625152 ____N (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll

2018-10-19 21:14 - 2018-10-19 21:14 - 000584192 ____N (Microsoft Corporation)
[/LEFT]
 
I'm sorry, I can't seem to post the rest because of this error:

"Your content can not be submitted. This is likely because your content is spam-like or contains inappropriate elements. Please change your content or try again later. If you still have problems, please contact an administrator."

I will try again in an hour or so. Let me know if there is a workaround, please.

Thank you.
 
Welcome aboard
p22002758.gif


Please, observe following rules:
  • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
  • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
  • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
  • Never run more than one scan at a time.
  • Keep updating me regarding your computer behavior, good, or bad.
  • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
  • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
  • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

======================================

Please, attach both files.
 
  • Like
Reactions: Snorlax
Thank you for allowing me to attach the logs instead.

Here they are:
 

Attachments

  • Addition.txt
    18.6 KB · Views: 1
  • FRST.txt
    155.7 KB · Views: 1
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10.10.2018
Ran by Snorlax (administrator) on DESKTOP-2VN95UH (23-10-2018 12:30:52)
Running from C:\Users\Snorlax\Desktop
Loaded Profiles: Snorlax (Available Profiles: Snorlax)
Platform: Windows 10 Pro Version 1803 17134.345 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1809.2-0\MsMpEng.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1809.2-0\NisSrv.exe
(Garena Online ) C:\Program Files (x86)\Garena\Garena\2.0.1808.0718\gxxsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
Tcpip\..\Interfaces\{622ececf-38b6-4dd4-bd57-b984da26c6de}: [DhcpNameServer] 192.168.254.254

Internet Explorer:
==================

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 GarenaPlatform; C:\Program Files (x86)\Garena\Garena\2.0.1808.0718\gxxsvc.exe [315712 2018-08-07] (Garena Online )
R2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [774584 2017-11-08] (Lenovo.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-10-19] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-11] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [259176 2016-10-03] (Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\NisSrv.exe [3847376 2018-10-23] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MsMpEng.exe [114200 2018-10-23] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131984 2017-05-19] (Samsung Electronics Co., Ltd.)
R3 e1cexpress; C:\WINDOWS\system32\DRIVERS\e1c65x64.sys [480040 2015-06-16] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [152688 2018-09-11] (Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [200232 2018-10-23] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [118584 2018-10-23] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [58400 2018-10-23] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [260384 2018-10-23] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [110424 2018-10-23] (Malwarebytes)
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3343872 2018-04-12] (Intel Corporation)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [43240 2017-11-08] (Lenovo.)
S3 smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [152064 2018-04-12] (Microsoft Corporation)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-19] (QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46184 2018-10-23] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [352424 2018-10-23] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60584 2018-10-23] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-23 13:24 - 2018-10-23 13:29 - 000000000 ____D C:\Windows.old
2018-10-23 13:24 - 2018-10-23 13:24 - 000000000 ____D C:\WINDOWS\InfusedApps
2018-10-23 13:24 - 2018-10-23 12:46 - 000000000 ____D C:\WINDOWS\Panther
2018-10-23 13:23 - 2018-10-23 13:23 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-10-23 13:23 - 2018-10-23 13:23 - 000000000 ____D C:\Program Files\Synaptics
2018-10-23 13:22 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\Setup
2018-10-23 13:21 - 2018-10-23 13:24 - 000000000 ____D C:\WINDOWS\containers
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-10-23 13:18 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\WINDOWS\OCR
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\Program Files\MSBuild
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-10-23 13:18 - 2018-10-23 13:18 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\winrm
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\WCN
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\slmgr
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\0409
2018-10-23 13:17 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\DigitalLocker
2018-10-23 13:13 - 2018-04-12 07:34 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-10-23 13:13 - 2018-04-12 07:34 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-10-23 13:10 - 2018-10-23 13:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ___SD C:\WINDOWS\system32\UNP
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\TextInput
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ta-in
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\si-lk
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\setup
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-10-23 13:10 - 2018-10-23 13:22 - 000000000 ____D C:\WINDOWS\system32\am-et
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\WINDOWS\Provisioning
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-10-23 13:10 - 2018-10-23 13:21 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ___SD C:\WINDOWS\system32\dsc
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\com
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\system32\com
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\IME
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\Help
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\Program Files\Common Files\system
2018-10-23 13:10 - 2018-10-23 13:17 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-10-23 13:10 - 2018-10-23 13:11 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __SHD C:\Program Files\Windows Sidebar
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __RSD C:\WINDOWS\media
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 __RHD C:\Users\Public\Libraries
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\system32\Nui
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\system32\AppV
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Web
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\WaaS
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Vss
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\tracing
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\TAPI
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SystemApps
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\winevt
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\ras
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\my-mm
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\IME
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\icsxml
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\ias
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\hydrogen
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\DriverState
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\downlevel
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\DDFs
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\System
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SKB
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\security
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\schemas
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\SchCache
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Resources
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\rescache
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\RemotePackages
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Registration
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\PLA
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Performance
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\ModemLogs
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\L2Schemas
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\InputMethod
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\IdentityCRL
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Globalization
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Cursors
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\Branding
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\appcompat
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\addins
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\Windows Security
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\Windows Portable Devices
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\windows nt
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files\Common Files\Services
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files (x86)\windows nt
2018-10-23 13:10 - 2018-10-23 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2018-10-23 13:10 - 2018-10-23 13:07 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2018-10-23 13:10 - 2018-10-23 13:07 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2018-10-23 13:10 - 2018-10-23 13:07 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2018-10-23 13:10 - 2018-10-23 13:07 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2018-10-23 13:10 - 2018-10-23 13:07 - 000027136 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2018-10-23 13:10 - 2018-10-23 13:07 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2018-10-23 13:10 - 2018-10-23 13:07 - 000017346 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2018-10-23 13:10 - 2018-10-23 13:07 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2018-10-23 13:10 - 2018-10-23 13:07 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2018-10-23 13:10 - 2018-10-23 13:07 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2018-10-23 13:10 - 2018-10-23 13:07 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2018-10-23 13:10 - 2018-10-23 13:07 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2018-10-23 13:10 - 2018-10-23 13:07 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2018-10-23 13:10 - 2018-10-23 13:07 - 000000219 _____ C:\WINDOWS\system.ini
2018-10-23 13:10 - 2018-10-23 13:07 - 000000092 _____ C:\WINDOWS\win.ini
2018-10-23 13:10 - 2018-10-23 12:47 - 000000000 ____D C:\WINDOWS\system32\spool
2018-10-23 13:10 - 2018-10-23 12:47 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2018-10-23 13:10 - 2018-10-23 12:44 - 000000000 ____D C:\WINDOWS\CSC
2018-10-23 13:10 - 2018-10-23 12:39 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-10-23 13:10 - 2018-10-23 12:39 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-10-23 13:10 - 2018-10-23 12:38 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-10-23 13:10 - 2018-10-23 12:37 - 000000000 ____D C:\ProgramData\USOPrivate
2018-10-23 13:10 - 2018-10-23 12:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-10-23 13:10 - 2018-10-23 09:28 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-10-23 13:10 - 2018-10-23 09:23 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-10-23 13:10 - 2018-10-23 09:22 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-10-23 13:10 - 2018-10-23 03:27 - 000000000 ____D C:\Program Files\Windows Defender
2018-10-23 13:10 - 2018-10-23 02:19 - 000000000 ___HD C:\Program Files\WindowsApps
2018-10-23 13:10 - 2018-10-23 01:57 - 000000000 ___RD C:\Program Files (x86)
2018-10-23 13:08 - 2018-10-23 09:24 - 000000000 ____D C:\WINDOWS\INF
2018-10-23 13:01 - 2018-10-22 22:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-10-23 12:57 - 2018-10-23 13:17 - 000000000 ____D C:\WINDOWS\servicing
2018-10-23 12:57 - 2018-10-23 13:10 - 000000000 ____D C:\WINDOWS\system32\SMI
2018-10-23 12:57 - 2018-10-23 12:43 - 073400320 _____ C:\WINDOWS\system32\config\SOFTWARE
2018-10-23 12:57 - 2018-10-23 12:43 - 042467328 _____ C:\WINDOWS\system32\config\SYSTEM
2018-10-23 12:57 - 2018-10-23 12:43 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2018-10-23 12:57 - 2018-10-23 12:43 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-10-23 12:57 - 2018-10-23 12:43 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2018-10-23 12:57 - 2018-10-23 12:43 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY
2018-10-23 12:57 - 2018-10-22 22:11 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-10-23 12:51 - 2018-10-23 13:32 - 000000000 ___HD C:\$SysReset
2018-10-23 12:51 - 2018-10-23 12:51 - 000838560 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-10-23 12:47 - 2018-04-12 07:33 - 002752000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-10-23 12:45 - 2018-10-23 12:45 - 000000000 _SHDL C:\Users\Default User
2018-10-23 12:45 - 2018-10-23 12:45 - 000000000 _SHDL C:\Users\All Users
2018-10-23 12:45 - 2018-10-23 12:45 - 000000000 _SHDL C:\Documents and Settings
2018-10-23 12:38 - 2018-10-23 12:38 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2018-10-23 12:38 - 2018-10-23 12:38 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2018-10-23 12:38 - 2018-10-23 12:38 - 000000000 ____D C:\Program Files\AuthenTec
2018-10-23 12:38 - 2018-10-23 12:38 - 000000000 ____D C:\Intel
2018-10-23 12:37 - 2018-10-23 12:37 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2018-10-23 12:37 - 2018-10-23 12:37 - 000000000 ____D C:\ProgramData\USOShared
2018-10-23 12:35 - 2018-10-23 12:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-10-23 12:35 - 2018-10-23 03:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-10-23 12:34 - 2018-10-23 12:34 - 000234720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-10-23 12:34 - 2018-10-23 12:34 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-10-23 12:34 - 2018-10-23 10:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-10-23 12:30 - 2018-10-23 12:32 - 000006669 _____ C:\Users\Snorlax\Desktop\FRST.txt
2018-10-23 12:29 - 2018-10-23 12:30 - 000000000 ____D C:\FRST
2018-10-23 12:29 - 2018-10-23 12:29 - 000000000 ____D C:\Users\Snorlax\Desktop\FRST-OlderVersion
2018-10-23 12:28 - 2018-10-23 12:29 - 002414592 _____ (Farbar) C:\Users\Snorlax\Desktop\FRST64.exe
2018-10-23 09:49 - 2018-10-23 11:28 - 000110424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000260384 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000200232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000118584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000058400 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2018-10-23 09:49 - 2018-10-23 09:49 - 000000000 ____D C:\Users\Snorlax\AppData\Local\mbamtray
2018-10-23 09:49 - 2018-10-23 09:49 - 000000000 ____D C:\Users\Snorlax\AppData\Local\mbam
2018-10-23 09:48 - 2018-10-23 09:48 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-10-23 09:48 - 2018-10-23 09:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-10-23 09:48 - 2018-10-23 09:48 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-10-23 09:48 - 2018-10-23 09:48 - 000000000 ____D C:\Program Files\Malwarebytes
2018-10-23 09:48 - 2018-09-11 13:18 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-10-23 09:47 - 2018-10-23 09:47 - 080753320 _____ (Malwarebytes ) C:\Users\Snorlax\Downloads\mb3-setup-consumer-3.6.1.2711-1.0.463-1.0.7467.exe
2018-10-23 03:01 - 2018-10-23 03:01 - 000000000 ____D C:\Users\Snorlax\Documents\League of Legends
2018-10-23 03:00 - 2018-10-23 03:00 - 000000000 ____D C:\ProgramData\Riot Games
2018-10-23 02:02 - 2018-10-23 02:02 - 000000000 ____D C:\Users\Snorlax\AppData\Local\CEF
2018-10-23 02:02 - 2018-10-23 02:02 - 000000000 ____D C:\Garena
2018-10-23 01:58 - 2018-10-23 09:26 - 000003484 _____ C:\WINDOWS\System32\Tasks\gxx speed launcher
2018-10-23 01:58 - 2018-10-23 01:58 - 000001167 _____ C:\Users\Public\Desktop\Garena.lnk
2018-10-23 01:58 - 2018-10-23 01:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garena
2018-10-23 01:58 - 2018-10-23 01:58 - 000000000 ____D C:\ProgramData\Garena
2018-10-23 01:58 - 2018-10-23 01:58 - 000000000 ____D C:\ProgramData\boost_interprocess
2018-10-23 01:57 - 2018-10-23 01:57 - 000000000 ____D C:\Program Files (x86)\Garena
2018-10-23 01:55 - 2018-10-23 01:56 - 069149096 _____ (Garena) C:\Users\Snorlax\Downloads\Garena-v2.0-LOL.exe
2018-10-22 22:26 - 2018-10-22 22:26 - 000000000 ____D C:\Users\Snorlax\AppData\Local\Comms
2018-10-22 22:18 - 2018-10-23 02:14 - 000000000 ____D C:\ProgramData\Packages
2018-10-22 22:12 - 2018-10-22 22:12 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-122434779-2526441635-562969221-1002
2018-10-22 22:11 - 2018-10-22 22:12 - 000000000 ___RD C:\Users\Snorlax\OneDrive
2018-10-22 22:10 - 2018-10-23 02:16 - 000000000 ____D C:\Users\Snorlax\AppData\Local\PlaceholderTileLogoFolder
2018-10-22 22:10 - 2018-10-22 22:10 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-10-22 22:10 - 2018-10-22 22:00 - 000559880 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-10-22 22:09 - 2018-10-22 22:09 - 000001417 _____ C:\Users\Snorlax\Desktop\Microsoft Edge.lnk
2018-10-22 22:08 - 2018-10-23 10:22 - 000000000 ____D C:\Users\Snorlax\AppData\Local\ConnectedDevicesPlatform
2018-10-22 22:08 - 2018-10-23 02:16 - 000000000 ____D C:\Users\Snorlax\AppData\Local\Packages
2018-10-22 22:08 - 2018-10-22 22:35 - 000000000 ____D C:\Users\Snorlax\AppData\Local\Publishers
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ___RD C:\Users\Snorlax\3D Objects
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ___HD C:\Users\Snorlax\MicrosoftEdgeBackups
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ____D C:\Users\Snorlax\AppData\Roaming\Adobe
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ____D C:\Users\Snorlax\AppData\Local\VirtualStore
2018-10-22 22:08 - 2018-10-22 22:08 - 000000000 ____D C:\Users\Snorlax\AppData\Local\MicrosoftEdge
2018-10-22 22:05 - 2018-10-22 22:12 - 000002369 _____ C:\Users\Snorlax\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
 
2018-10-22 22:05 - 2018-10-22 22:11 - 000000000 ____D C:\Users\Snorlax
2018-10-22 22:05 - 2018-10-22 22:05 - 000000020 ___SH C:\Users\Snorlax\ntuser.ini
2018-10-19 21:18 - 2018-10-19 21:18 - 013572096 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 012500992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 006813744 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 006527056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 004790160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 004559872 ____N (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 004491264 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 004404720 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 004331008 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 003397632 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 002590400 ____N (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2018-10-19 21:18 - 2018-10-19 21:18 - 002563984 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002535032 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002371416 ____N (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002331576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002307336 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2018-10-19 21:18 - 2018-10-19 21:18 - 002163184 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 002062488 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001946752 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001784584 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001773056 ____N (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001710240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001708544 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001611584 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001559368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001537024 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001397192 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001380192 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001361408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001342976 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001307648 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001305088 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001295360 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001288840 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001242112 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001153536 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001150408 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001148800 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001144664 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001143096 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001129544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001112600 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001097744 ____N (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001034096 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001020160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001017088 ____N (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001017080 ____N (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 001012408 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000988640 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000861616 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000861096 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000845824 ____N (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000842240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000839680 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000800256 ____N (Microsoft Corporation) C:\WINDOWS\system32\pwcreator.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000770152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000744976 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-10-19 21:18 - 2018-10-19 21:18 - 000713472 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000667136 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000581792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000561152 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2018-10-19 21:18 - 2018-10-19 21:18 - 000500552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000482304 ____N (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000472136 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000463872 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000457152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000416144 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000402944 ____N (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000327168 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000266752 ____N (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000261008 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000247984 ____N (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2018-10-19 21:18 - 2018-10-19 21:18 - 000232488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2018-10-19 21:18 - 2018-10-19 21:18 - 000223232 ____N (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000216576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000182784 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-10-19 21:18 - 2018-10-19 21:18 - 000129088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000127488 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000102400 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000101888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2018-10-19 21:18 - 2018-10-19 21:18 - 000082432 ____N (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000062976 ____N (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2018-10-19 21:18 - 2018-10-19 21:18 - 000033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSHEIF.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000026112 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSHEIF.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000018432 ____N (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000015872 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2018-10-19 21:18 - 2018-10-19 21:18 - 000014336 ____N (Microsoft Corporation) C:\WINDOWS\system32\EasPolicyManagerBrokerPS.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 025851392 ____N (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 022013440 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 019404288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 011901952 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 007577088 ____N (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 005777920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 003711488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 002395056 ____N (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-10-19 21:17 - 2018-10-19 21:17 - 002206528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2018-10-19 21:17 - 2018-10-19 21:17 - 002016768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-10-19 21:17 - 2018-10-19 21:17 - 001586176 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 001466368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000908800 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2018-10-19 21:17 - 2018-10-19 21:17 - 000894464 ____N (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000814592 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000808448 ____N (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000776192 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000753056 ____N (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000669696 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000668160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000661056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000608768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000578560 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000561152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000365568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000344576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-10-19 21:17 - 2018-10-19 21:17 - 000154112 ____N (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 023862784 ____N (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 022715392 ____N (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 020381784 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 019525632 ____N (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 012709376 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 007987712 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 006569856 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 006039368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 005669888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 005391360 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 004866560 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 004469832 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 004191232 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 004050432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 003611368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 003444224 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 002900992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002841312 ____N C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002824704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002401792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002253696 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002084864 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-10-19 21:16 - 2018-10-19 21:16 - 001932288 ____N (Microsoft Corporation) C:\WINDOWS\system32\edgeangle.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001665920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001655296 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001627648 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001626656 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001620880 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001584128 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001540096 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001530368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001508352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdt.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 001490144 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001469952 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001454440 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001452544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001380864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001311744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001308672 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001274368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 001274368 ____N (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001110528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001032704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001026896 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 001008640 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000993792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000950272 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000917408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000908288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000897536 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000871424 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000868864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000864768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2018-10-19 21:16 - 2018-10-19 21:16 - 000863232 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000860160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000851968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000831488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000829752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000807936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000788992 ____N (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000786176 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000757248 ____N (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000747520 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000740352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000729088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000726528 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000704000 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000672768 ____N (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000663128 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000660896 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000658432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000648192 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000646656 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000630784 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000625664 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000622080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000619520 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000593408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000581120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-10-19 21:16 - 2018-10-19 21:16 - 000568720 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000565248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000548864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000539168 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000534016 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000482080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000461312 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000453104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000444416 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000443216 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000429568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000423936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2018-10-19 21:16 - 2018-10-19 21:16 - 000392192 ____N (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000391168 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000387584 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000359424 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcfile.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000347136 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000343552 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000340480 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000331264 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000311296 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000291328 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollUI.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000286200 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000269104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000264704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000262656 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000257536 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000256000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000254464 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000251904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000238592 ____N (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000236032 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000231936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000228352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000224768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000223744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2018-10-19 21:16 - 2018-10-19 21:16 - 000221184 ____N (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000221120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000185856 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000181288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000178688 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000178176 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsAuth.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000172544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000164864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsCfg.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000159744 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000153088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Proxy.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000150016 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000150016 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000142848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000142848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000138752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000138752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000133632 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000131072 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000118784 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000101288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000099840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000098304 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000086528 ____N (Microsoft Corporation) C:\WINDOWS\system32\PackageInspector.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000084992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000081920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProv2faHelper.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000080384 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000064000 ____N (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000060416 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2018-10-19 21:16 - 2018-10-19 21:16 - 000059392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000050208 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel.appcore.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000043008 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000022936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\hvsicontainerservice.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000022016 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 000018716 ____N C:\WINDOWS\SysWOW64\srms-apr.dat
2018-10-19 21:15 - 2018-10-19 21:16 - 002449408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 013873152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 009089848 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 006661632 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 006647296 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 005883392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 005821544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 005505024 ____N (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 005307392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 004615680 ____N (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 004383744 ____N (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 003932672 ____N (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 003733320 ____N C:\WINDOWS\system32\Windows.Mirage.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 003553792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 003320320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002962944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002922496 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002868536 ____N (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 002789376 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002765344 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002719032 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 002700288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002583552 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002571128 ____N (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002486992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002421248 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 002417840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002368000 ____N (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 002258944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001986560 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001980984 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001947720 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001921944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 001805752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001804288 ____N (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001724928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001719808 ____N (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001703936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Controls.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001665024 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001661440 ____N (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001649760 ____N (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001634944 ____N (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001610552 ____N (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001543680 ____N (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001462824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001456720 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-10-19 21:15 - 2018-10-19 21:15 - 001456640 ____N (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001427968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001376576 ____N (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001359360 ____N (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001356800 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001299056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001285536 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 001257864 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 001251736 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001235968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001192448 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001190152 ____N (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001189376 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001180160 ____N (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001140672 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-10-19 21:15 - 2018-10-19 21:15 - 001124352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001114112 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001054720 ____N (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 001036288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001011968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001006080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 001000448 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000986112 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000982600 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000978944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000978432 ____N (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000976384 ____N (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000972800 ____N (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000960512 ____N (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000949760 ____N (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000947712 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2018-10-19 21:15 - 2018-10-19 21:15 - 000945568 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000944640 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000932352 ____N (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000907776 ____N (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000899072 ____N (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000898560 ____N (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000856064 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000836608 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000804352 ____N (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000792376 ____N (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000790304 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000781824 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000775680 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000743320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000740864 ____N (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000736256 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000735744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000729088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000723360 ____N (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000717208 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000713216 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000713216 ____N (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000705024 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000695296 ____N (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-10-19 21:15 - 2018-10-19 21:15 - 000689464 ____N (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000681984 ____N (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000678400 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000677888 ____N (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000677376 ____N (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000675840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000645112 ____N (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000632296 ____N (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000622080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000613144 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000612360 ____N (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000593408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000593408 ____N (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000584192 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000582144 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000560488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000540984 ____N (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000528384 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000528384 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000527328 ____N (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000527264 ____N (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000522240 ____N (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2018-10-19 21:15 - 2018-10-19 21:15 - 000506728 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000505344 ____N (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000500536 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000491520 ____N (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000485376 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000471552 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000465920 ____N (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000452112 ____N (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
 
2018-10-19 21:15 - 2018-10-19 21:15 - 000433664 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000431104 ____N (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000414720 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000402432 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000392704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000392192 ____N (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000386048 ____N (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000375808 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000375712 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000368448 ____N (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000365568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000357056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000356352 ____N (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000355840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000345088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000329216 ____N (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000317440 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000314368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000311296 ____N (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000309560 ____N (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000295416 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000288768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000286824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000285184 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000282624 ____N (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000281080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000270336 ____N (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000266752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000249344 ____N (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2018-10-19 21:15 - 2018-10-19 21:15 - 000239104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000238592 ____N (Microsoft Corporation) C:\WINDOWS\system32\TtlsAuth.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000223232 ____N (Microsoft Corporation) C:\WINDOWS\system32\TtlsExt.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000221184 ____N (Microsoft Corporation) C:\WINDOWS\system32\TtlsCfg.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000217088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000208384 ____N (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000195584 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000192920 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000182272 ____N (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000182272 ____N (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000181760 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000178176 ____N (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000171520 ____N (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000169984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000165376 ____N (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000156160 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManagerAPI.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000144696 ____N (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000141312 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000139672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000135680 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000134936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000123392 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000115640 ____N (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000114176 ____N (Microsoft Corporation) C:\WINDOWS\system32\bthci.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000107008 ____N (Microsoft Corporation) C:\WINDOWS\system32\CredProv2faHelper.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000103424 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000099328 ____N (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000094720 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000088472 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000085504 ____N (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000081920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000079872 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000077040 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000075264 ____N (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000073728 ____N (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000069944 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000068096 ____N (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000064648 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\LanguageOverlayUtil.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000059904 ____N (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000056320 ____N (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000046592 ____N (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000043520 ____N (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000038400 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000036352 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000032256 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000029696 ____N (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000029184 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2018-10-19 21:15 - 2018-10-19 21:15 - 000025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-10-19 21:15 - 2018-10-19 21:15 - 000025088 ____N (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2018-10-19 21:15 - 2018-10-19 21:15 - 000018716 ____N C:\WINDOWS\system32\srms-apr.dat
2018-10-19 21:14 - 2018-10-19 21:14 - 021386888 ____N (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 008624128 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 007520096 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 006602240 ____N (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 004708864 ____N (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 004527680 ____N (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 004392448 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 004049408 ____N (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 003999232 ____N (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 003649024 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-10-19 21:14 - 2018-10-19 21:14 - 003640832 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 003492864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 003396096 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 003376640 ____N (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 002874368 ____N (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 002364928 ____N (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 002328064 ____N (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 002172928 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 002052096 ____N (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 002019840 ____N (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001856000 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001787904 ____N (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001676800 ____N (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001659904 ____N (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001639352 ____N (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001627136 ____N (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001617728 ____N (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001560576 ____N (Microsoft Corporation) C:\WINDOWS\system32\msdt.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 001557504 ____N (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 001551360 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001520744 ____N (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001288192 ____N (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001214976 ____N (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001180672 ____N (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001171968 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001127936 ____N (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001121792 ____N (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001046944 ____N (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 001035256 ____N (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000983040 ____N (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000941056 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000933376 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000932352 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000889344 ____N (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000882688 ____N (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000882688 ____N (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000878592 ____N (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000871424 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000869376 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000849408 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000835584 ____N (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000808960 ____N C:\WINDOWS\system32\MBR2GPT.EXE
2018-10-19 21:14 - 2018-10-19 21:14 - 000790528 ____N (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000766872 ____N (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000761344 ____N (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000760888 ____N (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000676864 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Devices.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000661160 ____N (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000636944 ____N (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000625152 ____N (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000584192 ____N (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000577024 ____N (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000572416 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000566272 ____N (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000542208 ____N (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000533504 ____N (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000517120 ____N (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000514560 ____N (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000510392 ____N (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000508416 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000506880 ____N (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000506184 ____N (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000503296 ____N (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000499200 ____N (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000486912 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000463360 ____N (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000409088 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000401920 ____N (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000344576 ____N (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000340992 ____N (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000327680 ____N (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000326144 ____N (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollUI.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000324000 ____N (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000311296 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-10-19 21:14 - 2018-10-19 21:14 - 000301568 ____N (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000275456 ____N (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000271872 ____N (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000258560 ____N (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000256000 ____N (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000253544 ____N (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000248832 ____N (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000241152 ____N (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000236624 ____N (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000228768 ____N (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000228136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ucx01000.sys
2018-10-19 21:14 - 2018-10-19 21:14 - 000224768 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000220160 ____N (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000209408 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000204800 ____N (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000191488 ____N (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000189440 ____N (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000188928 ____N (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000181248 ____N (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000171520 ____N (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000158720 ____N (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000150528 ____N (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000145920 ____N (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000143360 ____N (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000104448 ____N (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000098816 ____N (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000093600 ____N (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000091136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000088576 ____N (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000072768 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2018-10-19 21:14 - 2018-10-19 21:14 - 000066048 ____N (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2018-10-19 21:14 - 2018-10-19 21:14 - 000047616 ____N (Microsoft Corporation) C:\WINDOWS\system32\SCardBi.dll
2018-10-19 21:14 - 2018-10-19 21:14 - 000023552 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 016592384 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 009084928 ____N (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 008188928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 007900984 ____N (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 007057920 ____N (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 006032384 ____N (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 004771840 ____N (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 004706816 ____N (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 003392512 ____N (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 003381248 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 003348992 ____N (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 003283408 ____N (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 003180176 ____N (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 002825728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 002825232 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-10-19 21:13 - 2018-10-19 21:13 - 002738688 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 002697216 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 002548736 ____N (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 002462888 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 002267136 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 002248192 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 002236928 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-10-19 21:13 - 2018-10-19 21:13 - 002193920 ____N (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 002178136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 002061824 ____N (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001934400 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001825792 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001817600 ____N (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001786168 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001768448 ____N (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001767096 ____N (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001724928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001724416 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001668096 ____N (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001659296 ____N (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001626936 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001613200 ____N (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001581568 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001540104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001487360 ____N (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001422648 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001421312 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001395200 ____N (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001371136 ____N (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001364992 ____N (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001318400 ____N (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001308672 ____N C:\WINDOWS\system32\FaceProcessor.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001304064 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001292288 ____N (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 001285120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001264640 ____N (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001225216 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001213368 ____N (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 001211904 ____N (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001209800 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001186816 ____N (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001128448 ____N (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001127936 ____N (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 001062920 ____N (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-10-19 21:13 - 2018-10-19 21:13 - 001057792 ____N (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 001038136 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001034240 ____N (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 001026456 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-10-19 21:13 - 2018-10-19 21:13 - 001004544 ____N (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000990720 ____N (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-10-19 21:13 - 2018-10-19 21:13 - 000981920 ____N (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000954368 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000943616 ____N (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000930616 ____N (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000916480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000910848 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000906752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.PhoneNumberFormatting.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000884736 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000884224 ____N (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000883712 ____N (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000847360 ____N (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000830264 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000827392 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000826776 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000825144 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000811520 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000796672 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000793088 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-10-19 21:13 - 2018-10-19 21:13 - 000784896 ____N (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000783360 ____N (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000778752 ____N (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-10-19 21:13 - 2018-10-19 21:13 - 000755712 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000755712 ____N (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000749880 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000748512 ____N (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000735744 ____N (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000715776 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000684544 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000673792 ____N (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000670720 ____N (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000670008 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000667648 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000652800 ____N (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000652288 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000625152 ____N (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000615936 ____N (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000613376 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs4.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000613176 ____N (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000596992 ____N (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000594128 ____N (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000585728 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs3.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000553984 ____N (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000542888 ____N C:\WINDOWS\system32\FaceProcessorCore.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000530432 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000522752 ____N (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000495416 ____N (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000483328 ____N (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000481280 ____N (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000474624 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs2.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000458752 ____N (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000444416 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs1.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000433664 ____N (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000413816 ____N (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000412984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-10-19 21:13 - 2018-10-19 21:13 - 000409088 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000406528 ____N (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000406528 ____N (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000399672 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000395776 ____N (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000392704 ____N (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000386048 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000384000 ____N (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000368440 ____N (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000361544 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000342528 ____N (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000341504 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000338352 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000335776 ____N (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000334336 ____N (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000326024 ____N (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000316928 ____N (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000313592 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000312832 ____N (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000301056 ____N (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000295424 ____N (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000294912 ____N (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000288256 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Proxy.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000272200 ____N (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000270336 ____N (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000269128 ____N (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000267576 ____N (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000266752 ____N (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000265728 ____N (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000262144 ____N (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000257848 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000241664 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win81.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000236544 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000235520 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000234496 ____N (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000231424 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000228152 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000216064 ____N (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000201528 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000200192 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000197632 ____N (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000185344 ____N (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000183736 ____N (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000180736 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000176640 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000173056 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000164768 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-10-19 21:13 - 2018-10-19 21:13 - 000155112 ____N (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000151040 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000149504 ____N (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000148888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000142336 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win8rtm.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000137728 ____N (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000131232 ____N (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000119296 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000117248 ____N (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000116632 ____N (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000113664 ____N (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000111616 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppHostRegistrationVerifier.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000109568 ____N (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000102400 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000101888 ____N (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000100864 ____N (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000094720 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000092672 ____N (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000091136 ____N (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000089984 ____N (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000086528 ____N (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000084288 ____N (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayUtil.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000075776 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2018-10-19 21:13 - 2018-10-19 21:13 - 000058880 ____N (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000057440 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.ShellCommon.Broker.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000055808 ____N (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000046080 ____N (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000041984 ____N (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000040864 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVClientPS.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000035840 ____N (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000034304 ____N C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2018-10-19 21:13 - 2018-10-19 21:13 - 000029696 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapsTelemetry.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000019968 ____N (Microsoft Corporation) C:\WINDOWS\system32\DTUHandlerPS.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000019872 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppVTerminator.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2018-10-19 21:13 - 2018-10-19 21:13 - 000014848 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 007432136 ____N (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 005951488 ____N (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
 
2018-10-19 21:12 - 2018-10-19 21:12 - 004970360 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 004929024 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 003296896 ____N (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 003293696 ____N (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 003148288 ____N (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 003090432 ____N (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 002904064 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 002893824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 002891776 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 002546592 ____N (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 002479272 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001989232 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001953280 ____N C:\WINDOWS\system32\rdpnano.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001854976 ____N (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001798552 ____N (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001792808 ____N (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001742272 ____N (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001675264 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001605632 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001586176 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001567744 ____N (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001566720 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001535488 ____N (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001513032 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001462784 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001457664 ____N (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001375232 ____N (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001364184 ____N (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001363632 ____N (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001348096 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001328056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001221128 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 001174448 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001159680 ____N (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001096704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 001077504 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001070080 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 001029432 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 001016984 ____N (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000953856 ____N (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000916992 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000899072 ____N (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000898760 ____N (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000898560 ____N (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000885952 ____N (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000880152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000873472 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000857088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2018-10-19 21:12 - 2018-10-19 21:12 - 000835584 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000806416 ____N C:\WINDOWS\SysWOW64\locale.nls
2018-10-19 21:12 - 2018-10-19 21:12 - 000806416 ____N C:\WINDOWS\system32\locale.nls
2018-10-19 21:12 - 2018-10-19 21:12 - 000797184 ____N (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000788216 ____N (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000778240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000777400 ____N (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000776880 ____N (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000766608 ____N (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000765440 ____N (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000735560 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000722880 ____N (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000719552 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000709936 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000705440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000692240 ____N (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000678840 ____N (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000665320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000659096 ____N (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000652288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000642088 ____N (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000611232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000607648 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000606448 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000604664 ____N (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000604160 ____N (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000603648 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000602112 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000573904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000567256 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000566800 ____N (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-10-19 21:12 - 2018-10-19 21:12 - 000562080 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000558592 ____N (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000553248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000550608 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000515072 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000494488 ____N (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000491304 ____N (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000482384 ____N (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000480568 ____N (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000473088 ____N (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000466944 ____N (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000466432 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000462880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000460288 ____N (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000456704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000450560 ____N (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000434584 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000433664 ____N (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000415744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000396800 ____N (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000382872 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000380728 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000380416 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000376120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000375704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000373248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000358912 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000352768 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000350208 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000348160 ____N (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000347704 ____N (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000330752 ____N (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000319488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000317440 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000310272 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000275968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000236032 ____N (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000230304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000227840 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000224768 ____N (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000208384 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2018-10-19 21:12 - 2018-10-19 21:12 - 000205312 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000203568 ____N (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000194456 ____N (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000184320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000183992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000177152 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000175616 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000174080 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000170808 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000167936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000158720 ____N (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000147456 ____N (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000145408 ____N (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000137728 ____N (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000137568 ____N (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000134968 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000130456 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000128920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000125600 ____N (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000122368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000118872 ____N (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000117760 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000114688 ____N (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000114080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000105376 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000105368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000099328 ____N (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000099208 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000097176 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000096768 ____N (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000094112 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000083360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000076088 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000074240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000072800 ____N (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000068096 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000061736 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000061032 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000057960 ____N (Microsoft Corporation) C:\WINDOWS\system32\kernel.appcore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000052736 ____N C:\WINDOWS\system32\runexehelper.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000051200 ____N (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000050176 ____N (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000048544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000048128 ____N (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000042496 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2018-10-19 21:12 - 2018-10-19 21:12 - 000038400 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000035840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000031648 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000029600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000020480 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\netevent.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000020480 ____N (Microsoft Corporation) C:\WINDOWS\system32\netevent.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000019968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2018-10-19 21:12 - 2018-10-19 21:12 - 000002560 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000002560 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-10-19 21:12 - 2018-10-19 21:12 - 000001312 ____N C:\WINDOWS\system32\tcbres.wim
2018-10-19 20:46 - 2018-10-19 20:46 - 001166520 ____N (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-10-19 20:46 - 2018-10-19 20:46 - 000778936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-10-19 20:46 - 2018-10-19 20:46 - 000124624 ____N (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-10-19 20:46 - 2018-10-19 20:46 - 000103120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-10-19 20:46 - 2018-10-19 20:46 - 000035456 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-10-19 20:46 - 2018-10-19 20:46 - 000035456 ____N (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-10-19 20:43 - 2018-10-19 20:43 - 000925696 ____N (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2018-10-19 20:43 - 2018-10-19 20:43 - 000575488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2018-10-19 20:43 - 2018-10-19 20:43 - 000100352 ____N (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2018-10-19 20:43 - 2018-10-19 20:43 - 000082432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2018-10-19 20:43 - 2018-10-19 20:43 - 000076060 ____N C:\WINDOWS\SysWOW64\xpsrchvw.xml
2018-10-19 20:43 - 2018-10-19 20:43 - 000076060 ____N C:\WINDOWS\system32\xpsrchvw.xml
2018-10-19 20:39 - 2018-10-19 20:39 - 000273408 ____N (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-10-19 20:39 - 2018-10-19 20:39 - 000245760 ____N (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2018-10-19 20:39 - 2018-10-19 20:39 - 000245760 ____N (Microsoft Corporation) C:\WINDOWS\notepad.exe
2018-10-19 20:39 - 2018-10-19 20:39 - 000058524 ____N C:\WINDOWS\system32\srms.dat

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)


Some files in TEMP:
====================
2018-04-04 20:44 - 2018-04-04 20:44 - 000450880 _____ (Garena Online ) C:\Users\Snorlax\AppData\Local\Temp\Garena.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-10-23 12:33

==================== End of FRST.txt ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10.10.2018
Ran by Snorlax (23-10-2018 12:34:11)
Running from C:\Users\Snorlax\Desktop
Windows 10 Pro Version 1803 17134.345 (X64) (2018-10-23 04:46:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-122434779-2526441635-562969221-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-122434779-2526441635-562969221-503 - Limited - Disabled)
Guest (S-1-5-21-122434779-2526441635-562969221-501 - Limited - Disabled)
Labuyo (S-1-5-21-122434779-2526441635-562969221-1003 - Administrator - Enabled)
Snorlax (S-1-5-21-122434779-2526441635-562969221-1002 - Administrator - Enabled) => C:\Users\Snorlax
WDAGUtilityAccount (S-1-5-21-122434779-2526441635-562969221-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Garena (remove only) (HKLM-x32\...\gxx) (Version: 2.0.1808.0718 - Garena)
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-122434779-2526441635-562969221-1002\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.115 - Synaptics Incorporated)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {053C7845-894F-42C9-B685-9A7C7F441BB4} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {26AD23E3-264A-483A-9BC9-801ADB00F801} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {39F66C2A-AD5C-4079-9A74-098C4C03D664} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {7C118641-F09D-48ED-B67C-5877C3E781A8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {8EA6DF49-FDD4-465F-9FC4-483B8733E8C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {E0A41266-940E-42F8-A046-060BB4084792} - System32\Tasks\gxx speed launcher => C:\Program Files (x86)\Garena\Garena\Garena.exe [2018-08-07] (Garena Online )

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-04-12 07:34 - 2018-04-12 07:34 - 000491744 ____N () C:\Windows\System32\InputHost.dll
2018-10-23 09:48 - 2018-09-12 11:35 - 002701064 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-10-23 09:48 - 2018-09-12 17:57 - 002785784 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-04-12 07:34 - 2018-04-12 07:34 - 000472064 ____N () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 07:34 - 2018-04-12 07:34 - 002759168 ____N () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-10-19 21:16 - 2018-10-19 21:16 - 002185728 ____N () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 000112264 _____ () C:\Windows\System32\IccLibDll_x64.dll
2017-10-13 14:46 - 2017-10-13 14:46 - 000266424 _____ () C:\Program Files (x86)\Garena\Garena\2.0.1808.0718\libprotobuf-lite.dll
2018-08-07 19:07 - 2018-08-07 19:07 - 001442624 _____ () C:\Program Files (x86)\Garena\Garena\2.0.1808.0718\libs\gxx_pipe_engine.dll
2018-08-07 19:06 - 2018-08-07 19:06 - 002207552 _____ () C:\Program Files (x86)\Garena\Garena\2.0.1808.0718\libs\FSFileSytem.dll
2017-06-09 18:56 - 2017-06-09 18:56 - 002385448 _____ () C:\Program Files (x86)\Garena\Garena\2.0.1808.0718\gacode.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-10-23 13:10 - 2018-10-23 13:07 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-122434779-2526441635-562969221-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.254.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E8AC12B0-3BD3-483C-8A32-FD65354D7DBE}] => (Allow) C:\Program Files (x86)\Garena\Garena\2.0.1804.0420\gxxsvc.exe
FirewallRules: [TCP Query User{D3B8E0B7-2C09-4E6D-8A30-3E031AE77563}C:\garena\games\32771\leagueclient\leagueclient.exe] => (Allow) C:\garena\games\32771\leagueclient\leagueclient.exe
FirewallRules: [UDP Query User{2895725E-B1E7-4E54-B76F-BCE222A87E90}C:\garena\games\32771\leagueclient\leagueclient.exe] => (Allow) C:\garena\games\32771\leagueclient\leagueclient.exe
FirewallRules: [{149CC848-F82A-411C-8A01-A6747A3EDEA9}] => (Allow) C:\Program Files (x86)\Garena\Garena\2.0.1808.0718\gxxsvc.exe
FirewallRules: [TCP Query User{D12C9FA7-E4CB-4048-B717-5F6D4305B741}C:\garena\games\32774\leagueclient\leagueclient.exe] => (Allow) C:\garena\games\32774\leagueclient\leagueclient.exe
FirewallRules: [UDP Query User{FCAD3E5B-FAC7-40E4-8AA2-D3E62D3C14A1}C:\garena\games\32774\leagueclient\leagueclient.exe] => (Allow) C:\garena\games\32774\leagueclient\leagueclient.exe

==================== Restore Points =========================

23-10-2018 09:44:48 One

==================== Faulty Device Manager Devices =============

Name: PCI Serial Port
Description: PCI Serial Port
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/23/2018 10:23:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_WbioSrvc, version: 10.0.17134.1, time stamp: 0xa38b9ab2
Faulting module name: UPKBU.DLL, version: 1.6.1.341, time stamp: 0x502239a7
Exception code: 0xc0000005
Fault offset: 0x00000000000cccd7
Faulting process id: 0x1bc4
Faulting application start time: 0x01d46a7717a2e432
Faulting application path: C:\WINDOWS\system32\svchost.exe
Faulting module path: C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\UPKBU.DLL
Report Id: f457263b-dd47-4b53-81e4-09c4697d650f
Faulting package full name:
Faulting package-relative application ID:

Error: (10/23/2018 09:22:15 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_WbioSrvc, version: 10.0.17134.1, time stamp: 0xa38b9ab2
Faulting module name: UPKBU.DLL, version: 1.6.1.341, time stamp: 0x502239a7
Exception code: 0xc0000005
Fault offset: 0x00000000000cccd7
Faulting process id: 0x1394
Faulting application start time: 0x01d46a46dc7d2acf
Faulting application path: C:\WINDOWS\system32\svchost.exe
Faulting module path: C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\UPKBU.DLL
Report Id: a755812f-8f28-4409-963e-a4f9c3fd8917
Faulting package full name:
Faulting package-relative application ID:

Error: (10/23/2018 01:53:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_WbioSrvc, version: 10.0.17134.1, time stamp: 0xa38b9ab2
Faulting module name: UPKBU.DLL, version: 1.6.1.341, time stamp: 0x502239a7
Exception code: 0xc0000005
Fault offset: 0x00000000000cccd7
Faulting process id: 0x408
Faulting application start time: 0x01d46a149874dfaf
Faulting application path: C:\WINDOWS\system32\svchost.exe
Faulting module path: C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\UPKBU.DLL
Report Id: dd3ac6eb-400f-446e-a569-072f553c2a46
Faulting package full name:
Faulting package-relative application ID:

Error: (10/23/2018 12:37:44 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating Windows Defender status to SECURITY_PRODUCT_STATE_ON.

Error: (10/23/2018 12:37:44 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating Windows Defender status to SECURITY_PRODUCT_STATE_ON.


System errors:
=============
Error: (10/23/2018 12:16:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/23/2018 12:16:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/23/2018 12:16:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/23/2018 10:23:03 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Windows Biometric Service service terminated unexpectedly. It has done this 3 time(s).

Error: (10/23/2018 09:26:31 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The Garena platform service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

Error: (10/23/2018 09:25:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Garena platform service service terminated unexpectedly. It has done this 1 time(s).

Error: (10/23/2018 09:22:20 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/23/2018 09:22:20 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


CodeIntegrity:
===================================

Date: 2018-10-23 12:32:28.197
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-23 12:31:54.877
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-23 12:27:58.586
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-23 12:27:39.675
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-23 12:22:55.122
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-23 12:20:02.482
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-23 12:19:29.793
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-23 12:19:29.249
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Percentage of memory in use: 73%
Total physical RAM: 3979.23 MB
Available physical RAM: 1057.08 MB
Total Virtual: 6554.75 MB
Available Virtual: 3275.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.55 GB) (Free:262.34 GB) NTFS

\\?\Volume{2f9122e8-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.54 GB) (Free:0.1 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 2F9122E8)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
 
redtarget.gif
Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2
  • Close all the running programs
  • Double click on downloaded setup.exe file to install the program.
  • Click on Start Scan button.
  • Click on another Start Scan button.
  • Wait until the Status box shows Scan Finished
  • Click on Remove Selected.
  • Wait until the Status box shows Deleting Finished.
  • Click on Report and copy/paste the content of the Notepad into your next reply.
  • RKreport.txt could also be found on your desktop.
  • If more than one log is produced post all logs.
redtarget.gif
Please download Malwarebytes to your desktop.
  • Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  • Then click Finish.
  • Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  • If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  • When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  • Restart your computer when prompted to do so.
  • The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.
redtarget.gif
Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8/10 users right-click and select Run As Administrator
  • The tool will start to update the database if one is required.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Logfile button.
  • A window will open which lists the logs of your scans.
  • Click on the Scan tab.
  • Double-click the most recent scan which will be at the top of the list....the log will appear.
  • Review the results...see note below
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
  • To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
  • Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
  • A copy of all logfiles are saved to C:\AdwCleaner.
-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.
 
RogueKiller V12.13.6.0 (x64) [Oct 22 2018] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com
Operating System : Windows 10 (10.0.17134) 64 bits version
Started in : Normal mode
User : Snorlax [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Scan -- Date : 10/25/2018 22:31:00 (Duration : 00:32:41)
¤¤¤ Processes : 0 ¤¤¤
¤¤¤ Registry : 0 ¤¤¤
¤¤¤ Tasks : 0 ¤¤¤
¤¤¤ Files : 0 ¤¤¤
¤¤¤ WMI : 0 ¤¤¤
¤¤¤ Hosts File : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤
¤¤¤ Web browsers : 0 ¤¤¤
¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: HITACHI HTS725032A9A364 ATA Device +++++
--- User ---
[MBR] 941cc6297c64d13d59240b09a0a95a55
[BSP] b1f7055ac51a71381ca94b3e48208bbc : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 549 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 1126400 | Size: 304694 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 10/25/18
Scan Time: 11:09 PM
Log File: 02b448bc-d868-11e8-9bbc-0021ccbf8053.json
-Software Information-
Version: 3.6.1.2711
Components Version: 1.0.463
Update Package Version: 1.0.7525
License: Trial
-System Information-
OS: Windows 10 (Build 17134.345)
CPU: x64
File System: NTFS
User: DESKTOP-2VN95UH\Snorlax
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 260715
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 3 min, 6 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 0
(No malicious items detected)
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 0
(No malicious items detected)
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)

(end)
 
# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build: 09-25-2018
# Database: 2018-10-23.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-25-2018
# Duration: 00:00:11
# OS: Windows 10 Pro
# Scanned: 32011
# Detected: 0

***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
 
For AdwCleaner, instead of Clean, the options are Run Basic Repair or Skip Basic Repair. Please let me know the next steps. Thank you.
 
Hello,

Done with basic repair. Here's the log:

# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build: 09-25-2018
# Database: 2018-10-23.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-28-2018
# Duration: 00:00:04
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 0

***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.

*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1249 octets] - [25/10/2018 23:15:31]
AdwCleaner[S01].txt - [1310 octets] - [28/10/2018 13:52:39]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
 
Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

  • Double click to run it.
  • Make sure you checkmark Addition.txt box.
  • Press Scan button.
  • Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.
 
You must log in or register to reply here.

Similar threads

midian182
Apex Legends tournament postponed after players hacked mid-match
Replies
0
Views
92
midian182
midian182
L
HP Class Action Lawsuit in 2023
Replies
0
Views
313
lsmartin
L
midian182
One-person company Wargraphs, creator of League of Legends companion app, acquired for...
Replies
2
Views
391
Theinsanegamer
T

Latest posts

Back