Hello Kevin, here are the results
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28.02.2018
Ran by SJ Botha (administrator) on LAPTOP-0F2Q00VJ (03-03-2018 15:52:35)
Running from C:\Users\SJ Botha\Downloads
Loaded Profiles: SJ Botha (Available Profiles: SJ Botha & bounc)
Platform: Windows 10 Home Version 1709 16299.248 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki122461.inf_amd64_ac02a4363c345cef\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Portrait Displays, Inc.) C:\Program Files\Portrait Displays\Dell PremierColor\PremierColorService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Farbar) C:\Users\SJ Botha\Downloads\FRST64 (1).exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9244656 2017-11-02] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-11-02] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation)
HKLM\...\Run: [PremierColor] => C:\Program Files\Portrait Displays\Dell PremierColor\PremierColor.exe [3828464 2015-09-02] (Portrait Displays, Inc.)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-11-02] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => c:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [723928 2017-01-26] (Waves Audio Ltd.)
HKLM-x32\...\Run: [WRSVC] => C:\Program Files\Webroot\WRSA.exe [1252856 2018-02-02] (Webroot)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-06] (Oracle Corporation)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [455304 2016-10-02] (Power Software Ltd)
HKLM\...\Policies\Explorer: [NoViewOnDrive] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoShellSearchButton] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKLM\...\Policies\Explorer: [NoFile] 0
HKLM\...\Policies\Explorer: [HideClock] 0
HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0
HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKLM\...\Policies\Explorer: [NoSetFolders] 0
HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKLM\...\Policies\Explorer: [NoSetTaskbar] 0
HKLM\...\Policies\Explorer: [NoDeletePrinter] 0
HKLM\...\Policies\Explorer: [NoDFSTab] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\...\Policies\Explorer: [NoLogoff] 0
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0
HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0
HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 0
HKLM\...\Policies\Explorer: [NoSaveSettings] 0
HKLM\...\Policies\Explorer: [NoHardwareTab] 0
HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKLM\...\Policies\Explorer: [NoDesktop] 0
HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3111712 2017-12-15] (Valve Corporation)
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Run: [uTorrent] => C:\Users\SJ Botha\AppData\Roaming\uTorrent\uTorrent.exe [2148024 2018-02-27] (BitTorrent Inc.)
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\MountPoints2: F - "F:\setup.exe"
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq SoundMixer.exe" 2>NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist "C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" ( start /MIN "" "C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== ATTENTION
HKU\S-1-5-18\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-18\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-18\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoStartMenuSubFolders] 0
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-12-04]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2017-12-16]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\wruninstall.exe (No File)
Startup: C:\Users\SJ Botha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2018-01-13]
ShortcutTarget: Twitch.lnk -> C:\Users\SJ Botha\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{a79c21cc-16be-4de3-9511-535086cdffe6}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell15.msn.com/?pc=DCTE
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell15.msn.com/?pc=DCTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2018-01-12] (Oracle Corporation)
BHO: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\pkg\LPBar64.dll [2017-12-16] (Webroot)
BHO: Webroot Filtering Extension -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61} -> C:\Program Files\Common Files\Webroot\WebFiltering\wrflt.dll [2018-02-13] (Webroot)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2018-01-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2018-01-12] (Oracle Corporation)
BHO-x32: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\pkg\LPBar.dll [2017-12-16] (Webroot)
BHO-x32: Webroot Filtering Extension -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61} -> C:\Program Files (x86)\Common Files\Webroot\WebFiltering\wrflt.dll [2018-02-13] (Webroot)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2018-01-12] (Oracle Corporation)
Toolbar: HKLM - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\pkg\LPBar64.dll [2017-12-16] (Webroot)
Toolbar: HKLM-x32 - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\pkg\LPBar.dll [2017-12-16] (Webroot)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2018-01-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2018-01-12] (Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2018-01-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2018-01-12] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-02-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-02-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-01-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-01-08] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default [2018-03-03]
CHR Extension: (Slides) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-08]
CHR Extension: (Docs) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-08]
CHR Extension: (Google Drive) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-08]
CHR Extension: (YouTube) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-08]
CHR Extension: (Adblock Plus) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-01-27]
CHR Extension: (Sheets) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-08]
CHR Extension: (Google Docs Offline) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-01-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-01-08]
CHR Extension: (Gmail) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-01-08]
CHR Extension: (Chrome Media Router) - C:\Users\SJ Botha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-02]
CHR HKLM-x32\...\Chrome\Extension: [kjeghcllfecehndceplomkocgfbklffd] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2297104 2015-10-29] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1530888 2018-02-06] ()
R2 DellPremierColorService; C:\Program Files\Portrait Displays\Dell PremierColor\PremierColorService.exe [175344 2015-09-02] (Portrait Displays, Inc.)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1392792 2015-10-30] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-22] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519992 2018-01-10] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519992 2018-01-10] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2156864 2018-02-14] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3026760 2018-02-14] (Electronic Arts)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [333296 2017-11-02] (Realtek Semiconductor)
S3 ThunderboltService; c:\Program Files (x86)\Intel\Thunderbolt Software\tbtsvc.exe [1770136 2015-08-04] (Intel Corporation)
R2 WavesSysSvc; c:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [615384 2017-02-07] (Waves Audio Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\NisSrv.exe [356168 2018-02-03] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MsMpEng.exe [105792 2018-02-03] (Microsoft Corporation)
S2 WRSVC; C:\Program Files\Webroot\WRSA.exe [1252856 2018-02-02] (Webroot)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [227136 2015-10-29] (Broadcom Corporation.)
R3 BCMPCIEDHD63; C:\WINDOWS\system32\DRIVERS\bcmpciedhd63.sys [1063712 2017-10-19] (Broadcom Corp)
S3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32960 2017-07-27] (Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-07-27] (Dell Computer Corporation)
S0 dgUMLbDI; C:\WINDOWS\System32\drivers\dgUMLbDI.sys [128264 2018-03-03] (Webroot)
S3 dot4; C:\WINDOWS\System32\drivers\Dot4.sys [151968 2013-09-10] (Windows (R) Win 7 DDK provider)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [55784 2015-10-30] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-30] (Intel Corporation)
S3 DSI_SiUSBXp_3_1; C:\WINDOWS\system32\drivers\DSI_SiUSBXp_3_1.sys [16384 2007-09-06] (Silicon Laboratories)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-30] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-29] ()
R3 HidEventFilter; C:\WINDOWS\System32\drivers\HidEventFilter.sys [43512 2015-06-10] (Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193968 2018-03-03] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2018-03-03] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2018-03-03] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2018-03-03] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2018-03-03] (Malwarebytes)
S3 nhi; C:\WINDOWS\System32\drivers\tbt81x.sys [125432 2015-08-10] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmi.inf_amd64_4768f29e02a5c112\nvlddmkm.sys [17524720 2018-02-26] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31024 2018-01-10] (NVIDIA Corporation)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [28344 2015-08-27] (Windows (R) Win 7 DDK provider)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57928 2018-01-10] (NVIDIA Corporation)
S3 PCDSRVC{3B54B31B-D06B6431-06020200}_0; c:\program files\dell\supportassist\pcdsrvc_x64.pkms [25584 2015-05-20] (PC-Doctor, Inc.)
S3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [752856 2015-06-24] (Realsil Semiconductor Corporation)
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [402136 2015-06-24] (Realsil Semiconductor Corporation)
S3 ST_Accel; C:\WINDOWS\System32\drivers\ST_Accel.sys [137784 2015-05-22] (STMicroelectronics)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46072 2018-02-03] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [288848 2018-02-03] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2018-02-03] (Microsoft Corporation)
R0 WRkrn; C:\WINDOWS\System32\drivers\WRkrn.sys [128264 2018-02-02] (Webroot)
S3 wrUrlFlt; C:\WINDOWS\system32\DRIVERS\wrUrlFlt.sys [68384 2018-01-26] (Webroot)
U4 epp; \??\C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys [X]
U0 SR; no ImagePath
U2 srservice; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-03-03 15:52 - 2018-03-03 15:52 - 000029344 _____ C:\Users\SJ Botha\Downloads\FRST.txt
2018-03-03 15:52 - 2018-03-03 15:52 - 000000000 ____D C:\FRST
2018-03-03 15:51 - 2018-03-03 15:51 - 002403840 _____ (Farbar) C:\Users\SJ Botha\Downloads\FRST64 (1).exe
2018-03-03 15:46 - 2018-03-03 15:46 - 000128264 _____ (Webroot) C:\WINDOWS\system32\Drivers\dgUMLbDI.sys
2018-03-03 13:48 - 2018-03-03 14:00 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2018-03-03 13:48 - 2018-03-03 14:00 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2018-03-03 13:48 - 2018-03-03 14:00 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2018-03-03 13:48 - 2018-03-03 13:48 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-03-03 13:48 - 2018-03-03 13:48 - 000193968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2018-03-03 13:48 - 2018-03-03 13:48 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-03-03 13:48 - 2018-03-03 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-03-03 13:48 - 2018-03-03 13:48 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-03-03 13:48 - 2018-03-03 13:48 - 000000000 ____D C:\Program Files\Malwarebytes
2018-03-03 13:48 - 2017-11-29 09:11 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2018-03-03 13:45 - 2018-03-03 13:48 - 067456464 _____ (Malwarebytes ) C:\Users\SJ Botha\Downloads\mb3-setup-exp89ctrl.exp89ctrl-3.3.1.2183-1.0.262-1.0.4030.exe
2018-03-03 12:38 - 2018-03-03 12:38 - 000000000 ____D C:\WINDOWS\system32\RTCOM
2018-03-03 12:38 - 2018-03-03 12:38 - 000000000 ____D C:\Program Files\Waves
2018-03-03 12:37 - 2018-03-03 12:37 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2018-03-03 12:37 - 2018-03-03 12:37 - 000000000 ____D C:\WINDOWS\LastGood
2018-03-03 06:25 - 2018-03-03 06:25 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\PlaceholderTileLogoFolder
2018-03-03 06:24 - 2018-03-03 06:24 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\Comms
2018-03-03 06:12 - 2018-03-03 06:17 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\Documents\My Games
2018-03-03 06:11 - 2018-03-03 06:11 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4043987046-3975741843-2478934196-1003
2018-03-03 06:11 - 2018-03-03 06:11 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\Steam
2018-03-03 06:11 - 2018-03-03 06:11 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\CEF
2018-03-03 06:10 - 2018-03-03 06:10 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Roaming\Intel Corporation
2018-03-03 06:09 - 2018-03-03 06:27 - 000000000 ___RD C:\Users\bounc.LAPTOP-0F2Q00VJ\OneDrive
2018-03-03 06:09 - 2018-03-03 06:11 - 000002415 _____ C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-03-03 06:09 - 2018-03-03 06:09 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\Documents\Bluetooth Exchange Folder
2018-03-03 06:09 - 2018-03-03 06:09 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\Broadcom
2018-03-03 06:08 - 2018-03-03 06:25 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\Packages
2018-03-03 06:08 - 2018-03-03 06:10 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\NVIDIA Corporation
2018-03-03 06:08 - 2018-03-03 06:09 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\ConnectedDevicesPlatform
2018-03-03 06:08 - 2018-03-03 06:09 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ
2018-03-03 06:08 - 2018-03-03 06:08 - 000000020 ___SH C:\Users\bounc.LAPTOP-0F2Q00VJ\ntuser.ini
2018-03-03 06:08 - 2018-03-03 06:08 - 000000000 ___RD C:\Users\bounc.LAPTOP-0F2Q00VJ\3D Objects
2018-03-03 06:08 - 2018-03-03 06:08 - 000000000 ___HD C:\Users\bounc.LAPTOP-0F2Q00VJ\MicrosoftEdgeBackups
2018-03-03 06:08 - 2018-03-03 06:08 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Roaming\Adobe
2018-03-03 06:08 - 2018-03-03 06:08 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\VirtualStore
2018-03-03 06:08 - 2018-03-03 06:08 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\Publishers
2018-03-03 06:08 - 2018-03-03 06:08 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\NVIDIA
2018-03-03 06:08 - 2018-03-03 06:08 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\MicrosoftEdge
2018-03-03 06:08 - 2018-03-03 06:08 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\AppData\Local\Google
2018-03-03 06:08 - 2018-03-03 06:08 - 000000000 ____D C:\Users\bounc.LAPTOP-0F2Q00VJ\ansel
2018-03-02 20:29 - 2018-03-02 21:59 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\TS3Client
2018-03-02 20:29 - 2018-03-02 20:29 - 000001008 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2018-03-02 20:29 - 2018-03-02 20:29 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2018-03-02 20:29 - 2018-03-02 20:29 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2018-03-02 20:13 - 2018-03-02 20:28 - 078082184 _____ (TeamSpeak Systems GmbH) C:\Users\SJ Botha\Downloads\TeamSpeak3-Client-win64-3.1.8.exe
2018-03-02 19:34 - 2018-03-02 19:34 - 000007603 _____ C:\Users\SJ Botha\AppData\Local\Resmon.ResmonCfg
2018-03-02 18:52 - 2018-03-03 14:04 - 000000000 ____D C:\Program Files\Emsisoft Anti-Malware
2018-03-02 18:46 - 2018-03-02 19:10 - 000000000 ____D C:\EEK
2018-03-02 18:41 - 2018-03-02 18:46 - 318819608 _____ C:\Users\SJ Botha\Downloads\EmsisoftEmergencyKit.exe
2018-03-02 17:37 - 2018-03-02 17:37 - 001243944 _____ (ALCPU ) C:\Users\SJ Botha\Downloads\Core-Temp-setup.exe
2018-03-02 17:37 - 2018-03-02 17:37 - 000000989 _____ C:\Users\SJ Botha\Desktop\Core Temp.lnk
2018-03-02 17:37 - 2018-03-02 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2018-03-02 17:37 - 2018-03-02 17:37 - 000000000 ____D C:\Program Files\Core Temp
2018-03-02 06:14 - 2018-03-02 06:14 - 000018141 _____ C:\Users\SJ Botha\Downloads\MCM BugFix 2-42507-.7z
2018-03-02 06:11 - 2018-03-02 06:11 - 000358061 _____ C:\Users\SJ Botha\Downloads\The Mod Configuration Menu-42507-1-5.7z
2018-03-01 19:07 - 2018-03-01 19:07 - 000000000 ____D C:\Users\bounc\Documents\My Games
2018-03-01 19:04 - 2018-03-01 19:04 - 000000000 ____D C:\Users\bounc\AppData\Local\Steam
2018-03-01 19:04 - 2018-03-01 19:04 - 000000000 ____D C:\Users\bounc\AppData\Local\CEF
2018-03-01 19:03 - 2018-03-01 19:08 - 000000000 ___RD C:\Users\bounc\OneDrive
2018-03-01 19:03 - 2018-03-01 19:03 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4043987046-3975741843-2478934196-1002
2018-03-01 19:03 - 2018-03-01 19:03 - 000002367 _____ C:\Users\bounc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-03-01 19:03 - 2018-03-01 19:03 - 000000000 ____D C:\Users\bounc\AppData\Roaming\Intel Corporation
2018-03-01 19:02 - 2018-03-01 19:02 - 000000000 ___HD C:\Users\bounc\MicrosoftEdgeBackups
2018-03-01 19:02 - 2018-03-01 19:02 - 000000000 ____D C:\Users\bounc\Documents\Bluetooth Exchange Folder
2018-03-01 19:02 - 2018-03-01 19:02 - 000000000 ____D C:\Users\bounc\AppData\Local\Broadcom
2018-03-01 19:01 - 2018-03-01 19:03 - 000000000 ____D C:\Users\bounc\AppData\Local\Packages
2018-03-01 19:01 - 2018-03-01 19:03 - 000000000 ____D C:\Users\bounc\AppData\Local\NVIDIA Corporation
2018-03-01 19:01 - 2018-03-01 19:03 - 000000000 ____D C:\Users\bounc\AppData\Local\ConnectedDevicesPlatform
2018-03-01 19:01 - 2018-03-01 19:03 - 000000000 ____D C:\Users\bounc
2018-03-01 19:01 - 2018-03-01 19:01 - 000000020 ___SH C:\Users\bounc\ntuser.ini
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 __SHD C:\Users\bounc\IntelGraphicsProfiles
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ___RD C:\Users\bounc\3D Objects
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\bounc\AppData\Roaming\Adobe
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\bounc\AppData\Local\VirtualStore
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\bounc\AppData\Local\Publishers
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\bounc\AppData\Local\NVIDIA
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\bounc\AppData\Local\MicrosoftEdge
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\bounc\AppData\Local\Google
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\bounc\ansel
2018-03-01 06:20 - 2018-03-01 06:20 - 000000000 ____D C:\Users\SJ Botha\AppData\Local\Activision
2018-02-28 17:26 - 2018-03-03 13:59 - 000000000 ____D C:\Program Files (x86)\Zoo Tycoon
2018-02-27 06:31 - 2018-02-23 21:28 - 000136536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-02-27 06:29 - 2018-02-27 06:30 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2018-02-27 06:26 - 2018-02-26 05:46 - 000997736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-02-27 06:26 - 2018-02-26 05:46 - 000949280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-02-27 06:26 - 2018-02-26 05:46 - 000625696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-02-27 06:26 - 2018-02-26 05:46 - 000516128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 019854816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 016496072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 013571008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 011131688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 004317160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 003717432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 001985384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439101.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 001684000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439101.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 001136944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-02-27 06:26 - 2018-02-26 05:44 - 001065880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-02-27 06:26 - 2018-02-26 05:43 - 040277488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-02-27 06:26 - 2018-02-26 05:43 - 035188640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-02-27 06:26 - 2018-02-26 05:43 - 001345944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-02-27 06:26 - 2018-02-26 05:43 - 001153752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-02-27 06:26 - 2018-02-26 05:43 - 000902280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-02-27 06:26 - 2018-02-26 05:43 - 000811992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-02-27 06:26 - 2018-02-26 05:43 - 000650424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-02-27 06:26 - 2018-02-26 05:42 - 012966216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-02-27 06:26 - 2018-02-26 05:42 - 011000480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-02-27 06:26 - 2018-02-26 05:42 - 001061352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-02-27 06:20 - 2018-02-27 06:20 - 000000000 ____D C:\ProgramData\Age of Empires 3
2018-02-27 06:19 - 2018-03-02 19:09 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\Age of Empires III - Complete Collection_unistall
2018-02-27 06:19 - 2018-02-27 06:19 - 000001285 _____ C:\Users\SJ Botha\Desktop\Age of Empires - III The Asian Dynasties.lnk
2018-02-27 06:19 - 2018-02-27 06:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Age of Empires III - Complete Collection
2018-02-27 06:19 - 2018-02-27 06:19 - 000000000 ____D C:\Program Files (x86)\MSXML 4.0
2018-02-27 06:15 - 2018-03-02 19:11 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\Microsoft Games
2018-02-27 06:13 - 2018-03-02 19:11 - 000000000 ____D C:\ProgramData\Microsoft Games
2018-02-27 06:13 - 2018-02-27 06:13 - 000000000 ____D C:\Program Files (x86)\Microsoft Games
2018-02-27 06:09 - 2018-03-03 13:58 - 000000000 ____D C:\Users\SJ Botha\Downloads\Zoo tycoon
2018-02-27 06:06 - 2018-02-27 06:07 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2018-02-27 06:06 - 2018-02-27 06:06 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2018-02-27 06:01 - 2018-02-27 06:19 - 000000000 ____D C:\Program Files (x86)\Age of Empires III - Complete Collection
2018-02-27 05:52 - 2018-02-27 05:52 - 000000000 ____D C:\Users\SJ Botha\AppData\LocalLow\uTorrent
2018-02-27 05:30 - 2018-02-27 05:33 - 000000000 ____D C:\Users\SJ Botha\Downloads\Age of Empires III - Complete Collection [Origami]
2018-02-25 06:50 - 2018-02-25 06:52 - 034547712 _____ C:\Users\SJ Botha\Downloads\Redstoneworld 1.12.2.zip
2018-02-25 06:39 - 2018-02-25 06:39 - 009822722 _____ C:\Users\SJ Botha\Downloads\Settlement+Update.zip
2018-02-25 06:37 - 2018-02-25 06:38 - 008387330 _____ C:\Users\SJ Botha\Downloads\Medievieal+Fortress+(2).zip
2018-02-19 16:57 - 2018-02-19 17:06 - 000000000 ____D C:\Program Files\Microsoft Office
2018-02-19 16:57 - 2018-02-19 16:57 - 000000000 ____D C:\Users\SJ Botha\AppData\Local\Microsoft Help
2018-02-18 15:30 - 2018-02-18 15:30 - 002104188 _____ C:\Users\SJ Botha\Downloads\SkyBlock-Map.zip
2018-02-17 12:00 - 2018-02-17 12:00 - 000000000 ____D C:\Users\SJ Botha\Documents\AutomaticSolution Software
2018-02-16 14:38 - 2018-02-16 14:38 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2018-02-14 17:33 - 2018-02-10 08:24 - 000270744 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-02-14 17:33 - 2018-02-10 08:23 - 001577880 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-02-14 17:33 - 2018-02-10 08:23 - 000758168 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-02-14 17:33 - 2018-02-10 08:23 - 000613272 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-02-14 17:33 - 2018-02-10 08:23 - 000138136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-02-14 17:33 - 2018-02-10 08:22 - 000662936 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-02-14 17:33 - 2018-02-10 08:21 - 001092016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-02-14 17:33 - 2018-02-10 08:21 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-02-14 17:33 - 2018-02-10 08:20 - 001206680 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-02-14 17:33 - 2018-02-10 08:20 - 001055640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-02-14 17:33 - 2018-02-10 08:20 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-02-14 17:33 - 2018-02-10 08:20 - 000599448 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-02-14 17:33 - 2018-02-10 08:20 - 000077208 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-02-14 17:33 - 2018-02-10 08:18 - 000319864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-02-14 17:33 - 2018-02-10 08:17 - 001209240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-02-14 17:33 - 2018-02-10 08:16 - 008603032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-02-14 17:33 - 2018-02-10 08:16 - 002406456 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-02-14 17:33 - 2018-02-10 08:16 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-02-14 17:33 - 2018-02-10 08:15 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-02-14 17:33 - 2018-02-10 08:15 - 001415296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-02-14 17:33 - 2018-02-10 08:15 - 000471968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-02-14 17:33 - 2018-02-10 08:14 - 004504464 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-02-14 17:33 - 2018-02-10 08:14 - 002395032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-02-14 17:33 - 2018-02-10 08:14 - 001002592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-02-14 17:33 - 2018-02-10 08:13 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-02-14 17:33 - 2018-02-10 08:12 - 001277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-02-14 17:33 - 2018-02-10 08:12 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-02-14 17:33 - 2018-02-10 08:11 - 001029528 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-02-14 17:33 - 2018-02-10 08:11 - 000711432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-02-14 17:33 - 2018-02-10 08:11 - 000677784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-02-14 17:33 - 2018-02-10 08:11 - 000494496 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-02-14 17:33 - 2018-02-10 08:10 - 002447768 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-02-14 17:33 - 2018-02-10 08:10 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-02-14 17:33 - 2018-02-10 08:10 - 000614160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2018-02-14 17:33 - 2018-02-10 08:10 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-02-14 17:33 - 2018-02-10 08:09 - 003904296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-02-14 17:33 - 2018-02-10 08:09 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-02-14 17:33 - 2018-02-10 08:09 - 000525208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2018-02-14 17:33 - 2018-02-10 08:08 - 021351624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-02-14 17:33 - 2018-02-10 08:08 - 007675784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-02-14 17:33 - 2018-02-10 08:08 - 003010248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-02-14 17:33 - 2018-02-10 08:08 - 002574232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-02-14 17:33 - 2018-02-10 08:08 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2018-02-14 17:33 - 2018-02-10 08:07 - 004506576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-02-14 17:33 - 2018-02-10 08:07 - 002710728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-02-14 17:33 - 2018-02-10 08:07 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2018-02-14 17:33 - 2018-02-10 08:07 - 000436632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2018-02-14 17:33 - 2018-02-10 08:06 - 000727448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-02-14 17:33 - 2018-02-10 08:06 - 000519144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-02-14 17:33 - 2018-02-10 08:06 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-02-14 17:33 - 2018-02-10 08:06 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-02-14 17:33 - 2018-02-10 08:06 - 000087384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-02-14 17:33 - 2018-02-10 08:05 - 000413888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-02-14 17:33 - 2018-02-10 08:04 - 007384576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-02-14 17:33 - 2018-02-10 08:04 - 006791984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-02-14 17:33 - 2018-02-10 08:04 - 001426672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-02-14 17:33 - 2018-02-10 08:04 - 001254144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-02-14 17:33 - 2018-02-10 08:04 - 001170008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-02-14 17:33 - 2018-02-10 08:04 - 000614296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-02-14 17:33 - 2018-02-10 08:04 - 000603920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-02-14 17:33 - 2018-02-10 08:04 - 000374032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-02-14 17:33 - 2018-02-10 08:04 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-02-14 17:33 - 2018-02-10 08:03 - 001619808 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-02-14 17:33 - 2018-02-10 08:03 - 000404888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2018-02-14 17:33 - 2018-02-10 08:02 - 002773400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-02-14 17:33 - 2018-02-10 08:02 - 001103768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-02-14 17:33 - 2018-02-10 08:02 - 000617304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-02-14 17:33 - 2018-02-10 07:21 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-02-14 17:33 - 2018-02-10 07:17 - 002255112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-02-14 17:33 - 2018-02-10 07:17 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-02-14 17:33 - 2018-02-10 07:15 - 001145624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-02-14 17:33 - 2018-02-10 07:09 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-02-14 17:33 - 2018-02-10 07:09 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-02-14 17:33 - 2018-02-10 07:09 - 002338776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-02-14 17:33 - 2018-02-10 07:09 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2018-02-14 17:33 - 2018-02-10 07:08 - 002193168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-02-14 17:33 - 2018-02-10 07:08 - 000592792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2018-02-14 17:33 - 2018-02-10 07:07 - 025253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-02-14 17:33 - 2018-02-10 07:07 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-02-14 17:33 - 2018-02-10 07:07 - 000527864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2018-02-14 17:33 - 2018-02-10 07:06 - 006481640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-02-14 17:33 - 2018-02-10 07:06 - 006014688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-02-14 17:33 - 2018-02-10 07:06 - 004670728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-02-14 17:33 - 2018-02-10 07:06 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-02-14 17:33 - 2018-02-10 07:05 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-02-14 17:33 - 2018-02-10 07:05 - 001149272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-02-14 17:33 - 2018-02-10 07:05 - 000662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2018-02-14 17:33 - 2018-02-10 07:05 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2018-02-14 17:33 - 2018-02-10 07:05 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-02-14 17:33 - 2018-02-10 07:05 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2018-02-14 17:33 - 2018-02-10 06:50 - 003665408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-02-14 17:33 - 2018-02-10 06:50 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-02-14 17:33 - 2018-02-10 06:50 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-02-14 17:33 - 2018-02-10 06:49 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-02-14 17:33 - 2018-02-10 06:49 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-02-14 17:33 - 2018-02-10 06:49 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-02-14 17:33 - 2018-02-10 06:49 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-02-14 17:33 - 2018-02-10 06:49 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
2018-02-14 17:33 - 2018-02-10 06:48 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-02-14 17:33 - 2018-02-10 06:47 - 017160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-02-14 17:33 - 2018-02-10 06:47 - 013704192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-02-14 17:33 - 2018-02-10 06:46 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-02-14 17:33 - 2018-02-10 06:46 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-02-14 17:33 - 2018-02-10 06:46 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-02-14 17:33 - 2018-02-10 06:46 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-02-14 17:33 - 2018-02-10 06:46 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-02-14 17:33 - 2018-02-10 06:46 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-02-14 17:33 - 2018-02-10 06:45 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-02-14 17:33 - 2018-02-10 06:45 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-02-14 17:33 - 2018-02-10 06:45 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-02-14 17:33 - 2018-02-10 06:45 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-02-14 17:33 - 2018-02-10 06:45 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-02-14 17:33 - 2018-02-10 06:45 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-02-14 17:33 - 2018-02-10 06:44 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-02-14 17:33 - 2018-02-10 06:44 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-02-14 17:33 - 2018-02-10 06:44 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-02-14 17:33 - 2018-02-10 06:44 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-02-14 17:33 - 2018-02-10 06:44 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-02-14 17:33 - 2018-02-10 06:43 - 018923008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-02-14 17:33 - 2018-02-10 06:43 - 008020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-02-14 17:33 - 2018-02-10 06:43 - 006466560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-02-14 17:33 - 2018-02-10 06:43 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-02-14 17:33 - 2018-02-10 06:43 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-02-14 17:33 - 2018-02-10 06:43 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-02-14 17:33 - 2018-02-10 06:43 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-02-14 17:33 - 2018-02-10 06:43 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-02-14 17:33 - 2018-02-10 06:43 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 023671808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-02-14 17:33 - 2018-02-10 06:42 - 000837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2018-02-14 17:33 - 2018-02-10 06:42 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-02-14 17:33 - 2018-02-10 06:42 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 019352576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 001495552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 000721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 012831744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 008110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 004498432 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-02-14 17:33 - 2018-02-10 06:40 - 004113408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 003405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 001002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-02-14 17:33 - 2018-02-10 06:40 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-02-14 17:33 - 2018-02-10 06:39 - 011925504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-02-14 17:33 - 2018-02-10 06:39 - 004748288 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-02-14 17:33 - 2018-02-10 06:39 - 004592640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-02-14 17:33 - 2018-02-10 06:39 - 002976256 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-02-14 17:33 - 2018-02-10 06:39 - 002741248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-02-14 17:33 - 2018-02-10 06:39 - 002209280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 006567936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 004815360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 003169280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 003125760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 002857984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-02-14 17:33 - 2018-02-10 06:38 - 002082304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-02-14 17:33 - 2018-02-10 06:38 - 001597952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 001547776 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2018-02-14 17:33 - 2018-02-10 06:38 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-02-14 17:33 - 2018-02-10 06:37 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-02-14 17:33 - 2018-02-10 06:37 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2018-02-14 17:33 - 2018-02-10 06:37 - 003678720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-02-14 17:33 - 2018-02-10 06:37 - 003578368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2018-02-14 17:33 - 2018-02-10 06:37 - 002784256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-02-14 17:33 - 2018-02-10 06:37 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-02-14 17:33 - 2018-02-10 06:37 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-02-14 17:33 - 2018-02-10 06:37 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 006031360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 002464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2018-02-14 17:33 - 2018-02-10 06:35 - 004384768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2018-02-14 17:33 - 2018-02-10 06:35 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-02-14 17:33 - 2018-02-10 06:35 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-02-14 17:33 - 2018-02-10 06:35 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-02-14 17:33 - 2018-02-10 06:35 - 000963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-02-14 17:33 - 2018-02-10 06:35 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2018-02-14 17:33 - 2018-02-10 06:34 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-02-14 17:33 - 2018-02-10 06:34 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-02-14 17:33 - 2018-02-10 06:33 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2018-02-14 17:33 - 2018-02-10 06:33 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-02-14 17:33 - 2018-02-09 05:35 - 004959688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2018-02-14 17:33 - 2018-02-02 05:36 - 003903944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2018-02-14 17:32 - 2018-02-10 08:22 - 002003352 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-02-14 17:32 - 2018-02-10 08:22 - 000460696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-02-14 17:32 - 2018-02-10 08:22 - 000387480 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-02-14 17:32 - 2018-02-10 08:22 - 000272800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-02-14 17:32 - 2018-02-10 08:22 - 000070040 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-02-14 17:32 - 2018-02-10 08:22 - 000035224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-02-14 17:32 - 2018-02-10 08:21 - 000279456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-02-14 17:32 - 2018-02-10 08:19 - 001133888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-02-14 17:32 - 2018-02-10 08:18 - 001193192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2018-02-14 17:32 - 2018-02-10 08:18 - 000098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe
2018-02-14 17:32 - 2018-02-10 08:18 - 000022400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2018-02-14 17:32 - 2018-02-10 08:15 - 002514944 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-02-14 17:32 - 2018-02-10 08:13 - 001416392 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-02-14 17:32 - 2018-02-10 08:13 - 000535960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2018-02-14 17:32 - 2018-02-10 08:13 - 000408984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-02-14 17:32 - 2018-02-10 08:12 - 004537040 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2018-02-14 17:32 - 2018-02-10 08:12 - 001313016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2018-02-14 17:32 - 2018-02-10 08:10 - 000154520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2018-02-14 17:32 - 2018-02-10 08:09 - 000491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-02-14 17:32 - 2018-02-10 08:09 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-02-14 17:32 - 2018-02-10 08:08 - 000687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2018-02-14 17:32 - 2018-02-10 08:08 - 000398824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2018-02-14 17:32 - 2018-02-10 08:08 - 000096200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2018-02-14 17:32 - 2018-02-10 08:06 - 004486904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2018-02-14 17:32 - 2018-02-10 08:06 - 000824896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2018-02-14 17:32 - 2018-02-10 08:06 - 000594048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-02-14 17:32 - 2018-02-10 08:06 - 000356952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-02-14 17:32 - 2018-02-10 08:06 - 000189336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-02-14 17:32 - 2018-02-10 08:06 - 000100248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2018-02-14 17:32 - 2018-02-10 08:05 - 000688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-02-14 17:32 - 2018-02-10 08:05 - 000097176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2018-02-14 17:32 - 2018-02-10 08:05 - 000070856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-02-14 17:32 - 2018-02-10 08:04 - 001430760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2018-02-14 17:32 - 2018-02-10 08:04 - 000339872 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2018-02-14 17:32 - 2018-02-10 08:04 - 000212880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2018-02-14 17:32 - 2018-02-10 08:04 - 000093592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-02-14 17:32 - 2018-02-10 08:03 - 000849304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-02-14 17:32 - 2018-02-10 08:03 - 000722616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-02-14 17:32 - 2018-02-10 08:03 - 000706600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-02-14 17:32 - 2018-02-10 08:03 - 000098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2018-02-14 17:32 - 2018-02-10 08:02 - 000628632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2018-02-14 17:32 - 2018-02-10 07:22 - 001930224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-02-14 17:32 - 2018-02-10 07:18 - 001384288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2018-02-14 17:32 - 2018-02-10 07:17 - 000542856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2018-02-14 17:32 - 2018-02-10 07:17 - 000211864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-02-14 17:32 - 2018-02-10 07:12 - 004382032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2018-02-14 17:32 - 2018-02-10 07:11 - 001250528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2018-02-14 17:32 - 2018-02-10 07:10 - 000422592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2018-02-14 17:32 - 2018-02-10 07:09 - 001123456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-02-14 17:32 - 2018-02-10 07:09 - 000559976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2018-02-14 17:32 - 2018-02-10 07:08 - 003980720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2018-02-14 17:32 - 2018-02-10 07:07 - 000543920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-02-14 17:32 - 2018-02-10 07:07 - 000284112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-02-14 17:32 - 2018-02-10 07:07 - 000123808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2018-02-14 17:32 - 2018-02-10 07:07 - 000089504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2018-02-14 17:32 - 2018-02-10 07:07 - 000083216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbrand.dll
2018-02-14 17:32 - 2018-02-10 07:07 - 000061024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2018-02-14 17:32 - 2018-02-10 07:05 - 000718232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-02-14 17:32 - 2018-02-10 07:05 - 000654456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2018-02-14 17:32 - 2018-02-10 07:05 - 000551672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-02-14 17:32 - 2018-02-10 07:05 - 000193248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2018-02-14 17:32 - 2018-02-10 07:05 - 000079256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2018-02-14 17:32 - 2018-02-10 07:05 - 000077552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2018-02-14 17:32 - 2018-02-10 07:03 - 000505160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2018-02-14 17:32 - 2018-02-10 06:50 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-02-14 17:32 - 2018-02-10 06:50 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-02-14 17:32 - 2018-02-10 06:49 - 001664512 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-02-14 17:32 - 2018-02-10 06:49 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-02-14 17:32 - 2018-02-10 06:49 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-02-14 17:32 - 2018-02-10 06:49 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-02-14 17:32 - 2018-02-10 06:48 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2018-02-14 17:32 - 2018-02-10 06:48 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2018-02-14 17:32 - 2018-02-10 06:47 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2018-02-14 17:32 - 2018-02-10 06:47 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-02-14 17:32 - 2018-02-10 06:47 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-02-14 17:32 - 2018-02-10 06:47 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-02-14 17:32 - 2018-02-10 06:47 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-02-14 17:32 - 2018-02-10 06:47 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2018-02-14 17:32 - 2018-02-10 06:47 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2018-02-14 17:32 - 2018-02-10 06:47 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-02-14 17:32 - 2018-02-10 06:47 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-02-14 17:32 - 2018-02-10 06:47 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-02-14 17:32 - 2018-02-10 06:46 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-02-14 17:32 - 2018-02-10 06:46 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2018-02-14 17:32 - 2018-02-10 06:46 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-02-14 17:32 - 2018-02-10 06:46 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2018-02-14 17:32 - 2018-02-10 06:46 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2018-02-14 17:32 - 2018-02-10 06:46 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2018-02-14 17:32 - 2018-02-10 06:46 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2018-02-14 17:32 - 2018-02-10 06:46 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2018-02-14 17:32 - 2018-02-10 06:46 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2018-02-14 17:32 - 2018-02-10 06:45 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-02-14 17:32 - 2018-02-10 06:45 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2018-02-14 17:32 - 2018-02-10 06:45 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2018-02-14 17:32 - 2018-02-10 06:45 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2018-02-14 17:32 - 2018-02-10 06:45 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EnterpriseAppMgmtClient.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2018-02-14 17:32 - 2018-02-10 06:44 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\virtdisk.dll
2018-02-14 17:32 - 2018-02-10 06:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 003756032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2018-02-14 17:32 - 2018-02-10 06:43 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 001113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2018-02-14 17:32 - 2018-02-10 06:42 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2018-02-14 17:32 - 2018-02-10 06:42 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-02-14 17:32 - 2018-02-10 06:42 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2018-02-14 17:32 - 2018-02-10 06:42 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvr32.exe
2018-02-14 17:32 - 2018-02-10 06:41 - 000859648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2018-02-14 17:32 - 2018-02-10 06:41 - 000820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2018-02-14 17:32 - 2018-02-10 06:41 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2018-02-14 17:32 - 2018-02-10 06:41 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2018-02-14 17:32 - 2018-02-10 06:41 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2018-02-14 17:32 - 2018-02-10 06:41 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-02-14 17:32 - 2018-02-10 06:41 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-02-14 17:32 - 2018-02-10 06:41 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2018-02-14 17:32 - 2018-02-10 06:41 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2018-02-14 17:32 - 2018-02-10 06:41 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 003367936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 001234432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000930816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000886784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2018-02-14 17:32 - 2018-02-10 06:40 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2018-02-14 17:32 - 2018-02-10 06:40 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2018-02-14 17:32 - 2018-02-10 06:40 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2018-02-14 17:32 - 2018-02-10 06:40 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 005500928 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 002677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 002490880 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 001669120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000648704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysdm.cpl
2018-02-14 17:32 - 2018-02-10 06:39 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2018-02-14 17:32 - 2018-02-10 06:39 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regsvr32.exe
2018-02-14 17:32 - 2018-02-10 06:38 - 006722560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2018-02-14 17:32 - 2018-02-10 06:38 - 002184192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 001968640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-02-14 17:32 - 2018-02-10 06:38 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2018-02-14 17:32 - 2018-02-10 06:38 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-02-14 17:32 - 2018-02-10 06:38 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-02-14 17:32 - 2018-02-10 06:38 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2018-02-14 17:32 - 2018-02-10 06:37 - 003419136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-02-14 17:32 - 2018-02-10 06:37 - 003287040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2018-02-14 17:32 - 2018-02-10 06:37 - 002523648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2018-02-14 17:32 - 2018-02-10 06:37 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2018-02-14 17:32 - 2018-02-10 06:37 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2018-02-14 17:32 - 2018-02-10 06:37 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2018-02-14 17:32 - 2018-02-10 06:37 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
2018-02-14 17:32 - 2018-02-10 06:37 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2018-02-14 17:32 - 2018-02-10 06:37 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2018-02-14 17:32 - 2018-02-10 06:37 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 002462208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 002035712 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 001759744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 001342464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2018-02-14 17:32 - 2018-02-10 06:36 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 005388800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 002814976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 002413568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000943104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-02-14 17:32 - 2018-02-10 06:35 - 000796160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
2018-02-14 17:32 - 2018-02-10 06:35 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2018-02-14 17:32 - 2018-02-10 06:34 - 006532096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2018-02-14 17:32 - 2018-02-10 06:34 - 002983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2018-02-14 17:32 - 2018-02-10 06:34 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2018-02-14 17:32 - 2018-02-10 06:34 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2018-02-14 17:32 - 2018-02-10 06:34 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.ProxyStub.dll
2018-02-14 17:32 - 2018-02-10 06:33 - 001936384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2018-02-14 17:32 - 2018-02-10 06:33 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2018-02-14 17:32 - 2018-02-10 06:33 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2018-02-14 17:32 - 2018-02-10 06:33 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-02-14 17:32 - 2018-02-10 06:33 - 000620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-14 17:32 - 2018-02-10 06:33 - 000604672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-02-14 17:32 - 2018-02-10 06:33 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2018-02-14 17:32 - 2018-02-10 06:33 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2018-02-14 17:32 - 2018-02-10 06:33 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2018-02-14 17:32 - 2018-02-10 06:33 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2018-02-14 17:32 - 2018-02-10 06:33 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2018-02-14 17:32 - 2018-02-10 06:33 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2018-02-14 17:32 - 2018-02-10 06:32 - 002427904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2018-02-14 17:32 - 2018-02-10 06:32 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2018-02-14 17:32 - 2018-02-10 06:32 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2018-02-14 17:32 - 2018-02-10 06:32 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2018-02-14 17:32 - 2018-02-10 06:32 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.ProxyStub.dll
2018-02-14 17:32 - 2018-02-10 06:32 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-02-14 17:32 - 2018-02-10 06:31 - 001488896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2018-02-14 17:32 - 2018-02-10 06:31 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2018-02-14 17:32 - 2018-02-10 06:31 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
2018-02-14 17:32 - 2018-02-10 06:31 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2018-02-14 17:32 - 2018-02-10 06:31 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2018-02-14 17:32 - 2018-02-10 04:59 - 000804240 _____ C:\WINDOWS\SysWOW64\locale.nls
2018-02-14 17:32 - 2018-02-10 04:59 - 000804240 _____ C:\WINDOWS\system32\locale.nls
2018-02-14 17:32 - 2018-02-09 05:35 - 001234888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2018-02-14 17:32 - 2018-02-09 05:35 - 001002952 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2018-02-14 17:32 - 2018-02-09 05:35 - 000892872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2018-02-14 17:32 - 2018-02-09 05:35 - 000065992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2018-02-14 17:32 - 2018-02-02 05:36 - 000921032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2018-02-14 17:32 - 2018-02-02 05:36 - 000854976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2018-02-14 17:32 - 2018-02-02 05:36 - 000649672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2018-02-14 17:32 - 2018-02-02 05:36 - 000054720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2018-02-13 19:03 - 2018-02-13 19:03 - 000031061 _____ C:\Users\SJ Botha\Downloads\SEUS v10.0 Lite.zip
2018-02-07 06:03 - 2018-02-07 06:03 - 000000000 ____D C:\Users\SJ Botha\Documents\BlackSquad
2018-02-07 06:03 - 2018-02-07 06:03 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\NVIDIA
2018-02-06 17:58 - 2018-02-06 17:58 - 000000000 ____D C:\Users\SJ Botha\Documents\FeedbackHub
2018-02-06 14:37 - 2018-02-06 14:51 - 346150987 _____ C:\Users\SJ Botha\Desktop\FNaF_World.exe
2018-02-04 13:03 - 2018-02-07 11:34 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\MMFApplications
2018-02-03 08:57 - 2018-02-03 08:57 - 000000000 ____D C:\Users\SJ Botha\Documents\Electronic Arts
2018-02-03 06:38 - 2018-01-01 19:15 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-02-03 06:38 - 2018-01-01 14:52 - 000066712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2018-02-03 06:38 - 2018-01-01 14:51 - 000191816 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-02-03 06:38 - 2018-01-01 14:51 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
2018-02-03 06:38 - 2018-01-01 14:50 - 005905752 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-02-03 06:38 - 2018-01-01 14:50 - 000780464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-02-03 06:38 - 2018-01-01 14:49 - 000292376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-02-03 06:38 - 2018-01-01 14:48 - 007831760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-02-03 06:38 - 2018-01-01 14:48 - 000382360 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-02-03 06:38 - 2018-01-01 14:47 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-02-03 06:38 - 2018-01-01 14:47 - 000082840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-02-03 06:38 - 2018-01-01 14:46 - 000898216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-02-03 06:38 - 2018-01-01 14:46 - 000733592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-02-03 06:38 - 2018-01-01 14:45 - 000398744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-02-03 06:38 - 2018-01-01 14:43 - 001173576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-02-03 06:38 - 2018-01-01 14:43 - 000367336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-02-03 06:38 - 2018-01-01 14:43 - 000062872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-02-03 06:38 - 2018-01-01 14:42 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-02-03 06:38 - 2018-01-01 14:42 - 000184984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-02-03 06:38 - 2018-01-01 14:42 - 000109976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-02-03 06:38 - 2018-01-01 14:41 - 000559512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-02-03 06:38 - 2018-01-01 14:41 - 000549552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-02-03 06:38 - 2018-01-01 14:39 - 000902416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-02-03 06:38 - 2018-01-01 14:39 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-02-03 06:38 - 2018-01-01 14:39 - 000129432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-02-03 06:38 - 2018-01-01 14:38 - 000103320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-02-03 06:38 - 2018-01-01 14:38 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2018-02-03 06:38 - 2018-01-01 14:37 - 000461720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2018-02-03 06:38 - 2018-01-01 14:36 - 000166296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-02-03 06:38 - 2018-01-01 14:36 - 000113560 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-02-03 06:38 - 2018-01-01 14:36 - 000057752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-02-03 06:38 - 2018-01-01 14:34 - 001336344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-02-03 06:38 - 2018-01-01 14:27 - 000163736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-02-03 06:38 - 2018-01-01 14:26 - 000428952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-02-03 06:38 - 2018-01-01 14:26 - 000081304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-02-03 06:38 - 2018-01-01 14:25 - 000615768 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-02-03 06:38 - 2018-01-01 14:25 - 000147864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-02-03 06:38 - 2018-01-01 14:06 - 000311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-02-03 06:38 - 2018-01-01 14:03 - 000777904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-02-03 06:38 - 2018-01-01 14:03 - 000650328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-02-03 06:38 - 2018-01-01 14:03 - 000566664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-02-03 06:38 - 2018-01-01 14:03 - 000123512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2018-02-03 06:38 - 2018-01-01 13:49 - 000481464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-02-03 06:38 - 2018-01-01 13:49 - 000258808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-02-03 06:38 - 2018-01-01 13:46 - 000289816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-02-03 06:38 - 2018-01-01 13:45 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-02-03 06:38 - 2018-01-01 13:45 - 000450928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2018-02-03 06:38 - 2018-01-01 13:42 - 001003152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-02-03 06:38 - 2018-01-01 13:34 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-02-03 06:38 - 2018-01-01 13:25 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-02-03 06:38 - 2018-01-01 13:25 - 000097792 _____ C:\WINDOWS\system32\runexehelper.exe
2018-02-03 06:38 - 2018-01-01 13:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2018-02-03 06:38 - 2018-01-01 13:24 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-02-03 06:38 - 2018-01-01 13:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-02-03 06:38 - 2018-01-01 13:24 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-02-03 06:38 - 2018-01-01 13:23 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-02-03 06:38 - 2018-01-01 13:23 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-02-03 06:38 - 2018-01-01 13:23 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-02-03 06:38 - 2018-01-01 13:23 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2018-02-03 06:38 - 2018-01-01 13:23 - 000047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-02-03 06:38 - 2018-01-01 13:22 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-02-03 06:38 - 2018-01-01 13:22 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-02-03 06:38 - 2018-01-01 13:22 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-02-03 06:38 - 2018-01-01 13:21 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-02-03 06:38 - 2018-01-01 13:21 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-02-03 06:38 - 2018-01-01 13:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-02-03 06:38 - 2018-01-01 13:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2018-02-03 06:38 - 2018-01-01 13:21 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-02-03 06:38 - 2018-01-01 13:21 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-02-03 06:38 - 2018-01-01 13:20 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2018-02-03 06:38 - 2018-01-01 13:20 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-02-03 06:38 - 2018-01-01 13:19 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-02-03 06:38 - 2018-01-01 13:19 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-02-03 06:38 - 2018-01-01 13:19 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-02-03 06:38 - 2018-01-01 13:19 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoert2.dll
2018-02-03 06:38 - 2018-01-01 13:19 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-02-03 06:38 - 2018-01-01 13:18 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-02-03 06:38 - 2018-01-01 13:18 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-02-03 06:38 - 2018-01-01 13:17 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-02-03 06:38 - 2018-01-01 13:17 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-02-03 06:38 - 2018-01-01 13:17 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-02-03 06:38 - 2018-01-01 13:17 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-02-03 06:38 - 2018-01-01 13:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-02-03 06:38 - 2018-01-01 13:17 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-02-03 06:38 - 2018-01-01 13:17 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-02-03 06:38 - 2018-01-01 13:17 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2018-02-03 06:38 - 2018-01-01 13:16 - 000966656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2018-02-03 06:38 - 2018-01-01 13:16 - 000956928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-02-03 06:38 - 2018-01-01 13:16 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-02-03 06:38 - 2018-01-01 13:16 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-02-03 06:38 - 2018-01-01 13:16 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-02-03 06:38 - 2018-01-01 13:16 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-02-03 06:38 - 2018-01-01 13:16 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-02-03 06:38 - 2018-01-01 13:15 - 012687872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-02-03 06:38 - 2018-01-01 13:15 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-02-03 06:38 - 2018-01-01 13:15 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-02-03 06:38 - 2018-01-01 13:15 - 000970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-02-03 06:38 - 2018-01-01 13:15 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-02-03 06:38 - 2018-01-01 13:15 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-02-03 06:38 - 2018-01-01 13:15 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2018-02-03 06:38 - 2018-01-01 13:15 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-02-03 06:38 - 2018-01-01 13:14 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-02-03 06:38 - 2018-01-01 13:14 - 000985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-02-03 06:38 - 2018-01-01 13:14 - 000870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-02-03 06:38 - 2018-01-01 13:13 - 013657600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-02-03 06:38 - 2018-01-01 13:13 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-02-03 06:38 - 2018-01-01 13:13 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-02-03 06:38 - 2018-01-01 13:12 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-02-03 06:38 - 2018-01-01 13:12 - 001573376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-02-03 06:38 - 2018-01-01 13:12 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-02-03 06:38 - 2018-01-01 13:12 - 000760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-02-03 06:38 - 2018-01-01 13:11 - 001816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-02-03 06:38 - 2018-01-01 13:11 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-02-03 06:38 - 2018-01-01 13:11 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-02-03 06:38 - 2018-01-01 13:11 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-02-03 06:38 - 2018-01-01 13:11 - 000715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-02-03 06:38 - 2018-01-01 13:10 - 002528256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-02-03 06:38 - 2018-01-01 13:10 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2018-02-03 06:38 - 2018-01-01 13:09 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-02-03 06:38 - 2018-01-01 13:08 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-02-03 06:38 - 2018-01-01 13:08 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-02-03 06:38 - 2018-01-01 13:06 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-02-03 06:38 - 2018-01-01 13:05 - 002510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-02-03 06:38 - 2018-01-01 13:05 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-02-03 06:35 - 2018-02-10 00:24 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\Origin
2018-02-03 06:35 - 2018-02-03 06:35 - 000000000 ____D C:\Program Files (x86)\Origin Games
2018-02-03 06:34 - 2018-03-02 15:55 - 000000000 ____D C:\Program Files (x86)\Origin
2018-02-03 06:34 - 2018-02-03 06:34 - 000001066 _____ C:\Users\Public\Desktop\Origin.lnk
2018-02-03 06:34 - 2018-02-03 06:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2018-02-03 06:32 - 2018-02-10 00:32 - 000000000 ____D C:\ProgramData\Origin
2018-02-03 06:32 - 2018-02-03 06:35 - 000000000 ____D C:\Users\SJ Botha\AppData\Local\Origin
2018-02-03 06:32 - 2018-02-03 06:32 - 000000000 ____D C:\Users\SJ Botha\.QtWebEngineProcess
2018-02-03 06:32 - 2018-02-03 06:32 - 000000000 ____D C:\Users\SJ Botha\.Origin
2018-02-03 06:31 - 2018-02-03 06:32 - 065740048 _____ (Electronic Arts) C:\Users\SJ Botha\Downloads\OriginThinSetup.exe
2018-02-03 06:31 - 2018-02-03 06:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-02-03 06:27 - 2018-02-03 08:56 - 000000955 _____ C:\Users\SJ Botha\AppData\Roaming\Microsoft\Windows\Start Menu\The Sims 4.lnk
2018-02-03 06:27 - 2018-02-03 08:56 - 000000931 _____ C:\Users\Public\Desktop\The Sims 4.lnk
2018-02-03 06:27 - 2018-02-03 08:56 - 000000000 ____D C:\Program Files (x86)\The Sims 4
2018-02-03 06:24 - 2018-02-03 06:24 - 000000882 _____ C:\Users\SJ Botha\Downloads\The Sims 4 Deluxe Edition Cats and Dogs MULTI 17-RELOADED RePack - Shortcut.lnk
2018-02-02 21:21 - 2018-02-02 21:21 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\PowerISO
2018-02-02 21:20 - 2018-02-02 21:20 - 003862600 _____ (Power Software Ltd) C:\Users\SJ Botha\Downloads\poweriso-6-7.exe
2018-02-02 21:20 - 2018-02-02 21:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2018-02-02 21:20 - 2018-02-02 21:20 - 000000000 ____D C:\Program Files\PowerISO
2018-02-02 21:20 - 2016-10-02 02:50 - 000137280 _____ (Power Software Ltd) C:\WINDOWS\system32\Drivers\scdemu.sys
2018-02-02 21:19 - 2018-02-03 01:25 - 1677197312 _____ C:\Users\SJ Botha\Downloads\The Sims 4 Deluxe Edition Cats and Dogs MULTI 17-RELOADED RePack.iso
2018-02-02 21:12 - 2018-02-02 21:12 - 000000000 ____D C:\Users\SJ Botha\ansel
2018-02-02 15:07 - 2018-02-02 15:07 - 000822328 _____ (Roblox Corporation) C:\Users\SJ Botha\Desktop\RobloxPlayerLauncher.exe
2018-02-02 14:59 - 2018-03-03 08:58 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2018-02-02 14:59 - 2018-02-02 15:16 - 000000252 _____ C:\Users\SJ Botha\AppData\LocalLow\rbxcsettings.rbx
2018-02-02 14:58 - 2018-02-02 15:06 - 000000000 ____D C:\Users\SJ Botha\AppData\Local\Roblox
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-03-03 15:52 - 2018-01-08 22:33 - 000000000 ____D C:\Users\SJ Botha\AppData\Local\CrashDumps
2018-03-03 15:51 - 2017-12-16 18:47 - 000000000 ____D C:\ProgramData\WRData
2018-03-03 14:11 - 2017-12-16 20:05 - 000000000 ____D C:\Program Files (x86)\Steam
2018-03-03 14:07 - 2015-12-04 02:07 - 001424028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-03-03 14:01 - 2017-12-12 07:41 - 000000000 ____D C:\ProgramData\NVIDIA
2018-03-03 14:00 - 2017-12-16 18:47 - 000276816 _____ (Webroot) C:\WINDOWS\SysWOW64\WRusr.dll
2018-03-03 14:00 - 2017-12-16 18:47 - 000231672 _____ (Webroot) C:\WINDOWS\system32\WRusr.dll
2018-03-03 14:00 - 2017-12-12 07:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-03-03 13:59 - 2017-12-12 18:16 - 000000000 ____D C:\Users\SJ Botha
2018-03-03 13:59 - 2017-12-12 01:16 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2018-03-03 13:58 - 2018-01-26 05:56 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\uTorrent
2018-03-03 12:41 - 2017-12-12 07:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-03-03 12:38 - 2017-12-12 07:41 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-03-03 12:37 - 2017-12-12 01:19 - 000000000 ____D C:\WINDOWS\INF
2018-03-03 09:15 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-03-03 06:29 - 2018-01-08 21:25 - 000000000 ____D C:\Users\SJ Botha\AppData\Roaming\.minecraft
2018-03-03 06:28 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-03-03 06:26 - 2017-12-12 01:20 - 000000000 ___HD C:\Program Files\WindowsApps
2018-03-03 06:21 - 2017-12-12 01:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-03-03 06:08 - 2015-12-04 02:34 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-03-02 19:27 - 2017-12-12 07:41 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-03-02 19:15 - 2015-12-04 02:07 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-03-02 15:36 - 2017-12-12 07:39 - 000392040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-02-28 17:16 - 2017-12-12 18:17 - 000000000 ____D C:\Users\SJ Botha\AppData\Local\NVIDIA
2018-02-27 19:48 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\rescache
2018-02-27 17:01 - 2018-01-09 01:33 - 000000000 ____D C:\Games
2018-02-27 06:31 - 2017-12-12 07:41 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-02-27 06:30 - 2017-12-12 18:16 - 000000000 ____D C:\Users\SJ Botha\AppData\Local\ConnectedDevicesPlatform
2018-02-27 06:20 - 2018-01-08 22:34 - 000000000 ____D C:\Users\SJ Botha\Documents\My Games
2018-02-27 06:20 - 2017-09-29 15:41 - 000464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000389120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2018-02-27 06:20 - 2017-09-29 15:41 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2018-02-27 06:20 - 2017-09-29 15:41 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2018-02-27 06:20 - 2017-09-29 15:41 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2018-02-27 06:20 - 2017-09-29 15:41 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2018-02-27 05:57 - 2017-12-12 18:16 - 000000000 ____D C:\Users\SJ Botha\AppData\Local\Packages
2018-02-27 05:30 - 2018-01-08 21:29 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-02-27 05:30 - 2018-01-08 21:29 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-02-26 05:42 - 2017-11-27 11:45 - 003938208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-02-26 05:42 - 2017-10-03 10:34 - 004630848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-02-25 06:24 - 2017-12-12 19:41 - 000003384 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4043987046-3975741843-2478934196-1001
2018-02-25 06:24 - 2017-12-12 18:18 - 000002376 _____ C:\Users\SJ Botha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-02-25 06:24 - 2017-12-12 18:18 - 000000000 ___RD C:\Users\SJ Botha\OneDrive
2018-02-24 06:36 - 2017-10-03 10:21 - 000048407 _____ C:\WINDOWS\system32\nvinfo.pb
2018-02-23 22:01 - 2017-12-12 07:41 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-02-23 21:22 - 2017-12-12 07:41 - 005953096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-02-23 21:22 - 2017-12-12 07:41 - 002587992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-02-23 21:22 - 2017-12-12 07:41 - 001768008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-02-23 21:22 - 2017-12-12 07:41 - 000633984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-02-23 21:22 - 2017-12-12 07:41 - 000451144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-02-23 21:22 - 2017-12-12 07:41 - 000122896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-02-23 21:22 - 2017-12-12 07:41 - 000081752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-02-19 17:06 - 2017-12-12 01:20 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-02-19 17:06 - 2017-12-12 01:20 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-02-19 17:06 - 2015-07-10 15:16 - 000000000 ____D C:\WINDOWS\ShellNew
2018-02-19 17:03 - 2017-12-12 01:20 - 000000000 ____D C:\Program Files\Common Files\system
2018-02-19 17:03 - 2015-07-10 13:04 - 000000076 _____ C:\WINDOWS\win.ini
2018-02-18 15:28 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-02-17 21:55 - 2017-12-12 18:16 - 000000000 ___RD C:\Users\SJ Botha\3D Objects
2018-02-17 21:52 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\TextInput
2018-02-17 21:52 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-02-17 21:52 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-02-17 21:51 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-02-17 21:51 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-02-16 16:48 - 2017-12-12 07:41 - 008083703 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-02-14 17:44 - 2017-12-12 15:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-02-14 17:43 - 2017-12-12 15:27 - 130067560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-02-14 17:43 - 2017-12-12 15:26 - 130067560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-02-11 16:51 - 2018-01-08 23:03 - 000000000 ____D C:\Users\SJ Botha\Desktop\Games
2018-02-06 04:49 - 2017-12-12 01:21 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-02-06 04:49 - 2017-12-12 01:21 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-02-05 17:31 - 2017-12-12 01:20 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-02-05 17:31 - 2017-12-12 01:20 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-02-05 17:31 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-02-05 17:31 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-02-05 17:31 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-02-05 17:31 - 2017-12-12 01:20 - 000000000 ____D C:\WINDOWS\Provisioning
2018-02-05 14:59 - 2017-12-12 18:16 - 000000000 ____D C:\Users\SJ Botha\AppData\Local\Publishers
2018-02-03 06:26 - 2017-12-12 15:29 - 000548000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-02-03 06:23 - 2017-12-12 18:16 - 000000000 __SHD C:\Users\SJ Botha\IntelGraphicsProfiles
2018-02-03 06:23 - 2017-12-12 07:41 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-02-02 21:12 - 2018-01-08 21:33 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-02-02 21:12 - 2018-01-08 21:33 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-02-02 21:12 - 2018-01-08 21:33 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-02-02 21:12 - 2018-01-08 21:33 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-02-02 21:12 - 2018-01-08 21:33 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-02-02 21:12 - 2018-01-08 21:33 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-02-02 21:12 - 2018-01-08 21:33 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-02-02 21:12 - 2018-01-08 21:33 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-02-02 21:12 - 2017-12-12 07:41 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-02-02 14:15 - 2017-12-16 18:47 - 000128264 _____ (Webroot) C:\WINDOWS\system32\Drivers\WRkrn.sys
==================== Files in the root of some directories =======
2018-03-02 19:34 - 2018-03-02 19:34 - 000007603 _____ () C:\Users\SJ Botha\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
2018-02-28 17:16 - 2018-02-28 17:16 - 000019968 ____N (Red Hat®, Inc.) C:\Users\SJ Botha\AppData\Local\Temp\jansi-64-1433347402962012157.dll
2018-02-23 16:24 - 2018-02-23 16:24 - 000019968 _____ (Red Hat®, Inc.) C:\Users\SJ Botha\AppData\Local\Temp\jansi-64-1549715544053879660.dll
2018-02-25 16:39 - 2018-02-25 16:39 - 000019968 _____ (Red Hat®, Inc.) C:\Users\SJ Botha\AppData\Local\Temp\jansi-64-3562329323360606556.dll
2018-02-22 18:46 - 2018-02-22 18:46 - 000019968 ____N (Red Hat®, Inc.) C:\Users\SJ Botha\AppData\Local\Temp\jansi-64-4512652454170957937.dll
2018-02-25 06:42 - 2018-02-25 06:42 - 000019968 ____N (Red Hat®, Inc.) C:\Users\SJ Botha\AppData\Local\Temp\jansi-64-4967683179363014306.dll
2018-02-25 17:32 - 2018-02-25 17:32 - 000019968 ____N (Red Hat®, Inc.) C:\Users\SJ Botha\AppData\Local\Temp\jansi-64-573718500024944364.dll
2018-02-25 08:04 - 2018-02-25 08:04 - 000019968 ____N (Red Hat®, Inc.) C:\Users\SJ Botha\AppData\Local\Temp\jansi-64-6220152116196929034.dll
2018-03-03 06:29 - 2018-03-03 06:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\SJ Botha\AppData\Local\Temp\jansi-64-9217136969247504601.dll
2018-02-27 06:27 - 2018-01-04 02:01 - 000373552 _____ (NVIDIA Corporation) C:\Users\SJ Botha\AppData\Local\Temp\nvStInst.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
ATTENTION: ==> Could not access BCD.
LastRegBack: 2018-02-27 19:48
==================== End of FRST.txt ============================
addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28.02.2018
Ran by SJ Botha (03-03-2018 15:53:06)
Running from C:\Users\SJ Botha\Downloads
Windows 10 Home Version 1709 16299.248 (X64) (2017-12-12 05:45:40)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-4043987046-3975741843-2478934196-500 - Administrator - Disabled)
bounc (S-1-5-21-4043987046-3975741843-2478934196-1003 - Limited - Enabled) => C:\Users\bounc.LAPTOP-0F2Q00VJ
DefaultAccount (S-1-5-21-4043987046-3975741843-2478934196-503 - Limited - Disabled)
Guest (S-1-5-21-4043987046-3975741843-2478934196-501 - Limited - Disabled)
SJ Botha (S-1-5-21-4043987046-3975741843-2478934196-1001 - Administrator - Enabled) => C:\Users\SJ Botha
WDAGUtilityAccount (S-1-5-21-4043987046-3975741843-2478934196-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Emsisoft Anti-Malware (Disabled - Up to date) {67773CDD-EA83-AD98-A2ED-386463EB3B0D}
AV: Webroot SecureAnywhere (Disabled - Up to date) {4646A877-74EB-CD3B-8FDB-210DB94FA61A}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Webroot SecureAnywhere (Disabled - Up to date) {FD274993-52D1-C2B5-B56B-1A7FC2C8ECA7}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Emsisoft Anti-Malware (Disabled - Up to date) {DC16DD39-CCB9-A216-985D-0316186C71B0}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\uTorrent) (Version: 3.5.3.44358 - BitTorrent Inc.)
Core Temp 1.11 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.11 - ALCPU)
Dell PremierColor (HKLM\...\{5CA2B02F-FC89-4F42-A3DA-7649B8EFF194}) (Version: 2.0.140 - Portrait Displays, Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.1.6664.10 - Dell)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.01 - NVIDIA Corporation) Hidden
DSC/AA Factory Installer (HKLM\...\{F7A70D00-F283-45C8-B163-49EC365D7E27}) (Version: 1.1.6664.10 - PC-Doctor, Inc.) Hidden
DW WLAN Card (HKLM\...\DW WLAN Card) (Version: 1.519.0.0 - Dell Inc.)
Epic Games Launcher (HKLM-x32\...\{8F89B0CF-8144-43EE-AB9F-B7F8F23D85FB}) (Version: 1.1.135.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Explorer Suite IV (HKLM\...\Explorer Suite_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.186 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{a2d9fda8-65eb-4c06-81ef-31e0a4daa335}) (Version: 10.1.1.11 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10600.150 - Intel Corporation)
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.0.310 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.9060.3 - Waves Audio Ltd.) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\OneDriveSetup.exe) (Version: 17.005.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.4 - Notepad++ Team)
NVIDIA 3D Vision Driver 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.01 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.12.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.12.0.84 - NVIDIA Corporation)
NVIDIA Graphics Driver 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.01 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.12.32066 - Electronic Arts, Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.7 - Power Software Ltd)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8233 - Realtek Semiconductor Corp.)
Roblox Player for SJ Botha (HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.10.0067 - ST Microelectronics)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.8 - TeamSpeak Systems GmbH)
The Sims 4 version final (HKLM-x32\...\The Sims 4_is1) (Version: final - The)
Thunderbolt(TM) Software (HKLM-x32\...\{5B88BE64-93E7-4D6B-83D0-37B911166FF2}) (Version: 15.2.35.250 - Intel Corporation)
Twitch (HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Webroot SecureAnywhere (HKLM-x32\...\WRUNINST) (Version: 9.0.19.43 - Webroot)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.1.730 - Broadcom Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-01-01] ()
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-10-02] (Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WRShellExt] -> {69D72956-317C-44bd-B369-8E44D4EF9802} => C:\WINDOWS\system32\WRusr.dll [2018-03-03] (Webroot)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-10-02] (Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki122461.inf_amd64_ac02a4363c345cef\igfxDTCM.dll [2017-05-31] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-02-23] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-10-02] (Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WRShellExt] -> {69D72956-317C-44bd-B369-8E44D4EF9802} => C:\WINDOWS\system32\WRusr.dll [2018-03-03] (Webroot)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {150AFB19-2FF9-46F9-BB80-EE5C2DB86F0F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-01-10] (NVIDIA Corporation)
Task: {20D3F0BB-CB5D-47CB-BA6C-F4B13A99B987} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-08] (Google Inc.)
Task: {2D5162F1-3205-481F-92D0-80F585814614} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {3A17B36B-5F22-40D7-926A-B8C50A96D510} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => Thunderbolt.exe
Task: {53F96332-33A4-4D9F-935B-37559954AC68} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-10] (NVIDIA Corporation)
Task: {5E7A9DB9-DEF3-4239-8888-0392AE10D46C} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe
Task: {657120C6-7E6C-4AA4-BD95-46328C3DA317} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-11-02] (Realtek Semiconductor)
Task: {6C4850C8-AFF9-47AC-B014-992C2EA9997A} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => Thunderbolt.exe
Task: {A18B0CF9-A531-4371-9AC9-63B0F512DB2D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation)
Task: {B2EEBB3E-A90D-43FC-9CB7-ED9D665FEA24} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService
Task: {B3ABE234-8430-4128-AB73-42ED2149036A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation)
Task: {BACEE6DC-436F-4D9D-8998-0A674003B97A} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-05-20] (PC-Doctor, Inc.)
Task: {BE42364D-A026-4E5B-BAA0-730F6DBF5A01} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-01-10] (NVIDIA Corporation)
Task: {C57F9D1F-5835-4A5B-A6AF-F35FB8BEA31C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-01-10] (NVIDIA Corporation)
Task: {C6E13300-6818-4A78-8E6C-610A8FF58A99} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation)
Task: {C76690BE-8F42-4175-9241-379CA8444AF6} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-05-20] (PC-Doctor, Inc.)
Task: {DF97A9CA-73D5-451A-92EC-9F03DF0C062D} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation)
Task: {F4836DAC-5380-4D4A-8404-E2E379BB1BBC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-08] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 ____N () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-01-08 21:57 - 2018-02-24 06:36 - 000543248 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll
2017-12-12 07:41 - 2018-02-23 21:22 - 000133464 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-21 03:47 - 2015-08-21 03:47 - 000049408 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll
2018-01-08 21:33 - 2018-01-10 16:33 - 001268024 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-03-03 13:48 - 2017-11-29 09:11 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-03-03 13:48 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-02-14 17:33 - 2018-02-10 06:39 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-02-14 17:33 - 2018-02-10 06:36 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-03-01 05:44 - 2018-03-01 05:47 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-03-01 05:44 - 2018-03-01 05:47 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-03-01 05:44 - 2018-03-01 05:47 - 021824000 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-03-01 05:44 - 2018-03-01 05:47 - 002529792 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\skypert.dll
2018-02-27 05:30 - 2018-02-22 05:57 - 004433752 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\libglesv2.dll
2018-02-27 05:30 - 2018-02-22 05:57 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\libegl.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000047616 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2018-02-14 17:32 - 2018-02-10 06:41 - 004173824 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2018-02-14 17:33 - 2018-02-10 06:41 - 003662336 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
2018-01-08 21:33 - 2018-01-10 16:33 - 001041208 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-12-16 20:05 - 2017-11-29 07:09 - 000781088 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-12-16 20:05 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-12-16 20:05 - 2017-12-15 21:59 - 002558752 _____ () C:\Program Files (x86)\Steam\video.dll
2017-12-16 20:05 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-12-16 20:05 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-12-16 20:05 - 2017-11-04 03:54 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll
2017-12-16 20:05 - 2017-11-04 03:54 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll
2017-12-16 20:05 - 2017-11-04 03:54 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll
2017-12-16 20:05 - 2017-11-04 03:54 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll
2017-12-16 20:05 - 2017-11-04 03:54 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll
2017-12-16 20:05 - 2017-12-15 21:59 - 000904992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-12-16 20:05 - 2016-07-05 00:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-12-16 20:06 - 2017-10-31 06:44 - 071471904 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-12-16 20:06 - 2017-09-07 04:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2017-12-16 20:05 - 2015-09-25 01:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRkrn => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRSVC => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKU\.DEFAULT\Software\Classes\exefile: "%1" %* <==== ATTENTION
HKU\.DEFAULT\Software\Classes\.exe: exefile => "%1" %* <==== ATTENTION
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\Software\Classes\exefile: "%1" %* <==== ATTENTION
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\Software\Classes\.exe: exefile => "%1" %* <==== ATTENTION
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-07-10 13:04 - 2015-07-10 13:02 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\SJ Botha\Downloads\sailing_ship_storm-wallpaper-3840x2160.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: ) (ConsentPromptBehaviorUser: ) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "PremierColor"
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-4043987046-3975741843-2478934196-1001\...\StartupApproved\Run: => "uTorrent"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{099CF397-5B10-4A72-BD4C-1EB31B5C88BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A380594C-8E57-4F94-B942-4074E784D88B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5347F229-A1B0-4B61-A1AC-D160191C7D89}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{3EE0F7AE-6657-489A-8BA2-FB6982C97793}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{455BCB0B-71E8-48AA-962D-0FBCC13D6EA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{EAC2C6B9-08AC-44DE-9A6D-E86D5C252027}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9E81B58C-40F3-4493-A503-F8A7806EAF4A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D2ACEDD0-22B5-4AA2-9947-141F9ED4B74B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{7B50D735-DE90-4A00-8F5D-ECA1C3A2371A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8771B4FF-2902-4605-A4FF-6514C1BA8A74}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{BE7E0AAF-E7A6-461C-9FAD-D40ECE2ADB79}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{52C2F741-FAE6-4DC3-B891-5CD60713156C}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{0829F263-7366-4F45-837D-2A5BC904A3EA}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{497FF000-2648-47A1-9A3E-989E19F07FC6}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{0FDFB2B7-EBDE-4E29-95E6-67D61386054C}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{D2852F1D-6B9C-4CB5-98D5-FB9D1C9204A6}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{3DFF866C-C615-4798-99C7-3F8A978FA1D8}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{DBC574BA-15D3-4DC1-A8C7-8628785E34EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{085A4896-B8D5-4DF6-954A-93DB52DE3A8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{B377DFE8-7CEB-4A67-8DC8-3D5B3EDE6E14}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gang Beasts\Gang Beasts.exe
FirewallRules: [{4E5008AE-E931-46F4-B118-03F828E38EDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gang Beasts\Gang Beasts.exe
FirewallRules: [{540A4327-3DE6-47C4-AED6-FE6A2D730ED6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe
FirewallRules: [{2FB61C10-C64A-4393-912E-F803B2907C07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe
FirewallRules: [TCP Query User{248EB09D-AB1C-4AB1-8FE9-023824F00E7C}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe
FirewallRules: [UDP Query User{87CA278B-53C0-41FC-B321-3213543E0A54}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe
FirewallRules: [TCP Query User{BCF817AB-0489-4F70-A2E8-D5477209D273}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{CF0B555D-7850-4B02-BCA6-4004589FE87C}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{712619CB-FB9A-42CE-BEA0-CD29DE202EE9}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{1E6A0BE5-8934-48D4-8959-2DBA0C566CB5}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{5286C764-B1EA-4929-8BCB-3A96E4FABD1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{6DCD2D02-66C1-4C39-8686-34E6D2212638}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{EA18182C-FB4F-43E9-B2D1-C773CED61B59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{B055E99E-AA1C-4BA9-B4DE-2A9745C7BD40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [TCP Query User{2DF81327-A660-461D-BD83-F91520E0EAAB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{45B54B2E-4984-4159-886D-FFABFCEAD4C6}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{22784ADE-90B0-4410-ACA7-CDE719C62439}C:\program files (x86)\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{F344809C-94C9-4076-A055-6831D28655F9}C:\program files (x86)\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{0228FE74-4DE9-45FF-A84C-3F91EACED83C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{23296C41-20CF-4D83-B742-3E6E7477519D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{A48EB7CD-758C-4786-A93A-541D9E62136E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{50E32B04-F0E5-46F4-8302-6CEABE7B533C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{75E7CD68-2EAC-43A9-A1EC-8A4269C6058F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{0AA47F85-90F6-4E9F-8983-A0A5D0E9D97F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{A3850A22-F3A4-401C-896C-6D8CC473E4E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{4F38F333-DFBA-49F7-9A75-12C7CE7CC039}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{94FE6E37-3FCD-44CD-917E-A7D3DB29D6E2}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe
FirewallRules: [UDP Query User{41A018BC-3D68-49D7-8ACF-9694A0DFF48E}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe
FirewallRules: [{98791473-C4AA-49AC-97EA-A30440BB9B07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{E400A32D-4993-4517-BF99-E75D4E16A2FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{DE0BB0CE-7B91-4225-8DD0-C681414443BC}] => (Allow) C:\Users\SJ Botha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AD2355A6-3F1A-4C22-A1E9-7733FC1B5587}] => (Allow) C:\Users\SJ Botha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FC9C21EC-F53D-48FA-9831-7B8A7C51CB51}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C4B8E82C-2357-4F3C-8C74-2046C4AD36C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A372AF0C-4146-4FA0-9139-59366CBF5A99}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{EF16903F-393A-45F9-9CDD-63CD617CB0E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C9AB48AF-5560-493A-AE78-278BA4C93511}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6F37AB44-03C9-4C6C-8468-DAECA350A5CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C056B02B-8527-4B50-B977-66DA5721ACB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [{F9D4A7C2-FE51-442D-9874-18E28A546EA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [{79C19B08-66A4-4CF8-98D2-8B3B510633AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [{E932C1DE-12F2-4DA1-9030-2E0137F0E861}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [{3DFEB4BA-00B5-4FFB-A4DC-8598E9064872}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{60857D59-A2F6-49F5-919A-6873FFEF03D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{311E3668-3F5E-4FF1-82C9-61362730BF35}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{F53EEF55-3FD5-49CA-B939-C0BEA1DDF02B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{62FE3670-1B9B-43AD-B476-E3A8D81D419F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{63160F74-FC46-4F34-8B89-357EAE58BFF4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{77950F51-7BD0-4F6F-ABDC-D9400755DDDD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{1C4393F7-3136-4EF3-AD71-CF726269E54E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{57B120A5-612F-4D7D-9C1D-38BBD6C9E7FB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{34B08AFF-15A9-46DA-8C74-6E641755A38E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [TCP Query User{0E25D80E-4A01-43AA-9FDD-90283F56CF8B}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{B42E88FE-E027-401A-88E2-C7CD1875D877}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{F5F6EF39-5A6E-45AC-A6B0-9416A4C9C69B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ABE8E97D-DFAA-41E5-A781-6D10FDFB750E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D16F66D5-86F5-4C4D-8EF2-375E8466306D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{06E1F556-29D1-4FF2-94FC-2C304BFA84F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{00106C36-B095-4A4D-BEF5-2CD71C6A1135}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{A8B50894-88F2-4950-80AF-645DE10AC37D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{72B4BDAF-B1AC-4348-82FD-3A42011EB47C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
==================== Restore Points =========================
27-02-2018 06:20:21 Windows Modules Installer
28-02-2018 17:24:10 Removed Zoo Tycoon 2 - Ultimate Collection
02-03-2018 18:56:47 Installed DirectX
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/03/2018 03:53:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SoundMixer.exe, version: 1.7.0.0, time stamp: 0x5a2a9899
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000000afb8a
Faulting process id: 0x33fc
Faulting application start time: 0x01d3b2f6f47fd314
Faulting application path: C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe
Faulting module path: unknown
Report Id: f5dc6746-4e40-41f9-95b8-28b27be57ad4
Faulting package full name:
Faulting package-relative application ID:
Error: (03/03/2018 03:52:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SoundMixer.exe, version: 1.7.0.0, time stamp: 0x5a2a9899
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000000afb8a
Faulting process id: 0xe4
Faulting application start time: 0x01d3b2f6cd9f34a2
Faulting application path: C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe
Faulting module path: unknown
Report Id: 6e1c1259-5eb0-47f7-95c4-d4431de9b91a
Faulting package full name:
Faulting package-relative application ID:
Error: (03/03/2018 02:00:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SoundMixer.exe, version: 1.7.0.0, time stamp: 0x5a2a9899
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000000afb8a
Faulting process id: 0x23e4
Faulting application start time: 0x01d3b2e7446375e2
Faulting application path: C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe
Faulting module path: unknown
Report Id: 6d281269-0270-4475-8927-a5ed5c932978
Faulting package full name:
Faulting package-relative application ID:
Error: (03/03/2018 12:41:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SoundMixer.exe, version: 1.7.0.0, time stamp: 0x5a2a9899
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000000afb8a
Faulting process id: 0x2080
Faulting application start time: 0x01d3b2dc41cd5bf2
Faulting application path: C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe
Faulting module path: unknown
Report Id: 5a253f9f-792a-41cb-b22e-129b589f9564
Faulting package full name:
Faulting package-relative application ID:
Error: (03/03/2018 12:41:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SoundMixer.exe, version: 1.7.0.0, time stamp: 0x5a2a9899
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000000afb8a
Faulting process id: 0x208c
Faulting application start time: 0x01d3b2dc41cd60b6
Faulting application path: C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe
Faulting module path: unknown
Report Id: 395e393a-8644-407d-87be-780baf1f5dbe
Faulting package full name:
Faulting package-relative application ID:
Error: (03/03/2018 08:55:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SoundMixer.exe, version: 1.7.0.0, time stamp: 0x5a2a9899
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000000afb8a
Faulting process id: 0x4730
Faulting application start time: 0x01d3b2bcaae7c3f1
Faulting application path: C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe
Faulting module path: unknown
Report Id: ae9e9796-0020-459e-8c38-3cdcf18f74c3
Faulting package full name:
Faulting package-relative application ID:
Error: (03/03/2018 08:55:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SoundMixer.exe, version: 1.7.0.0, time stamp: 0x5a2a9899
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000000afb8a
Faulting process id: 0x2018
Faulting application start time: 0x01d3b2bcaae78435
Faulting application path: C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe
Faulting module path: unknown
Report Id: 9e9e29d7-a724-47be-ba23-26ff4d38f642
Faulting package full name:
Faulting package-relative application ID:
Error: (03/03/2018 06:27:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SoundMixer.exe, version: 1.7.0.0, time stamp: 0x5a2a9899
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000000afb8a
Faulting process id: 0xb7c
Faulting application start time: 0x01d3b2a7f4700157
Faulting application path: C:\Users\SJ Botha\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe
Faulting module path: unknown
Report Id: 160dd185-e5e9-4118-9ea3-b492b2a219da
Faulting package full name:
Faulting package-relative application ID:
System errors:
=============
Error: (03/03/2018 03:45:36 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0F2Q00VJ)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user LAPTOP-0F2Q00VJ\SJ Botha SID (S-1-5-21-4043987046-3975741843-2478934196-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/03/2018 02:17:45 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0F2Q00VJ)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user LAPTOP-0F2Q00VJ\SJ Botha SID (S-1-5-21-4043987046-3975741843-2478934196-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/03/2018 02:15:43 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/03/2018 02:10:18 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/03/2018 02:01:38 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0F2Q00VJ)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user LAPTOP-0F2Q00VJ\SJ Botha SID (S-1-5-21-4043987046-3975741843-2478934196-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/03/2018 02:00:43 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/03/2018 02:00:43 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/03/2018 02:00:43 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Percentage of memory in use: 24%
Total physical RAM: 16239.64 MB
Available physical RAM: 12298.88 MB
Total Virtual: 18671.64 MB
Available Virtual: 14467.76 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:475.43 GB) (Free:167.08 GB) NTFS
\\?\Volume{48c0860f-a74e-42d7-ab0a-9a0a8ea9b711}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.44 GB) FAT32
\\?\Volume{2021ca5a-cf30-4523-91ff-2e34f70e6743}\ () (Fixed) (Total:0.9 GB) (Free:0.46 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 1C2C7089)
Partition: GPT.
==================== End of Addition.txt ============================
yes I do have utorrent