Posted 15 Might 2016 – 05:20 PM

Whats up,

 

I observed yesterday that Avira is discovering lots of hidden objects. Additionally after I scanned with Avira, utilizing full logs mode, I additionally alerted me about over 100 warnings as a result of there are recordsdata it can’t scan. Nevertheless, I can’t paste this log for the reason that go browsing full report mode is large (50mb!). This did not use to occur throughout day by day scans, i am pretty positive that I’ve caught one thing evil. I’ve added FRST log bellow and hooked up Additions log + Avira log as attachements  I additionally did malwarebytes scan, however that discovered nothing.

 

Thanks once more.

 

FRST:

 

Scan results of Farbar Restoration Scan Software (FRST) (x64) Model:14-05-2016

Ran by jaakk (administrator) on JAAKKO (16-05-2016 00:49:55)

Working from C:UsersjaakkDesktop

Loaded Profiles: jaakk &  (Obtainable Profiles: jaakk)

Platform: Home windows 10 House Model 1511 (X64) Language: suomi (Suomi)

Web Explorer Model 11 (Default browser: Chrome)

Boot Mode: Regular

Tutorial for Farbar Restoration Scan Software: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(If an entry is included within the fixlist, the method can be closed. The file won’t be moved.)

 

(NVIDIA Company) C:WindowsSystem32nvvsvc.exe

(NVIDIA Company) C:Program Information (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe

(NVIDIA Company) C:Program FilesNVIDIA CorporationDisplaynvxdsync.exe

(NVIDIA Company) C:WindowsSystem32nvvsvc.exe

(Avira Operations GmbH & Co. KG) C:Program Information (x86)AviraAntivirussched.exe

(Avira Operations GmbH & Co. KG) C:Program Information (x86)AviraAntivirusavguard.exe

() C:Program Information (x86)ASUSAXSP1.01.02atkexComSvc.exe

(Microsoft Company) C:Program FilesCommon Filesmicrosoft sharedClickToRunOfficeClickToRun.exe

(NVIDIA Company) C:Program FilesNVIDIA CorporationGeForce Expertise ServiceGfExperienceService.exe

(F-Safe Company) C:Program Information (x86)F-SecureFreedomeFreedome1FreedomeService.exe

(Logitech Inc.) C:Program FilesLogitech Gaming SoftwareDriversAPOServiceLogiRegistryService.exe

(Malwarebytes Company) C:Program Information (x86)Malwarebytes Anti-Exploitmbae-svc.exe

(Malwarebytes) C:Program Information (x86)Malwarebytes Anti-Malwarembamscheduler.exe

(Malwarebytes) C:Program Information (x86)Malwarebytes Anti-Malwarembamservice.exe

(NVIDIA Company) C:Program Information (x86)NVIDIA CorporationNetServiceNvNetworkService.exe

() C:WindowsSysWOW64PnkBstrA.exe

(Avira Operations GmbH & Co. KG) C:Program Information (x86)AviraLauncherAvira.ServiceHost.exe

(Malwarebytes Company) C:Program Information (x86)Malwarebytes Anti-Exploitmbae64.exe

(Malwarebytes) C:Program Information (x86)Malwarebytes Anti-Malwarembam.exe

() C:Program FilesWindowsAppsMicrosoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbweSkypeHost.exe

(Avira Operations GmbH & Co. KG) C:Program Information (x86)AviraAntivirusavshadow.exe

(NVIDIA Company) C:Program FilesNVIDIA CorporationDisplaynvtray.exe

(NVIDIA Company) C:Program Information (x86)NVIDIA CorporationUpdate CoreNvBackend.exe

(Google Inc.) C:Program Information (x86)GoogleUpdate1.3.30.3GoogleCrashHandler.exe

(Google Inc.) C:Program Information (x86)GoogleUpdate1.3.30.3GoogleCrashHandler64.exe

(Microsoft Company) C:WindowsSystem32SettingSyncHost.exe

(Logitech Inc.) C:Program FilesLogitech Gaming SoftwareLCore.exe

(Spotify Ltd) C:UsersjaakkAppDataRoamingSpotifySpotify.exe

(Spotify Ltd) C:UsersjaakkAppDataRoamingSpotifySpotifyCrashService.exe

(Spotify Ltd) C:UsersjaakkAppDataRoamingSpotifySpotify.exe

(Spotify Ltd) C:UsersjaakkAppDataRoamingSpotifySpotifyWebHelper.exe

(Spotify Ltd) C:UsersjaakkAppDataRoamingSpotifySpotify.exe

(Digital Arts) C:Program Information (x86)OriginOrigin.exe

(Spotify Ltd) C:UsersjaakkAppDataRoamingSpotifySpotifyWebHelper.exe

(Valve Company) C:Program Information (x86)SteamSteam.exe

(Skype Applied sciences S.A.) C:Program Information (x86)SkypePhoneSkype.exe

(Valve Company) C:Program Information (x86)Steambinsteamwebhelper.exe

(Blizzard Leisure) C:ProgramDataBattle.netAgentAgent.4931Agent.exe

(Valve Company) C:Program Information (x86)Widespread FilesSteamSteamService.exe

(Blizzard Leisure) C:Program Information (x86)Battle.netBattle.web.7208Battle.web.exe

(GOG.com) C:Program Information (x86)GalaxyClientGalaxyClient.exe

(Avira Operations GmbH & Co. KG) C:Program Information (x86)AviraAntivirusavgnt.exe

() C:Program Information (x86)Battle.netBattle.web.7208Battle.web Helper.exe

(GOG.com) C:Program Information (x86)GalaxyClientGalaxyClient Helper.exe

(Corsair Elements, Inc.) C:Program Information (x86)CorsairCorsair Utility EngineCorsairHID.exe

(Malwarebytes Company) C:Program Information (x86)Malwarebytes Anti-Exploitmbae.exe

(Avira Operations GmbH & Co. KG) C:Program Information (x86)AviraLauncherAvira.Systray.exe

(GOG.com) C:Program Information (x86)GalaxyClientGalaxyClient Helper.exe

(GOG.com) C:Program Information (x86)GalaxyClientGalaxyClient Helper.exe

() C:Program Information (x86)Battle.netBattle.web.7208Battle.web Helper.exe

(Valve Company) C:Program Information (x86)Steambinsteamwebhelper.exe

() C:Program Information (x86)Battle.netBattle.web.7208Battle.web Helper.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

(Google Inc.) C:Program Information (x86)GoogleChromeApplicationchrome.exe

 

 

==================== Registry (Whitelisted) ===========================

 

(If an entry is included within the fixlist, the registry merchandise can be restored to default or eliminated. The file won’t be moved.)

 

HKLM…Run: [Launch LCore] => C:Program FilesLogitech Gaming SoftwareLCore.exe [15053944 2016-01-06] (Logitech Inc.)

HKLM…Run: [NvBackend] => C:Program Information (x86)NVIDIA CorporationUpdate CoreNvBackend.exe [2398776 2016-05-02] (NVIDIA Company)

HKLM…Run: [ShadowPlay] => “C:Windowssystem32rundll32.exe” C:Windowssystem32nvspcap64.dll,ShadowPlayOnSystemStart

HKLM-x32…Run: [avgnt] => C:Program Information (x86)AviraAntivirusavgnt.exe [807392 2016-03-09] (Avira Operations GmbH & Co. KG)

HKLM-x32…Run: [Avira SystrayStartTrigger] => C:Program Information (x86)AviraLauncherAvira.SystrayStartTrigger.exe [66328 2016-04-25] (Avira Operations GmbH & Co. KG)

HKLM-x32…Run: [Corsair Utility Engine] => C:Program Information (x86)CorsairCorsair Utility EngineCorsairHID.exe [14885552 2016-03-23] (Corsair Elements, Inc.)

HKLM-x32…Run: [Malwarebytes Anti-Exploit] => C:Program Information (x86)Malwarebytes Anti-Exploitmbae.exe [2623456 2016-04-15] (Malwarebytes Company)

HKLM-x32…Run: [FreedomeAutoStart] => C:Program Information (x86)F-SecureFreedomeFreedome1Freedome.exe [5401048 2016-04-30] (F-Safe Company)

HKUS-1-5-21-2270606022-1161141034-668459170-1001…Run: [Spotify] => C:UsersjaakkAppDataRoamingSpotifySpotify.exe [6890608 2016-04-26] (Spotify Ltd)

HKUS-1-5-21-2270606022-1161141034-668459170-1001…Run: [EADM] => C:Program Information (x86)OriginOrigin.exe [3639280 2016-04-28] (Digital Arts)

HKUS-1-5-21-2270606022-1161141034-668459170-1001…Run: [GalaxyClient] => C:Program Information (x86)GalaxyClientGalaxyClient.exe [3985976 2016-05-12] (GOG.com)

HKUS-1-5-21-2270606022-1161141034-668459170-1001…Run: [Spotify Web Helper] => C:UsersjaakkAppDataRoamingSpotifySpotifyWebHelper.exe [1525360 2016-04-26] (Spotify Ltd)

HKUS-1-5-21-2270606022-1161141034-668459170-1001…Run: [Steam] => C:Program Information (x86)Steamsteam.exe [3077712 2016-04-30] (Valve Company)

HKUS-1-5-21-2270606022-1161141034-668459170-1001…Run: [Skype] => C:Program Information (x86)SkypePhoneSkype.exe [51656320 2016-04-08] (Skype Applied sciences S.A.)

HKUS-1-5-21-2270606022-1161141034-668459170-1001…Run: [SteelSeries Engine] => C:Program FilesSteelSeriesSteelSeries EngineSteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)

HKUS-1-5-21-2270606022-1161141034-668459170-1001…Run: [GoogleDriveSync] => “C:Program Files (x86)GoogleDrivegoogledrivesync.exe” /autostart

HKUS-1-5-21-2270606022-1161141034-668459170-1001…Run: [Battle.net] => C:Program Information (x86)Battle.netBattle.web Launcher.exe [3006952 2016-05-04] (Blizzard Leisure)

HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0…Run: [Spotify] => C:UsersjaakkAppDataRoamingSpotifySpotify.exe [6890608 2016-04-26] (Spotify Ltd)

HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0…Run: [EADM] => C:Program Information (x86)OriginOrigin.exe [3639280 2016-04-28] (Digital Arts)

HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0…Run: [GalaxyClient] => C:Program Information (x86)GalaxyClientGalaxyClient.exe [3985976 2016-05-12] (GOG.com)

HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0…Run: [Spotify Web Helper] => C:UsersjaakkAppDataRoamingSpotifySpotifyWebHelper.exe [1525360 2016-04-26] (Spotify Ltd)

HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0…Run: [Steam] => C:Program Information (x86)Steamsteam.exe [3077712 2016-04-30] (Valve Company)

HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0…Run: [Skype] => C:Program Information (x86)SkypePhoneSkype.exe [51656320 2016-04-08] (Skype Applied sciences S.A.)

HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0…Run: [SteelSeries Engine] => C:Program FilesSteelSeriesSteelSeries EngineSteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)

HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0…Run: [GoogleDriveSync] => “C:Program Files (x86)GoogleDrivegoogledrivesync.exe” /autostart

HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0…Run: [Battle.net] => C:Program Information (x86)Battle.netBattle.web Launcher.exe [3006952 2016-05-04] (Blizzard Leisure)

 

==================== Web (Whitelisted) ====================

 

(If an merchandise is included within the fixlist, if it’s a registry merchandise it is going to be eliminated or restored to default.)

 

TcpipParameters: [DhcpNameServer] 192.168.1.1

Tcpip..Interfaces{0c4ec650-bb9c-4d1e-b59f-0fb3d2c358df}: [DhcpNameServer] 192.168.1.1

Tcpip..Interfaces{8c66f137-b030-4ab1-9d5e-95e65a1edc67}: [DhcpNameServer] 198.18.23.33

 

Web Explorer:

==================

BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootOffice16OCHelper.dll [2016-05-05] (Microsoft Company)

BHO: Microsoft OneDrive for Enterprise Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:Program FilesMicrosoft OfficerootOffice16GROOVEEX.DLL [2016-05-05] (Microsoft Company)

BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16OCHelper.dll [2016-05-05] (Microsoft Company)

BHO-x32: Microsoft OneDrive for Enterprise Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16GROOVEEX.DLL [2016-05-05] (Microsoft Company)

Handler: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2016-05-05] (Microsoft Company)

Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2016-05-05] (Microsoft Company)

Handler: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2016-05-05] (Microsoft Company)

Handler-x32: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2016-05-05] (Microsoft Company)

Handler: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2016-05-05] (Microsoft Company)

Handler-x32: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2016-05-05] (Microsoft Company)

Handler: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2016-05-05] (Microsoft Company)

Handler-x32: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2016-05-05] (Microsoft Company)

 

FireFox:

========

FF ProfilePath: C:UsersjaakkAppDataRoamingMozillaFirefoxProfiles2olqdun8.default

FF Plugin: @microsoft.com/SharePoint,model=14.0 -> C:Program FilesMicrosoft OfficerootOffice16NPSPWRAP.DLL [2016-05-05] (Microsoft Company)

FF Plugin: @videolan.org/vlc,model=2.2.1 -> C:Program FilesVideoLANVLCnpvlc.dll [2015-04-16] (VideoLAN)

FF Plugin-x32: @esn.me/esnsonar,model=0.70.4 -> C:Program Information (x86)Battlelog Net PluginsSonar .70.4npesnsonar.dll [2011-11-03] (ESN Social Software program AB)

FF Plugin-x32: @esn/esnlaunch,model=2.3.0 -> C:Program Information (x86)Battlelog Net Plugins2.3.0npesnlaunch.dll [2013-09-16] (ESN Social Software program AB)

FF Plugin-x32: @microsoft.com/Lync,model=15.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Mozilla Firefoxpluginsnpmeetingjoinpluginoc.dll [2016-05-05] (Microsoft Company)

FF Plugin-x32: @microsoft.com/SharePoint,model=14.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16NPSPWRAP.DLL [2016-05-05] (Microsoft Company)

FF Plugin-x32: @nvidia.com/3DVision -> C:Program Information (x86)NVIDIA Corporation3D Visionnpnv3dv.dll [2016-05-10] (NVIDIA Company)

FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:Program Information (x86)NVIDIA Corporation3D Visionnpnv3dvstreaming.dll [2016-05-10] (NVIDIA Company)

FF Plugin-x32: @instruments.google.com/Google Replace;model=3 -> C:Program Information (x86)GoogleUpdate1.3.30.3npGoogleUpdate3.dll [2016-05-11] (Google Inc.)

FF Plugin-x32: @instruments.google.com/Google Replace;model=9 -> C:Program Information (x86)GoogleUpdate1.3.30.3npGoogleUpdate3.dll [2016-05-11] (Google Inc.)

FF Extension: NoScript – C:UsersjaakkAppDataRoamingMozillaFirefoxProfiles2olqdun8.defaultextensions{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-04-11]

FF Extension: uBlock Origin – C:UsersjaakkAppDataRoamingMozillaFirefoxProfiles2olqdun8.defaultExtensionsuBlock0@raymondhill.web.xpi [2016-05-03]

FF Extension: Adblock Plus – C:UsersjaakkAppDataRoamingMozillaFirefoxProfiles2olqdun8.defaultExtensions{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]

 

Chrome: 

=======

CHR Plugin: (Widevine Content material Decryption Module) – C:UsersjaakkAppDataLocalGoogleChromeUser DataWidevineCDM1.4.8.885_platform_specificwin_x86widevinecdmadapter.dll (Google Inc.)

CHR Plugin: (Shockwave Flash) – C:Program Information (x86)GoogleChromeApplication50.0.2661.102PepperFlashpepflashplayer.dll ()

CHR Profile: C:UsersjaakkAppDataLocalGoogleChromeUser DataDefault

CHR Extension: (Google-presentaatiot) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2016-02-20]

CHR Extension: (ThemeBeta.com) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsafkleffjjjgeaddfgndakajjdldgbkoe [2016-02-22]

CHR Extension: (Google-dokumentit) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2016-02-20]

CHR Extension: (Google Drive) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2016-02-20]

CHR Extension: (Darkish Pores and skin for Youtube™) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsbfeknfgchonpnofdjokchhdhdnddhglm [2016-05-04]

CHR Extension: (YouTube) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-20]

CHR Extension: (Adblock Plus) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionscfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09]

CHR Extension: (Google-haku) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionscoobgpohoikkiipiblmjeljniedjpjpf [2016-02-20]

CHR Extension: (Google-taulukot) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2016-02-20]

CHR Extension: (Google Docsin offline-tila) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]

CHR Extension: (Bookmark Supervisor) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsgmlllbghnfkpflemihljekbapjopfjik [2016-02-20]

CHR Extension: (Moderator toolbox for reddit) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsjhjpjhhkcbkmgdkahnckfboefnkgghpo [2016-02-20]

CHR Extension: (Reddit Enhancement Suite) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionskbmfpngjjgdllneeigpgjifpgocmfgmb [2016-03-18]

CHR Extension: (Automattinen HD YouTubelle™) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionskoiaokdomkpjdgniimnkhgbilbjgpeak [2016-02-20]

CHR Extension: (Chrome Net Storen maksut) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]

CHR Extension: (Gmail) – C:UsersjaakkAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2016-02-20]

CHR HKUS-1-5-21-2270606022-1161141034-668459170-1001SOFTWAREGoogleChromeExtensions…ChromeExtension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] – hxxps://clients2.google.com/service/update2/crx

CHR HKUS-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREGoogleChromeExtensions…ChromeExtension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] – hxxps://clients2.google.com/service/update2/crx

 

==================== Companies (Whitelisted) ========================

 

(If an entry is included within the fixlist, it is going to be faraway from the registry. The file won’t be moved except listed individually.)

 

S2 AntiVirMailService; C:Program Information (x86)AviraAntivirusavmailc7.exe [955736 2016-03-09] (Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:Program Information (x86)AviraAntivirussched.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:Program Information (x86)AviraAntivirusavguard.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)

S4 AntiVirWebService; C:Program Information (x86)AviraAntivirusavwebg7.exe [1424880 2016-03-09] (Avira Operations GmbH & Co. KG)

R2 asComSvc; C:Program Information (x86)ASUSAXSP1.01.02atkexComSvc.exe [936728 2013-07-04] ()

R2 Avira.ServiceHost; C:Program Information (x86)AviraLauncherAvira.ServiceHost.exe [280008 2016-04-25] (Avira Operations GmbH & Co. KG)

R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [2912496 2016-04-02] (Microsoft Company)

R2 Freedome Service; C:Program Information (x86)F-SecureFreedomeFreedome1FreedomeService.exe [440280 2016-04-30] (F-Safe Company)

S3 GalaxyClientService; C:Program Information (x86)GalaxyClientGalaxyClientService.exe [246328 2016-05-12] (GOG.com)

S3 GalaxyCommunication; C:ProgramDataGOG.comGalaxyredistsGalaxyCommunication.exe [6167096 2016-05-12] (GOG.com)

R2 GfExperienceService; C:Program FilesNVIDIA CorporationGeForce Expertise ServiceGfExperienceService.exe [1165368 2016-05-02] (NVIDIA Company)

R2 LogiRegistryService; C:Program FilesLogitech Gaming SoftwareDriversAPOServiceLogiRegistryService.exe [193144 2016-01-06] (Logitech Inc.)

R2 MbaeSvc; C:Program Information (x86)Malwarebytes Anti-Exploitmbae-svc.exe [742368 2016-04-15] (Malwarebytes Company)

R2 MBAMScheduler; C:Program Information (x86)Malwarebytes Anti-Malwarembamscheduler.exe [1514464 2016-03-10] (Malwarebytes)

R2 MBAMService; C:Program Information (x86)Malwarebytes Anti-Malwarembamservice.exe [1136608 2016-03-10] (Malwarebytes)

R2 NvNetworkService; C:Program Information (x86)NVIDIA CorporationNetServiceNvNetworkService.exe [1881144 2016-05-02] (NVIDIA Company)

S3 NvStreamNetworkSvc; C:Program FilesNVIDIA CorporationNvStreamSrvNvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Company)

S2 NvStreamSvc; C:Program FilesNVIDIA CorporationNvStreamSrvNvStreamService.exe [2522680 2016-05-02] (NVIDIA Company)

S3 Origin Shopper Service; C:Program Information (x86)OriginOriginClientService.exe [2120712 2016-04-28] (Digital Arts)

S3 PAExec; C:WindowsPAExec.exe [189112 2016-05-04] (Energy Admin LLC)

R2 PnkBstrA; C:WindowsSysWOW64PnkBstrA.exe [76888 2016-01-22] ()

S3 WdNisSvc; C:Program FilesWindows DefenderNisSrv.exe [364464 2015-10-30] (Microsoft Company)

S3 WinDefend; C:Program FilesWindows DefenderMsMpEng.exe [24864 2015-10-30] (Microsoft Company)

 

===================== Drivers (Whitelisted) ==========================

 

(If an entry is included within the fixlist, it is going to be faraway from the registry. The file won’t be moved except listed individually.)

 

R1 AsIO; C:WindowsSysWow64driversAsIO.sys [15232 2013-07-04] ()

R2 avgntflt; C:WindowsSystem32DRIVERSavgntflt.sys [128664 2016-03-09] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:Windowssystem32DRIVERSavipbb.sys [137952 2016-03-09] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:Windowssystem32DRIVERSavkmgr.sys [35488 2015-12-03] (Avira Operations GmbH & Co. KG)

See also  [946MB] The Forest Game for PC Free Download - Highly Compressed - Full Version

R2 avnetflt; C:Windowssystem32DRIVERSavnetflt.sys [68936 2016-03-09] (Avira Operations GmbH & Co. KG)

R3 CorsairVBusDriver; C:WindowsSystem32driversCorsairVBusDriver.sys [47840 2015-11-23] (Corsair)

R3 CorsairVHidDriver; C:WindowsSystem32driversCorsairVHidDriver.sys [21728 2015-11-23] (Corsair)

R1 ESProtectionDriver; C:Program Information (x86)Malwarebytes Anti-Exploitmbae64.sys [66080 2016-04-15] ()

R3 fsfreedometap; C:WindowsSystem32driversfsfreedometap.sys [36312 2016-04-30] (The OpenVPN Undertaking)

R2 LGCoreTemp; C:Program FilesLogitech Gaming SoftwareDriversLgCoreTemplgcoretemp.sys [14184 2015-06-22] (Logitech)

R3 LGJoyXlCore; C:Windowssystem32driversLGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)

R3 MBAMProtector; C:Windowssystem32driversmbam.sys [27008 2016-03-10] (Malwarebytes)

R3 MBAMSwissArmy; C:Windowssystem32driversMBAMSwissArmy.sys [192216 2016-05-15] (Malwarebytes)

R3 MBAMWebAccessControl; C:Windowssystem32driversmwac.sys [65408 2016-03-10] (Malwarebytes Company)

R3 MEIx64; C:WindowsSystem32driversTeeDriverW8x64.sys [202032 2016-01-19] (Intel Company)

R2 NPF; C:Windowssystem32driversnpf.sys [35344 2016-02-16] (CACE Applied sciences, Inc.)

S3 NvStreamKms; C:Program FilesNVIDIA CorporationNvStreamSrvNvStreamKms.sys [28216 2016-05-02] (NVIDIA Company)

R3 nvvad_WaveExtensible; C:Windowssystem32driversnvvad64v.sys [56384 2016-04-14] (NVIDIA Company)

S3 rspLLL; C:WindowsSystem32DRIVERSrspLLL64.sys [26368 2015-07-13] (Resplendence Software program Tasks Sp.)

R3 rt640x64; C:WindowsSystem32driversrt640x64.sys [888064 2015-10-15] (Realtek                                            )

S3 SAlphamHid; C:WindowsSystem32driversSAlpham64.sys [39168 2014-10-08] (SteelSeries Company)

S2 Sentinel64; C:WindowsSystem32DriversSentinel64.sys [145448 2009-09-17] (SafeNet, Inc.)

S3 ssdevfactory; C:WindowsSystem32driversssdevfactory.sys [40568 2015-10-03] (SteelSeries ApS)

S3 sshid; C:WindowsSystem32driverssshid.sys [51400 2016-01-28] (SteelSeries ApS)

U3 TrueSight; C:WindowsSystem32driversTrueSight.sys [24688 2016-03-06] ()

S3 USBTINSP; C:WindowsSystem32driverstinspusb.sys [142848 2010-03-29] (Texas Devices)

S3 WdBoot; C:Windowssystem32driversWdBoot.sys [44568 2015-10-30] (Microsoft Company)

S3 WdFilter; C:Windowssystem32driversWdFilter.sys [293216 2015-10-30] (Microsoft Company)

S3 WdNisDrv; C:WindowsSystem32DriversWdNisDrv.sys [118112 2015-10-30] (Microsoft Company)

R3 WUDFWpdComp; C:Windowssystem32DRIVERSWUDFRd.sys [216064 2015-10-30] (Microsoft Company)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included within the fixlist, it is going to be faraway from the registry. The file won’t be moved except listed individually.)

 

 

==================== One Month Created recordsdata and folders ========

 

(If an entry is included within the fixlist, the file/folder can be moved.)

 

2016-05-16 00:49 – 2016-05-16 00:50 – 00025311 _____ C:UsersjaakkDesktopFRST.txt

2016-05-16 00:49 – 2016-05-16 00:49 – 02382336 _____ (Farbar) C:UsersjaakkDesktopFRST64.exe

2016-05-16 00:49 – 2016-05-16 00:49 – 00000000 ____D C:FRST

2016-05-14 18:01 – 2016-05-14 18:01 – 00000000 ____D C:WindowsLastGood.Tmp

2016-05-14 18:01 – 2016-05-10 02:23 – 00110528 _____ (NVIDIA Company) C:WindowsSysWOW64nvStreaming.exe

2016-05-14 18:01 – 2016-05-04 05:23 – 00129824 _____ C:WindowsSysWOW64vulkan-1.dll

2016-05-14 18:01 – 2016-05-04 05:22 – 00130848 _____ C:Windowssystem32vulkan-1.dll

2016-05-14 18:01 – 2016-05-04 05:22 – 00045344 _____ C:Windowssystem32vulkaninfo.exe

2016-05-14 18:01 – 2016-05-04 05:22 – 00040224 _____ C:WindowsSysWOW64vulkaninfo.exe

2016-05-14 18:00 – 2016-05-10 07:05 – 42924088 _____ C:Windowssystem32nvcompiler.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 37567424 _____ C:WindowsSysWOW64nvcompiler.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 31625272 _____ (NVIDIA Company) C:Windowssystem32nvoglv64.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 25374776 _____ (NVIDIA Company) C:WindowsSysWOW64nvoglv32.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 21380696 _____ (NVIDIA Company) C:Windowssystem32nvopencl.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 20922648 _____ (NVIDIA Company) C:Windowssystem32nvcuda.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 17777016 _____ (NVIDIA Company) C:WindowsSysWOW64nvopencl.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 17370472 _____ (NVIDIA Company) C:Windowssystem32nvd3dumx.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 17370400 _____ (NVIDIA Company) C:WindowsSysWOW64nvcuda.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 10566520 _____ C:Windowssystem32nvptxJitCompiler.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 08673880 _____ C:WindowsSysWOW64nvptxJitCompiler.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 02614208 _____ (NVIDIA Company) C:Windowssystem32nvcuvid.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 02258368 _____ (NVIDIA Company) C:WindowsSysWOW64nvcuvid.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 01924152 _____ (NVIDIA Company) C:Windowssystem32nvdispco6436519.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 01573432 _____ (NVIDIA Company) C:Windowssystem32nvdispgenco6436519.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00960056 _____ (NVIDIA Company) C:Windowssystem32NvFBC64.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00887744 _____ (NVIDIA Company) C:Windowssystem32NvIFR64.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00786688 _____ (NVIDIA Company) C:Windowssystem32nvEncMFTH264.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00784640 _____ (NVIDIA Company) C:Windowssystem32nvEncMFThevc.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00695864 _____ (NVIDIA Company) C:WindowsSysWOW64NvIFR.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00678704 _____ C:Windowssystem32nvfatbinaryLoader.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00632152 _____ (NVIDIA Company) C:WindowsSysWOW64nvEncMFTH264.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00630592 _____ (NVIDIA Company) C:WindowsSysWOW64nvEncMFThevc.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00601752 _____ C:Windowssystem32nvmcumd.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00571912 _____ C:WindowsSysWOW64nvfatbinaryLoader.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00545632 _____ (NVIDIA Company) C:Windowssystem32nvumdshimx.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00448824 _____ (NVIDIA Company) C:WindowsSysWOW64nvumdshim.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00425016 _____ (NVIDIA Company) C:Windowssystem32NvIFROpenGL.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00385080 _____ (NVIDIA Company) C:Windowssystem32nvDecMFTMjpeg.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00379296 _____ (NVIDIA Company) C:Windowssystem32nvEncodeAPI64.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00377792 _____ (NVIDIA Company) C:WindowsSysWOW64NvIFROpenGL.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00346560 _____ (NVIDIA Company) C:WindowsSysWOW64nvDecMFTMjpeg.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00317472 _____ (NVIDIA Company) C:WindowsSysWOW64nvEncodeAPI.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00175368 _____ (NVIDIA Company) C:Windowssystem32nvinitx.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00153208 _____ (NVIDIA Company) C:WindowsSysWOW64nvinit.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00151184 _____ (NVIDIA Company) C:Windowssystem32nvoglshim64.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00128696 _____ (NVIDIA Company) C:WindowsSysWOW64nvoglshim32.dll

2016-05-14 18:00 – 2016-05-10 07:05 – 00000592 _____ C:WindowsSysWOW64nv-vk32.json

2016-05-14 18:00 – 2016-05-10 07:05 – 00000592 _____ C:Windowssystem32nv-vk64.json

2016-05-13 16:34 – 2016-05-13 16:34 – 00000218 _____ C:UsersjaakkAppDataLocalrecently-used.xbel

2016-05-13 02:32 – 2016-05-13 02:32 – 00000000 ____D C:UsersjaakkAppDataRoamingNVIDIA

2016-05-10 22:11 – 2016-04-30 09:42 – 01387520 _____ (Microsoft Company) C:Windowssystem32win32kbase.sys

2016-05-10 22:11 – 2016-04-30 09:31 – 03591168 _____ (Microsoft Company) C:Windowssystem32win32kfull.sys

2016-05-10 22:11 – 2016-04-23 09:12 – 01401024 _____ (Microsoft Company) C:Windowssystem32appraiser.dll

2016-05-10 22:11 – 2016-04-23 09:12 – 01184960 _____ (Microsoft Company) C:Windowssystem32aeinv.dll

2016-05-10 22:11 – 2016-04-23 09:12 – 00713920 _____ (Microsoft Company) C:Windowssystem32generaltel.dll

2016-05-10 22:11 – 2016-04-23 09:12 – 00514752 _____ (Microsoft Company) C:Windowssystem32devinv.dll

2016-05-10 22:11 – 2016-04-23 09:12 – 00294592 _____ (Microsoft Company) C:Windowssystem32invagent.dll

2016-05-10 22:11 – 2016-04-23 09:12 – 00190144 _____ (Microsoft Company) C:Windowssystem32DeviceCensus.exe

2016-05-10 22:11 – 2016-04-23 09:12 – 00046784 _____ (Microsoft Company) C:Windowssystem32CompatTelRunner.exe

2016-05-10 22:11 – 2016-04-23 08:28 – 01557768 _____ (Microsoft Company) C:WindowsSysWOW64KernelBase.dll

2016-05-10 22:11 – 2016-04-23 08:28 – 01542816 _____ (Microsoft Company) C:WindowsSysWOW64ntdll.dll

2016-05-10 22:11 – 2016-04-23 08:24 – 07474528 _____ (Microsoft Company) C:Windowssystem32ntoskrnl.exe

2016-05-10 22:11 – 2016-04-23 08:24 – 01997328 _____ (Microsoft Company) C:Windowssystem32KernelBase.dll

2016-05-10 22:11 – 2016-04-23 08:24 – 01819208 _____ (Microsoft Company) C:Windowssystem32ntdll.dll

2016-05-10 22:11 – 2016-04-23 08:24 – 00754664 _____ (Microsoft Company) C:Windowssystem32CoreMessaging.dll

2016-05-10 22:11 – 2016-04-23 08:12 – 00925064 _____ (Microsoft Company) C:WindowsSysWOW64mfplat.dll

2016-05-10 22:11 – 2016-04-23 08:12 – 00451928 _____ (Microsoft Company) C:WindowsSysWOW64MFCaptureEngine.dll

2016-05-10 22:11 – 2016-04-23 08:11 – 01092464 _____ (Microsoft Company) C:Windowssystem32mfplat.dll

2016-05-10 22:11 – 2016-04-23 08:11 – 00498960 _____ (Microsoft Company) C:Windowssystem32MFCaptureEngine.dll

2016-05-10 22:11 – 2016-04-23 08:10 – 03673424 _____ (Microsoft Company) C:Windowssystem32iertutil.dll

2016-05-10 22:11 – 2016-04-23 08:10 – 02919832 _____ (Microsoft Company) C:WindowsSysWOW64iertutil.dll

2016-05-10 22:11 – 2016-04-23 08:09 – 22561256 _____ (Microsoft Company) C:Windowssystem32shell32.dll

2016-05-10 22:11 – 2016-04-23 08:09 – 21123320 _____ (Microsoft Company) C:WindowsSysWOW64shell32.dll

2016-05-10 22:11 – 2016-04-23 08:09 – 05240960 _____ (Microsoft Company) C:WindowsSysWOW64windows.storage.dll

2016-05-10 22:11 – 2016-04-23 08:09 – 04074160 _____ (Microsoft Company) C:WindowsSysWOW64explorer.exe

2016-05-10 22:11 – 2016-04-23 08:09 – 00303216 _____ (Microsoft Company) C:Windowssystem32LockAppHost.exe

2016-05-10 22:11 – 2016-04-23 08:08 – 06605504 _____ (Microsoft Company) C:Windowssystem32windows.storage.dll

2016-05-10 22:11 – 2016-04-23 08:08 – 04515256 _____ (Microsoft Company) C:Windowsexplorer.exe

2016-05-10 22:11 – 2016-04-23 08:01 – 01996640 _____ (Microsoft Company) C:Windowssystem32Driversdxgkrnl.sys

2016-05-10 22:11 – 2016-04-23 08:01 – 00650304 _____ (Microsoft Company) C:Windowssystem32dxgi.dll

2016-05-10 22:11 – 2016-04-23 08:01 – 00577368 _____ (Microsoft Company) C:Windowssystem32Driversdxgmms2.sys

2016-05-10 22:11 – 2016-04-23 08:01 – 00522176 _____ (Microsoft Company) C:WindowsSysWOW64dxgi.dll

2016-05-10 22:11 – 2016-04-23 08:00 – 01372304 _____ (Microsoft Company) C:WindowsSysWOW64gdi32.dll

2016-05-10 22:11 – 2016-04-23 07:39 – 00089088 _____ (Microsoft Company) C:Windowssystem32MapsCSP.dll

2016-05-10 22:11 – 2016-04-23 07:32 – 00028672 _____ (Microsoft Company) C:Windowssystem32mapsupdatetask.dll

2016-05-10 22:11 – 2016-04-23 07:31 – 13018112 _____ (Microsoft Company) C:WindowsSysWOW64Windows.UI.Xaml.dll

2016-05-10 22:11 – 2016-04-23 07:31 – 00074752 _____ (Microsoft Company) C:Windowssystem32MosStorage.dll

2016-05-10 22:11 – 2016-04-23 07:30 – 22379008 _____ (Microsoft Company) C:Windowssystem32edgehtml.dll

2016-05-10 22:11 – 2016-04-23 07:30 – 00120320 _____ (Microsoft Company) C:Windowssystem32MapsBtSvc.dll

2016-05-10 22:11 – 2016-04-23 07:29 – 00072704 _____ (Microsoft Company) C:Windowssystem32moshost.dll

2016-05-10 22:11 – 2016-04-23 07:28 – 16984576 _____ (Microsoft Company) C:Windowssystem32Windows.UI.Xaml.dll

2016-05-10 22:11 – 2016-04-23 07:26 – 00269824 _____ (Microsoft Company) C:Windowssystem32moshostcore.dll

2016-05-10 22:11 – 2016-04-23 07:26 – 00059904 _____ (Microsoft Company) C:WindowsSysWOW64MosStorage.dll

2016-05-10 22:11 – 2016-04-23 07:25 – 00087040 _____ (Microsoft Company) C:WindowsSysWOW64MapsBtSvc.dll

2016-05-10 22:11 – 2016-04-23 07:24 – 00689152 _____ (Microsoft Company) C:Windowssystem32ieproxy.dll

2016-05-10 22:11 – 2016-04-23 07:23 – 11545088 _____ (Microsoft Company) C:Windowssystem32twinui.dll

2016-05-10 22:11 – 2016-04-23 07:22 – 09918976 _____ (Microsoft Company) C:WindowsSysWOW64twinui.dll

2016-05-10 22:11 – 2016-04-23 07:22 – 00460800 _____ (Microsoft Company) C:Windowssystem32MapConfiguration.dll

2016-05-10 22:11 – 2016-04-23 07:20 – 19344384 _____ (Microsoft Company) C:WindowsSysWOW64mshtml.dll

2016-05-10 22:11 – 2016-04-23 07:20 – 18676224 _____ (Microsoft Company) C:WindowsSysWOW64edgehtml.dll

2016-05-10 22:11 – 2016-04-23 07:20 – 00606720 _____ (Microsoft Company) C:Windowssystem32wcmsvc.dll

2016-05-10 22:11 – 2016-04-23 07:19 – 07977472 _____ (Microsoft Company) C:Windowssystem32mos.dll

2016-05-10 22:11 – 2016-04-23 07:19 – 01056256 _____ (Microsoft Company) C:Windowssystem32JpMapControl.dll

2016-05-10 22:11 – 2016-04-23 07:19 – 00970752 _____ (Microsoft Company) C:Windowssystem32kerberos.dll

2016-05-10 22:11 – 2016-04-23 07:19 – 00853504 _____ (Microsoft Company) C:Windowssystem32MapsStore.dll

2016-05-10 22:11 – 2016-04-23 07:19 – 00440320 _____ (Microsoft Company) C:Windowssystem32CredProvDataModel.dll

2016-05-10 22:11 – 2016-04-23 07:18 – 24604672 _____ (Microsoft Company) C:Windowssystem32mshtml.dll

2016-05-10 22:11 – 2016-04-23 07:18 – 00988160 _____ (Microsoft Company) C:Windowssystem32NMAA.dll

2016-05-10 22:11 – 2016-04-23 07:18 – 00939520 _____ (Microsoft Company) C:Windowssystem32MapControlCore.dll

2016-05-10 22:11 – 2016-04-23 07:18 – 00870400 _____ (Microsoft Company) C:Windowssystem32modernexecserver.dll

2016-05-10 22:11 – 2016-04-23 07:18 – 00804352 _____ (Microsoft Company) C:Windowssystem32jscript.dll

2016-05-10 22:11 – 2016-04-23 07:18 – 00605184 _____ (Microsoft Company) C:Windowssystem32vbscript.dll

2016-05-10 22:11 – 2016-04-23 07:18 – 00585728 _____ (Microsoft Company) C:Windowssystem32winlogon.exe

2016-05-10 22:11 – 2016-04-23 07:18 – 00471552 _____ (Microsoft Company) C:Windowssystem32NetSetupShim.dll

2016-05-10 22:11 – 2016-04-23 07:18 – 00349696 _____ (Microsoft Company) C:WindowsSysWOW64MapConfiguration.dll

2016-05-10 22:11 – 2016-04-23 07:17 – 01213440 _____ (Microsoft Company) C:Windowssystem32wwansvc.dll

2016-05-10 22:11 – 2016-04-23 07:17 – 00529920 _____ (Microsoft Company) C:Windowssystem32LogonController.dll

2016-05-10 22:11 – 2016-04-23 07:16 – 01319424 _____ (Microsoft Company) C:Windowssystem32wifinetworkmanager.dll

2016-05-10 22:11 – 2016-04-23 07:16 – 00800768 _____ (Microsoft Company) C:WindowsSysWOW64JpMapControl.dll

2016-05-10 22:11 – 2016-04-23 07:15 – 01073152 _____ (Microsoft Company) C:Windowssystem32RDXService.dll

2016-05-10 22:11 – 2016-04-23 07:15 – 00865792 _____ (Microsoft Company) C:Windowssystem32AzureSettingSyncProvider.dll

2016-05-10 22:11 – 2016-04-23 07:15 – 00792064 _____ (Microsoft Company) C:WindowsSysWOW64kerberos.dll

2016-05-10 22:11 – 2016-04-23 07:15 – 00784896 _____ (Microsoft Company) C:WindowsSysWOW64NMAA.dll

2016-05-10 22:11 – 2016-04-23 07:15 – 00673280 _____ (Microsoft Company) C:Windowssystem32Windows.UI.dll

2016-05-10 22:11 – 2016-04-23 07:15 – 00348672 _____ (Microsoft Company) C:WindowsSysWOW64CredProvDataModel.dll

2016-05-10 22:11 – 2016-04-23 07:14 – 13383168 _____ (Microsoft Company) C:Windowssystem32ieframe.dll

2016-05-10 22:11 – 2016-04-23 07:14 – 00870912 _____ (Microsoft Company) C:Windowssystem32MPSSVC.dll

2016-05-10 22:11 – 2016-04-23 07:14 – 00821760 _____ (Microsoft Company) C:Windowssystem32TokenBroker.dll

2016-05-10 22:11 – 2016-04-23 07:14 – 00711680 _____ (Microsoft Company) C:WindowsSysWOW64MapControlCore.dll

2016-05-10 22:11 – 2016-04-23 07:14 – 00647680 _____ (Microsoft Company) C:WindowsSysWOW64jscript.dll

2016-05-10 22:11 – 2016-04-23 07:14 – 00354304 _____ (Microsoft Company) C:WindowsSysWOW64NetSetupShim.dll

See also  Search Q4 Stats, Rankings, and Banners - Game Tracker

2016-05-10 22:11 – 2016-04-23 07:13 – 07200256 _____ (Microsoft Company) C:Windowssystem32BingMaps.dll

2016-05-10 22:11 – 2016-04-23 07:13 – 06295552 _____ (Microsoft Company) C:WindowsSysWOW64mos.dll

2016-05-10 22:11 – 2016-04-23 07:13 – 00705536 _____ (Microsoft Company) C:WindowsSysWOW64wuapi.dll

2016-05-10 22:11 – 2016-04-23 07:13 – 00489984 _____ (Microsoft Company) C:WindowsSysWOW64Windows.UI.dll

2016-05-10 22:11 – 2016-04-23 07:13 – 00434688 _____ (Microsoft Company) C:WindowsSysWOW64LogonController.dll

2016-05-10 22:11 – 2016-04-23 07:10 – 12125696 _____ (Microsoft Company) C:WindowsSysWOW64ieframe.dll

2016-05-10 22:11 – 2016-04-23 07:10 – 00639488 _____ (Microsoft Company) C:WindowsSysWOW64TokenBroker.dll

2016-05-10 22:11 – 2016-04-23 07:09 – 03666432 _____ (Microsoft Company) C:WindowsSysWOW64jscript9.dll

2016-05-10 22:11 – 2016-04-23 07:09 – 02582016 _____ (Microsoft Company) C:Windowssystem32MFMediaEngine.dll

2016-05-10 22:11 – 2016-04-23 07:08 – 05324288 _____ (Microsoft Company) C:WindowsSysWOW64Windows.Knowledge.Pdf.dll

2016-05-10 22:11 – 2016-04-23 07:08 – 02061824 _____ (Microsoft Company) C:WindowsSysWOW64MFMediaEngine.dll

2016-05-10 22:11 – 2016-04-23 07:07 – 05205504 _____ (Microsoft Company) C:WindowsSysWOW64BingMaps.dll

2016-05-10 22:11 – 2016-04-23 07:07 – 02598912 _____ (Microsoft Company) C:Windowssystem32NetworkMobileSettings.dll

2016-05-10 22:11 – 2016-04-23 07:07 – 01500160 _____ (Microsoft Company) C:WindowsSysWOW64urlmon.dll

2016-05-10 22:11 – 2016-04-23 07:06 – 06974464 _____ (Microsoft Company) C:Windowssystem32Windows.Knowledge.Pdf.dll

2016-05-10 22:11 – 2016-04-23 07:05 – 05502976 _____ (Microsoft Company) C:Windowssystem32d2d1.dll

2016-05-10 22:11 – 2016-04-23 07:05 – 02166784 _____ (Microsoft Company) C:Windowssystem32AppXDeploymentServer.dll

2016-05-10 22:11 – 2016-04-23 07:05 – 02066432 _____ (Microsoft Company) C:Windowssystem32AppXDeploymentExtensions.dll

2016-05-10 22:11 – 2016-04-23 07:05 – 01946112 _____ (Microsoft Company) C:Windowssystem32dwmcore.dll

2016-05-10 22:11 – 2016-04-23 07:05 – 01626624 _____ (Microsoft Company) C:WindowsSysWOW64dwmcore.dll

2016-05-10 22:11 – 2016-04-23 07:05 – 00613376 _____ (Microsoft Company) C:Windowssystem32SettingSync.dll

2016-05-10 22:11 – 2016-04-23 07:04 – 04759040 _____ (Microsoft Company) C:WindowsSysWOW64d2d1.dll

2016-05-10 22:11 – 2016-04-23 07:04 – 01731072 _____ (Microsoft Company) C:Windowssystem32urlmon.dll

2016-05-10 22:11 – 2016-04-23 07:03 – 05660160 _____ (Microsoft Company) C:WindowsSysWOW64Chakra.dll

2016-05-10 22:11 – 2016-04-23 07:03 – 04894208 _____ (Microsoft Company) C:Windowssystem32jscript9.dll

2016-05-10 22:11 – 2016-04-23 07:03 – 02280960 _____ (Microsoft Company) C:Windowssystem32wuaueng.dll

2016-05-10 22:11 – 2016-04-23 07:03 – 02000896 _____ (Microsoft Company) C:WindowsSysWOW64twinui.appcore.dll

2016-05-10 22:11 – 2016-04-23 07:03 – 00754176 _____ (Microsoft Company) C:WindowsSysWOW64SettingSyncCore.dll

2016-05-10 22:11 – 2016-04-23 07:02 – 07832576 _____ (Microsoft Company) C:Windowssystem32Chakra.dll

2016-05-10 22:11 – 2016-04-23 07:02 – 02444288 _____ (Microsoft Company) C:Windowssystem32twinui.appcore.dll

2016-05-10 22:11 – 2016-04-23 07:00 – 01390080 _____ (Microsoft Company) C:Windowssystem32Windows.UI.Shell.dll

2016-05-10 22:11 – 2016-04-23 07:00 – 00984576 _____ (Microsoft Company) C:Windowssystem32SettingSyncCore.dll

2016-05-10 22:10 – 2016-05-06 07:53 – 00095072 _____ (Microsoft Company) C:Windowssystem32Driverssdport.sys

2016-05-10 22:10 – 2016-05-06 07:05 – 00241664 _____ (Microsoft Company) C:WindowsSysWOW64cryptngc.dll

2016-05-10 22:10 – 2016-05-06 07:03 – 00649216 _____ (Microsoft Company) C:Windowssystem32ngcsvc.dll

2016-05-10 22:10 – 2016-05-06 06:53 – 00351232 _____ (Microsoft Company) C:Windowssystem32NgcCtnr.dll

2016-05-10 22:10 – 2016-05-06 06:49 – 00289792 _____ (Microsoft Company) C:Windowssystem32NgcCtnrSvc.dll

2016-05-10 22:10 – 2016-05-06 06:44 – 00582656 _____ (Microsoft Company) C:Windowssystem32ngccredprov.dll

2016-05-10 22:10 – 2016-05-06 06:43 – 00320000 _____ (Microsoft Company) C:Windowssystem32cryptngc.dll

2016-05-10 22:10 – 2016-05-06 06:23 – 00076288 _____ (Microsoft Company) C:Windowssystem32ngcpopkeysrv.dll

2016-05-10 22:10 – 2016-04-23 09:12 – 00092352 _____ (Microsoft Company) C:Windowssystem32acmigration.dll

2016-05-10 22:10 – 2016-04-23 08:26 – 00707608 _____ (Microsoft Company) C:WindowsSysWOW64rpcrt4.dll

2016-05-10 22:10 – 2016-04-23 08:24 – 00638816 _____ (Microsoft Company) C:Windowssystem32Driversfvevol.sys

2016-05-10 22:10 – 2016-04-23 08:24 – 00335712 _____ (Microsoft Company) C:Windowssystem32Driversfastfat.sys

2016-05-10 22:10 – 2016-04-23 08:24 – 00099680 _____ (Microsoft Company) C:Windowssystem32Driverspdc.sys

2016-05-10 22:10 – 2016-04-23 08:22 – 01161120 _____ (Microsoft Company) C:Windowssystem32rpcrt4.dll

2016-05-10 22:10 – 2016-04-23 08:18 – 00026408 _____ (Microsoft Company) C:Windowssystem32wuauclt.exe

2016-05-10 22:10 – 2016-04-23 08:13 – 00502104 _____ (Microsoft Company) C:WindowsSysWOW64NetSetupEngine.dll

2016-05-10 22:10 – 2016-04-23 08:13 – 00306832 _____ (Microsoft Company) C:WindowsSysWOW64wlanapi.dll

2016-05-10 22:10 – 2016-04-23 08:13 – 00084832 _____ (Microsoft Company) C:WindowsSysWOW64NetSetupApi.dll

2016-05-10 22:10 – 2016-04-23 08:12 – 00413536 _____ (Microsoft Company) C:Windowssystem32wifitask.exe

2016-05-10 22:10 – 2016-04-23 08:11 – 00696672 _____ (Microsoft Company) C:Windowssystem32NetSetupEngine.dll

2016-05-10 22:10 – 2016-04-23 08:11 – 00390496 _____ (Microsoft Company) C:Windowssystem32wlanapi.dll

2016-05-10 22:10 – 2016-04-23 08:11 – 00131424 _____ (Microsoft Company) C:Windowssystem32Driversufxsynopsys.sys

2016-05-10 22:10 – 2016-04-23 08:11 – 00115040 _____ (Microsoft Company) C:Windowssystem32NetSetupApi.dll

2016-05-10 22:10 – 2016-04-23 08:10 – 00330072 _____ (Microsoft Company) C:Windowssystem32Driverspci.sys

2016-05-10 22:10 – 2016-04-23 08:09 – 00569744 _____ (Microsoft Company) C:WindowsSysWOW64SHCore.dll

2016-05-10 22:10 – 2016-04-23 08:09 – 00565600 _____ (Microsoft Company) C:Windowssystem32SettingSyncHost.exe

2016-05-10 22:10 – 2016-04-23 08:09 – 00465760 _____ (Microsoft Company) C:WindowsSysWOW64SettingSyncHost.exe

2016-05-10 22:10 – 2016-04-23 08:09 – 00255168 _____ (Microsoft Company) C:WindowsSysWOW64LockAppHost.exe

2016-05-10 22:10 – 2016-04-23 08:08 – 00725776 _____ (Microsoft Company) C:Windowssystem32SHCore.dll

2016-05-10 22:10 – 2016-04-23 08:07 – 01848072 _____ (Microsoft Company) C:Windowssystem32crypt32.dll

2016-05-10 22:10 – 2016-04-23 08:07 – 01536088 _____ (Microsoft Company) C:WindowsSysWOW64crypt32.dll

2016-05-10 22:10 – 2016-04-23 08:07 – 00204048 _____ (Microsoft Company) C:Windowssystem32rsaenh.dll

2016-05-10 22:10 – 2016-04-23 08:07 – 00183904 _____ (Microsoft Company) C:WindowsSysWOW64rsaenh.dll

2016-05-10 22:10 – 2016-04-23 08:06 – 00291360 _____ (Microsoft Company) C:Windowssystem32wininit.exe

2016-05-10 22:10 – 2016-04-23 08:02 – 00188256 _____ (Microsoft Company) C:WindowsSysWOW64AppxAllUserStore.dll

2016-05-10 22:10 – 2016-04-23 08:01 – 00619296 _____ (Microsoft Company) C:Windowssystem32d3d10level9.dll

2016-05-10 22:10 – 2016-04-23 08:01 – 00513368 _____ (Microsoft Company) C:WindowsSysWOW64d3d10level9.dll

2016-05-10 22:10 – 2016-04-23 08:01 – 00393568 _____ (Microsoft Company) C:Windowssystem32Driversdxgmms1.sys

2016-05-10 22:10 – 2016-04-23 08:01 – 00217440 _____ (Microsoft Company) C:Windowssystem32AppxAllUserStore.dll

2016-05-10 22:10 – 2016-04-23 08:00 – 01776768 _____ (Microsoft Company) C:Windowssystem32WindowsCodecs.dll

2016-05-10 22:10 – 2016-04-23 08:00 – 01594920 _____ (Microsoft Company) C:Windowssystem32gdi32.dll

2016-05-10 22:10 – 2016-04-23 08:00 – 01522152 _____ (Microsoft Company) C:WindowsSysWOW64WindowsCodecs.dll

2016-05-10 22:10 – 2016-04-23 08:00 – 01399224 _____ (Microsoft Company) C:Windowssystem32user32.dll

2016-05-10 22:10 – 2016-04-23 08:00 – 01337240 _____ (Microsoft Company) C:WindowsSysWOW64user32.dll

2016-05-10 22:10 – 2016-04-23 08:00 – 00550656 _____ (Microsoft Company) C:Windowssystem32directmanipulation.dll

2016-05-10 22:10 – 2016-04-23 08:00 – 00453472 _____ (Microsoft Company) C:WindowsSysWOW64directmanipulation.dll

2016-05-10 22:10 – 2016-04-23 08:00 – 00058208 _____ (Microsoft Company) C:Windowssystem32dwminit.dll

2016-05-10 22:10 – 2016-04-23 07:56 – 00534872 _____ (Microsoft Company) C:Windowssystem32DriversUSBHUB3.SYS

2016-05-10 22:10 – 2016-04-23 07:35 – 00066560 _____ (Microsoft Company) C:Windowssystem32MosHostClient.dll

2016-05-10 22:10 – 2016-04-23 07:34 – 00067072 _____ (Microsoft Company) C:Windowssystem32Driversusbser.sys

2016-05-10 22:10 – 2016-04-23 07:34 – 00059392 _____ (Microsoft Company) C:Windowssystem32hmkd.dll

2016-05-10 22:10 – 2016-04-23 07:34 – 00048128 _____ (Microsoft Company) C:Windowssystem32wups.dll

2016-05-10 22:10 – 2016-04-23 07:33 – 00089600 _____ (Microsoft Company) C:Windowssystem32NFCProvisioningPlugin.dll

2016-05-10 22:10 – 2016-04-23 07:33 – 00063488 _____ (Microsoft Company) C:Windowssystem32wshbth.dll

2016-05-10 22:10 – 2016-04-23 07:33 – 00063488 _____ (Microsoft Company) C:Windowssystem32DriversUcmCx.sys

2016-05-10 22:10 – 2016-04-23 07:33 – 00038400 _____ (Microsoft Company) C:Windowssystem32ByteCodeGenerator.exe

2016-05-10 22:10 – 2016-04-23 07:32 – 00134656 _____ (Microsoft Company) C:Windowssystem32wificonnapi.dll

2016-05-10 22:10 – 2016-04-23 07:32 – 00069632 _____ (Microsoft Company) C:Windowssystem32EnterpriseDesktopAppMgmtCSP.dll

2016-05-10 22:10 – 2016-04-23 07:30 – 00050176 _____ (Microsoft Company) C:WindowsSysWOW64MosHostClient.dll

2016-05-10 22:10 – 2016-04-23 07:29 – 00192000 _____ (Microsoft Company) C:Windowssystem32provisioningcsp.dll

2016-05-10 22:10 – 2016-04-23 07:29 – 00151040 _____ (Microsoft Company) C:Windowssystem32VEStoreEventHandlers.dll

2016-05-10 22:10 – 2016-04-23 07:29 – 00087552 _____ (Microsoft Company) C:Windowssystem32Driversfilecrypt.sys

2016-05-10 22:10 – 2016-04-23 07:29 – 00087040 _____ (Microsoft Company) C:Windowssystem32MDMAppInstaller.exe

2016-05-10 22:10 – 2016-04-23 07:29 – 00047104 _____ (Microsoft Company) C:WindowsSysWOW64hmkd.dll

2016-05-10 22:10 – 2016-04-23 07:29 – 00031232 _____ (Microsoft Company) C:WindowsSysWOW64ByteCodeGenerator.exe

2016-05-10 22:10 – 2016-04-23 07:29 – 00023552 _____ (Microsoft Company) C:WindowsSysWOW64wups.dll

2016-05-10 22:10 – 2016-04-23 07:28 – 00130560 _____ (Microsoft Company) C:Windowssystem32CloudDomainJoinDataModelServer.dll

2016-05-10 22:10 – 2016-04-23 07:28 – 00127488 _____ (Microsoft Company) C:Windowssystem32VEDataLayerHelpers.dll

2016-05-10 22:10 – 2016-04-23 07:28 – 00104448 _____ (Microsoft Company) C:Windowssystem32BluetoothApis.dll

2016-05-10 22:10 – 2016-04-23 07:28 – 00086528 _____ (Microsoft Company) C:Windowssystem32AppCapture.dll

2016-05-10 22:10 – 2016-04-23 07:28 – 00051712 _____ (Microsoft Company) C:WindowsSysWOW64wshbth.dll

2016-05-10 22:10 – 2016-04-23 07:27 – 00155136 _____ (Microsoft Company) C:Windowssystem32Drivershidclass.sys

2016-05-10 22:10 – 2016-04-23 07:27 – 00039424 _____ (Microsoft Company) C:WindowsSysWOW64wfdprov.dll

2016-05-10 22:10 – 2016-04-23 07:26 – 00086528 _____ (Microsoft Company) C:Windowssystem32wpdbusenum.dll

2016-05-10 22:10 – 2016-04-23 07:25 – 00630784 _____ (Microsoft Company) C:Windowssystem32PhoneProviders.dll

2016-05-10 22:10 – 2016-04-23 07:25 – 00617984 _____ (Microsoft Company) C:Windowssystem32StorSvc.dll

2016-05-10 22:10 – 2016-04-23 07:25 – 00210432 _____ (Microsoft Company) C:Windowssystem32wcmcsp.dll

2016-05-10 22:10 – 2016-04-23 07:25 – 00207360 _____ (Microsoft Company) C:Windowssystem32NetSetupSvc.dll

2016-05-10 22:10 – 2016-04-23 07:24 – 00764928 _____ (Microsoft Company) C:Windowssystem32Chakradiag.dll

2016-05-10 22:10 – 2016-04-23 07:24 – 00292864 _____ (Microsoft Company) C:Windowssystem32provengine.dll

2016-05-10 22:10 – 2016-04-23 07:24 – 00287232 _____ (Microsoft Company) C:Windowssystem32provhandlers.dll

2016-05-10 22:10 – 2016-04-23 07:24 – 00181248 _____ (Microsoft Company) C:Windowssystem32shacct.dll

2016-05-10 22:10 – 2016-04-23 07:24 – 00166400 _____ (Microsoft Company) C:Windowssystem32SubscriptionMgr.dll

2016-05-10 22:10 – 2016-04-23 07:24 – 00084480 _____ (Microsoft Company) C:WindowsSysWOW64VEDataLayerHelpers.dll

2016-05-10 22:10 – 2016-04-23 07:23 – 00414720 _____ (Microsoft Company) C:Windowssystem32bcastdvr.exe

2016-05-10 22:10 – 2016-04-23 07:23 – 00279040 _____ (Microsoft Company) C:Windowssystem32ListSvc.dll

2016-05-10 22:10 – 2016-04-23 07:23 – 00179712 _____ (Microsoft Company) C:Windowssystem32BrowserSettingSync.dll

2016-05-10 22:10 – 2016-04-23 07:23 – 00080896 _____ (Microsoft Company) C:WindowsSysWOW64BluetoothApis.dll

2016-05-10 22:10 – 2016-04-23 07:22 – 00285696 _____ (Microsoft Company) C:Windowssystem32VEEventDispatcher.dll

2016-05-10 22:10 – 2016-04-23 07:21 – 00479232 _____ (Microsoft Company) C:Windowssystem32schannel.dll

2016-05-10 22:10 – 2016-04-23 07:21 – 00314880 _____ (Microsoft Company) C:Windowssystem32RDXTaskFactory.dll

2016-05-10 22:10 – 2016-04-23 07:20 – 00497152 _____ (Microsoft Company) C:Windowssystem32tileobjserver.dll

2016-05-10 22:10 – 2016-04-23 07:20 – 00484352 _____ (Microsoft Company) C:Windowssystem32DataSenseHandlers.dll

2016-05-10 22:10 – 2016-04-23 07:20 – 00356864 _____ (Microsoft Company) C:Windowssystem32ActivationManager.dll

2016-05-10 22:10 – 2016-04-23 07:20 – 00307200 _____ (Microsoft Company) C:WindowsSysWOW64ieproxy.dll

2016-05-10 22:10 – 2016-04-23 07:20 – 00137728 _____ (Microsoft Company) C:WindowsSysWOW64shacct.dll

2016-05-10 22:10 – 2016-04-23 07:19 – 00395264 _____ (Microsoft Company) C:WindowsSysWOW64wlansec.dll

2016-05-10 22:10 – 2016-04-23 07:19 – 00140800 _____ (Microsoft Company) C:WindowsSysWOW64BrowserSettingSync.dll

2016-05-10 22:10 – 2016-04-23 07:18 – 00988672 _____ (Microsoft Company) C:Windowssystem32SharedStartModel.dll

2016-05-10 22:10 – 2016-04-23 07:18 – 00515072 _____ (Microsoft Company) C:Windowssystem32OneDriveSettingSyncProvider.dll

2016-05-10 22:10 – 2016-04-23 07:18 – 00436736 _____ (Microsoft Company) C:Windowssystem32AppXDeploymentClient.dll

2016-05-10 22:10 – 2016-04-23 07:18 – 00219648 _____ (Microsoft Company) C:WindowsSysWOW64VEEventDispatcher.dll

2016-05-10 22:10 – 2016-04-23 07:17 – 00388608 _____ (Microsoft Company) C:WindowsSysWOW64schannel.dll

2016-05-10 22:10 – 2016-04-23 07:17 – 00337920 _____ (Microsoft Company) C:WindowsSysWOW64wlanmsm.dll

2016-05-10 22:10 – 2016-04-23 07:16 – 00848896 _____ (Microsoft Company) C:Windowssystem32wuapi.dll

2016-05-10 22:10 – 2016-04-23 07:15 – 00400896 _____ (Microsoft Company) C:WindowsSysWOW64OneDriveSettingSyncProvider.dll

2016-05-10 22:10 – 2016-04-23 07:14 – 00503296 _____ (Microsoft Company) C:WindowsSysWOW64vbscript.dll

2016-05-10 22:10 – 2016-04-23 07:14 – 00342528 _____ (Microsoft Company) C:WindowsSysWOW64AppXDeploymentClient.dll

2016-05-10 22:10 – 2016-04-23 07:12 – 00667648 _____ (Microsoft Company) C:WindowsSysWOW64AzureSettingSyncProvider.dll

2016-05-10 22:10 – 2016-04-23 07:07 – 00848896 _____ (Microsoft Company) C:Windowssystem32samsrv.dll

2016-05-10 22:10 – 2016-04-23 07:05 – 00111616 _____ (Microsoft Company) C:Windowssystem32updatepolicy.dll

2016-05-10 22:10 – 2016-04-23 07:05 – 00103936 _____ (Microsoft Company) C:WindowsSysWOW64updatepolicy.dll

2016-05-10 22:10 – 2016-04-23 07:03 – 02193408 _____ (Microsoft Company) C:WindowsSysWOW64actxprxy.dll

2016-05-10 22:10 – 2016-04-23 07:03 – 00503296 _____ (Microsoft Company) C:WindowsSysWOW64SettingSync.dll

2016-05-10 22:10 – 2016-04-23 07:01 – 04775424 _____ (Microsoft Company) C:Windowssystem32actxprxy.dll

2016-05-10 22:10 – 2016-04-23 06:45 – 00461824 _____ (Microsoft Company) C:WindowsSysWOW64CoreMessaging.dll

2016-05-10 22:10 – 2016-04-23 05:10 – 00215040 _____ (Microsoft Company) C:Windowssystem32aepic.dll

2016-05-10 22:10 – 2016-04-23 05:10 – 00002186 _____ C:Windowssystem32AppxProvisioning.xml

2016-05-10 22:10 – 2016-04-19 01:30 – 00002186 _____ C:WindowsSysWOW64AppxProvisioning.xml

2016-05-09 19:33 – 2016-05-09 19:33 – 00000000 ____D C:Program FilesCommon FilesDESIGNER

2016-05-09 19:31 – 2016-05-09 19:31 – 00002557 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsSkype for Enterprise 2016.lnk

See also  MapleStory 2 / Characters

2016-05-09 19:31 – 2016-05-09 19:31 – 00002539 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsOneDrive for Enterprise.lnk

2016-05-09 19:31 – 2016-05-09 19:31 – 00002470 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsWord 2016.lnk

2016-05-09 19:31 – 2016-05-09 19:31 – 00002461 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsPowerPoint 2016.lnk

2016-05-09 19:31 – 2016-05-09 19:31 – 00002441 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAccess 2016.lnk

2016-05-09 19:31 – 2016-05-09 19:31 – 00002432 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsExcel 2016.lnk

2016-05-09 19:31 – 2016-05-09 19:31 – 00002430 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsOutlook 2016.lnk

2016-05-09 19:31 – 2016-05-09 19:31 – 00002406 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsOneNote 2016.lnk

2016-05-09 19:31 – 2016-05-09 19:31 – 00002398 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsPublisher 2016.lnk

2016-05-09 19:31 – 2016-05-09 19:31 – 00000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Workplace 2016 Instruments

2016-05-09 19:31 – 2016-05-09 19:31 – 00000000 ____D C:Program FilesMicrosoft Workplace 15

2016-05-09 01:55 – 2016-04-28 03:59 – 00000215 _____ C:UsersjaakkDocumentsOrigin.VisualElementsManifest.xml

2016-05-07 12:46 – 2016-05-09 19:14 – 00000000 ____D C:Program Information (x86)Mozilla Firefox

2016-05-05 21:27 – 2016-04-14 08:38 – 00113216 _____ (NVIDIA Company) C:Windowssystem32nvaudcap64v.dll

2016-05-05 21:27 – 2016-04-14 08:38 – 00102976 _____ (NVIDIA Company) C:WindowsSysWOW64nvaudcap32v.dll

2016-05-05 19:46 – 2016-05-05 20:32 – 00000000 ____D C:UsersjaakkDocumentsOverwatch

2016-05-04 19:33 – 2016-05-04 19:33 – 00000000 ____D C:UsersjaakkAppDataRoaming.mono

2016-05-04 19:33 – 2016-05-04 19:33 – 00000000 ____D C:UsersjaakkAppDataLocalBlizzard

2016-05-04 19:33 – 2016-05-04 19:33 – 00000000 ____D C:ProgramData.mono

2016-05-04 19:30 – 2016-05-04 19:30 – 00000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsHearthstone

2016-05-04 19:29 – 2016-05-04 19:30 – 00000000 ____D C:Program Information (x86)Hearthstone

2016-05-04 18:52 – 2016-05-16 00:49 – 00000000 ____D C:UsersjaakkAppDataLocalBattle.web

2016-05-04 18:52 – 2016-05-15 16:26 – 00000000 ____D C:Program Information (x86)Battle.web

2016-05-04 18:52 – 2016-05-04 18:52 – 00000000 ____D C:UsersjaakkAppDataLocalBlizzard Leisure

2016-05-04 18:52 – 2016-05-04 18:52 – 00000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBattle.web

2016-05-04 18:52 – 2016-05-04 18:52 – 00000000 ____D C:ProgramDataBlizzard Leisure

2016-05-04 18:51 – 2016-05-04 18:59 – 00000000 ____D C:UsersjaakkAppDataRoamingBattle.web

2016-05-04 18:51 – 2016-05-04 18:51 – 00000000 ____D C:ProgramDataBattle.web

2016-05-04 10:02 – 2016-05-14 18:01 – 00000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNVIDIA Company

2016-05-04 10:02 – 2016-05-04 10:25 – 00000000 ____D C:UsersjaakkAppDataLocalNVIDIA

2016-05-04 10:02 – 2016-05-04 10:02 – 00000000 ____D C:UsersjaakkAppDataLocalNVIDIA Company

2016-05-04 10:02 – 2016-05-02 08:39 – 01377800 _____ (NVIDIA Company) C:WindowsSysWOW64nvspcap.dll

2016-05-04 10:02 – 2016-05-02 08:39 – 01316184 _____ (NVIDIA Company) C:WindowsSysWOW64nvspbridge.dll

2016-05-04 10:02 – 2016-05-02 08:38 – 01767944 _____ (NVIDIA Company) C:Windowssystem32nvspcap64.dll

2016-05-04 10:02 – 2016-05-02 08:38 – 01756608 _____ (NVIDIA Company) C:Windowssystem32nvspbridge64.dll

2016-05-04 10:02 – 2016-05-02 08:38 – 00112032 _____ C:Windowssystem32NvRtmpStreamer64.dll

2016-05-04 10:01 – 2016-05-15 16:24 – 00000000 ____D C:ProgramDataNVIDIA

2016-05-04 10:01 – 2016-05-14 18:01 – 00000000 ____D C:ProgramDataNVIDIA Company

2016-05-04 10:01 – 2016-05-10 02:35 – 06369728 _____ (NVIDIA Company) C:Windowssystem32nvcpl.dll

2016-05-04 10:01 – 2016-05-10 02:35 – 02993088 _____ (NVIDIA Company) C:Windowssystem32nvsvc64.dll

2016-05-04 10:01 – 2016-05-10 02:35 – 02563128 _____ (NVIDIA Company) C:Windowssystem32nvsvcr.dll

2016-05-04 10:01 – 2016-05-10 02:35 – 01201600 _____ (NVIDIA Company) C:Windowssystem32nvvsvc.exe

2016-05-04 10:01 – 2016-05-10 02:35 – 00530880 _____ (NVIDIA Company) C:Windowssystem32nv3dappshext.dll

2016-05-04 10:01 – 2016-05-10 02:35 – 00393784 _____ (NVIDIA Company) C:Windowssystem32nvmctray.dll

2016-05-04 10:01 – 2016-05-10 02:35 – 00083512 _____ (NVIDIA Company) C:Windowssystem32nv3dappshextr.dll

2016-05-04 10:01 – 2016-05-10 02:35 – 00071224 _____ (NVIDIA Company) C:Windowssystem32nvshext.dll

2016-05-04 10:01 – 2016-05-08 00:24 – 06423191 _____ C:Windowssystem32nvcoproc.bin

2016-05-04 10:01 – 2016-05-04 10:02 – 00000000 ____D C:Program Information (x86)NVIDIA Company

2016-05-04 10:01 – 2016-04-27 17:33 – 00215608 _____ (Khronos Group) C:Windowssystem32OpenCL.dll

2016-05-04 10:01 – 2016-04-27 17:33 – 00203320 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll

2016-05-04 10:00 – 2016-05-13 07:58 – 12643392 _____ (NVIDIA Company) C:Windowssystem32Driversnvlddmkm.sys

2016-05-04 10:00 – 2016-05-10 07:05 – 20078656 _____ (NVIDIA Company) C:Windowssystem32nvwgf2umx.dll

2016-05-04 10:00 – 2016-05-10 07:05 – 17332320 _____ (NVIDIA Company) C:WindowsSysWOW64nvwgf2um.dll

2016-05-04 10:00 – 2016-05-10 07:05 – 14227696 _____ (NVIDIA Company) C:WindowsSysWOW64nvd3dum.dll

2016-05-04 10:00 – 2016-05-10 07:05 – 03685280 _____ (NVIDIA Company) C:Windowssystem32nvapi64.dll

2016-05-04 10:00 – 2016-05-10 07:05 – 03262968 _____ (NVIDIA Company) C:WindowsSysWOW64nvapi.dll

2016-05-04 10:00 – 2016-05-10 07:05 – 00753208 _____ (NVIDIA Company) C:WindowsSysWOW64NvFBC.dll

2016-05-04 10:00 – 2016-05-10 07:05 – 00038050 _____ C:Windowssystem32nvinfo.pb

2016-05-04 10:00 – 2016-05-04 10:02 – 00000000 ____D C:Program FilesNVIDIA Company

2016-05-04 10:00 – 2016-04-27 17:33 – 01922496 _____ (NVIDIA Company) C:Windowssystem32nvdispco6436510.dll

2016-05-04 10:00 – 2016-04-27 17:33 – 01573432 _____ (NVIDIA Company) C:Windowssystem32nvdispgenco6436510.dll

2016-05-04 10:00 – 2016-04-27 17:33 – 01572496 _____ (NVIDIA Company) C:Windowssystem32nvhdagenco6420103.dll

2016-05-04 10:00 – 2016-04-27 17:33 – 00205456 _____ (NVIDIA Company) C:Windowssystem32Driversnvhda64v.sys

2016-05-04 10:00 – 2016-04-27 17:33 – 00039240 _____ (NVIDIA Company) C:Windowssystem32nvhdap64.dll

2016-05-04 10:00 – 2016-04-14 08:38 – 00056384 _____ (NVIDIA Company) C:Windowssystem32Driversnvvad64v.sys

2016-05-04 09:56 – 2016-05-04 09:58 – 00209242 _____ C:Windowsntbtlog.txt

2016-05-04 09:03 – 2016-05-14 18:01 – 00000000 ____D C:Program Information (x86)VulkanRT

2016-05-04 05:23 – 2016-05-04 05:23 – 00129824 _____ C:WindowsSysWOW64vulkan-1-1-0-11-1.dll

2016-05-04 05:22 – 2016-05-04 05:22 – 00130848 _____ C:Windowssystem32vulkan-1-1-0-11-1.dll

2016-05-04 05:22 – 2016-05-04 05:22 – 00045344 _____ C:Windowssystem32vulkaninfo-1-1-0-11-1.exe

2016-05-04 05:22 – 2016-05-04 05:22 – 00040224 _____ C:WindowsSysWOW64vulkaninfo-1-1-0-11-1.exe

2016-04-30 15:32 – 2016-04-30 15:32 – 00036312 _____ (The OpenVPN Undertaking) C:Windowssystem32Driversfsfreedometap.sys

2016-04-30 15:32 – 2016-04-30 15:32 – 00000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFreedome

2016-04-30 15:32 – 2016-04-30 15:32 – 00000000 ____D C:Program Information (x86)F-Safe

2016-04-30 15:30 – 2016-04-30 15:32 – 00000000 ____D C:ProgramDataF-Safe

2016-04-24 04:27 – 2016-04-24 04:27 – 00000000 ____D C:UsersjaakkAppDataRoamingMicrosoftWindowsStart MenuProgramsSteelSeries

2016-04-22 17:47 – 2016-04-24 04:25 – 00000000 ____D C:WindowsCnxt

2016-04-22 17:47 – 2016-04-24 04:25 – 00000000 ____D C:ProgramDataConexant

2016-04-17 00:13 – 2016-05-13 21:13 – 00000000 ____D C:UsersjaakkDocumentsDark Souls 3 Again up

 

==================== One Month Modified recordsdata and folders ========

 

(If an entry is included within the fixlist, the file/folder can be moved.)

 

2016-05-16 00:37 – 2016-01-22 05:22 – 00001030 _____ C:WindowsTasksGoogleUpdateTaskMachineUA.job

2016-05-16 00:26 – 2016-01-24 20:18 – 00000000 ____D C:UsersjaakkAppDataRoamingSkype

2016-05-16 00:25 – 2016-01-22 05:42 – 00000000 ____D C:UsersjaakkAppDataRoamingSpotify

2016-05-15 23:59 – 2016-01-22 23:09 – 00004168 _____ C:WindowsSystem32TasksUser_Feed_Synchronization-{D6B483A8-2B85-4D9D-90C4-AFF2DA13E7FD}

2016-05-15 20:11 – 2016-01-22 05:41 – 00000000 ____D C:Program Information (x86)Steam

2016-05-15 20:10 – 2016-01-22 05:55 – 00192216 _____ (Malwarebytes) C:Windowssystem32DriversMBAMSwissArmy.sys

2016-05-15 19:05 – 2016-04-09 10:41 – 00000000 ____D C:ProgramDataMalwarebytes Anti-Exploit

2016-05-15 16:36 – 2016-01-23 03:10 – 00000000 ____D C:UsersjaakkAppDataLocalCrashDumps

2016-05-15 16:35 – 2015-10-30 10:24 – 00000000 ____D C:WindowsAppReadiness

2016-05-15 16:30 – 2016-01-22 05:19 – 01383594 _____ C:Windowssystem32PerfStringBackup.INI

2016-05-15 16:30 – 2015-10-30 21:02 – 00435198 _____ C:Windowssystem32perfh00B.dat

2016-05-15 16:30 – 2015-10-30 21:02 – 00081386 _____ C:Windowssystem32perfc00B.dat

2016-05-15 16:30 – 2015-10-30 10:21 – 00000000 ____D C:WindowsINF

2016-05-15 16:25 – 2016-01-22 07:08 – 00000000 ____D C:ProgramDataOrigin

2016-05-15 16:25 – 2016-01-22 05:42 – 00000000 ____D C:UsersjaakkAppDataLocalSpotify

2016-05-15 16:25 – 2016-01-22 05:22 – 00001026 _____ C:WindowsTasksGoogleUpdateTaskMachineCore.job

2016-05-15 16:24 – 2016-01-22 05:13 – 00000000 ____D C:Usersjaakk

2016-05-15 16:24 – 2016-01-22 05:10 – 00000006 ____H C:WindowsTasksSA.DAT

2016-05-15 16:24 – 2015-10-30 09:28 – 00524288 ___SH C:Windowssystem32configBBI

2016-05-14 19:09 – 2016-01-22 22:28 – 00000000 ____D C:UsersjaakkDocumentsThe Witcher 3

2016-05-14 18:03 – 2016-01-22 05:17 – 00000000 ___RD C:UsersjaakkOneDrive

2016-05-14 17:47 – 2015-10-30 10:24 – 00000000 ___HD C:Program FilesWindowsApps

2016-05-14 17:27 – 2016-04-02 00:52 – 00000000 ____D C:UsersjaakkDocumentsDnD

2016-05-14 04:15 – 2015-10-30 10:11 – 00000000 ____D C:WindowsCbsTemp

2016-05-13 23:49 – 2015-10-30 10:24 – 00000000 ____D C:Windowsrescache

2016-05-13 17:49 – 2016-01-27 17:48 – 00000000 ____D C:UsersjaakkAppDataRoamingvlc

2016-05-13 03:37 – 2016-01-22 05:22 – 00002269 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk

2016-05-12 17:31 – 2016-01-22 07:25 – 00000000 ____D C:Program Information (x86)GalaxyClient

2016-05-11 22:57 – 2015-10-30 10:26 – 00829944 _____ (Adobe Methods Integrated) C:WindowsSysWOW64FlashPlayerApp.exe

2016-05-11 22:57 – 2015-10-30 10:26 – 00176632 _____ (Adobe Methods Integrated) C:WindowsSysWOW64FlashPlayerCPLApp.cpl

2016-05-11 16:03 – 2016-01-22 05:43 – 00000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAvira

2016-05-11 16:03 – 2016-01-22 05:18 – 00000000 ____D C:ProgramDataPackage Cache

2016-05-11 01:32 – 2016-01-22 05:22 – 00004088 _____ C:WindowsSystem32TasksGoogleUpdateTaskMachineUA

2016-05-11 01:32 – 2016-01-22 05:22 – 00003856 _____ C:WindowsSystem32TasksGoogleUpdateTaskMachineCore

2016-05-10 22:21 – 2016-01-22 05:15 – 00000000 __RHD C:UsersPublicAccountPictures

2016-05-10 22:19 – 2015-10-30 21:04 – 00000000 ____D C:Program FilesWindows Journal

2016-05-10 22:19 – 2015-10-30 10:24 – 00015703 _____ C:Windowssystem32OEMDefaultAssociations.xml

2016-05-10 22:19 – 2015-10-30 10:24 – 00000000 ____D C:Windowssystem32oobe

2016-05-10 22:19 – 2015-10-30 10:24 – 00000000 ____D C:Windowssystem32appraiser

2016-05-10 22:19 – 2015-10-30 10:24 – 00000000 ____D C:WindowsProvisioning

2016-05-10 22:19 – 2015-10-30 10:24 – 00000000 ____D C:Windowsbcastdvr

2016-05-10 22:15 – 2016-01-22 06:06 – 00000000 ____D C:Windowssystem32MRT

2016-05-10 22:11 – 2016-01-22 06:06 – 139319312 _____ (Microsoft Company) C:Windowssystem32MRT.exe

2016-05-10 15:16 – 2016-01-22 05:15 – 00000000 ____D C:UsersjaakkAppDataLocalPackages

2016-05-09 21:38 – 2016-01-23 02:46 – 00000000 ____D C:Program FilesMicrosoft Workplace

2016-05-09 21:22 – 2016-01-22 05:09 – 00352104 _____ C:Windowssystem32FNTCACHE.DAT

2016-05-09 19:33 – 2015-10-30 10:24 – 00000000 ____D C:ProgramDataregid.1991-06.com.microsoft

2016-05-09 19:33 – 2015-10-30 10:24 – 00000000 ____D C:Program FilesCommon Filesmicrosoft shared

2016-05-09 19:14 – 2016-01-22 05:41 – 00000000 ____D C:Program Information (x86)Mozilla Upkeep Service

2016-05-09 01:55 – 2016-01-22 07:07 – 00000000 ____D C:Program Information (x86)Origin

2016-05-08 22:06 – 2016-01-22 07:54 – 00000000 ____D C:UsersjaakkAppDataRoamingdeluge

2016-05-06 12:01 – 2016-04-09 10:41 – 00000000 ____D C:Program Information (x86)Malwarebytes Anti-Exploit

2016-05-05 23:41 – 2016-04-09 10:41 – 00000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes Anti-Exploit

2016-05-04 17:39 – 2015-10-30 10:24 – 00000000 ____D C:Windowssystem32NDF

2016-05-04 11:40 – 2016-01-22 05:22 – 00000000 ____D C:UsersjaakkAppDataLocalGoogle

2016-05-04 11:40 – 2016-01-22 05:22 – 00000000 ____D C:Program Information (x86)Google

2016-05-04 10:01 – 2015-10-30 10:24 – 00000000 ____D C:WindowsHelp

2016-05-04 09:58 – 2016-02-11 15:51 – 00000214 _____ C:WindowsTasksCreateExplorerShellUnelevatedTask.job

2016-05-04 09:57 – 2016-02-11 15:51 – 00189112 _____ (Energy Admin LLC) C:WindowsPAExec.exe

2016-05-04 09:34 – 2016-01-22 10:40 – 00000000 ____D C:UsersjaakkAppDataLocalElevatedDiagnostics

2016-04-26 04:40 – 2016-01-22 05:17 – 00002390 _____ C:UsersjaakkAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk

2016-04-24 04:27 – 2016-01-23 04:41 – 00000000 ____D C:UsersjaakkAppDataRoamingSteelSeries

2016-04-24 04:27 – 2016-01-23 04:41 – 00000000 ____D C:UsersjaakkAppDataLocalSteelSeries_ApS

2016-04-24 04:27 – 2016-01-22 07:45 – 00000000 ____D C:ProgramDataSteelSeries

2016-04-24 04:27 – 2016-01-22 07:45 – 00000000 ____D C:Program FilesSteelSeries

2016-04-22 18:02 – 2016-03-23 15:02 – 00000000 ___RD C:Program Information (x86)Skype

2016-04-22 18:02 – 2016-01-22 05:42 – 00000000 ____D C:ProgramDataSkype

2016-04-20 01:09 – 2016-01-31 23:49 – 00000000 ____D C:ProgramDataHitmanPro

 

==================== Information within the root of some directories =======

 

2016-05-13 16:34 – 2016-05-13 16:34 – 0000218 _____ () C:UsersjaakkAppDataLocalrecently-used.xbel

 

Some recordsdata in TEMP:

====================

C:UsersjaakkAppDataLocalTempavgnt.exe

C:UsersjaakkAppDataLocalTempdllnt_dump.dll

C:UsersjaakkAppDataLocalTempKUIU.EXE

C:UsersjaakkAppDataLocalTempnvSCPAPI.dll

C:UsersjaakkAppDataLocalTempnvSCPAPI64.dll

C:UsersjaakkAppDataLocalTempnvStInst.exe

C:UsersjaakkAppDataLocalTempSkypeSetup.exe

C:UsersjaakkAppDataLocalTempsonarinst.exe

C:UsersjaakkAppDataLocalTempx2blapi.dll

C:UsersjaakkAppDataLocalTempxmlUpdater.exe

 

 

==================== Bamital & volsnap =================

 

(There isn’t any automated repair for recordsdata that don’t move verification.)

 

C:Windowssystem32winlogon.exe => File is digitally signed

C:Windowssystem32wininit.exe => File is digitally signed

C:Windowsexplorer.exe => File is digitally signed

C:WindowsSysWOW64explorer.exe => File is digitally signed

C:Windowssystem32svchost.exe => File is digitally signed

C:WindowsSysWOW64svchost.exe => File is digitally signed

C:Windowssystem32services.exe => File is digitally signed

C:Windowssystem32User32.dll => File is digitally signed

C:WindowsSysWOW64User32.dll => File is digitally signed

C:Windowssystem32userinit.exe => File is digitally signed

C:WindowsSysWOW64userinit.exe => File is digitally signed

C:Windowssystem32rpcss.dll => File is digitally signed

C:Windowssystem32dnsapi.dll => File is digitally signed

C:WindowsSysWOW64dnsapi.dll => File is digitally signed

C:Windowssystem32Driversvolsnap.sys => File is digitally signed

 

 

LastRegBack: 2016-05-08 10:01

 

==================== Finish of FRST.txt ============================

Edited by JaskaTheK9, 15 Might 2016 – 05:23 PM.

Leave a Reply

Your email address will not be published.