Just nu i M3-nätverket
Gå till innehåll

Vad är JS/TechBrolo.f för något.


The OldBoy

Rekommendera Poster

Hejsan!

 

När jag var i Norge i veckan så skulle dottern titta på någon film på nätet och då pep datorn till, varpå sambon körde MSE som hittade denna fil.

 

När jag sedan kom hem så körde jag Mbam den hittade ingenting, nu har datorn uppdaterat Windows och då vid omstarten så hade MSE avaktiverats så då är ju min fundering om det är nå skit kvar?

 

Min logg.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21.07.2018
Ran by Robert (administrator) on LARSSONS (26-07-2018 04:10:42)
Running from C:\Users\Robert\Desktop
Loaded Profiles: Robert (Available Profiles: Robert & Kicki & Jonatan & Sanna)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Svenska (Sverige)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\ProgramData\MobileBrServ\mbbService.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
() C:\Program Files (x86)\HP HD Webcam Driver\Monitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-03-05] (IDT, Inc.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-08-08] (Atheros Communications)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [763520 2012-08-08] (Qualcomm Atheros)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-03-01] (Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation)
HKLM-x32\...\Run: [AMD AVT] => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [636032 2012-03-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [105120 2012-08-21] (PC Tools)
HKLM-x32\...\Run: [HP HD Webcam Driver_Monitor] => C:\Program Files (x86)\HP HD Webcam Driver\monitor.exe [303480 2012-07-26] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3754168 2018-07-13] (Dropbox, Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP: C:\Windows\SysWOW64\DeviceNP.dll [2012-01-31] (Hewlett-Packard Company)
HKU\S-1-5-21-2840372283-3277346836-1678619748-1002\...\Run: [Facebook Update] => C:\Users\Robert\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-12-14] (Facebook Inc.)
HKU\S-1-5-21-2840372283-3277346836-1678619748-1002\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2840372283-3277346836-1678619748-1002\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-2840372283-3277346836-1678619748-1002\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-2840372283-3277346836-1678619748-1002\...\MountPoints2: {91b23c91-0cd2-11e4-af7b-20689d875c02} - D:\Startme.exe
HKU\S-1-5-21-2840372283-3277346836-1678619748-1002\...\MountPoints2: {cd044407-84b3-11e6-8f68-20689d875c02} - D:\AutoRun.exe
HKU\S-1-5-21-2840372283-3277346836-1678619748-1002\...\MountPoints2: {ee045f60-b87f-11e6-b2ca-20689d875c02} - D:\startme.exe
Lsa: [Notification Packages] DPPassFilter scecli
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
GroupPolicyUsers\S-1-5-21-2840372283-3277346836-1678619748-1006\User: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{15C9309F-2D61-4493-A2EB-A27D30C302E8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{828A6D20-85FA-4808-972E-8631BFCEAF38}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{C2169304-81CF-4364-BABE-34D00756F2CD}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D3DCA75A-2147-45E5-B180-A7F3C0033D9D}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{FA9E7353-C6A5-48D6-BCB0-6A9E1FE66DFE}: [DhcpNameServer] 192.168.8.1 192.168.8.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-e64618d9
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-5204772c&q={searchTerms}
SearchScopes: HKLM-x32 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-435b79d8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2840372283-3277346836-1678619748-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-08] (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-03-22] (Hewlett-Packard)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-02-21] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-02-21] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\knwsqase.default-1473547257397 [2018-07-26]
FF Homepage: Mozilla\Firefox\Profiles\knwsqase.default-1473547257397 -> hxxps://www.facebook.com/
hxxps://www.blocket.se/gallivare?q=outback&cg=1020&w=3&st=s&ps=&pe=&mys=2015&mye=&ms=&me=&cxpf=&cxpt=&fu=2&gb=&ca=1_4&is=1&l=0&md=th
hxxp://www.nsd.se/nyheter/
FF Extension: (WebCompat Reporter) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-07-08] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2012-09-26] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll [2018-02-07] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_161.dll [2018-02-07] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-21] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2840372283-3277346836-1678619748-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Robert\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-2840372283-3277346836-1678619748-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Robert\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-02-20] (Unity Technologies ApS)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR Profile: C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default [2018-02-21]
CHR Extension: (Google Presentationer) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-31]
CHR Extension: (Google Dokument) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-31]
CHR Extension: (Google Drive) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-31]
CHR Extension: (YouTube) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-31]
CHR Extension: (Google Kalkylark) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-31]
CHR Extension: (Google Dokument Offline) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-31]
CHR Extension: (Betalning via Chrome Web Store) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-31]
CHR Extension: (Gmail) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-31]
CHR Extension: (Chrome Media Router) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-31]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211072 2012-08-08] (Qualcomm Atheros Commnucations) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5745672 2018-05-24] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-26] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-26] (Dropbox, Inc.)
R2 DbxSvc; C:\windows\system32\DbxSvc.exe [51392 2018-07-13] (Dropbox, Inc.)
S2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [493904 2012-03-15] (DigitalPersona, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-05-24] (EasyAntiCheat Ltd)
S4 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [477056 2012-01-31] (Hewlett-Packard Company)
S4 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-17] (Hewlett-Packard)
S4 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [365440 2012-03-14] (Hewlett-Packard Company)
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [387144 2016-02-04] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165144 2012-03-28] (Intel Corporation)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S4 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2012-03-22] () [File not signed]
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [239184 2014-02-15] ()
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
S4 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [794272 2012-08-21] (PC Tools)
S4 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1134584 2012-03-07] (PDF Complete Inc)
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software) [File not signed]
S4 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S4 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [498352 2012-04-05] (ArcSoft, Inc.)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S4 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-08] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\windows\System32\DRIVERS\amdkmpfd.sys [32896 2012-03-20] (Advanced Micro Devices, Inc.)
R1 archlp; C:\windows\System32\drivers\archlp.sys [136192 2010-07-07] ()
R3 ARCVCAM; C:\windows\System32\DRIVERS\ArcSoftVCapture.sys [42816 2012-02-03] (ArcSoft, Inc.)
S3 BTATH_LWFLT; C:\windows\System32\DRIVERS\btath_lwflt.sys [77464 2012-08-08] (Qualcomm Atheros)
S3 DAMDrv; C:\windows\System32\DRIVERS\DAMDrv64.sys [64312 2012-01-31] (Hewlett-Packard Company)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [93640 2012-03-22] (McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158792 2012-03-22] (McAfee, Inc.)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R1 MpKsl2c6abc72; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E89D917D-157B-41C4-9024-E65BB66AEDB4}\MpKsl2c6abc72.sys [58120 2018-07-26] (Microsoft Corporation)
R3 NisDrv; C:\windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2017-03-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
R3 SPUVCbv; C:\windows\System32\Drivers\SPUVCbv_x64.sys [1062008 2012-08-03] (Sunplus)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 Tdsshbecr; C:\windows\System32\DRIVERS\shbecr.sys [50176 2008-09-28] (Todos Data System AB)
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-07-26 04:10 - 2018-07-26 04:12 - 000021859 _____ C:\Users\Robert\Desktop\FRST.txt
2018-07-26 04:10 - 2018-07-26 04:10 - 000000000 ____D C:\FRST
2018-07-26 04:09 - 2018-07-26 04:09 - 002412544 _____ (Farbar) C:\Users\Robert\Desktop\FRST64.exe
2018-07-22 18:09 - 2018-07-22 18:09 - 000000000 ___HD C:\Users\Public\Shared Files
2018-07-22 18:02 - 2018-07-22 18:02 - 000000000 ____D C:\Users\Jonatan\AppData\Roaming\EasyAntiCheat
2018-07-19 15:37 - 2018-06-21 02:58 - 000398376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2018-07-19 15:37 - 2018-06-21 02:00 - 000348824 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2018-07-19 15:37 - 2018-06-16 19:07 - 025743872 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2018-07-19 15:37 - 2018-06-16 18:46 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2018-07-19 15:37 - 2018-06-16 18:46 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2018-07-19 15:37 - 2018-06-16 18:36 - 020286464 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2018-07-19 15:37 - 2018-06-16 18:33 - 002902016 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2018-07-19 15:37 - 2018-06-16 18:32 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2018-07-19 15:37 - 2018-06-16 18:31 - 000576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2018-07-19 15:37 - 2018-06-16 18:31 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2018-07-19 15:37 - 2018-06-16 18:31 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2018-07-19 15:37 - 2018-06-16 18:30 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2018-07-19 15:37 - 2018-06-16 18:27 - 005779968 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2018-07-19 15:37 - 2018-06-16 18:24 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2018-07-19 15:37 - 2018-06-16 18:23 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2018-07-19 15:37 - 2018-06-16 18:20 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2018-07-19 15:37 - 2018-06-16 18:19 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2018-07-19 15:37 - 2018-06-16 18:19 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2018-07-19 15:37 - 2018-06-16 18:19 - 000794624 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2018-07-19 15:37 - 2018-06-16 18:19 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2018-07-19 15:37 - 2018-06-16 18:19 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2018-07-19 15:37 - 2018-06-16 18:12 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2018-07-19 15:37 - 2018-06-16 18:08 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2018-07-19 15:37 - 2018-06-16 18:06 - 000498176 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2018-07-19 15:37 - 2018-06-16 18:06 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2018-07-19 15:37 - 2018-06-16 18:05 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2018-07-19 15:37 - 2018-06-16 18:05 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2018-07-19 15:37 - 2018-06-16 18:04 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2018-07-19 15:37 - 2018-06-16 18:02 - 002295296 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2018-07-19 15:37 - 2018-06-16 18:02 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2018-07-19 15:37 - 2018-06-16 18:02 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2018-07-19 15:37 - 2018-06-16 18:01 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2018-07-19 15:37 - 2018-06-16 17:59 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2018-07-19 15:37 - 2018-06-16 17:59 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2018-07-19 15:37 - 2018-06-16 17:58 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2018-07-19 15:37 - 2018-06-16 17:57 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2018-07-19 15:37 - 2018-06-16 17:57 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2018-07-19 15:37 - 2018-06-16 17:56 - 000662016 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2018-07-19 15:37 - 2018-06-16 17:56 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2018-07-19 15:37 - 2018-06-16 17:55 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2018-07-19 15:37 - 2018-06-16 17:55 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2018-07-19 15:37 - 2018-06-16 17:53 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2018-07-19 15:37 - 2018-06-16 17:47 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2018-07-19 15:37 - 2018-06-16 17:46 - 015283200 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2018-07-19 15:37 - 2018-06-16 17:44 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2018-07-19 15:37 - 2018-06-16 17:42 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2018-07-19 15:37 - 2018-06-16 17:42 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2018-07-19 15:37 - 2018-06-16 17:42 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2018-07-19 15:37 - 2018-06-16 17:42 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-07-19 15:37 - 2018-06-16 17:41 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2018-07-19 15:37 - 2018-06-16 17:40 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2018-07-19 15:37 - 2018-06-16 17:39 - 002135552 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2018-07-19 15:37 - 2018-06-16 17:39 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2018-07-19 15:37 - 2018-06-16 17:38 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2018-07-19 15:37 - 2018-06-16 17:37 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2018-07-19 15:37 - 2018-06-16 17:36 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2018-07-19 15:37 - 2018-06-16 17:34 - 004496384 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2018-07-19 15:37 - 2018-06-16 17:32 - 013680128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2018-07-19 15:37 - 2018-06-16 17:30 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2018-07-19 15:37 - 2018-06-16 17:29 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2018-07-19 15:37 - 2018-06-16 17:28 - 002060288 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2018-07-19 15:37 - 2018-06-16 17:27 - 003241472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2018-07-19 15:37 - 2018-06-16 17:27 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2018-07-19 15:37 - 2018-06-16 17:16 - 001545216 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2018-07-19 15:37 - 2018-06-16 17:08 - 002767872 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2018-07-19 15:37 - 2018-06-16 17:05 - 001313792 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2018-07-19 15:37 - 2018-06-16 17:04 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2018-07-19 15:37 - 2018-06-16 17:04 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2018-07-19 15:37 - 2018-06-13 18:20 - 014185984 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2018-07-19 15:37 - 2018-06-13 18:19 - 001867776 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2018-07-19 15:37 - 2018-06-13 17:55 - 012880384 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2018-07-19 15:37 - 2018-06-13 17:54 - 001499648 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2018-07-19 15:37 - 2018-06-13 17:40 - 003226112 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2018-07-19 15:37 - 2018-06-08 18:27 - 005577408 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2018-07-19 15:37 - 2018-06-08 18:27 - 000708288 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2018-07-19 15:37 - 2018-06-08 18:27 - 000262336 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2018-07-19 15:37 - 2018-06-08 18:27 - 000154816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2018-07-19 15:37 - 2018-06-08 18:27 - 000095424 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2018-07-19 15:37 - 2018-06-08 18:23 - 000631640 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2018-07-19 15:37 - 2018-06-08 18:22 - 001665344 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000369664 _____ (Microsoft Corporation) C:\windows\system32\zipfldr.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 002066432 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 001461760 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 001211904 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 001163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000731648 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000512000 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000357888 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000182272 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:02 - 004050624 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2018-07-19 15:37 - 2018-06-08 18:02 - 003962048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2018-07-19 15:37 - 2018-06-08 17:57 - 001314072 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 001417728 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000554496 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000330240 _____ (Microsoft Corporation) C:\windows\SysWOW64\zipfldr.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000275456 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000269824 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:44 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2018-07-19 15:37 - 2018-06-08 17:44 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2018-07-19 15:37 - 2018-06-08 17:44 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\dnscacheugc.exe
2018-07-19 15:37 - 2018-06-08 17:44 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2018-07-19 15:37 - 2018-06-08 17:43 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2018-07-19 15:37 - 2018-06-08 17:39 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2018-07-19 15:37 - 2018-06-08 17:38 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2018-07-19 15:37 - 2018-06-08 17:38 - 000129024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2018-07-19 15:37 - 2018-06-08 17:34 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2018-07-19 15:37 - 2018-06-08 17:34 - 000159744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2018-07-19 15:37 - 2018-06-08 17:34 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2018-07-19 15:37 - 2018-06-08 17:33 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2018-07-19 15:37 - 2018-06-08 17:33 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2018-07-19 15:37 - 2018-06-08 17:29 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2018-07-19 15:37 - 2018-06-08 17:28 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnscacheugc.exe
2018-07-19 15:37 - 2018-06-08 17:27 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2018-07-19 15:37 - 2018-06-08 17:21 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2018-07-19 15:37 - 2018-06-08 17:21 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2018-07-19 15:37 - 2018-06-08 17:21 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2018-07-19 15:37 - 2018-06-08 17:21 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2018-07-19 15:37 - 2018-06-08 17:19 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2018-07-19 15:37 - 2018-06-08 17:19 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:19 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:19 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-07-19 15:37 - 2018-06-07 18:20 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\wfapigp.dll
2018-07-19 15:37 - 2018-06-07 18:19 - 000828928 _____ (Microsoft Corporation) C:\windows\system32\MPSSVC.dll
2018-07-19 15:37 - 2018-06-07 18:19 - 000749568 _____ (Microsoft Corporation) C:\windows\system32\FirewallAPI.dll
2018-07-19 15:37 - 2018-06-07 18:19 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\icfupgd.dll
2018-07-19 15:37 - 2018-06-07 17:57 - 000463360 _____ (Microsoft Corporation) C:\windows\SysWOW64\FirewallAPI.dll
2018-07-19 15:37 - 2018-06-07 17:49 - 000077312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mpsdrv.sys
2018-07-19 15:37 - 2018-06-07 17:34 - 000018944 _____ (Microsoft Corporation) C:\windows\SysWOW64\wfapigp.dll
2018-07-19 15:37 - 2018-05-31 18:28 - 001893568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2018-07-19 15:37 - 2018-05-31 18:28 - 000377024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2018-07-19 15:37 - 2018-05-31 18:28 - 000287936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2018-07-19 15:37 - 2018-05-02 17:32 - 000344064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000056320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2018-07-19 15:37 - 2018-04-26 15:05 - 000998912 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000918296 _____ (Microsoft Corporation) C:\windows\SysWOW64\ucrtbase.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000065880 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000063832 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000021848 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000020824 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000019288 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000018776 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000017752 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000017752 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000017240 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000017240 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000016216 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000015704 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000015704 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000015192 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000014168 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000014168 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000013152 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012632 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2018-07-19 15:37 - 2018-04-25 18:02 - 000124416 _____ (Microsoft Corporation) C:\windows\system32\wkssvc.dll
2018-07-19 15:37 - 2018-04-25 17:18 - 000115200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2018-07-14 01:18 - 2018-07-14 01:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-07-13 04:01 - 2018-07-13 04:01 - 000051392 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2018-07-13 04:01 - 2018-07-13 04:01 - 000050232 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2018-07-13 04:01 - 2018-07-13 04:01 - 000045672 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2018-07-13 04:01 - 2018-07-13 04:01 - 000045640 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2018-07-12 03:59 - 2018-06-13 18:23 - 000140992 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2018-07-12 03:59 - 2018-06-13 18:18 - 000680960 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 002860032 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2018-07-12 03:59 - 2018-06-08 15:05 - 001602048 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000783872 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000612352 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000470016 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000443392 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000301056 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000246272 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-07-26 04:12 - 2016-01-26 12:46 - 000001004 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2018-07-26 04:00 - 2009-07-14 06:45 - 000031536 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-26 04:00 - 2009-07-14 06:45 - 000031536 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-26 03:58 - 2016-11-25 19:13 - 000000344 _____ C:\windows\Tasks\{2D0E1AE0-044C-4654-803F-7314B2656530}.job
2018-07-26 03:57 - 2016-09-25 13:57 - 000000352 _____ C:\windows\Tasks\{32F8A50F-B0E5-9A67-235D-4D253F24B6EA}.job
2018-07-26 03:51 - 2016-11-19 18:04 - 000000000 ____D C:\Users\Robert\AppData\LocalLow\Mozilla
2018-07-26 02:29 - 2017-03-18 10:55 - 000000270 _____ C:\windows\Tasks\{6E925741-CFD2-85F5-554F-6F5CD46F5BB3}.job
2018-07-26 02:28 - 2017-02-27 18:01 - 000000284 _____ C:\windows\Tasks\{6E3CBFAE-E703-7847-2926-2EAC3FC5C8D5}.job
2018-07-26 02:28 - 2016-11-07 19:59 - 000000338 _____ C:\windows\Tasks\{6525CB6C-7411-A4FD-545C-35E9616A8E43}.job
2018-07-26 02:05 - 2013-12-14 00:00 - 000000932 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2840372283-3277346836-1678619748-1002UA.job
2018-07-26 02:00 - 2012-10-18 00:21 - 000007601 _____ C:\Users\Robert\AppData\Local\Resmon.ResmonCfg
2018-07-26 00:55 - 2012-11-20 03:23 - 000000304 _____ C:\windows\Tasks\RMAutoUpdate.job
2018-07-26 00:55 - 2012-11-20 03:20 - 000000000 ____D C:\ProgramData\TEMP
2018-07-26 00:54 - 2016-01-26 12:46 - 000001000 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2018-07-26 00:54 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2018-07-25 04:41 - 2012-04-18 02:53 - 001564032 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2018-07-25 04:41 - 2012-04-18 01:27 - 000666708 _____ C:\windows\system32\perfh01D.dat
2018-07-25 04:41 - 2012-04-18 01:27 - 000144074 _____ C:\windows\system32\perfc01D.dat
2018-07-25 04:41 - 2009-07-14 07:13 - 001564032 _____ C:\windows\system32\PerfStringBackup.INI
2018-07-25 04:41 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2018-07-24 23:05 - 2013-12-14 00:00 - 000000910 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2840372283-3277346836-1678619748-1002Core.job
2018-07-23 23:11 - 2013-07-27 00:11 - 000000000 ____D C:\Users\Kicki\Documents\Outlook-filer
2018-07-23 23:09 - 2017-05-06 20:11 - 000000000 ____D C:\Users\Kicki\AppData\LocalLow\Mozilla
2018-07-23 19:13 - 2013-07-25 01:44 - 000000000 ____D C:\Users\Robert\Documents\Outlook-filer
2018-07-22 21:03 - 2014-07-07 18:40 - 000113880 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2018-07-22 18:09 - 2012-10-23 22:44 - 000000000 ____D C:\Intel
2018-07-22 18:09 - 2009-07-14 05:20 - 000000000 __SHD C:\Users\Public\Libraries
2018-07-22 18:02 - 2018-05-24 20:26 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2018-07-22 18:02 - 2018-05-24 15:45 - 000000000 ____D C:\Users\Jonatan\AppData\Local\UnrealEngine
2018-07-22 14:41 - 2012-10-18 17:29 - 000003924 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{49B7ED8B-99FA-46CC-9F36-6152835EC61A}
2018-07-22 14:29 - 2017-05-28 16:28 - 000000000 ____D C:\Users\Jonatan\AppData\Roaming\Rupego
2018-07-22 14:28 - 2016-09-25 14:57 - 000000604 _____ C:\Users\Jonatan\AppData\Roaming\WB.CFG
2018-07-22 14:10 - 2016-11-20 11:30 - 000000000 ____D C:\Users\Jonatan\AppData\LocalLow\Mozilla
2018-07-22 12:40 - 2012-10-18 18:07 - 000003932 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{23C8C752-D752-487F-935C-77AA34599D68}
2018-07-21 12:50 - 2016-12-10 12:04 - 000000000 ____D C:\Users\Sanna\AppData\LocalLow\Mozilla
2018-07-20 18:22 - 2009-07-14 05:20 - 000000000 ____D C:\windows\rescache
2018-07-20 15:36 - 2012-10-18 18:03 - 000003924 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{8C5058F9-0EE0-483E-B47E-40BCC2588FE0}
2018-07-20 15:27 - 2009-07-14 06:45 - 002265488 _____ C:\windows\system32\FNTCACHE.DAT
2018-07-17 00:02 - 2010-11-21 05:27 - 000563832 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2018-07-14 09:56 - 2015-04-15 03:58 - 000000000 ____D C:\windows\system32\appraiser
2018-07-14 01:19 - 2016-01-26 12:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-07-14 00:38 - 2016-08-02 20:32 - 000002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-07-14 00:38 - 2015-07-02 00:06 - 000004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2018-07-12 03:58 - 2013-07-26 02:37 - 000000000 ____D C:\windows\system32\MRT
2018-07-12 03:43 - 2012-10-18 00:33 - 134675576 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2018-07-08 01:23 - 2017-08-08 12:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-06-27 01:28 - 2017-01-31 13:41 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Files in the root of some directories =======

2012-10-18 00:21 - 2018-07-26 02:00 - 000007601 _____ () C:\Users\Robert\AppData\Local\Resmon.ResmonCfg

Files to move or delete:
====================
C:\Windows\Tasks\{2D0E1AE0-044C-4654-803F-7314B2656530}.job
C:\Windows\Tasks\{32F8A50F-B0E5-9A67-235D-4D253F24B6EA}.job
C:\Windows\Tasks\{6525CB6C-7411-A4FD-545C-35E9616A8E43}.job
C:\Windows\Tasks\{6E3CBFAE-E703-7847-2926-2EAC3FC5C8D5}.job
C:\Windows\Tasks\{6E925741-CFD2-85F5-554F-6F5CD46F5BB3}.job


Some files in TEMP:
====================
2002-07-03 17:34 - 2002-07-03 17:34 - 004924514 _____ (Macromedia, Inc.) C:\Users\Sanna\AppData\Local\Temp\setup.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-07-17 02:56

==================== End of FRST.txt ============================

Addition.txt

borttagen_app.PNG

Länk till kommentar
Dela på andra webbplatser

Citat

Vad är JS/TechBrolo.f för något.

JS står för Javascript vilket är något som finns på webbsidor. Med tanke på orden "scam" och "Tech" troligen att det på någon webbsida fanns en bit javascript som försökte lura användaren att det var legitim support. Kan t ex vara någon sorts reklam. Har dottern något minne av någon sådan reklam som beskrivs på Malwaretips-sidan?

 

Upplever ni (framför allt då dottern) något av de symptom som beskrivs på Malwaretips-sidan?

 

Jag kan inte se något skadligt i loggarna men de är tagna från ditt konto så om dottern använde sitt eget kan det finnas något där som inte syns i loggarna. Eftersom de andras konton är begränsade är det svårt för skadliga program att installeras globalt från deras konton.

 

Däremot ser vissa genvägar till Internet Explorer inte så bra ut:

 

ShortcutWithArgument: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://tech-connect.biz/?ssid=1473536493&a=1003679&src=sh&uuid=ceec5499-a780-4c3a-8b48-932d8916e8e3,1473536381014"

 

ShortcutWithArgument: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://tech-connect.biz/?ssid=1473536493&a=1003679&src=sh&uuid=ceec5499-a780-4c3a-8b48-932d8916e8e3,1473536381014"

 

ShortcutWithArgument: C:\Users\Robert\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://tech-connect.biz/?ssid=1473536493&a=1003679&src=sh&uuid=ceec5499-a780-4c3a-8b48-932d8916e8e3,1473536381014"

 

Men det bör åtgärdas genom att följa Step 4 på Malwaretips-sidan, därefter behöver du/ni gå igenom alla inställningar i webbläsarna och installera tillägg till dem igen etc.

 

Kan du leta upp mappen C:\Windows\Tasks och kolla när dessa filer skapades?

{2D0E1AE0-044C-4654-803F-7314B2656530}.job
{32F8A50F-B0E5-9A67-235D-4D253F24B6EA}.job
{6525CB6C-7411-A4FD-545C-35E9616A8E43}.job
{6E3CBFAE-E703-7847-2926-2EAC3FC5C8D5}.job
{6E925741-CFD2-85F5-554F-6F5CD46F5BB3}.job

Om de skapades i samband med filmtittandet eller senare, flytta filerna till någon mapp som du skapar. Om du märker att något normalt program inte längre fungerar som vanligt kan du flytta tillbaks dem, och annars ta bort dem efter någon månad eller så.

 

Det är inte normalt att schemalagda händelser (job) har sådana namn. Om du vill undersöka filerna närmare ska de gå att hitta i Schemaläggaren (sök på det namnet) och där kan man då se vilket program som händelsen startar.

 

Länk till kommentar
Dela på andra webbplatser

Jag tackar för svaret. Det lät ju ganska tryggt iaf. Ska kolla under dagen imorgon med min dotter så kan jag återkomma med ett svar.

Ingen av filerna har skapats i samband med filmtittandet, 2016 och 2017 var det på dom.

 

Om det hjälper så här är min dotters logg.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21.07.2018
Ran by Sanna (ATTENTION: The user is not administrator) on LARSSONS (27-07-2018 00:24:59)
Running from C:\Users\Sanna\Desktop
Loaded Profiles: Robert & Sanna (Available Profiles: Robert & Kicki & Jonatan & Sanna)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Svenska (Sverige)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Failed to access process -> smss.exe
Failed to access process -> csrss.exe
Failed to access process -> wininit.exe
Failed to access process -> csrss.exe
Failed to access process -> services.exe
Failed to access process -> winlogon.exe
Failed to access process -> lsass.exe
Failed to access process -> lsm.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> MsMpEng.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> stacsv64.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> spoolsv.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> armsvc.exe
Failed to access process -> AdminService.exe
Failed to access process -> DbxSvc.exe
Failed to access process -> svchost.exe
Failed to access process -> HeciServer.exe
Failed to access process -> Jhi_service.exe
Failed to access process -> mbbService.exe
Failed to access process -> WUDFHost.exe
Failed to access process -> taskhost.exe
Failed to access process -> dwm.exe
Failed to access process -> DPAgent.exe
Failed to access process -> explorer.exe
Failed to access process -> WUDFHost.exe
Failed to access process -> hkcmd.exe
Failed to access process -> igfxpers.exe
Failed to access process -> msseces.exe
Failed to access process -> BtvStack.exe
Failed to access process -> BtTray.exe
Failed to access process -> SynTPEnh.exe
Failed to access process -> SearchIndexer.exe
Failed to access process -> iusb3mon.exe
Failed to access process -> SSDMonitor.exe
Failed to access process -> Monitor.exe
Failed to access process -> SynTPHelper.exe
Failed to access process -> IAStorIcon.exe
Failed to access process -> MOM.exe
Failed to access process -> IAStorDataMgrSvc.exe
Failed to access process -> IntelMeFWService.exe
Failed to access process -> LMS.exe
Failed to access process -> CCC.exe
Failed to access process -> PresentationFontCache.exe
Failed to access process -> NisSrv.exe
Failed to access process -> UNS.exe
Failed to access process -> firefox.exe
Failed to access process -> firefox.exe
Failed to access process -> firefox.exe
Failed to access process -> firefox.exe
Failed to access process -> firefox.exe
Failed to access process -> firefox.exe
Failed to access process -> svchost.exe
Failed to access process -> csrss.exe
Failed to access process -> winlogon.exe
Failed to access process -> taskeng.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
() C:\Program Files (x86)\HP HD Webcam Driver\Monitor.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Failed to access process -> SearchProtocolHost.exe
Failed to access process -> SearchFilterHost.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> WmiPrvSE.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-03-05] (IDT, Inc.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-08-08] (Atheros Communications)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [763520 2012-08-08] (Qualcomm Atheros)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-03-01] (Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation)
HKLM-x32\...\Run: [AMD AVT] => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [636032 2012-03-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [105120 2012-08-21] (PC Tools)
HKLM-x32\...\Run: [HP HD Webcam Driver_Monitor] => C:\Program Files (x86)\HP HD Webcam Driver\monitor.exe [303480 2012-07-26] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3754168 2018-07-13] (Dropbox, Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP: C:\Windows\SysWOW64\DeviceNP.dll [2012-01-31] (Hewlett-Packard Company)
HKU\S-1-5-21-2840372283-3277346836-1678619748-1006\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2840372283-3277346836-1678619748-1006\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Lsa: [Notification Packages] DPPassFilter scecli
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
GroupPolicyUsers\S-1-5-21-2840372283-3277346836-1678619748-1006\User: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{15C9309F-2D61-4493-A2EB-A27D30C302E8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{828A6D20-85FA-4808-972E-8631BFCEAF38}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{C2169304-81CF-4364-BABE-34D00756F2CD}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D3DCA75A-2147-45E5-B180-A7F3C0033D9D}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{FA9E7353-C6A5-48D6-BCB0-6A9E1FE66DFE}: [DhcpNameServer] 192.168.8.1 192.168.8.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-e64618d9
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-2840372283-3277346836-1678619748-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCOM/15
HKU\S-1-5-21-2840372283-3277346836-1678619748-1006\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCOM/15
URLSearchHook: [S-1-5-21-2840372283-3277346836-1678619748-1002] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-5204772c&q={searchTerms}
SearchScopes: HKLM-x32 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-435b79d8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2840372283-3277346836-1678619748-1006 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2840372283-3277346836-1678619748-1006 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2840372283-3277346836-1678619748-1006 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://se.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CMNTDF
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-08] (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-03-22] (Hewlett-Packard)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-02-21] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-02-21] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Sanna\AppData\Roaming\Mozilla\Firefox\Profiles\4zage0n1.default [2018-07-21]
FF Extension: (WebCompat Reporter) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-07-08] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2012-09-26] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll [2018-02-07] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_161.dll [2018-02-07] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-21] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2840372283-3277346836-1678619748-1006: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Sanna\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-01-23] (Unity Technologies ApS)
StartMenuInternet: FIREFOX.EXE - firefox.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211072 2012-08-08] (Qualcomm Atheros Commnucations) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5745672 2018-05-24] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-26] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-26] (Dropbox, Inc.)
R2 DbxSvc; C:\windows\system32\DbxSvc.exe [51392 2018-07-13] (Dropbox, Inc.)
S2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [493904 2012-03-15] (DigitalPersona, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-05-24] (EasyAntiCheat Ltd)
S4 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [477056 2012-01-31] (Hewlett-Packard Company)
S4 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-17] (Hewlett-Packard)
S4 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [365440 2012-03-14] (Hewlett-Packard Company)
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [387144 2016-02-04] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165144 2012-03-28] (Intel Corporation)
R2 lmhosts; C:\windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 lmhosts; C:\windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S4 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2012-03-22] () [File not signed]
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [239184 2014-02-15] ()
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
R2 NlaSvc; C:\windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 NlaSvc; C:\windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S4 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [794272 2012-08-21] (PC Tools)
S4 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1134584 2012-03-07] (PDF Complete Inc)
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software) [File not signed]
S4 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S4 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [498352 2012-04-05] (ArcSoft, Inc.)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S4 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-08] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\windows\System32\DRIVERS\amdkmpfd.sys [32896 2012-03-20] (Advanced Micro Devices, Inc.)
R1 archlp; C:\windows\System32\drivers\archlp.sys [136192 2010-07-07] ()
R3 ARCVCAM; C:\windows\System32\DRIVERS\ArcSoftVCapture.sys [42816 2012-02-03] (ArcSoft, Inc.)
S3 BTATH_LWFLT; C:\windows\System32\DRIVERS\btath_lwflt.sys [77464 2012-08-08] (Qualcomm Atheros)
S3 DAMDrv; C:\windows\System32\DRIVERS\DAMDrv64.sys [64312 2012-01-31] (Hewlett-Packard Company)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [93640 2012-03-22] (McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158792 2012-03-22] (McAfee, Inc.)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R3 NisDrv; C:\windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2017-03-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
R3 SPUVCbv; C:\windows\System32\Drivers\SPUVCbv_x64.sys [1062008 2012-08-03] (Sunplus)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 Tdsshbecr; C:\windows\System32\DRIVERS\shbecr.sys [50176 2008-09-28] (Todos Data System AB)
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-07-27 00:24 - 2018-07-27 00:25 - 000021923 _____ C:\Users\Sanna\Desktop\FRST.txt
2018-07-27 00:24 - 2018-07-26 04:09 - 002412544 _____ (Farbar) C:\Users\Sanna\Desktop\FRST64.exe
2018-07-27 00:07 - 2018-07-27 00:07 - 000003928 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{034F7A82-0E77-4EBF-BE1C-AA2912655A69}
2018-07-26 04:12 - 2018-07-26 04:13 - 000054417 _____ C:\Users\Robert\Desktop\Addition.txt
2018-07-26 04:10 - 2018-07-27 00:24 - 000000000 ____D C:\FRST
2018-07-26 04:10 - 2018-07-26 04:13 - 000066247 _____ C:\Users\Robert\Desktop\FRST.txt
2018-07-26 04:09 - 2018-07-26 04:09 - 002412544 _____ (Farbar) C:\Users\Robert\Desktop\FRST64.exe
2018-07-22 18:09 - 2018-07-22 18:09 - 000000000 ___HD C:\Users\Public\Shared Files
2018-07-22 18:02 - 2018-07-22 18:02 - 000000000 ____D C:\Users\Jonatan\AppData\Roaming\EasyAntiCheat
2018-07-19 15:37 - 2018-06-21 02:58 - 000398376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2018-07-19 15:37 - 2018-06-21 02:00 - 000348824 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2018-07-19 15:37 - 2018-06-16 19:07 - 025743872 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2018-07-19 15:37 - 2018-06-16 18:46 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2018-07-19 15:37 - 2018-06-16 18:46 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2018-07-19 15:37 - 2018-06-16 18:36 - 020286464 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2018-07-19 15:37 - 2018-06-16 18:33 - 002902016 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2018-07-19 15:37 - 2018-06-16 18:32 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2018-07-19 15:37 - 2018-06-16 18:31 - 000576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2018-07-19 15:37 - 2018-06-16 18:31 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2018-07-19 15:37 - 2018-06-16 18:31 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2018-07-19 15:37 - 2018-06-16 18:30 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2018-07-19 15:37 - 2018-06-16 18:27 - 005779968 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2018-07-19 15:37 - 2018-06-16 18:24 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2018-07-19 15:37 - 2018-06-16 18:23 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2018-07-19 15:37 - 2018-06-16 18:20 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2018-07-19 15:37 - 2018-06-16 18:19 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2018-07-19 15:37 - 2018-06-16 18:19 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2018-07-19 15:37 - 2018-06-16 18:19 - 000794624 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2018-07-19 15:37 - 2018-06-16 18:19 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2018-07-19 15:37 - 2018-06-16 18:19 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2018-07-19 15:37 - 2018-06-16 18:12 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2018-07-19 15:37 - 2018-06-16 18:08 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2018-07-19 15:37 - 2018-06-16 18:06 - 000498176 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2018-07-19 15:37 - 2018-06-16 18:06 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2018-07-19 15:37 - 2018-06-16 18:05 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2018-07-19 15:37 - 2018-06-16 18:05 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2018-07-19 15:37 - 2018-06-16 18:04 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2018-07-19 15:37 - 2018-06-16 18:02 - 002295296 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2018-07-19 15:37 - 2018-06-16 18:02 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2018-07-19 15:37 - 2018-06-16 18:02 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2018-07-19 15:37 - 2018-06-16 18:01 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2018-07-19 15:37 - 2018-06-16 17:59 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2018-07-19 15:37 - 2018-06-16 17:59 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2018-07-19 15:37 - 2018-06-16 17:58 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2018-07-19 15:37 - 2018-06-16 17:57 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2018-07-19 15:37 - 2018-06-16 17:57 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2018-07-19 15:37 - 2018-06-16 17:56 - 000662016 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2018-07-19 15:37 - 2018-06-16 17:56 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2018-07-19 15:37 - 2018-06-16 17:55 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2018-07-19 15:37 - 2018-06-16 17:55 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2018-07-19 15:37 - 2018-06-16 17:53 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2018-07-19 15:37 - 2018-06-16 17:47 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2018-07-19 15:37 - 2018-06-16 17:46 - 015283200 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2018-07-19 15:37 - 2018-06-16 17:44 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2018-07-19 15:37 - 2018-06-16 17:42 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2018-07-19 15:37 - 2018-06-16 17:42 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2018-07-19 15:37 - 2018-06-16 17:42 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2018-07-19 15:37 - 2018-06-16 17:42 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-07-19 15:37 - 2018-06-16 17:41 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2018-07-19 15:37 - 2018-06-16 17:40 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2018-07-19 15:37 - 2018-06-16 17:39 - 002135552 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2018-07-19 15:37 - 2018-06-16 17:39 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2018-07-19 15:37 - 2018-06-16 17:38 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2018-07-19 15:37 - 2018-06-16 17:37 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2018-07-19 15:37 - 2018-06-16 17:36 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2018-07-19 15:37 - 2018-06-16 17:34 - 004496384 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2018-07-19 15:37 - 2018-06-16 17:32 - 013680128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2018-07-19 15:37 - 2018-06-16 17:30 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2018-07-19 15:37 - 2018-06-16 17:29 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2018-07-19 15:37 - 2018-06-16 17:28 - 002060288 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2018-07-19 15:37 - 2018-06-16 17:27 - 003241472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2018-07-19 15:37 - 2018-06-16 17:27 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2018-07-19 15:37 - 2018-06-16 17:16 - 001545216 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2018-07-19 15:37 - 2018-06-16 17:08 - 002767872 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2018-07-19 15:37 - 2018-06-16 17:05 - 001313792 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2018-07-19 15:37 - 2018-06-16 17:04 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2018-07-19 15:37 - 2018-06-16 17:04 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2018-07-19 15:37 - 2018-06-13 18:20 - 014185984 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2018-07-19 15:37 - 2018-06-13 18:19 - 001867776 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2018-07-19 15:37 - 2018-06-13 17:55 - 012880384 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2018-07-19 15:37 - 2018-06-13 17:54 - 001499648 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2018-07-19 15:37 - 2018-06-13 17:40 - 003226112 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2018-07-19 15:37 - 2018-06-08 18:27 - 005577408 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2018-07-19 15:37 - 2018-06-08 18:27 - 000708288 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2018-07-19 15:37 - 2018-06-08 18:27 - 000262336 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2018-07-19 15:37 - 2018-06-08 18:27 - 000154816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2018-07-19 15:37 - 2018-06-08 18:27 - 000095424 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2018-07-19 15:37 - 2018-06-08 18:23 - 000631640 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2018-07-19 15:37 - 2018-06-08 18:22 - 001665344 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000369664 _____ (Microsoft Corporation) C:\windows\system32\zipfldr.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2018-07-19 15:37 - 2018-06-08 18:21 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 002066432 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 001461760 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 001211904 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 001163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000731648 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000512000 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2018-07-19 15:37 - 2018-06-08 18:20 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000357888 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000182272 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2018-07-19 15:37 - 2018-06-08 18:19 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 18:02 - 004050624 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2018-07-19 15:37 - 2018-06-08 18:02 - 003962048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2018-07-19 15:37 - 2018-06-08 17:57 - 001314072 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 001417728 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000554496 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000330240 _____ (Microsoft Corporation) C:\windows\SysWOW64\zipfldr.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000275456 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2018-07-19 15:37 - 2018-06-08 17:55 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000269824 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:44 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2018-07-19 15:37 - 2018-06-08 17:44 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2018-07-19 15:37 - 2018-06-08 17:44 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\dnscacheugc.exe
2018-07-19 15:37 - 2018-06-08 17:44 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2018-07-19 15:37 - 2018-06-08 17:43 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2018-07-19 15:37 - 2018-06-08 17:39 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2018-07-19 15:37 - 2018-06-08 17:38 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2018-07-19 15:37 - 2018-06-08 17:38 - 000129024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2018-07-19 15:37 - 2018-06-08 17:34 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2018-07-19 15:37 - 2018-06-08 17:34 - 000159744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2018-07-19 15:37 - 2018-06-08 17:34 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2018-07-19 15:37 - 2018-06-08 17:33 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2018-07-19 15:37 - 2018-06-08 17:33 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2018-07-19 15:37 - 2018-06-08 17:29 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2018-07-19 15:37 - 2018-06-08 17:28 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnscacheugc.exe
2018-07-19 15:37 - 2018-06-08 17:27 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2018-07-19 15:37 - 2018-06-08 17:21 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2018-07-19 15:37 - 2018-06-08 17:21 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2018-07-19 15:37 - 2018-06-08 17:21 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2018-07-19 15:37 - 2018-06-08 17:21 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2018-07-19 15:37 - 2018-06-08 17:19 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2018-07-19 15:37 - 2018-06-08 17:19 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:19 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:19 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-07-19 15:37 - 2018-06-08 17:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-07-19 15:37 - 2018-06-07 18:20 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\wfapigp.dll
2018-07-19 15:37 - 2018-06-07 18:19 - 000828928 _____ (Microsoft Corporation) C:\windows\system32\MPSSVC.dll
2018-07-19 15:37 - 2018-06-07 18:19 - 000749568 _____ (Microsoft Corporation) C:\windows\system32\FirewallAPI.dll
2018-07-19 15:37 - 2018-06-07 18:19 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\icfupgd.dll
2018-07-19 15:37 - 2018-06-07 17:57 - 000463360 _____ (Microsoft Corporation) C:\windows\SysWOW64\FirewallAPI.dll
2018-07-19 15:37 - 2018-06-07 17:49 - 000077312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mpsdrv.sys
2018-07-19 15:37 - 2018-06-07 17:34 - 000018944 _____ (Microsoft Corporation) C:\windows\SysWOW64\wfapigp.dll
2018-07-19 15:37 - 2018-05-31 18:28 - 001893568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2018-07-19 15:37 - 2018-05-31 18:28 - 000377024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2018-07-19 15:37 - 2018-05-31 18:28 - 000287936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2018-07-19 15:37 - 2018-05-02 17:32 - 000344064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000056320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2018-07-19 15:37 - 2018-05-02 17:32 - 000007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2018-07-19 15:37 - 2018-04-26 15:05 - 000998912 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000918296 _____ (Microsoft Corporation) C:\windows\SysWOW64\ucrtbase.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000065880 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000063832 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000021848 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000020824 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000019288 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000018776 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000017752 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000017752 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000017240 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000017240 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000016216 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000015704 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000015704 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000015192 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000014168 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000014168 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000013152 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012632 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2018-07-19 15:37 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2018-07-19 15:37 - 2018-04-25 18:02 - 000124416 _____ (Microsoft Corporation) C:\windows\system32\wkssvc.dll
2018-07-19 15:37 - 2018-04-25 17:18 - 000115200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2018-07-14 01:18 - 2018-07-14 01:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-07-13 04:01 - 2018-07-13 04:01 - 000051392 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2018-07-13 04:01 - 2018-07-13 04:01 - 000050232 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2018-07-13 04:01 - 2018-07-13 04:01 - 000045672 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2018-07-13 04:01 - 2018-07-13 04:01 - 000045640 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2018-07-12 03:59 - 2018-06-13 18:23 - 000140992 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2018-07-12 03:59 - 2018-06-13 18:18 - 000680960 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 002860032 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2018-07-12 03:59 - 2018-06-08 15:05 - 001602048 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000783872 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000612352 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000470016 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000443392 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000301056 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2018-07-12 03:59 - 2018-06-08 15:05 - 000246272 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-07-27 00:23 - 2012-11-20 03:23 - 000000304 _____ C:\windows\Tasks\RMAutoUpdate.job
2018-07-27 00:23 - 2012-11-20 03:20 - 000000000 ____D C:\ProgramData\TEMP
2018-07-27 00:22 - 2016-01-26 12:46 - 000001000 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2018-07-27 00:12 - 2016-01-26 12:46 - 000001004 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2018-07-26 23:58 - 2016-11-25 19:13 - 000000344 _____ C:\windows\Tasks\{2D0E1AE0-044C-4654-803F-7314B2656530}.job
2018-07-26 23:57 - 2016-09-25 13:57 - 000000352 _____ C:\windows\Tasks\{32F8A50F-B0E5-9A67-235D-4D253F24B6EA}.job
2018-07-26 23:29 - 2017-03-18 10:55 - 000000270 _____ C:\windows\Tasks\{6E925741-CFD2-85F5-554F-6F5CD46F5BB3}.job
2018-07-26 23:28 - 2017-02-27 18:01 - 000000284 _____ C:\windows\Tasks\{6E3CBFAE-E703-7847-2926-2EAC3FC5C8D5}.job
2018-07-26 23:28 - 2016-11-07 19:59 - 000000338 _____ C:\windows\Tasks\{6525CB6C-7411-A4FD-545C-35E9616A8E43}.job
2018-07-26 11:05 - 2013-12-14 00:00 - 000000932 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2840372283-3277346836-1678619748-1002UA.job
2018-07-26 04:00 - 2009-07-14 06:45 - 000031536 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-26 04:00 - 2009-07-14 06:45 - 000031536 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-26 00:54 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2018-07-25 04:41 - 2012-04-18 02:53 - 001564032 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2018-07-25 04:41 - 2012-04-18 01:27 - 000666708 _____ C:\windows\system32\perfh01D.dat
2018-07-25 04:41 - 2012-04-18 01:27 - 000144074 _____ C:\windows\system32\perfc01D.dat
2018-07-25 04:41 - 2009-07-14 07:13 - 001564032 _____ C:\windows\system32\PerfStringBackup.INI
2018-07-25 04:41 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2018-07-24 23:05 - 2013-12-14 00:00 - 000000910 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2840372283-3277346836-1678619748-1002Core.job
2018-07-22 21:03 - 2014-07-07 18:40 - 000113880 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2018-07-22 18:09 - 2012-10-23 22:44 - 000000000 ____D C:\Intel
2018-07-22 18:09 - 2009-07-14 05:20 - 000000000 __SHD C:\Users\Public\Libraries
2018-07-22 18:02 - 2018-05-24 20:26 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2018-07-22 14:41 - 2012-10-18 17:29 - 000003924 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{49B7ED8B-99FA-46CC-9F36-6152835EC61A}
2018-07-22 14:29 - 2017-05-28 16:28 - 000000000 ____D C:\Users\Jonatan\AppData\Roaming\Rupego
2018-07-22 14:28 - 2016-09-25 14:57 - 000000604 _____ C:\Users\Jonatan\AppData\Roaming\WB.CFG
2018-07-22 12:40 - 2012-10-18 18:07 - 000003932 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{23C8C752-D752-487F-935C-77AA34599D68}
2018-07-21 12:50 - 2016-12-10 12:04 - 000000000 ____D C:\Users\Sanna\AppData\LocalLow\Mozilla
2018-07-20 18:22 - 2009-07-14 05:20 - 000000000 ____D C:\windows\rescache
2018-07-20 15:36 - 2012-10-18 18:03 - 000003924 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{8C5058F9-0EE0-483E-B47E-40BCC2588FE0}
2018-07-20 15:27 - 2009-07-14 06:45 - 002265488 _____ C:\windows\system32\FNTCACHE.DAT
2018-07-17 00:02 - 2010-11-21 05:27 - 000563832 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2018-07-14 09:56 - 2015-04-15 03:58 - 000000000 ____D C:\windows\system32\appraiser
2018-07-14 01:19 - 2016-01-26 12:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-07-14 00:38 - 2016-08-02 20:32 - 000002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-07-14 00:38 - 2015-07-02 00:06 - 000004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2018-07-12 03:58 - 2013-07-26 02:37 - 000000000 ____D C:\windows\system32\MRT
2018-07-12 03:43 - 2012-10-18 00:33 - 134675576 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2018-07-08 01:23 - 2017-08-08 12:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-06-27 01:28 - 2017-01-31 13:41 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

Files to move or delete:
====================
C:\Windows\Tasks\{2D0E1AE0-044C-4654-803F-7314B2656530}.job
C:\Windows\Tasks\{32F8A50F-B0E5-9A67-235D-4D253F24B6EA}.job
C:\Windows\Tasks\{6525CB6C-7411-A4FD-545C-35E9616A8E43}.job
C:\Windows\Tasks\{6E3CBFAE-E703-7847-2926-2EAC3FC5C8D5}.job
C:\Windows\Tasks\{6E925741-CFD2-85F5-554F-6F5CD46F5BB3}.job


Some files in TEMP:
====================
2002-07-03 17:34 - 2002-07-03 17:34 - 004924514 _____ (Macromedia, Inc.) C:\Users\Sanna\AppData\Local\Temp\setup.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


ATTENTION: ==> Could not access BCD. The user is not administrator

LastRegBack: 2018-07-17 02:56

==================== End of FRST.txt ============================

Addition.txt

Länk till kommentar
Dela på andra webbplatser

14 timmar sedan, skrev The OldBoy:

Ingen av filerna har skapats i samband med filmtittandet, 2016 och 2017 var det på dom.

Det var ju bra och då bör de kunna ignoreras.

 

Ser inget nytt i de nya loggarna så det verkar bra.

Länk till kommentar
Dela på andra webbplatser

Arkiverat

Det här ämnet är nu arkiverat och är stängt för ytterligare svar.

×
×
  • Skapa nytt...