Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - DR M

Pages: [1] 2 3 ... 10

LandzDown Lounge / It's Spring!

« on: March 21, 2019, 11:52:42 AM »

The diary indicates 21th March. It's the first day of Spring.

I remembered a fairy tale I was taught at school, that made me see things different then: Trolley Number 75, by Gianni Rodari. Time is passing so quickly and there are so many beautiful things (and people) around us we don't see, because we are always too busy. But unfortunately life can't go back. We can't rewind it. Can we stop for a minute and just see ... the Spring?

To the LzD family:

Trolley Number 75
by Gianni Rodari

One morning trolley number 75, departing from Monteverde Vecchio for Piazza Fiume, instead of going down towards Trastavere through Gianicolo, turned onto L'Aurelia Antica and after a few minutes was going through the fields outside Rome like a bunny on vacation.

At that time all the passengers were occupied reading the newspaper. Even those who hadn't bought a newspaper read, gazing over their neighbor's shoulder. One gentleman, as he turned the page, raised his eyes for a moment, looked outside and stood up to holler:

— Ticket boy, what's going on? Treachery, treachery!

And the other passengers raised their eyes from their newspapers, and the protests became a tempestuous chorus.

— But from here we'll go to Cittavecchia!

— What is the driver doing?

— He's gone mad! Tie him up!

— What kind of service is this!

— It's ten till nine and I have to be in court by nine o' clock — howled a lawyer — and if I lose the case, I'll sue.

The ticket boy and the driver attempted to drive back the assault by declaring that they knew nothing of it and that the trolley wouldn't obey their commands anymore, but seemed to proceed quite by its own accord. In fact, the trolley at that very moment went directly off the road and stopped on the threshold of a little fresh and fragrant forest.

— Oh, wildflowers! — exclaimed a woman. — I shall be late to the office and get quite a scolding, but all the same, seeing as how they're here I should just content myself with the wildflowers. It must have been ten years since I picked them last.

She got off the trolley and with her mouth wide open breathed the air of that strange morning, then went to make a bouquet of wildflowers.

Seeing that the trolley would have nothing to do with leaving, one after another the passengers got off to stretch their legs or smoke a cigarette and after a little while their bad temper disappeared like fog when the sun comes out. One passenger picked a daisy and placed in her buttonhole and another passenger discovered an unripe strawberry and yelled:

— I found it! Now I'll put my business card there and when it's ripe I'll come back to pick it. And woe if I don't find it!

And he took a business card from his billfold, stuck a toothpick through it, and planted the toothpick right next to the strawberry. The name: Doctor Giulio Bollati, was written on the business card.

Two busy office workers from the Department of Education rolled their newspapers into a ball and began to play a game of soccer. And every time they gave the ball a kick they would howl: let it go!

Overall, they were no longer the same busybodies who one moment before had wanted to lynch the trolley workers. And some passengers split a little loaf of bread and an omelet and sat on the grass for a picnic.

But — Watch out! — yelled the lawyer suddenly.

The trolley, with a jolt, started to leave all on its own at a gentle trot. The passengers made it just in time to climb on and the last one to climb up was the lady with the wildflowers, who protested: — Oh, but there's no point. I had just started to have fun.

— What time is it now? — someone demanded.

— Who knows how late!

And everyone looked to their wrists. Surprise: the watches still said ten till nine. They saw that during their entire trip into the forest the hands of their wristwatches hadn't moved. It was a gift of time, a little extra, like when one buys a carton of powder detergent and inside the box there's a toy.

— But that can't be! — marveled the woman with the wildflowers as the trolley got back on its course and hurtled down Dandolo road.

And everyone was amazed. And because some still had their newspapers they started reading again and at the top of the newspapers the date was written very clearly: March 21st. Everything is possible on the first day of spring.

General Software News, Updates & Discussions / Windows activation fails after changing hard disk

« on: February 17, 2019, 07:32:34 AM »

This is something I just heard from a friend, and I wonder if it is true:

Is the Windows activation code lost after changing a laptop's hard disk? Does the owner have to buy a new Windows OS in such a case?

What happened:
1. Windows 7, hard disk failed/died.
2. The disk was changed by a technician.
3. Update to Windows 10 was done by the technician, but the Windows is not activated now, because of the hardware change.

When I changed my hard disk, I did not have such a problem.

Computer Problems, Questions and Solutions! / Strange Power Point (pptxs) problem...

« on: February 08, 2019, 11:40:44 AM »

A friend of mine, called me to ask my help about a strange problem she has with the Power Point. It's really a very strange problem, and I will try to explain it as more as I can.

1. The problem is occured only when she uses a specific school's computer. Windows 10, Office 365, teacher's account.
2. The problem: She prepares a Power Point presentation at home, or on another school computer, which works fine when she uses the slides show mode. When she tries to show the same presentation using that specific computer (slide show), the pictures (or anything else) do not appear as they should be. Instead, there is only a part of a picture, diagonically cut. And there is more. This diagonical conceivable "line" is used as a symmetry axe, and the same part of the visible picture is reflected on this axe.
3. She uninstalled Office and installed it again, but the problem remains.

I'm not sure if I described well the problem, but it seems really a problem.

Anyone had such a problem before? Any ideas?

General Software News, Updates & Discussions / Sniping Tool is moving...

« on: January 30, 2019, 01:41:18 PM »

Today I tried to use the Snipping Tool, but I got the message that it is moving. Actually, it's been replaced by Snip and Sketch tool. There are some additional tools as the ruler, the protractor and the image crop (but no arrows yet...

) There is also the option Open with, so you can open your screenshot with the drawing program you want.

Analysis and Malware Removal / Just a check up

« on: January 26, 2019, 01:36:54 PM »

Hello.

My nephew is trying to play his new FIFA 19 game, but he can't, due to a DirectX error. Before posting about his actual problem in another section of the Forum, I would like to provide the FRST's logs here, just to be sure that the computer is clean. It's a good opportunity to have a check on him.

FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26.01.2019
Ran by MIYIAGI (administrator) on DESKTOP-GG3ORKN (26-01-2019 17:08:20)
Running from C:\Users\MIYIAGI\Desktop
Loaded Profiles: MIYIAGI & (Available Profiles: MIYIAGI)
Platform: Windows 10 Home Version 1803 17134.523 (X64) Language: English (United Kingdom)
Default browser: "C:\Program Files (x86)\Pale Moon\palemoon.exe" -osint -url "%1"
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe
(Ruiware) C:\Program Files (x86)\Ruiware\WinPatrol\WinPatrol.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [177928 2018-12-15] (ESET)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01262019170539442\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01262019170539754\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-2248044027-1193708394-682536330-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-2248044027-1193708394-682536330-1001\...\Run: [WinPatrol] => C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe [1223560 2017-05-08] (Ruiware)
HKU\S-1-5-21-2248044027-1193708394-682536330-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7964080 2018-01-13] (SUPERAntiSpyware)
HKU\S-1-5-21-2248044027-1193708394-682536330-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3113768 2019-01-26] (Electronic Arts)
HKU\S-1-5-21-2248044027-1193708394-682536330-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01262019170540051\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-2248044027-1193708394-682536330-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01262019170540051\...\Run: [WinPatrol] => C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe [1223560 2017-05-08] (Ruiware)
HKU\S-1-5-21-2248044027-1193708394-682536330-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01262019170540051\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7964080 2018-01-13] (SUPERAntiSpyware)
HKU\S-1-5-21-2248044027-1193708394-682536330-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01262019170540051\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3113768 2019-01-26] (Electronic Arts)
HKU\S-1-5-21-2248044027-1193708394-682536330-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01262019170540051\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [1456128 2018-12-29] (Adobe Systems Incorporated)
Startup: C:\Users\MIYIAGI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2018-04-25]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.140.213.226 213.140.208.226
Tcpip\..\Interfaces\{24effb65-330c-45c3-be1c-9570c29c3551}: [DhcpNameServer] 192.168.10.254
Tcpip\..\Interfaces\{bb99b8d1-6c09-47e5-9f88-44d3455ad943}: [DhcpNameServer] 213.140.213.226 213.140.208.226

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-01-18] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-09-15] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-15] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-15] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-15] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-15] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 9rryux65.default
FF ProfilePath: C:\Users\MIYIAGI\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\9rryux65.default [2019-01-26]
FF Homepage: Moonchild Productions\Pale Moon\Profiles\9rryux65.default -> www.google.com
FF NewTab: Moonchild Productions\Pale Moon\Profiles\9rryux65.default -> www.google.com
FF Extension: (Adblock Latitude) - C:\Users\MIYIAGI\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\9rryux65.default\Extensions\adblocklatitude@addons.palemoon.org.xpi [2018-04-12] [Legacy] [not signed]
FF Extension: (Lazarus: Form Recovery) - C:\Users\MIYIAGI\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\9rryux65.default\Extensions\lazarus@interclue.com.xpi [2017-12-16] [Legacy]
FF Extension: (Youtube MP3 Podcaster) - C:\Users\MIYIAGI\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\9rryux65.default\Extensions\youtubemp3podcaster@jeremy.d.gregorio.com [2018-01-21] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll [2018-12-29] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll [2018-12-29] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-09-15] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-15] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9677904 2018-12-28] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2302160 2018-12-15] (ESET)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1394360 2015-08-12] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787336 2018-12-06] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787336 2018-12-06] (NVIDIA Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-01-26] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-01-26] (Electronic Arts)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107136 2018-09-21] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [124928 2017-03-09] (ASUS Corporation)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [55816 2015-08-12] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2015-08-12] (Intel Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [143448 2018-10-28] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107896 2018-10-28] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-19] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188832 2018-10-28] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50144 2018-10-28] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82304 2018-10-28] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [109864 2018-10-28] (ESET)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2015-08-12] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [152688 2019-01-04] (Malwarebytes)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [31112 2017-05-03] (ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [198512 2019-01-04] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [126624 2019-01-13] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [72536 2019-01-13] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [261032 2019-01-26] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [113016 2019-01-26] (Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvlddmkm.sys [17003280 2017-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2018-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-26 17:08 - 2019-01-26 17:09 - 000015178 _____ C:\Users\MIYIAGI\Desktop\FRST.txt
2019-01-26 16:38 - 2019-01-26 16:38 - 002428416 _____ (Farbar) C:\Users\MIYIAGI\Desktop\FRST64.exe
2019-01-26 16:26 - 2019-01-26 16:53 - 000663820 _____ C:\WINDOWS\Minidump\012619-40640-01.dmp
2019-01-26 16:26 - 2019-01-26 16:26 - 535635198 _____ C:\WINDOWS\MEMORY.DMP
2019-01-25 20:39 - 2019-01-25 20:39 - 000000000 ___HD C:\OneDriveTemp
2019-01-23 21:37 - 2019-01-23 21:38 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\GameAnalytics
2019-01-18 20:02 - 2019-01-18 20:02 - 000002563 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-01-18 20:02 - 2019-01-18 20:02 - 000002556 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype για επιχειρήσεις.lnk
2019-01-18 20:02 - 2019-01-18 20:02 - 000002523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-01-18 20:02 - 2019-01-18 20:02 - 000002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-01-18 20:02 - 2019-01-18 20:02 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-01-18 20:02 - 2019-01-18 20:02 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-01-18 20:02 - 2019-01-18 20:02 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-01-18 20:02 - 2019-01-18 20:02 - 000002465 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-01-18 20:02 - 2019-01-18 20:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Εργαλεία του Microsoft Office
2019-01-12 21:36 - 2019-01-26 17:04 - 000261032 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-01-12 21:36 - 2019-01-26 16:30 - 000113016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2019-01-12 21:36 - 2019-01-13 10:00 - 000126624 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2019-01-12 21:36 - 2019-01-13 10:00 - 000072536 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2019-01-08 21:45 - 2019-01-01 09:12 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-08 21:45 - 2019-01-01 09:12 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-08 21:45 - 2019-01-01 08:55 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-08 21:45 - 2019-01-01 08:50 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-08 21:45 - 2019-01-01 08:45 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-08 21:45 - 2019-01-01 08:42 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-08 21:45 - 2019-01-01 08:37 - 006571584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-08 21:45 - 2019-01-01 08:29 - 022016512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-08 21:45 - 2019-01-01 08:22 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-08 21:45 - 2019-01-01 08:14 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-08 21:44 - 2019-01-01 15:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-01-08 21:44 - 2019-01-01 15:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2019-01-08 21:44 - 2019-01-01 15:46 - 012710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-08 21:44 - 2019-01-01 15:45 - 000714752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2019-01-08 21:44 - 2019-01-01 15:45 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2019-01-08 21:44 - 2019-01-01 15:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-08 21:44 - 2019-01-01 15:20 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-08 21:44 - 2019-01-01 15:20 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2019-01-08 21:44 - 2019-01-01 15:18 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2019-01-08 21:44 - 2019-01-01 15:17 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2019-01-08 21:44 - 2019-01-01 09:14 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-08 21:44 - 2019-01-01 09:14 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-08 21:44 - 2019-01-01 09:14 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-08 21:44 - 2019-01-01 09:14 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-08 21:44 - 2019-01-01 09:14 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-01-08 21:44 - 2019-01-01 09:14 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-01-08 21:44 - 2019-01-01 09:13 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-08 21:44 - 2019-01-01 09:13 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-08 21:44 - 2019-01-01 09:13 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-01-08 21:44 - 2019-01-01 09:13 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-08 21:44 - 2019-01-01 09:13 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-08 21:44 - 2019-01-01 09:12 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-08 21:44 - 2019-01-01 09:12 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-08 21:44 - 2019-01-01 09:12 - 002421288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-08 21:44 - 2019-01-01 09:12 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-01-08 21:44 - 2019-01-01 09:12 - 000268304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-08 21:44 - 2019-01-01 09:12 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-08 21:44 - 2019-01-01 09:12 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-08 21:44 - 2019-01-01 08:50 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-08 21:44 - 2019-01-01 08:48 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-01-08 21:44 - 2019-01-01 08:48 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-08 21:44 - 2019-01-01 08:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2019-01-08 21:44 - 2019-01-01 08:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-08 21:44 - 2019-01-01 08:47 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-01-08 21:44 - 2019-01-01 08:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-01-08 21:44 - 2019-01-01 08:46 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-01-08 21:44 - 2019-01-01 08:46 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-08 21:44 - 2019-01-01 08:45 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-08 21:44 - 2019-01-01 08:45 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-01-08 21:44 - 2019-01-01 08:44 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-01-08 21:44 - 2019-01-01 08:44 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-08 21:44 - 2019-01-01 08:44 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-08 21:44 - 2019-01-01 08:44 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2019-01-08 21:44 - 2019-01-01 08:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-08 21:44 - 2019-01-01 08:43 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-08 21:44 - 2019-01-01 08:42 - 002247680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-08 21:44 - 2019-01-01 08:42 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-08 21:44 - 2019-01-01 08:42 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-08 21:44 - 2019-01-01 08:41 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-08 21:44 - 2019-01-01 08:41 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-08 21:44 - 2019-01-01 08:41 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-08 21:44 - 2019-01-01 08:41 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-08 21:44 - 2019-01-01 08:37 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-08 21:44 - 2019-01-01 08:37 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-08 21:44 - 2019-01-01 08:37 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-08 21:44 - 2019-01-01 08:37 - 000880048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-01-08 21:44 - 2019-01-01 08:37 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-01-08 21:44 - 2019-01-01 08:37 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-08 21:44 - 2019-01-01 08:17 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-01-08 21:44 - 2019-01-01 08:16 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-08 21:44 - 2019-01-01 08:16 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-01-08 21:44 - 2019-01-01 08:16 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-01-08 21:44 - 2019-01-01 08:15 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-01-08 21:44 - 2019-01-01 08:15 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-08 21:44 - 2019-01-01 08:15 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-08 21:44 - 2019-01-01 08:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-01-08 21:44 - 2019-01-01 08:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-08 21:44 - 2019-01-01 08:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-08 21:44 - 2019-01-01 08:13 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-08 21:44 - 2019-01-01 08:13 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-08 21:44 - 2019-01-01 08:13 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-01-08 21:44 - 2019-01-01 08:12 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-08 21:44 - 2019-01-01 08:12 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-08 21:44 - 2019-01-01 08:12 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-08 21:44 - 2019-01-01 08:12 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2019-01-08 21:44 - 2019-01-01 07:23 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-01-08 21:44 - 2018-12-19 06:49 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-04 19:45 - 2019-01-04 19:45 - 000198512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-01-03 21:22 - 2019-01-03 21:22 - 000000000 ____D C:\Users\MIYIAGI\ansel
2019-01-03 18:03 - 2019-01-03 18:03 - 000000000 ____D C:\steam
2019-01-03 18:00 - 2019-01-03 18:00 - 000000000 ____D C:\Users\MIYIAGI\Documents\AFS-a320f3-FSX-Steam-1
2019-01-02 20:25 - 2019-01-02 20:25 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2019-01-02 20:25 - 2017-09-14 01:20 - 000798008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-01-02 20:25 - 2017-09-14 01:20 - 000490296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-01-02 20:25 - 2017-09-14 01:19 - 000927544 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-01-02 20:25 - 2017-09-14 01:19 - 000591160 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-01-02 19:09 - 2017-12-04 21:19 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-12-31 19:38 - 2019-01-26 17:04 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-12-31 19:38 - 2018-12-31 19:38 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2018-12-31 19:35 - 2017-12-04 20:32 - 005964688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-12-31 19:35 - 2017-12-04 20:32 - 002589168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-12-31 19:35 - 2017-12-04 20:32 - 001767408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-12-31 19:35 - 2017-12-04 20:32 - 000609312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-12-31 19:35 - 2017-12-04 20:32 - 000450352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-12-31 19:35 - 2017-12-04 20:32 - 000123888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-12-31 19:35 - 2017-12-04 20:32 - 000082736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-12-31 19:35 - 2017-11-27 14:52 - 007874971 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-12-31 19:34 - 2017-12-12 20:34 - 000541456 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-12-31 19:34 - 2017-12-12 20:34 - 000447248 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2018-12-30 17:05 - 2018-09-05 00:36 - 001476904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2018-12-30 16:27 - 2019-01-26 16:35 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\CrashDumps
2018-12-30 14:47 - 2018-12-30 16:11 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\NVIDIA Corporation
2018-12-30 14:47 - 2018-12-30 14:47 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-30 14:47 - 2018-12-30 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-12-30 14:47 - 2018-12-06 12:11 - 002865032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2018-12-30 14:47 - 2018-12-06 12:11 - 002264968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2018-12-30 14:47 - 2018-12-06 12:11 - 001323400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2018-12-30 14:47 - 2018-12-06 11:20 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2018-12-30 14:47 - 2018-10-04 14:33 - 000203760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2018-12-30 14:47 - 2018-10-04 14:33 - 000179696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2018-12-30 14:46 - 2018-10-01 20:47 - 000070024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2018-12-30 14:46 - 2018-10-01 17:47 - 000074576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-12-30 14:05 - 2018-12-31 19:33 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-12-30 12:59 - 2018-12-31 18:20 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\D3DSCache
2018-12-30 12:57 - 2018-12-30 12:57 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\mbam
2018-12-30 12:53 - 2019-01-04 19:44 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-12-30 12:53 - 2018-12-30 12:53 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\mbamtray
2018-12-30 12:53 - 2018-12-30 12:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-12-30 12:52 - 2018-12-30 12:52 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-12-30 12:49 - 2018-12-30 12:48 - 000000031 _____ C:\ProgramData\mb-licenseinfo.txt
2018-12-30 12:08 - 2019-01-26 17:08 - 000000000 ____D C:\FRST
2018-12-30 11:46 - 2019-01-11 16:52 - 000000000 ____D C:\Users\MIYIAGI\Desktop\power points
2018-12-30 11:46 - 2018-12-30 11:46 - 000000000 ____D C:\Users\MIYIAGI\Desktop\fifa
2018-12-30 11:45 - 2018-12-30 11:46 - 000000000 ____D C:\Users\MIYIAGI\Desktop\gsx
2018-12-29 16:19 - 2018-12-29 16:19 - 000000000 ____D C:\Users\MIYIAGI\Documents\FIFA 19
2018-12-28 22:48 - 2018-12-28 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 19

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-26 17:07 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-26 17:07 - 2017-12-16 11:10 - 000000000 ___RD C:\Users\MIYIAGI\OneDrive
2019-01-26 17:06 - 2017-12-16 13:41 - 000000000 ____D C:\ProgramData\NVIDIA
2019-01-26 17:06 - 2017-12-16 11:26 - 000000000 ____D C:\ProgramData\MCShield
2019-01-26 17:05 - 2017-12-16 13:43 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2019-01-26 17:04 - 2018-06-14 10:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-26 17:04 - 2018-06-14 09:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-26 17:04 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-26 17:04 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-26 17:04 - 2017-12-16 12:00 - 000000000 __SHD C:\Users\MIYIAGI\IntelGraphicsProfiles
2019-01-26 16:53 - 2017-12-27 18:40 - 000000000 ____D C:\Users\MIYIAGI\AppData\Roaming\Origin
2019-01-26 16:52 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-26 16:40 - 2017-12-27 18:42 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-01-26 16:40 - 2017-12-27 18:34 - 000000000 ____D C:\ProgramData\Origin
2019-01-26 16:39 - 2017-12-27 18:40 - 000000000 ____D C:\Program Files (x86)\Origin
2019-01-26 16:26 - 2018-06-23 13:58 - 000000000 ____D C:\WINDOWS\Minidump
2019-01-25 20:52 - 2018-03-14 10:15 - 000000000 ____D C:\Users\MIYIAGI\Documents\Flight Simulator X Files
2019-01-25 20:43 - 2017-12-16 14:53 - 000000000 ____D C:\Program Files (x86)\Steam
2019-01-25 20:39 - 2018-03-04 13:41 - 000000000 ____D C:\Users\MIYIAGI\Documents\Euro Truck Simulator 2
2019-01-25 20:38 - 2018-06-14 10:08 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2248044027-1193708394-682536330-1001
2019-01-25 20:38 - 2018-06-14 09:45 - 000002369 _____ C:\Users\MIYIAGI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-23 21:39 - 2017-12-17 10:53 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\Fernbus
2019-01-23 21:37 - 2017-12-17 10:53 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\UnrealEngine
2019-01-23 21:36 - 2017-12-17 10:50 - 000000000 ____D C:\ProgramData\Package Cache
2019-01-20 17:38 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-19 12:32 - 2017-12-16 15:03 - 000000000 ____D C:\Users\MIYIAGI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-01-18 20:00 - 2017-12-16 12:39 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-01-18 19:31 - 2018-11-17 19:48 - 000000000 ____D C:\Program Files\rempl
2019-01-13 10:00 - 2018-06-14 09:45 - 000000000 ____D C:\Users\MIYIAGI
2019-01-12 21:34 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-11 16:41 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-11 16:40 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-10 19:26 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-09 21:08 - 2017-12-16 12:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-09 21:04 - 2017-12-16 12:04 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-05 10:31 - 2017-12-16 11:27 - 000000000 ____D C:\Users\MIYIAGI\AppData\Roaming\vlc
2019-01-02 21:41 - 2018-07-12 21:11 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 21:41 - 2018-07-12 21:11 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-02 20:25 - 2017-12-16 11:22 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-01-02 19:09 - 2017-12-16 11:23 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-01-02 19:05 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-12-31 19:38 - 2017-12-16 12:00 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2018-12-31 19:35 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Help
2018-12-31 19:23 - 2017-12-16 11:23 - 000000000 ____D C:\Program Files (x86)\Intel
2018-12-31 18:03 - 2018-06-14 12:20 - 000519726 _____ C:\WINDOWS\system32\perfh008.dat
2018-12-31 18:03 - 2018-06-14 12:20 - 000085604 _____ C:\WINDOWS\system32\perfc008.dat
2018-12-31 18:03 - 2018-06-14 09:59 - 001372554 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-30 17:03 - 2017-12-16 14:01 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\ElevatedDiagnostics
2018-12-30 16:27 - 2017-12-16 11:07 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\Packages
2018-12-30 14:49 - 2017-12-16 13:43 - 000000000 ____D C:\Users\MIYIAGI\AppData\Local\NVIDIA
2018-12-30 12:48 - 2018-04-11 23:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-12-29 16:53 - 2018-06-14 10:08 - 000004592 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-12-29 16:53 - 2018-06-14 10:08 - 000004422 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-12-29 16:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-12-29 16:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-12-28 22:48 - 2017-12-27 20:14 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2018-12-28 21:09 - 2017-12-27 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2018-12-27 18:28 - 2018-10-01 21:03 - 000000000 ____D C:\Users\MIYIAGI\AppData\Roaming\Virtuali

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-06-14 09:38

==================== End of FRST.txt ============================

Meet & Greet! / MERRY CHRISTMAS!

« on: December 25, 2018, 06:21:25 AM »

MERRY CHRISTMAS TO EVERYBODY CELEBRATES THIS DAY.

May the Newborn Jesus bring peace, love and hope to every soul.

Computer Problems, Questions and Solutions! / Edit screenshots

« on: October 21, 2018, 08:05:50 AM »

I have a question:

How can I make edit signs on a screenshot I take, e.g. with snipping tool? I mean making a rectangular (or other shape) selection, arrows, highlight something etc. (see attachment)? Not just drawing by hand. Is there any program or Windows application that can do this (not Paint)?

LandzDown Lounge / World Teachers' Day

« on: October 05, 2018, 03:36:59 PM »

The 5th of October is the World Teachers' Day.

A big THANK YOU to all my teachers here in LzD, especially Corrine.

Happy Teachers' Day!

Internet / Downloading from Youtube

« on: October 03, 2018, 06:36:15 PM »

I used several Firefox add ons, which helped me to download from Youtube files in different format, e.g. mp4 and mp3. I found that the most functional were two: Download flash and video, and mp3 Youtube podcaster. Unfortunately they don't work anymore. To do my job I started using this page, which has the possibility to convert the Youtube videos to the format you like. Today, I used this page to downoad an mp3. I noticed that it warned me to disable the Ad-blocker, and I did. Many advertisements appeared (you are a winner ..., play this game etc.), but I just entered the video address and proceeded to convert to the mp3, ignoring MBAM warning about a fraud page and for malvertising.

Questions:
1. It's obvious that the page is a trap for fraud and malware dowload. But this is related to the advertisements, right?
2. Is there any good alternative to the add ons I mentioned above for downloading from Youtube in mp3 and mp4?

Computer Problems, Questions and Solutions! / Documents size is very small!

« on: September 16, 2018, 03:37:43 PM »

I have a problem ... again. And this time it is all mine...

I am trying to back up the content of all my libraries in an external hard disk. OK. I did it.

BUT: My Documents content is shown as 3,52 GB only! Both in the computer and in the external hard disk!

In my other external (has a back up from February 2017), Documents' content has a normal size: 92 GB.

I tried to see if something is missing but I can't say.

I attach a photo from computer's Documents and from the external's Documents.

Computer Problems, Questions and Solutions! / I just deleted Windows OS

« on: August 30, 2018, 07:06:15 PM »

Hello!

I was searching for a section that says Computers HUGE PROBLEMS and SOLUTIONS, but I found this one as the most similar...

What happened:

1. I had a visit from someone I respect very much, on Monday. My ex advisor-Professor at University.
2. We talked about her old computer, that it needs to be fixed, that needs Windows 10 (it was with 7).
3. She didn't mind if all her documents and settings were deleted.
4. I told her that I could upgrade the computer, and so she brought me the computer today... I have a usb stick -> Windows 10 installation media, so I thought that everything would be simple.

BUT OF COURSE NOTHING IS SIMPLE IN LIFE!

What I did and didn't do:

1. I inserted the usb stick in the usb port of the computer (Sony Vaio).
2. I didn't check the Windows Version.
3. I started the computer.
4. The installation began. I chose to delete everything.
5. I formatted the two partitions (and so I deleted everything.

).
6. I got the message that Windows cannot be installed. I should check the disk controller in the bios.
7. I stopped the installation, went to the Bios but there is not such a thing.
8. I ... checked the Windows label on the back: Windows Vista.

AND NOW I'M IN A PANIC!

What can I do?

The facts:

1. The computer has no operation system!

2. I probably can't install Windows 10 (for any case I am downloading the ISO file to burn it to a dvd, but I will not have a dvd till tomorrow I hope!).

3. I thought that I would not need LzD this time. Besides, it's not the first time I would reinstall Windows...

4. I am not as clever as I think.

5. The owner is my Professor!

HELP.... $:-\$

Meet & Greet! / Happy Birthday, Corrine!

« on: August 04, 2018, 08:05:04 PM »

Here is already 5th of August. So...

Wishing you a thousand of Happy Birthdays!

Analysis and Malware Removal / Another infected computer

« on: June 23, 2018, 08:52:51 AM »

This is a friend's computer. I made some ordinary user's cleaning last year, but it seems now that it needs an expert's hand to find itself again.

These are the FRST logs:

FRST log (PART I)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.06.2018
Ran by Rodoula (administrator) on NICROD (23-06-2018 12:28:05)
Running from C:\Users\Rodoula\Desktop
Loaded Profiles: Rodoula (Available Profiles: Rodoula)
Platform: Windows 10 Home Version 1803 17134.81 (X64) Language: Greek (Greece)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Integral\IntegralCrawler.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.16.17656.18052-0\MsMpEng.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.16.17656.18052-0\NisSrv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Users\Rodoula\AppData\Local\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Rodoula\AppData\Local\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\OpenWith.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\OpenWith.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.PeopleExperienceHost_cw5n1h2txyewy\PeopleExperienceHost.exe
(Microsoft Corporation) C:\Windows\System32\OpenWith.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6839952 2014-10-20] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491632 2012-09-10] (CyberLink Corp.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-3414196017-733389354-2935765532-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-3414196017-733389354-2935765532-1001\...\Run: [WinPatrol] => C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe [1223560 2017-05-08] (Ruiware)
HKU\S-1-5-21-3414196017-733389354-2935765532-1001\...\Run: [Google Update] => C:\Users\Rodoula\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe [601680 2018-05-18] (Google Inc.)
HKU\S-1-5-21-3414196017-733389354-2935765532-1001\...\RunOnce: [Uninstall 18.065.0329.0002\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Rodoula\AppData\Local\Microsoft\OneDrive\18.065.0329.0002\amd64"
HKU\S-1-5-21-3414196017-733389354-2935765532-1001\...\RunOnce: [Uninstall 18.065.0329.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Rodoula\AppData\Local\Microsoft\OneDrive\18.065.0329.0002"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6942086f-0ff7-4045-914f-fcdd1e88d71f}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{9c788798-6e50-42b9-9664-c6a77b4b0b36}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQALL13/23
HKU\S-1-5-21-3414196017-733389354-2935765532-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQALL13/23
SearchScopes: HKLM -> {21C9CF5C-D0AD-40E0-AD55-C33DF40F6E8D} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://gr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPNTDF
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://gr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPNTDF
SearchScopes: HKU\S-1-5-21-3414196017-733389354-2935765532-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://gr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPNTDF
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.6.255\AVG Web TuneUp.dll => No File
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll => No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\OnlineBanking\online_banking_bho.dll => No File
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)

FireFox:
========
FF DefaultProfile: glun30nm.default
FF ProfilePath: C:\Users\Rodoula\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\glun30nm.default [2018-06-20]
FF Homepage: Moonchild Productions\Pale Moon\Profiles\glun30nm.default -> hxxp://www.google.com
FF Extension: (Adblock Latitude) - C:\Users\Rodoula\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\glun30nm.default\Extensions\adblocklatitude@addons.palemoon.org.xpi [2018-04-10] [Legacy] [not signed]
FF Extension: (Youtube MP3 Podcaster) - C:\Users\Rodoula\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\glun30nm.default\Extensions\youtubemp3podcaster@jeremy.d.gregorio.com [2017-06-23] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-06-22] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-22] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin HKU\S-1-5-21-3414196017-733389354-2935765532-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Rodoula\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin HKU\S-1-5-21-3414196017-733389354-2935765532-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Rodoula\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> mysearch.avg.com
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\Rodoula\AppData\Local\Google\Chrome\User Data\Default [2018-06-23]
CHR Extension: (Docs) - C:\Users\Rodoula\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-05-14]
CHR Extension: (AVG Secure Search) - C:\Users\Rodoula\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2016-10-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Rodoula\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-14]
CHR Extension: (Chrome Media Router) - C:\Users\Rodoula\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-07]
CHR Profile: C:\Users\Rodoula\AppData\Local\Google\Chrome\User Data\System Profile [2016-09-12]
CHR HKU\S-1-5-21-3414196017-733389354-2935765532-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332656 2018-05-02] (HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc.)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-14] (Realsil Microelectronics Inc.) [File not signed]
R2 Integral Crawler; C:\Program Files\Integral\IntegralCrawler.exe [3919224 2013-03-07] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6479136 2018-03-27] (Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [253960 2016-04-28] (Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\NisSrv.exe [4682552 2018-05-31] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MsMpEng.exe [101096 2018-05-31] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253664 2018-06-11] (Malwarebytes)
R3 netr28x; C:\WINDOWS\System32\drivers\netr28x.sys [2537984 2018-04-12] (MediaTek Inc.)
S3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-29] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [52904 2016-04-28] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2018-05-31] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [313384 2018-05-31] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-05-31] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34960 2018-02-02] (HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-23 12:28 - 2018-06-23 12:29 - 000018553 _____ C:\Users\Rodoula\Desktop\FRST.txt
2018-06-23 12:27 - 2018-06-23 12:28 - 000000000 ____D C:\FRST
2018-06-23 12:25 - 2018-06-23 12:25 - 002412544 _____ (Farbar) C:\Users\Rodoula\Desktop\FRST64.exe
2018-06-23 12:19 - 2018-06-23 12:20 - 001773056 _____ (Farbar) C:\Users\Rodoula\Desktop\FRST.exe
2018-06-20 14:29 - 2018-06-20 14:29 - 004040172 _____ C:\Users\Rodoula\Downloads\christmas-after-party-escape (1).swf
2018-06-20 14:28 - 2018-06-20 14:28 - 004040172 _____ C:\Users\Rodoula\Downloads\Unconfirmed 276316.crdownload
2018-06-20 14:23 - 2018-06-20 14:24 - 040552456 _____ C:\Users\Rodoula\Downloads\(HQ) Seasons Of Love (Ζήσε με αγάπη) - RENT - New Video Clip (Σφεντόνα 2010-11).mp4
2018-06-11 20:40 - 2018-06-11 21:17 - 000136986 _____ C:\Users\Rodoula\Downloads\tf16410086.xlsx
2018-06-11 14:57 - 2018-06-11 14:57 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-06-11 14:56 - 2018-06-11 14:56 - 000001417 _____ C:\Users\Rodoula\Desktop\Microsoft Edge.lnk
2018-06-11 04:16 - 2018-06-13 18:48 - 000000000 ____D C:\Users\Rodoula\AppData\Local\PlaceholderTileLogoFolder
2018-06-11 02:22 - 2018-06-22 06:03 - 000000000 ____D C:\Windows.old
2018-06-11 02:15 - 2018-06-11 02:15 - 000000020 ___SH C:\Users\Rodoula\ntuser.ini
2018-06-11 02:14 - 2018-06-11 02:22 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-06-11 02:13 - 2018-06-23 12:24 - 000003362 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3414196017-733389354-2935765532-1001
2018-06-11 02:13 - 2018-06-18 21:10 - 000003254 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForRodoula
2018-06-11 02:13 - 2018-06-11 02:14 - 000003632 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-06-11 02:13 - 2018-06-11 02:14 - 000003524 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3414196017-733389354-2935765532-1001UA
2018-06-11 02:13 - 2018-06-11 02:14 - 000003256 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3414196017-733389354-2935765532-1001Core
2018-06-11 02:13 - 2018-06-11 02:14 - 000003106 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6DCF9C0B-E7D1-41C6-8526-B8BD81882856}
2018-06-11 02:13 - 2018-06-11 02:14 - 000002810 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3414196017-733389354-2935765532-1001
2018-06-11 02:13 - 2018-06-11 02:14 - 000002318 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3414196017-733389354-2935765532-500
2018-06-11 02:13 - 2018-06-11 02:14 - 000002316 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2018-06-11 02:13 - 2018-06-11 02:13 - 000003408 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-06-11 02:13 - 2018-06-11 02:13 - 000003016 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2018-06-11 02:13 - 2018-06-11 02:13 - 000002866 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2018-06-11 02:13 - 2018-06-11 02:13 - 000002352 _____ C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
2018-06-11 02:13 - 2018-06-11 02:13 - 000002340 _____ C:\WINDOWS\System32\Tasks\MirageAgent
2018-06-11 02:13 - 2018-06-11 02:13 - 000002048 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2018-06-11 02:13 - 2018-06-11 02:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-06-11 02:13 - 2018-06-11 02:13 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2018-06-11 02:13 - 2018-06-11 02:13 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2018-06-11 02:13 - 2018-06-11 02:13 - 000000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2018-06-11 02:13 - 2012-12-26 03:47 - 000002320 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-666577921-3711047924-659843981-500
2018-06-11 02:13 - 2012-08-20 11:58 - 000003592 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-162013581-403268946-3148210563-500
2018-06-11 02:12 - 2018-06-11 02:14 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-06-11 02:11 - 2018-06-11 02:11 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-06-11 02:10 - 2018-06-11 02:13 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2018-06-11 02:10 - 2018-06-11 02:13 - 000007623 _____ C:\WINDOWS\diagerr.xml
2018-06-11 02:06 - 2018-06-11 02:06 - 025844224 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 023862784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 022709248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 022001664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 020383712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 019399168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 013570560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 012712960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 011903488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 007582720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 006816848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 006567904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 006527568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 005782528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 004867072 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 004787960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 004563968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 004402768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 004336128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 002841312 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 002564984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 002536056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 002371392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 002331576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 002242208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 002084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-06-11 02:06 - 2018-06-11 02:06 - 002016256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-06-11 02:06 - 2018-06-11 02:06 - 001947808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001148800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001097648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001034096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001017088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001017056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 001012408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000988128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000861608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000861096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000860160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000786168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000713368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000653208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000457144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000416120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSHEIF.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSHEIF.dll
2018-06-11 02:06 - 2018-06-11 02:06 - 000018716 _____ C:\WINDOWS\SysWOW64\srms-apr.dat
2018-06-11 02:05 - 2018-06-11 02:05 - 021389360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 016592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 013873152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 009159064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 008623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 007519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 007436632 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 006661120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 006044104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 005951488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 004929024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 004706816 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 004372480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 004070400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 003733312 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 003655168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 003440640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 003389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 003283400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 003086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002961408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002900480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002896896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 002836376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 002753040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002699776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002486984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002422168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 002366976 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 002178136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 002170368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001953280 _____ C:\WINDOWS\system32\rdpnano.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001800080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001767936 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001665920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001649760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001636352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001634808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001585664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001565592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001534976 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001490144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001462288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001456640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001456616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-06-11 02:05 - 2018-06-11 02:05 - 001454024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001426328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 001258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001210880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001209792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001191168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001174424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 001160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001140576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-06-11 02:05 - 2018-06-11 02:05 - 001108992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001063320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-06-11 02:05 - 2018-06-11 02:05 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001034624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 001033728 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 001011968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000983008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 000976384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2018-06-11 02:05 - 2018-06-11 02:05 - 000944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000941056 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000885848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2018-06-11 02:05 - 2018-06-11 02:05 - 000849408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000792984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000788216 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000776880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000759192 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000748504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000735560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000722288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000707480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-06-11 02:05 - 2018-06-11 02:05 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000665320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs4.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000613144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000606448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000604568 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs3.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-06-11 02:05 - 2018-06-11 02:05 - 000567176 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 000567144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000560488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000474624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs2.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000473496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs1.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000434584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 000413080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000382872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000347704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000308408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000286200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000272288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000269224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win81.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000193936 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000170904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win8rtm.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000134552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000131232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000130456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppHostRegistrationVerifier.exe
2018-06-11 02:05 - 2018-06-11 02:05 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000105368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000101288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000094104 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000089984 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000088472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000077040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys
2018-06-11 02:05 - 2018-06-11 02:05 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000018716 _____ C:\WINDOWS\system32\srms-apr.dat
2018-06-11 02:05 - 2018-06-11 02:05 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-06-11 02:05 - 2018-06-11 02:05 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2018-06-11 01:36 - 2018-06-11 01:36 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-06-11 01:36 - 2018-06-11 01:36 - 000000000 ____D C:\inetpub
2018-06-11 01:35 - 2018-06-11 02:22 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-06-11 01:35 - 2018-06-11 01:35 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-06-11 01:35 - 2018-06-11 01:35 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-06-11 01:35 - 2018-06-11 01:35 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-06-11 01:35 - 2018-06-11 01:35 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-06-11 01:35 - 2018-06-11 01:35 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-06-11 01:35 - 2018-06-11 01:35 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-06-11 01:35 - 2018-06-11 01:35 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2018-06-11 01:35 - 2018-06-11 01:35 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-06-11 01:35 - 2018-06-11 01:35 - 000000000 ____D C:\Program Files\MSBuild
2018-06-11 01:35 - 2018-06-11 01:35 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-06-11 01:33 - 2018-06-11 01:33 - 004492288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-06-11 01:33 - 2018-06-11 01:33 - 003398144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-06-11 01:33 - 2018-06-11 01:33 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2018-06-11 01:33 - 2018-06-11 01:33 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2018-06-11 01:33 - 2018-06-11 01:33 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2018-06-11 01:33 - 2018-06-11 01:33 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2018-06-11 01:33 - 2018-06-11 01:33 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2018-06-11 01:33 - 2018-06-11 01:33 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2018-06-11 01:32 - 2018-06-23 12:23 - 000002405 _____ C:\Users\Rodoula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-06-11 01:32 - 2018-06-11 02:15 - 000000000 ____D C:\Users\Rodoula
2018-06-11 01:32 - 2018-06-11 01:48 - 000000000 ____D C:\Users\Rodoula\Documents\hp.system.package.metadata
2018-06-11 01:32 - 2018-06-11 01:39 - 000000000 ____D C:\Users\Rodoula\AppData\Local\Microsoft Help
2018-06-11 01:32 - 2018-06-11 01:32 - 006238208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons000c.dll
2018-06-11 01:32 - 2018-06-11 01:32 - 006238208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons000c.dll
2018-06-11 01:32 - 2018-06-11 01:32 - 002356736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000c.dll
2018-06-11 01:32 - 2018-06-11 01:32 - 002268672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000c.dll
2018-06-11 01:32 - 2018-06-11 01:32 - 000000000 _SHDL C:\Users\Rodoula\Τα έγγραφά μου
2018-06-11 01:32 - 2018-06-11 01:32 - 000000000 _SHDL C:\Users\Rodoula\Documents\Τα βίντεό μου
2018-06-11 01:32 - 2018-06-11 01:32 - 000000000 _SHDL C:\Users\Rodoula\Documents\Οι εικόνες μου
2018-06-11 01:32 - 2018-06-11 01:32 - 000000000 _SHDL C:\Users\Rodoula\Documents\Η μουσική μου
2018-06-11 01:32 - 2018-06-11 01:32 - 000000000 _SHDL C:\Users\Rodoula\AppData\Roaming\Microsoft\Windows\Start Menu\Προγράμματα
2018-06-11 01:32 - 2015-10-09 08:19 - 000000000 ____D C:\Users\Rodoula\AppData\Roaming\TuneUp Software
2018-06-11 01:32 - 2014-11-04 21:31 - 000000000 ____D C:\Users\Rodoula\Documents\hp.applications.package.appdata
2018-06-11 01:32 - 2014-09-24 19:17 - 000000369 _____ C:\Users\Rodoula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2018-06-11 01:32 - 2014-09-24 19:17 - 000000369 _____ C:\Users\Rodoula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2018-06-11 01:31 - 2018-06-11 01:49 - 001678942 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-06-11 01:28 - 2018-06-11 01:28 - 000000000 ____D C:\ProgramData\USOShared
2018-06-11 01:28 - 2018-04-12 02:33 - 002752000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-06-11 01:23 - 2018-06-22 17:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-06-11 01:23 - 2018-06-11 01:41 - 000413120 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-06-05 13:10 - 2018-06-11 02:16 - 000000000 ___DC C:\WINDOWS\Panther
2018-05-28 09:28 - 2018-05-28 09:28 - 000035328 _____ C:\Users\Rodoula\Downloads\11_arithmitiki_grammi (1).pub
2018-05-28 08:45 - 2018-05-28 08:45 - 000620817 _____ C:\Users\Rodoula\Downloads\ACLASSJUNE2016.zip
2018-05-27 11:29 - 2018-05-27 11:37 - 159010449 _____ C:\Users\Rodoula\Downloads\math_a1.zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-23 12:23 - 2014-11-05 15:05 - 000000000 __RDO C:\Users\Rodoula\OneDrive
2018-06-23 12:17 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-06-23 12:15 - 2018-04-12 02:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-06-21 12:28 - 2015-10-10 11:14 - 000000000 ____D C:\Users\Rodoula\AppData\Roaming\vlc
2018-06-21 11:42 - 2018-04-12 02:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-06-20 21:59 - 2016-09-26 20:59 - 000000000 ____D C:\Users\Rodoula\Desktop\RODOULA5
2018-06-20 14:29 - 2018-04-12 02:36 - 000000000 ____D C:\WINDOWS\INF
2018-06-19 22:17 - 2016-10-19 22:11 - 000000000 ____D C:\ProgramData\MCShield
2018-06-18 21:10 - 2017-01-17 15:14 - 000000354 _____ C:\WINDOWS\Tasks\HPCeeScheduleForRodoula.job
2018-06-18 20:05 - 2017-12-22 18:41 - 000000000 ____D C:\Users\Rodoula\AppData\Roaming\dvdcss
2018-06-18 04:15 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-06-18 04:15 - 2018-04-12 02:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-06-15 22:31 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-06-13 05:45 - 2013-09-02 21:11 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-06-13 05:39 - 2017-10-12 18:47 - 133315992 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-06-13 05:39 - 2013-09-02 21:11 - 133315992 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-06-12 20:44 - 2018-05-14 14:32 - 000002544 _____ C:\Users\Rodoula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-12 20:44 - 2018-05-14 14:32 - 000002507 _____ C:\Users\Rodoula\Desktop\Google Chrome.lnk
2018-06-11 14:59 - 2018-02-06 21:14 - 000000000 ____D C:\Users\Rodoula\AppData\Local\Packages
2018-06-11 14:56 - 2018-04-12 02:38 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-06-11 03:57 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\appcompat
2018-06-11 02:22 - 2018-05-11 23:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-06-11 02:22 - 2018-04-12 02:41 - 000000000 ____D C:\WINDOWS\Setup
2018-06-11 02:22 - 2018-04-12 02:38 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-06-11 02:22 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-06-11 02:22 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-06-11 02:22 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\system32\spool
2018-06-11 02:22 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\system3

LandzDown Lounge / 21st of June: Happy Music Day

« on: June 21, 2018, 10:26:34 AM »

21st of June

The most beautiful music in the world is your own heart beat.
It gives an assurance that you will survive even when the whole world leaves you alone...

Computer Problems, Questions and Solutions! / Problem with folders

« on: June 07, 2018, 11:30:30 AM »

... Another problem here from me... And it's very very annoying!

Every time I'm trying to make something with a folder, I get the message that the action cannot be completed, as the folder is opened in another program. The problem is fixed, only with a restart, but: only one action can be done after a restart!

E.g.

I have two files and I want to move them in a folder. I get the message above. I restart the computer, and then, one of the two files gets into the folder. I'm trying to move the other one, I get the message. I restart the computer, and the second folder moves into the folder. I'm trying to rename the folder, I get the message! I restart the computer, and I can rename the folder!

I tried several things before decide to write about it here (http://www.thewindowsclub.com/action-cant-be-completed-because-file-is-open), but nothing seems to fix the problem! I noticed this issue a couple of months ago, but I didn't pay attention. Now I see that it's really a problem... Any suggestions?