Here is the last attached FRST log from the previous thread.
Edit by Corrine to paste logs:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18.02.2019
Ran by Edison (administrator) on EDZ-PC (20-02-2019 16:02:15)
Running from C:\Users\Edison\Desktop\FRST\Archive
Loaded Profiles: Edison (Available Profiles: For Fix Account & Edison & Administrator & Guest)
Platform: Windows 10 Enterprise Version 1809 17763.253 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> fontdrvhost.exe
Failed to access process -> fontdrvhost.exe
Failed to access process -> dwm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1809.2-0\MsMpEng.exe
Failed to access process -> dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(VS Revo Group) C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Corporation) C:\Windows\System32\SnippingTool.exe
(Microsoft Corporation) C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftPdfReader.exe
Failed to access process -> Windows.WARP.JITService.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftPdfReader.exe
Failed to access process -> Windows.WARP.JITService.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.10\bin\TrayPopupE\TrayTipAgentE.exe [255072 2014-11-18] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKLM\...\Policies\Explorer: [Norecentdocsnethood] 1
HKLM\...\Policies\Explorer: [MemCheckBoxInRunDlg] 1
HKLM\...\Policies\Explorer: [NoAutorun] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1524516680-1023419535-1535688680-1046\...\Policies\Explorer: [HideSCANetwork] 0
HKU\S-1-5-21-1524516680-1023419535-1535688680-1046\...\Policies\Explorer: [HideSCAVolume] 0
HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\System32\frapsv64.dll [71680 2013-02-26] (Beepa P/L)
HKLM\...\Drivers32: [vidc.lags] => C:\WINDOWS\System32\lagarith.dll [148992 2013-12-17] ( )
HKLM\...\Drivers32: [vidc.pDAD] => C:\WINDOWS\System32\prodad-codec.dll [607256 2016-02-19] (proDAD GmbH)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\System32\rtvcvfw64.dll [246272 2012-09-29] ()
HKLM\...\Drivers32-x32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L)
HKLM\...\Drivers32-x32: [msacm.vorbis] => C:\WINDOWS\SysWOW64\vorbis.acm [1554944 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
HKLM\...\Drivers32-x32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-29] ()
HKLM\...\Drivers32-x32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (On2.com)
HKLM\...\Drivers32-x32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (On2.com)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
ShellExecuteHooks-x32: No Name - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - -> No File
GroupPolicy\User: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\PKG\LPBar64.dll => No File
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: ATLAS Toolbar -> {3C6301ED-0F78-4AF2-8150-D9C052361A8E} -> C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL [2011-07-06] (FUJITSU LIMITED -> FUJITSU LIMITED)
BHO-x32: LEC -> {4A241D35-F7EB-401b-8C5B-A904A50F280E} -> C:\Program Files (x86)\Power Translator 15\Applications\LEC IE Translation Extension.dll [2011-07-05] (Language Engineering Company, LLC -> Language Engineering Corporation, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\PKG\LPBar.dll => No File
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\PKG\LPBar64.dll No File
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - ATLAS Toolbar - {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL [2011-07-06] (FUJITSU LIMITED -> FUJITSU LIMITED)
Toolbar: HKLM-x32 - LEC - {1DBAB667-A486-421e-AFE4-CF07DD0088E5} - C:\Program Files (x86)\Power Translator 15\Applications\LEC IE Translation Extension.dll [2011-07-05] (Language Engineering Company, LLC -> Language Engineering Corporation, LLC)
Toolbar: HKLM-x32 - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\PKG\LPBar.dll No File
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-06-12] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Edison\AppData\Roaming\Mozilla\Firefox\Profiles\2n2dkinv.default-1444036946421 [2019-02-15]
FF Extension: (Clipboard Inserter) - C:\Users\Edison\AppData\Roaming\Mozilla\Firefox\Profiles\2n2dkinv.default-1444036946421\Extensions\@clipboard-inserter.xpi [2018-12-03]
FF Extension: (youtube-auto-loop) - C:\Users\Edison\AppData\Roaming\Mozilla\Firefox\Profiles\2n2dkinv.default-1444036946421\Extensions\
jid1-n8tWKfp2h9JqDo@jetpack.xpi [2018-12-03]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\Edison\AppData\Roaming\Mozilla\Firefox\Profiles\2n2dkinv.default-1444036946421\Extensions\
jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2018-12-03] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Rikaichan Japanese-English Dictionary File) - C:\Users\Edison\AppData\Roaming\Mozilla\Firefox\Profiles\2n2dkinv.default-1444036946421\Extensions\
rikaichan-jpen@polarcloud.com [2018-09-30] [Legacy]
FF Extension: (uBlock Origin) - C:\Users\Edison\AppData\Roaming\Mozilla\Firefox\Profiles\2n2dkinv.default-1444036946421\Extensions\
uBlock0@raymondhill.net.xpi [2018-12-03]
FF Extension: (Rikaisama) - C:\Users\Edison\AppData\Roaming\Mozilla\Firefox\Profiles\2n2dkinv.default-1444036946421\Extensions\{697F6AFE-5321-4DE1-BFE6-4471C3721BD4} [2018-09-30] [Legacy]
FF Extension: (Webroot Password Manager) - C:\Users\Edison\AppData\Roaming\Mozilla\Firefox\Profiles\2n2dkinv.default-1444036946421\Extensions\{8ac62a8b-8b3f-43ba-9b1a-90c299b9dfda} [2019-02-14]
FF Extension: (Telemetry coverage) - C:\Users\Edison\AppData\Roaming\Mozilla\Firefox\Profiles\2n2dkinv.default-1444036946421\features\{48cfb87e-2c43-4828-9b7f-e930943c5c8f}\
telemetry-coverage-bug1487578@mozilla.org.xpi [2018-12-03] [Legacy]
FF HKLM\...\Firefox\Extensions: [
web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2018-02-22]
FF HKLM\...\Firefox\Extensions: [
webrootsecure@webroot.com] - C:\ProgramData\WRData\PKG\FF_XPI\wts_ff_extension.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [
web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_142.dll [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-13] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw.dll [2018-03-09] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-01] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-21] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @protectdisc.com/NPMPDRM -> C:\Program Files (x86)\Common Files\mpDRM\NPMPDRM.dll [2010-02-03] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-10] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-10] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-10] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2018-02-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}&atb=v142-4__
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Profile: C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default [2019-02-20]
CHR Extension: (Slides) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-30]
CHR Extension: (Docs) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-30]
CHR Extension: (Google Drive) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-30]
CHR Extension: (YouTube) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-30]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-01-24]
CHR Extension: (uBlock Origin) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-02-19]
CHR Extension: (Google Search) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2018-09-30]
CHR Extension: (Tampermonkey) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-12-20]
CHR Extension: (Session Buddy) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2018-09-30]
CHR Extension: (Adobe Acrobat) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-09-30]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2018-11-09]
CHR Extension: (Sheets) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-30]
CHR Extension: (Video Downloader PLUS) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2019-01-26]
CHR Extension: (Pixiv Downloader) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnbkeopcpjainobjebddfcnnknmfipid [2019-02-20]
CHR Extension: (HTTPS Everywhere) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2019-02-01]
CHR Extension: (Google Docs Offline) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-30]
CHR Extension: (Unseen for Facebook) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiomcgpfgkeefipihnplhadgdoollmap [2018-10-16]
CHR Extension: (Auto Replay for YouTube™) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\kanbnempkjnhadplbfgdaagijdbdbjeb [2018-10-08]
CHR Extension: (UltraSurf Security, Privacy & Unblock VPN) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjnbclmflcpookeapghfhapeffmpodij [2018-09-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-30]
CHR Extension: (Simple EPUB Reader) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojhbgcchcbdjdenibfmjofobklkkhofc [2018-09-30]
CHR Extension: (Gmail) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-09-30]
CHR Extension: (Chrome Media Router) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-19]
CHR Profile: C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-02-14]
CHR Extension: (chrome_filter) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\Guest Profile\Extensions\fijhpgffcemhpoaeihodebaclfidfcak [2019-02-14]
CHR Profile: C:\Users\Edison\AppData\Local\Google\Chrome\User Data\System Profile [2019-02-14]
CHR Extension: (chrome_filter) - C:\Users\Edison\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\fijhpgffcemhpoaeihodebaclfidfcak [2019-02-14]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - <no Path/update_url>
CHR HKLM\...\Chrome\Extension: [ngkhgikojglcgnckopipfdajaifmmnnc] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [bckdajmkckkeodiknclojpadabahafnh] - C:\Program Files (x86)\LEC\Translate DotNet\ChromeAddon.crx [2011-03-30]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kjeghcllfecehndceplomkocgfbklffd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngkhgikojglcgnckopipfdajaifmmnnc] - hxxp://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2319848 2018-01-05] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-02-02] (BattlEye Innovations e.K. -> )
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [706120 2018-11-01] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7112264 2018-10-03] (GOG Sp. z o.o. -> GOG.com)
S3 LEC TranslateDotNet Server; C:\Program Files (x86)\Power Translator 15\LogoMedia TranslateDotNet Server.exe [1955520 2011-07-05] (Language Engineering Company, LLC -> Language Engineering Corporation, LLC)
S3 LicCtrlService; C:\WINDOWS\runservice.exe [2560 2013-09-09] () [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
S3 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S3 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2012-03-28] (Nalpeiron LTD -> Nalpeiron Ltd.) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-12-29] (Electronic Arts, Inc. -> Electronic Arts)
S3 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390672 2012-08-08] (CyberLink -> )
S4 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381128 2019-01-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [294168 2018-03-08] (Reason Software Company Inc. -> Reason Software Company Inc.)
S4 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [41952 2016-10-27] (VIA Technologies, Inc -> VIA Technologies, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\NisSrv.exe [3847376 2018-10-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MsMpEng.exe [114200 2018-10-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
S4 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> )
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2011-05-05] (Tages SA -> )
R3 cykbfltrService; C:\WINDOWS\system32\DRIVERS\cykbfltr.sys [19968 2015-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Cypress Semiconductor, Inc.)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [34368 2018-01-17] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFlt; C:\WINDOWS\System32\drivers\EPMVolFlt.sys [30280 2018-07-19] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
R1 HBtnKey; C:\WINDOWS\system32\DRIVERS\wstbtndb.sys [9856 2013-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Lenovo)
R1 HWiNFO32; C:\WINDOWS\SysWoW64\drivers\HWiNFO64A.SYS [27552 2017-01-03] (Martin Malik - REALiX -> REALiX(tm))
S3 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [1094792 2018-12-06] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2013-07-02] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 LGBusEnum; C:\WINDOWS\system32\drivers\LGBusEnum.sys [37408 2015-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Logitech Inc.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Logitech Inc.)
S3 LGVirHid; C:\WINDOWS\system32\drivers\LGVirHid.sys [26912 2015-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Logitech Inc.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2011-05-05] (Tages SA -> )
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4aa19ae78d94d8a3\nvlddmkm.sys [20706184 2019-02-01] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2016-06-15] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 RAMDiskVE; C:\WINDOWS\System32\Drivers\RAMDiskVE.sys [74992 2013-03-04] (Dataram -> Dataram, Inc.)
S3 Revoflt; C:\Windows\SysWOW64\DRIVERS\revoflt.sys [40240 2016-12-21] (VS Revo Group -> VS Revo Group)
S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [26368 2015-07-13] (Daniel Terhell -> Resplendence Software Projects Sp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [950784 2017-03-20] (Realtek Semiconductor Corp. -> Realtek )
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [41512 2018-01-11] (Intel Corporation -> )
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-12] (Synaptics Incorporated -> Synaptics Incorporated)
S3 tap0901; C:\WINDOWS\system32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2018-06-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 VIAHdAudAddService; C:\WINDOWS\system32\drivers\viahduaa.sys [709856 2016-10-27] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46184 2018-10-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [352424 2018-10-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60584 2018-10-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-20 17:45 - 2019-02-20 02:12 - 000000000 ____D C:\Windows.old
2019-02-20 17:33 - 2019-02-20 17:45 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-02-20 17:33 - 2019-02-20 17:33 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2019-02-20 17:31 - 2019-02-20 17:33 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-02-20 17:31 - 2019-02-20 17:31 - 000008192
_ C:\WINDOWS\system32\config\userdiff
2019-02-20 17:30 - 2019-02-20 17:30 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-02-20 17:30 - 2019-02-20 17:30 - 000000000 ____D C:\Program Files\MSBuild
2019-02-20 17:30 - 2019-02-20 17:30 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-02-20 17:30 - 2019-02-20 17:30 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-02-20 17:29 - 2019-02-20 17:29 - 001167960
_ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-02-20 17:29 - 2019-02-20 17:29 - 000780376
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-02-20 17:29 - 2019-02-20 17:29 - 000126064
_ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-02-20 17:29 - 2019-02-20 17:29 - 000104560
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-02-20 17:29 - 2019-02-20 17:29 - 000036896
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-02-20 17:29 - 2019-02-20 17:29 - 000035440
_ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-02-20 16:01 - 2019-02-20 16:01 - 000000000 ____D C:\Users\Edison\Desktop\FRST
2019-02-20 15:32 - 2019-02-20 15:32 - 000000000
_ C:\Users\Edison\Desktop\New Text Document (2).txt
2019-02-20 12:54 - 2019-02-20 12:54 - 000000000
_ C:\Users\Edison\Desktop\New Text Document.txt
2019-02-20 12:29 - 2019-02-20 12:21 - 000109268
_ C:\Users\Edison\Desktop\CA - MR EDDIE ADLAO .pdf
2019-02-20 10:59 - 2019-02-20 10:59 - 000000000 ____D C:\SFCFix
2019-02-20 10:57 - 2019-02-20 11:43 - 000000000 ____D C:\Users\Edz
2019-02-20 10:56 - 2019-02-20 10:56 - 000000214
_ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2019-02-20 04:30 - 2019-02-20 04:30 - 000003374
_ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1524516680-1023419535-1535688680-500
2019-02-20 04:30 - 2019-02-20 04:30 - 000000000 ___RD C:\Users\Administrator\OneDrive
2019-02-20 04:28 - 2019-02-20 04:28 - 000000000 ____D C:\Users\Administrator\AppData\Local\Publishers
2019-02-20 04:27 - 2019-02-20 04:27 - 000000000 ___HD C:\Users\Administrator\MicrosoftEdgeBackups
2019-02-20 04:27 - 2019-02-20 04:27 - 000000000 ____D C:\Users\Administrator\AppData\Local\VS Revo Group
2019-02-20 04:12 - 2019-02-20 04:12 - 000000616
_ C:\Users\Edison\Desktop\JRT.txt
2019-02-20 02:38 - 2019-02-20 02:38 - 000000258 __RSH C:\ProgramData\ntuser.pol
2019-02-20 02:33 - 2019-02-20 02:33 - 000003926
_ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-20 02:33 - 2019-02-20 02:33 - 000003926
_ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-20 02:33 - 2019-02-20 02:33 - 000003926
_ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-20 02:33 - 2019-02-20 02:33 - 000003894
_ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-20 02:33 - 2019-02-20 02:33 - 000003866
_ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-20 02:33 - 2019-02-20 02:33 - 000003858
_ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-20 02:33 - 2019-02-20 02:33 - 000003654
_ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-20 02:33 - 2019-02-20 02:33 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-02-20 02:33 - 2019-01-31 14:09 - 000001951
_ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2019-02-20 02:33 - 2019-01-31 04:09 - 000651248
_ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2019-02-20 02:33 - 2019-01-31 04:09 - 000124968
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2019-02-20 02:24 - 2019-02-20 02:24 - 000001446
_ C:\Users\Administrator\Desktop\Microsoft Edge.lnk
2019-02-20 02:24 - 2019-02-20 02:24 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2019-02-20 02:24 - 2019-02-20 02:24 - 000000000 ____D C:\Users\Administrator\AppData\Local\MicrosoftEdge
2019-02-20 02:22 - 2019-02-20 04:31 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2019-02-20 02:22 - 2019-02-20 04:30 - 000002391
_ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-02-20 02:22 - 2019-02-20 04:30 - 000000000 ____D C:\Users\Administrator
2019-02-20 02:22 - 2019-02-20 02:23 - 000000000 ____D C:\Users\Administrator\AppData\Local\Comms
2019-02-20 02:22 - 2019-02-20 02:22 - 000000604 __RSH C:\Users\Administrator\ntuser.pol
2019-02-20 02:22 - 2019-02-20 02:22 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2019-02-20 02:22 - 2019-02-20 02:22 - 000000000 ___RD C:\Users\Administrator\3D Objects
2019-02-20 02:22 - 2019-02-20 02:22 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2019-02-20 02:22 - 2018-03-22 13:51 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\IObit
2019-02-20 02:22 - 2017-02-26 14:16 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Macromedia
2019-02-20 02:22 - 2017-02-26 14:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\Microsoft Help
2019-02-20 02:22 - 2017-02-26 14:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\Google
2019-02-20 02:16 - 2019-02-20 02:16 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-02-20 02:13 - 2019-02-20 02:13 - 000000604 __RSH C:\Users\Edison\ntuser.pol
2019-02-20 02:13 - 2019-02-20 02:13 - 000000020 ___SH C:\Users\Edison\ntuser.ini
2019-02-20 02:12 - 2019-02-20 15:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-02-20 02:12 - 2019-02-20 02:12 - 000003764
_ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-02-20 02:12 - 2019-02-20 02:12 - 000003752
_ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-02-20 02:12 - 2019-02-20 02:12 - 000003446
_ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-02-20 02:12 - 2019-02-20 02:12 - 000003376
_ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1ce7ea85b1bb4cb
2019-02-20 02:12 - 2019-02-20 02:12 - 000003124
_ C:\WINDOWS\System32\Tasks\Tweaking.com - Registry Backup
2019-02-20 02:12 - 2019-02-20 02:12 - 000003122
_ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-02-20 02:12 - 2019-02-20 02:12 - 000002870
_ C:\WINDOWS\System32\Tasks\Core Temp Autostart Edison Main
2019-02-20 02:12 - 2019-02-20 02:12 - 000002860
_ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1524516680-1023419535-1535688680-1046
2019-02-20 02:12 - 2019-02-20 02:12 - 000002860
_ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1524516680-1023419535-1535688680-1045
2019-02-20 02:12 - 2019-02-20 02:12 - 000002860
_ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1524516680-1023419535-1535688680-1044
2019-02-20 02:12 - 2019-02-20 02:12 - 000002590
_ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2019-02-20 02:12 - 2019-02-20 02:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\WiseCleaner
2019-02-20 02:12 - 2019-02-20 02:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\Updates
2019-02-20 02:12 - 2019-02-20 02:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-1524516680-1023419535-1535688680-1046
2019-02-20 02:12 - 2019-02-20 02:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-1524516680-1023419535-1535688680-1043
2019-02-20 02:12 - 2019-02-20 02:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-1524516680-1023419535-1535688680-1038
2019-02-20 02:12 - 2019-02-20 02:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\REDUCE STUTTER FOLDER
2019-02-20 02:12 - 2019-02-20 02:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2019-02-20 02:12 - 2019-02-20 02:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\HardDiskSentinel
2019-02-20 02:12 - 2019-02-20 02:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\Games
2019-02-20 02:12 - 2018-03-20 04:00 - 000003696
_ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-20 02:12 - 2018-03-07 23:11 - 000003576
_ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-EDZ-PC-Edison Main
2019-02-20 02:12 - 2017-05-25 19:57 - 000003226
_ C:\WINDOWS\System32\Tasks\klcp_update
2019-02-20 02:12 - 2017-05-11 12:54 - 000003076
_ C:\WINDOWS\System32\Tasks\Windows Installer Update Task
2019-02-20 02:10 - 2019-02-20 02:11 - 000015243
_ C:\WINDOWS\diagwrn.xml
2019-02-20 02:10 - 2019-02-20 02:11 - 000015243
_ C:\WINDOWS\diagerr.xml
2019-02-20 02:05 - 2019-02-20 03:00 - 000840848
_ C:\WINDOWS\system32\PerfStringBackup.INI
2019-02-20 01:55 - 2019-02-20 01:55 - 000001576
_ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-02-20 01:52 - 2019-02-20 02:13 - 000000000 ____D C:\Users\Edison
2019-02-20 01:52 - 2019-02-20 02:05 - 000000000 ____D C:\Users\Guest
2019-02-20 01:52 - 2019-02-20 02:05 - 000000000 ____D C:\Users\For Fix Account
2019-02-20 01:52 - 2018-09-15 15:29 - 000001105
_ C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-02-20 01:52 - 2018-09-15 15:29 - 000001105
_ C:\Users\For Fix Account\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-02-20 01:52 - 2018-09-15 15:29 - 000001105
_ C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-02-20 01:51 - 2019-02-20 01:51 - 000000000 ____D C:\ProgramData\USOShared
2019-02-20 01:50 - 2018-09-15 15:28 - 002864640
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-02-20 01:47 - 2019-02-20 15:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-02-20 01:47 - 2019-02-20 02:38 - 005325200
_ C:\WINDOWS\system32\FNTCACHE.DAT
2019-02-20 00:09 - 2019-02-20 02:13 - 000000000 ___DC C:\WINDOWS\Panther
2019-02-19 21:05 - 2019-02-19 21:12 - 000000000 ____D C:\Users\Edison\AppData\Local\MicrosoftEdge
2019-02-19 21:04 - 2019-02-20 02:13 - 000000000 ___RD C:\Users\Edison\3D Objects
2019-02-19 21:04 - 2019-02-20 01:53 - 000000000 ____D C:\Users\Edison\AppData\Local\Packages
2019-02-19 21:04 - 2019-02-19 21:15 - 000000000 ____D C:\Users\Edison\AppData\Local\ConnectedDevicesPlatform
2019-02-19 21:04 - 2019-02-19 21:13 - 000000000 ____D C:\Users\Edison\AppData\Roaming\IObit
2019-02-19 21:04 - 2019-02-19 21:13 - 000000000 ____D C:\Users\Edison\AppData\Local\VirtualStore
2019-02-19 21:04 - 2019-02-19 21:13 - 000000000 ____D C:\Users\Edison\AppData\Local\Publishers
2019-02-19 21:04 - 2019-02-19 21:12 - 000000000 ____D C:\Users\Edison\AppData\Local\Google
2019-02-19 21:04 - 2017-02-26 14:16 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Macromedia
2019-02-19 21:04 - 2017-02-26 14:16 - 000000000 ____D C:\Users\Edison\AppData\Local\Microsoft Help
2019-02-19 21:02 - 2019-02-19 21:02 - 000001446
_ C:\Users\For Fix Account\Desktop\Microsoft Edge.lnk
2019-02-19 21:02 - 2019-02-19 21:02 - 000000000 ____D C:\Users\For Fix Account\AppData\Local\Publishers
2019-02-19 21:02 - 2019-02-19 21:02 - 000000000 ____D C:\Users\For Fix Account\AppData\Local\MicrosoftEdge
2019-02-19 21:02 - 2019-02-19 21:02 - 000000000 ____D C:\Users\For Fix Account\AppData\Local\Comms
2019-02-19 20:34 - 2019-02-19 21:12 - 000000000 ____D C:\Users\Edison\Desktop\Administrator
2019-02-19 15:57 - 2019-02-20 16:02 - 000000000 ____D C:\FRST
2019-02-18 23:17 - 2019-02-20 17:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2019-02-18 23:17 - 2019-01-31 04:09 - 005364776
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2019-02-18 23:17 - 2019-01-31 04:09 - 002624824
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2019-02-18 23:17 - 2019-01-31 04:09 - 001767920
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2019-02-18 23:17 - 2019-01-31 04:09 - 000450600
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2019-02-18 23:17 - 2019-01-31 04:09 - 000082800
_ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2019-02-18 23:17 - 2019-01-30 21:15 - 008488852
_ C:\WINDOWS\system32\nvcoproc.bin
2019-02-18 23:17 - 2019-01-26 22:03 - 000001951
_ C:\WINDOWS\NvContainerRecovery.bat
2019-02-18 23:15 - 2019-02-01 09:40 - 001005984
_ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-02-18 23:15 - 2019-02-01 09:40 - 001005984
_ C:\WINDOWS\system32\vulkan-1.dll
2019-02-18 23:15 - 2019-02-01 09:40 - 000869792
_ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-02-18 23:15 - 2019-02-01 09:40 - 000869792
_ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-02-18 23:15 - 2019-02-01 09:40 - 000551680
_ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-02-18 23:15 - 2019-02-01 09:40 - 000456640
_ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-02-18 23:15 - 2019-02-01 09:40 - 000269752
_ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-02-18 23:15 - 2019-02-01 09:40 - 000269752
_ C:\WINDOWS\system32\vulkaninfo.exe
2019-02-18 23:15 - 2019-02-01 09:40 - 000244128
_ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-02-18 23:15 - 2019-02-01 09:40 - 000244128
_ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-02-18 23:15 - 2019-02-01 09:38 - 010894304
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 009254696
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 005273048
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 004624184
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 002031896
_ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 001734560
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441881.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 001534912
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 001467864
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441881.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 001464008
_ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 001129352
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 000752440
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 000668640
_ C:\WINDOWS\system32\nvofapi64.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 000631688
_ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 000611744
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 000534544
_ C:\WINDOWS\SysWOW64\nvofapi.dll
2019-02-18 23:15 - 2019-02-01 09:38 - 000522120
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 040235120
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 035140696
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 020101600
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 017428328
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 005036824
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 001471816
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 001462232
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 001169152
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 001152200
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 001145720
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 000915120
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 000822784
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 000794656
_ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-02-18 23:15 - 2019-02-01 09:37 - 000638200
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-02-18 23:15 - 2019-02-01 09:36 - 004296808
_ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-02-18 23:15 - 2019-01-31 14:09 - 000049634
_ C:\WINDOWS\system32\nvinfo.pb
2019-02-18 23:12 - 2019-02-18 23:12 - 000000000 ____D C:\NVIDIA
2019-02-18 18:29 - 2019-02-18 18:29 - 000000000 ____D C:\Program Files (x86)\Windows Resource Kits
2019-02-17 22:10 - 2019-02-17 22:10 - 000000000 ____D C:\Users\Edison\AppData\Local\Apple Computer
2019-02-17 16:33 - 2019-02-17 16:33 - 000000000 ____D C:\Users\Edison\AppData\Local\gtk-3.0
2019-02-17 11:24 - 2019-02-17 17:15 - 000000000 ____D C:\Users\Edison\AppData\Roaming\gsmartcontrol
2019-02-17 11:22 - 2019-02-17 11:24 - 000000000 ____D C:\Program Files\GSmartControl
2019-02-17 11:22 - 2019-02-17 11:22 - 000001949
_ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GSmartControl.lnk
2019-02-16 11:49 - 2019-02-16 11:49 - 000000000 ___HD C:\$SysReset
2019-02-15 23:54 - 2019-02-15 23:54 - 000694676
_ C:\Users\Edison\Documents\SysnativeFileCollectionApp.zip
2019-02-15 23:43 - 2019-02-15 23:50 - 000000000 ____D C:\Users\Edison\Documents\SysnativeFileCollectionApp
2019-02-15 22:38 - 2019-02-15 22:38 - 000000000 ____D C:\Program Files\Yamicsoft
2019-02-15 22:32 - 2019-02-15 22:32 - 000000000 ____D C:\Users\For Fix Account\AppData\Local\NVIDIA Corporation
2019-02-15 22:31 - 2019-02-19 21:03 - 000000000 ___RD C:\Users\For Fix Account\OneDrive
2019-02-15 22:30 - 2019-02-20 01:54 - 000000000 ____D C:\Users\For Fix Account\AppData\Local\Packages
2019-02-15 22:30 - 2019-02-19 21:02 - 000000000 ____D C:\Users\For Fix Account\AppData\Local\ConnectedDevicesPlatform
2019-02-15 22:30 - 2019-02-19 21:01 - 000000000 ___RD C:\Users\For Fix Account\3D Objects
2019-02-15 22:30 - 2019-02-15 22:30 - 000000000 ____D C:\Users\For Fix Account\AppData\Local\VirtualStore
2019-02-15 22:29 - 2018-03-22 13:51 - 000000000 ____D C:\Users\For Fix Account\AppData\Roaming\IObit
2019-02-15 22:29 - 2017-02-26 14:16 - 000000000 ____D C:\Users\For Fix Account\AppData\Roaming\Macromedia
2019-02-15 22:29 - 2017-02-26 14:16 - 000000000 ____D C:\Users\For Fix Account\AppData\Local\Microsoft Help
2019-02-15 22:29 - 2017-02-26 14:16 - 000000000 ____D C:\Users\For Fix Account\AppData\Local\Google
2019-02-15 15:42 - 2019-02-20 10:59 - 001884326
_ C:\WINDOWS\ntbtlog.txt
2019-02-15 06:00 - 2019-02-15 06:00 - 000000855
_ C:\WINDOWS\system32\Drivers\etc\hosts_bak_460
2019-02-15 03:16 - 2018-06-16 01:30 - 001308672
_ C:\WINDOWS\system32\FaceProcessor.dll
2019-02-15 03:14 - 2019-02-06 09:04 - 000001314
_ C:\WINDOWS\system32\tcbres.wim
2019-02-15 03:14 - 2018-12-08 16:05 - 000421176
_ (Microsoft Corporation) C:\WINDOWS\system32\xbgmengine.dll
2019-02-15 03:14 - 2018-08-28 14:49 - 000677376
_ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2019-02-15 03:14 - 2018-06-16 01:55 - 000542888
_ C:\WINDOWS\system32\FaceProcessorCore.dll
2019-02-15 03:14 - 2018-05-21 02:20 - 000022936
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hvsicontainerservice.dll
2019-02-14 15:18 - 2018-03-22 13:51 - 000000000 ____D C:\Users\Guest\AppData\Roaming\IObit
2019-02-14 15:18 - 2017-02-26 14:16 - 000000000 ____D C:\Users\Guest\AppData\Roaming\Macromedia
2019-02-14 15:18 - 2017-02-26 14:16 - 000000000 ____D C:\Users\Guest\AppData\Local\Microsoft Help
2019-02-14 15:18 - 2017-02-26 14:16 - 000000000 ____D C:\Users\Guest\AppData\Local\Google
2019-02-14 04:24 - 2019-02-14 04:24 - 000000855
_ C:\WINDOWS\system32\Drivers\etc\hosts_bak_454
2019-02-14 03:57 - 2019-02-14 03:57 - 000000000 ___HD C:\Users\Edison\MicrosoftEdgeBackups
2019-02-14 00:38 - 2019-02-14 00:38 - 000000218
_ C:\Users\Edison\AppData\Local\recently-used.xbel
2019-02-14 00:34 - 2019-02-14 01:05 - 000000372
_ C:\Users\Edison\Desktop\Ethernet - Shortcut.lnk
2019-02-14 00:23 - 2019-02-14 00:24 - 000000000 ____D C:\ProgramData\install_clap
2019-02-14 00:23 - 2019-02-14 00:23 - 000000000 ____D C:\ProgramData\install_backup
2019-02-14 00:22 - 2019-02-14 01:02 - 000000000 ____D C:\Users\Edison\AppData\Roaming\sc5nq51cik1
2019-02-14 00:22 - 2019-02-14 01:02 - 000000000 ____D C:\Users\Edison\AppData\Roaming\ilssftlqikc
2019-02-14 00:22 - 2019-02-14 01:02 - 000000000 ____D C:\Users\Edison\AppData\Roaming\g0vh1vpc25t
2019-02-14 00:22 - 2019-02-14 00:22 - 000722944
_ C:\Users\Edison\AppData\Local\sha.db
2019-02-14 00:21 - 2019-02-14 00:57 - 000000000 ____D C:\Program Files (x86)\AGZ
2019-02-14 00:20 - 2019-02-14 01:02 - 000000000 ____D C:\Users\Edison\AppData\Roaming\vp4gsmexm1y
2019-02-13 20:14 - 2018-04-11 03:45 - 000260608
_ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationREST.dll
2019-02-13 20:14 - 2018-04-10 21:09 - 000108032
_ (Microsoft Corporation) C:\WINDOWS\system32\SshdPinAuthLsa.dll
2019-02-13 20:14 - 2018-04-10 21:08 - 000625152
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdp.dll
2019-02-13 20:14 - 2018-04-10 21:08 - 000286208
_ (Microsoft Corporation) C:\WINDOWS\system32\SshdBroker.dll
2019-02-13 20:14 - 2018-04-10 21:08 - 000058368
_ (Microsoft Corporation) C:\WINDOWS\system32\DeployUtil.exe
2019-02-13 20:14 - 2018-04-10 21:07 - 000449536
_ (Microsoft Corporation) C:\WINDOWS\system32\SshSftp.exe
2019-02-13 20:14 - 2018-04-10 21:07 - 000264192
_ (Microsoft Corporation) C:\WINDOWS\system32\SshProxy.dll
2019-02-13 20:14 - 2018-04-10 21:06 - 000382976
_ (Microsoft Corporation) C:\WINDOWS\system32\SshBroker.dll
2019-02-13 20:14 - 2018-04-10 21:05 - 000913408
_ (Microsoft Corporation) C:\WINDOWS\system32\wdp.dll
2019-02-13 03:44 - 2019-02-13 03:44 - 000111033
_ C:\WINDOWS\uninstaller.dat
2019-02-13 02:45 - 2019-02-14 00:33 - 008388848
_ C:\WINDOWS\system32\Drivers\etc\hosts_bak_509
2019-02-12 23:46 - 2019-02-12 23:46 - 000000000 ____D C:\Users\Edison\AppData\Local\Apps\2.0
2019-02-12 22:48 - 2019-02-12 22:48 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Apple Computer
2019-02-12 13:12 - 2019-02-12 14:00 - 574622544
_ (NVIDIA Corporation) C:\Users\Edison\Downloads\418.81-desktop-win10-64bit-international-whql.exe
2019-02-12 04:05 - 2019-02-12 16:11 - 000000000 ____D C:\Users\Edison\Downloads\Twizzlers
2019-02-12 01:57 - 2019-02-12 04:04 - 000001753
_ C:\WINDOWS\system32\InstallUtil.InstallLog
2019-02-11 19:12 - 2019-02-11 19:12 - 000000000 ____D C:\ProgramData\Apple Computer
2019-02-11 19:11 - 2019-02-11 19:11 - 000002579
_ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2019-02-11 19:11 - 2019-02-11 19:11 - 000000000 ____D C:\Users\Edison\AppData\LocalLow\Apple Computer
2019-02-11 19:11 - 2019-02-11 19:11 - 000000000 ____D C:\Users\Edison\AppData\Local\Apple
2019-02-11 19:11 - 2019-02-11 19:11 - 000000000 ____D C:\ProgramData\Apple
2019-02-11 19:11 - 2019-02-11 19:11 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2019-02-11 19:10 - 2019-02-20 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Balrum [GOG.com]
2019-02-11 04:23 - 2019-02-11 04:23 - 000080201
_ C:\Users\Edison\Documents\Grisaia Project.pds
2019-02-11 03:15 - 2019-02-13 23:34 - 000000000 ____D C:\Users\Edison\Desktop\Grisaia no Kajitsu - ToHappy
2019-02-11 02:10 - 2019-02-11 02:10 - 000000000 ____D C:\Users\Edison\Documents\Native Instruments
2019-02-09 01:54 - 2019-02-09 01:54 - 000000000 ____D C:\Users\Edison\AppData\LocalLow\NekoNyanSoft
2019-02-08 02:37 - 2019-02-08 02:43 - 000000000 ____D C:\Users\Edison\AppData\LocalLow\DefaultCompany
2019-02-07 00:08 - 2019-02-07 00:09 - 000000000 ____D C:\Users\Edison\AppData\Roaming\GotoIT
2019-02-05 23:25 - 2019-02-05 23:25 - 000000000 ____D C:\Users\Edison\AppData\LocalLow\James Patton
2019-02-05 01:07 - 2017-05-08 19:39 - 001730296
_ (Microsoft Corporation) C:\WINDOWS\system32\wdfcoinstaller01009.dll
2019-02-05 01:07 - 2017-05-08 19:39 - 000038480
_ (Intel Corporation) C:\WINDOWS\system32\Drivers\ICCWDT.sys
2019-02-03 19:48 - 2019-02-03 19:48 - 000002656
_ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2019-02-02 03:41 - 2019-02-02 03:41 - 000086547
_ C:\Users\Edison\Downloads\In Flanders Field Sheet.pdf
2019-01-31 17:57 - 2019-01-31 17:57 - 000000699
_ C:\Users\Edison\Desktop\PIANO.lnk
2019-01-29 20:16 - 2019-02-20 01:53 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sister Travel
2019-01-24 13:42 - 2019-02-20 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo
2019-01-24 13:42 - 2019-01-24 13:42 - 000086528
_ C:\WINDOWS\bnetunin.exe
2019-01-24 04:32 - 2019-01-24 23:16 - 000000400
_ C:\Users\Edison\Documents\Armor.itm
2019-01-24 04:14 - 2019-01-24 04:14 - 000021004
_ C:\TEMP_BDT.CHA
2019-01-24 03:41 - 2019-01-24 04:23 - 000000406
_ C:\WINDOWS\SIERRA.INI
2019-01-24 01:40 - 2019-01-24 23:14 - 000000400
_ C:\Users\Edison\Documents\Short Bow.ITM
2019-01-24 01:31 - 2019-01-24 01:31 - 000249856
_ (Microsoft Corporation) C:\WINDOWS\Setup1.exe
2019-01-24 01:31 - 2019-01-24 01:31 - 000073216
_ (Microsoft Corporation) C:\WINDOWS\ST6UNST.EXE
2019-01-24 01:06 - 2019-02-20 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BoBaFeTT Diablo Trainer
2019-01-24 01:06 - 2019-01-24 01:06 - 000000000 ____D C:\Program Files (x86)\BoBaFeTT Diablo Trainer
2019-01-24 01:06 - 1997-11-19 15:49 - 000303616
_ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe
2019-01-24 00:34 - 2019-01-24 13:42 - 000061440
_ C:\WINDOWS\DiabUnin.exe
2019-01-24 00:34 - 2019-01-24 02:02 - 000013331
_ C:\WINDOWS\DiabUnin.dat
2019-01-24 00:34 - 2019-01-24 02:02 - 000002829
_ C:\WINDOWS\DiabUnin.pif
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-20 17:46 - 2018-09-15 15:31 - 000028672
_ C:\WINDOWS\system32\config\BCD-Template
2019-02-20 17:45 - 2018-12-25 03:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sengoku [GOG.com]
2019-02-20 17:45 - 2018-12-22 00:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Undertale [GOG.com]
2019-02-20 17:45 - 2018-12-22 00:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FTL - Advanced Edition [GOG.com]
2019-02-20 17:45 - 2018-12-17 12:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellaris MegaCorp
2019-02-20 17:45 - 2018-12-13 02:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Europa Universalis IV Golden Century
2019-02-20 17:45 - 2018-12-03 01:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
2019-02-20 17:45 - 2018-12-02 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\No Man's Sky [GOG.com]
2019-02-20 17:45 - 2018-11-16 03:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools
2019-02-20 17:45 - 2018-10-16 03:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpaceMonger
2019-02-20 17:45 - 2018-10-12 21:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2019-02-20 17:45 - 2018-10-11 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 12.10
2019-02-20 17:45 - 2018-10-06 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-02-20 17:45 - 2018-10-03 20:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aggressors - Ancient Rome [GOG.com]
2019-02-20 17:45 - 2018-10-03 02:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Device Remover
2019-02-20 17:45 - 2018-09-30 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinCDEmu
2019-02-20 17:45 - 2018-09-26 14:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Auto Shutdown
2019-02-20 17:45 - 2018-09-25 03:11 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2019-02-20 17:45 - 2018-09-23 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Labyrinth of Refrain Coven of Dusk
2019-02-20 17:45 - 2018-09-22 01:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Disk Sentinel
2019-02-20 17:45 - 2018-09-21 01:14 - 000000000 __RSD C:\WINDOWS\SysWOW64\WindowsDevicePortal
2019-02-20 17:45 - 2018-09-21 01:14 - 000000000 __RSD C:\WINDOWS\system32\WindowsDevicePortal
2019-02-20 17:45 - 2018-09-21 01:14 - 000000000 ___RD C:\WINDOWS\WebManagement
2019-02-20 17:45 - 2018-09-15 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2019-02-20 17:45 - 2018-09-15 17:08 - 000000000 ____D C:\WINDOWS\system32\WCN
2019-02-20 17:45 - 2018-09-15 15:36 - 000000000 ____D C:\WINDOWS\Setup
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\Vss
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\spool
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\IME
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\System
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\ServiceState
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\schemas
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\Registration
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\InputMethod
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\IME
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\Help
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\Program Files\Common Files\system
2019-02-20 17:45 - 2018-09-15 15:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-02-20 17:45 - 2018-08-27 11:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hakuoki Edo Blossoms
2019-02-20 17:45 - 2018-08-24 23:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tokyo Babel
2019-02-20 17:45 - 2018-08-23 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arasan 21.0
2019-02-20 17:45 - 2018-08-23 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tarrasch
2019-02-20 17:45 - 2018-08-17 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpaceEngine
2019-02-20 17:45 - 2018-08-14 18:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Slime Rancher [GOG.com]
2019-02-20 17:45 - 2018-08-13 13:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unavowed [GOG.com]
2019-02-20 17:45 - 2018-08-07 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardew Valley [GOG.com]
2019-02-20 17:45 - 2018-06-19 00:41 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2019-02-20 17:45 - 2018-06-17 14:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Where The Water Tastes Like Wine Tall Tales
2019-02-20 17:45 - 2018-06-01 22:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rose of Winter
2019-02-20 17:45 - 2018-05-25 03:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bulk Rename Utility
2019-02-20 17:45 - 2018-05-21 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Forgotton Anne
2019-02-20 17:45 - 2018-05-06 20:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moonshine
2019-02-20 17:45 - 2018-05-06 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\May Sky
2019-02-20 17:45 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2019-02-20 17:45 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2019-02-20 17:45 - 2018-04-02 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2019-02-20 17:45 - 2018-04-01 21:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2019-02-20 17:45 - 2018-03-28 02:17 - 000000000 ____D C:\Program Files\Intel
2019-02-20 17:45 - 2018-03-19 18:15 - 000000000 ____D C:\WINDOWS\system32\catroot2old
2019-02-20 17:45 - 2018-03-19 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Ninja
2019-02-20 17:45 - 2018-03-15 02:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio V5
2019-02-20 17:45 - 2018-03-14 17:27 - 000000000 ____D C:\WINDOWS\SysWOW64\MIDIMapper
2019-02-20 17:45 - 2018-03-14 17:27 - 000000000 ____D C:\WINDOWS\system32\MIDIMapper
2019-02-20 17:45 - 2018-03-14 17:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VirtualMIDISynth
2019-02-20 17:45 - 2018-03-12 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskMark6
2019-02-20 17:45 - 2018-03-12 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2019-02-20 17:45 - 2018-03-02 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount and Blade - With Fire and Sword [GOG.com]
2019-02-20 17:45 - 2018-02-27 12:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount and Blade - Warband [GOG.com]
2019-02-20 17:45 - 2018-02-04 03:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParkControl
2019-02-20 17:45 - 2017-12-25 03:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LatencyMon
2019-02-20 17:45 - 2017-12-10 13:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Divinity - Original Sin 2 [GOG.com]
2019-02-20 17:45 - 2017-11-29 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Divinity - Original Sin Enhanced Edition [GOG.com]
2019-02-20 17:45 - 2017-11-29 23:04 - 000000000 ____D C:\WINDOWS\SysWOW64\GOG.com
2019-02-20 17:45 - 2017-10-30 02:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kenshi [GOG.com]
2019-02-20 17:45 - 2017-10-01 16:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7
2019-02-20 17:45 - 2017-09-19 12:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoulseekQt
2019-02-20 17:45 - 2017-09-13 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2019-02-20 17:45 - 2017-09-02 02:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Lasso
2019-02-20 17:45 - 2017-08-21 20:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mIRC
2019-02-20 17:45 - 2017-08-06 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Legend of Heroes Trails of Cold Steel
2019-02-20 17:45 - 2017-07-22 17:05 - 000000000 ____D C:\WINDOWS\SysWOW64\HvsiSettingsProviders
2019-02-20 17:45 - 2017-07-18 08:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2019-02-20 17:45 - 2017-06-28 03:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEC Translate DotNet
2019-02-20 17:45 - 2017-04-20 22:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dandelion - Wishes brought to you - Full
2019-02-20 17:45 - 2017-04-20 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Princess Maker 2 Refine
2019-02-20 17:45 - 2017-04-20 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aozora Meikyuu
2019-02-20 17:45 - 2017-04-08 10:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cartagra
Affliction of the Soul
2019-02-20 17:45 - 2017-03-21 16:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2019-02-20 17:45 - 2017-03-09 11:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cho Dengeki Stryker
2019-02-20 17:45 - 2017-02-22 02:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atelier Sophie The Alchemist of the Mysterious Book
2019-02-20 17:45 - 2017-02-19 17:45 - 000000000 ____D C:\WINDOWS\system32\oodag
2019-02-20 17:45 - 2017-02-18 22:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\UnCleaner
2019-02-20 17:45 - 2017-02-11 18:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xenonauts [GOG.com]
2019-02-20 17:45 - 2017-01-31 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Never Forget Me
2019-02-20 17:45 - 2016-12-27 03:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-02-20 17:45 - 2016-12-25 01:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2019-02-20 17:45 - 2016-12-22 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batman Episode 5
2019-02-20 17:45 - 2016-12-01 03:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unchecky
2019-02-20 17:45 - 2016-11-05 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MIDIMapper
2019-02-20 17:45 - 2016-10-16 03:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64 bits)
2019-02-20 17:45 - 2016-10-01 23:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Harmonia
2019-02-20 17:45 - 2016-09-18 10:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Supipara Chapter 1 Spring Has Come
2019-02-20 17:45 - 2016-09-11 03:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Dot Forever
2019-02-20 17:45 - 2016-09-01 10:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)
2019-02-20 17:45 - 2016-08-30 12:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims Medieval
2019-02-20 17:45 - 2016-08-23 09:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MeCab
2019-02-20 17:45 - 2016-08-15 14:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CLANNAD Side Stories
2019-02-20 17:45 - 2016-08-13 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
2019-02-20 17:45 - 2016-08-09 03:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-02-20 17:45 - 2016-08-08 23:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2019-02-20 17:45 - 2016-07-28 01:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2019-02-20 17:45 - 2016-04-21 21:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragons Dogma Dark Arisen
2019-02-20 17:45 - 2016-04-18 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\sfArk
2019-02-20 17:45 - 2016-04-06 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LANDR
2019-02-20 17:45 - 2016-04-06 04:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Noteable
2019-02-20 17:45 - 2016-03-14 01:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tales from the Borderlands [GOG.com]
2019-02-20 17:45 - 2016-03-02 17:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
2019-02-20 17:45 - 2016-02-09 15:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2019-02-20 17:45 - 2016-01-16 19:34 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-02-20 17:45 - 2016-01-10 01:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Imouto Paradise!
2019-02-20 17:45 - 2016-01-07 03:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Demonbane USA
2019-02-20 17:45 - 2016-01-07 01:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\herdProtect
2019-02-20 17:45 - 2015-12-31 08:13 - 000000000 ____D C:\WINDOWS\system32\catroot2.old
2019-02-20 17:45 - 2015-12-27 13:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2019-02-20 17:45 - 2015-12-12 12:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Littlewitch Romanesque
2019-02-20 17:45 - 2015-12-04 20:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Higurashi When They Cry
2019-02-20 17:45 - 2015-12-01 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\SupportAppPBHostless Modem
2019-02-20 17:45 - 2015-11-26 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snow Sakura
2019-02-20 17:45 - 2015-11-23 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fallout 4
2019-02-20 17:45 - 2015-11-13 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-02-20 17:45 - 2015-11-12 19:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2019-02-20 17:45 - 2015-11-09 19:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aselia The Eternal
2019-02-20 17:45 - 2015-11-08 09:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Osananajimi wa Daitouryou~My girlfriend is the President
2019-02-20 17:45 - 2015-11-03 11:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALcot
2019-02-20 17:45 - 2015-10-30 17:07 - 000000000 ____D C:\WINDOWS\ShellNew
2019-02-20 17:45 - 2015-10-26 03:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeDev
2019-02-20 17:45 - 2015-10-10 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEC Power Translator 15
2019-02-20 17:45 - 2015-09-26 18:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YUMEMIRUKUSURI
2019-02-20 17:45 - 2015-08-18 18:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kara No Shoujo - English Version
2019-02-20 17:45 - 2015-08-11 14:19 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2019-02-20 17:45 - 2015-07-31 13:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game of Thrones Episode
2019-02-20 17:45 - 2015-06-16 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game of Thrones
2019-02-20 17:45 - 2015-05-21 21:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2019-02-20 17:45 - 2015-02-21 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4 Mod Manager
2019-02-20 17:45 - 2014-10-21 00:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink WaveEditor 2
2019-02-20 17:45 - 2014-10-15 00:45 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Director Suite
2019-02-20 17:45 - 2014-10-08 20:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Application main executive
2019-02-20 17:45 - 2014-08-06 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Legend of Heroes - Trails in the Sky [GOG.com]
2019-02-20 17:45 - 2014-07-12 21:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2019-02-20 17:45 - 2014-07-01 23:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sleeping Dogs
2019-02-20 17:45 - 2014-05-30 00:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2019-02-20 17:45 - 2014-04-28 12:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpoweramp
2019-02-20 17:45 - 2014-04-19 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Victoria II - A Heart of Darkness
2019-02-20 17:45 - 2014-04-12 15:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Wolf Among Us Episode 3
2019-02-20 17:45 - 2014-03-03 00:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\x264vfw
2019-02-20 17:45 - 2014-02-08 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Wolf Among Us Episode 2
2019-02-20 17:45 - 2014-01-17 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assassins Creed Liberation HD
2019-02-20 17:45 - 2014-01-11 13:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-02-20 17:45 - 2014-01-01 21:28 - 000000000 ____D C:\WINDOWS\SysWOW64\AGEIA
2019-02-20 17:45 - 2013-12-28 15:13 - 000000000 ____D C:\WINDOWS\SysWOW64\temporary_logs
2019-02-20 17:45 - 2013-12-26 13:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher 2
2019-02-20 17:45 - 2013-12-25 18:32 - 000000000 ____D C:\WINDOWS\SysWOW64\3045
2019-02-20 17:45 - 2013-12-11 21:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soul Link
2019-02-20 17:45 - 2013-10-03 23:40 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2019-02-20 17:45 - 2013-09-18 19:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-02-20 17:45 - 2013-08-22 23:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2019-02-20 17:45 - 2013-08-22 23:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2019-02-20 17:45 - 2013-07-18 01:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-02-20 17:45 - 2013-05-15 10:38 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock - Shortcut
2019-02-20 17:45 - 2013-03-10 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2019-02-20 17:45 - 2012-11-29 00:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics
2019-02-20 17:45 - 2012-10-05 22:24 - 000000000 ____D C:\WINDOWS\SysWOW64\updfiles
2019-02-20 17:45 - 2012-08-10 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-02-20 17:45 - 2012-06-17 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2019-02-20 17:45 - 2012-04-24 21:19 - 000000000 __SHD C:\WINDOWS\SysWOW64\%APPDATA%
2019-02-20 17:45 - 2011-11-27 17:34 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2019-02-20 17:45 - 2011-08-22 20:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lepid Llama Tools
2019-02-20 17:45 - 2011-07-17 22:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celestia
2019-02-20 17:45 - 2011-04-25 01:50 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2019-02-20 17:45 - 2010-08-02 13:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2019-02-20 17:45 - 2009-07-14 13:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-02-20 17:45 - 2007-05-11 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ATLAS V14.0 Trial Version
2019-02-20 17:40 - 2018-09-15 15:33 - 000000000 __RHD C:\Users\Public\Libraries
2019-02-20 17:35 - 2018-09-15 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2019-02-20 17:35 - 2018-09-15 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2019-02-20 17:35 - 2018-09-15 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2019-02-20 17:35 - 2018-09-15 17:08 - 000000000 ____D C:\WINDOWS\system32\winrm
2019-02-20 17:35 - 2018-09-15 17:08 - 000000000 ____D C:\WINDOWS\system32\slmgr
2019-02-20 17:35 - 2018-09-15 17:08 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ___SD C:\WINDOWS\system32\F12
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ___SD C:\WINDOWS\system32\dsc
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-02-20 17:35 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-02-20 17:35 - 2016-12-21 19:09 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-02-20 17:35 - 2013-02-02 16:17 - 000000000 ____D C:\WINDOWS\SysWOW64\spool
2019-02-20 17:34 - 2018-09-25 03:11 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2019-02-20 17:34 - 2018-09-15 17:10 - 000000000 ____D C:\WINDOWS\OCR
2019-02-20 17:34 - 2018-09-15 15:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-02-20 17:34 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\Resources
2019-02-20 17:34 - 2018-09-15 14:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-02-20 17:34 - 2018-06-05 03:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total War
2019-02-20 17:34 - 2017-09-25 00:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Coma - Recut [GOG.com]
2019-02-20 17:34 - 2017-09-22 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ねこねこソフト
2019-02-20 17:34 - 2017-03-08 11:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiph.Org
2019-02-20 17:34 - 2017-01-03 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2019-02-20 17:34 - 2016-06-25 21:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sins of a Solar Empire - Rebellion Ultimate Edition [GOG.com]
2019-02-20 17:34 - 2016-03-04 01:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SuperPower 2 [GOG.com]
2019-02-20 17:34 - 2016-01-09 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ゆずソフト
2019-02-20 17:34 - 2015-12-15 12:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ユニゾンシフト
2019-02-20 17:34 - 2015-10-06 01:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SOMA [GOG.com]
2019-02-20 17:34 - 2015-09-02 19:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpicyTails
2019-02-20 17:34 - 2014-01-10 16:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Wolves
2019-02-20 17:34 - 2012-03-05 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SQUARE ENIX
2019-02-20 17:33 - 2018-10-29 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeneX
2019-02-20 17:33 - 2018-09-15 17:11 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-02-20 17:33 - 2018-09-15 17:11 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-02-20 17:33 - 2018-06-03 03:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dogenzaka Lab
2019-02-20 17:33 - 2018-03-18 23:23 - 000000000 ____D C:\Program Files\VIA
2019-02-20 17:33 - 2017-08-06 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BattleGoat Studios
2019-02-20 17:33 - 2017-07-08 15:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2019-02-20 17:33 - 2017-07-07 02:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plogue
2019-02-20 17:33 - 2017-06-24 23:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2019-02-20 17:33 - 2017-04-04 12:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyDearest
2019-02-20 17:33 - 2016-12-21 13:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dharker Studio
2019-02-20 17:33 - 2016-09-20 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Abbey Games
2019-02-20 17:33 - 2016-07-30 10:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Galactic Civilizations III [GOG.com]
2019-02-20 17:33 - 2016-03-14 13:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2019-02-20 17:33 - 2016-01-10 14:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by Decepticon
2019-02-20 17:33 - 2015-11-14 18:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FAVORITE
2019-02-20 17:33 - 2015-10-31 12:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eushully
2019-02-20 17:33 - 2015-04-20 08:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jade Empire [GOG.com]
2019-02-20 17:33 - 2015-03-30 00:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pillars of Eternity [GOG.com]
2019-02-20 17:33 - 2014-11-25 18:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sega
2019-02-20 17:33 - 2014-06-19 09:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D
2019-02-20 17:33 - 2014-05-03 17:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HTC
2019-02-20 17:33 - 2014-03-28 16:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LucasArts
2019-02-20 17:33 - 2014-02-22 08:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2019-02-20 17:33 - 2011-06-14 00:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005
2019-02-20 17:33 - 2011-05-28 00:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-02-20 17:33 - 2011-05-06 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1C Company
2019-02-20 17:33 - 2011-04-12 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paradox Interactive
2019-02-20 17:33 - 2009-07-14 13:32 - 000000000 ____D C:\Program Files\Microsoft Games
2019-02-20 17:30 - 2018-09-15 15:41 - 000385536
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2019-02-20 17:30 - 2018-09-15 15:41 - 000215552
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2019-02-20 17:30 - 2018-09-15 15:41 - 000061440
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2019-02-20 17:30 - 2018-09-15 15:41 - 000045568
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2019-02-20 17:30 - 2018-09-15 15:41 - 000023552
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2019-02-20 17:30 - 2018-09-15 15:41 - 000022528
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2019-02-20 17:30 - 2018-09-15 15:41 - 000020480
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2019-02-20 17:30 - 2018-09-15 15:41 - 000008192
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2019-02-20 17:30 - 2018-09-15 15:41 - 000008192
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2019-02-20 17:30 - 2018-09-15 15:41 - 000005120
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2019-02-20 17:30 - 2018-09-15 15:41 - 000005120
_ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2019-02-20 17:30 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\setup
2019-02-20 17:30 - 2018-09-15 15:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-02-20 17:29 - 2018-09-15 15:39 - 000134144
_ (Microsoft Corporation) C:\WINDOWS\system32\telnet.exe
2019-02-20 17:29 - 2018-09-15 15:37 - 000472576
_ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2019-02-20 17:29 - 2018-09-15 15:37 - 000067584
_ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2019-02-20 17:29 - 2018-09-15 15:37 - 000027136
_ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2019-02-20 17:29 - 2018-09-15 15:37 - 000010240
_ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2019-02-20 17:29 - 2018-09-15 15:37 - 000010240
_ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2019-02-20 17:29 - 2018-09-15 15:37 - 000006144
_ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2019-02-20 17:29 - 2018-09-15 15:37 - 000006144
_ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2019-02-20 15:39 - 2018-09-15 15:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-20 15:28 - 2018-09-30 19:20 - 000000000 ____D C:\ProgramData\NVIDIA
2019-02-20 15:27 - 2018-09-15 14:09 - 001048576
_ C:\WINDOWS\system32\config\BBI
2019-02-20 12:25 - 2018-09-15 15:31 - 000000000 ____D C:\WINDOWS\INF
2019-02-20 11:46 - 2013-03-31 21:37 - 000000000 ____D C:\Program Files (x86)\Realtek
2019-02-20 11:46 - 2011-04-10 23:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-02-20 11:40 - 2018-09-30 06:43 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Notepad++
2019-02-20 11:19 - 2018-10-01 11:31 - 000000000 ____D C:\Users\Edison\AppData\Local\NVIDIA Corporation
2019-02-20 10:59 - 2018-09-30 06:38 - 000000000 ____D C:\Users\Edison\AppData\Local\niemiro
2019-02-20 09:28 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-02-20 04:31 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-02-20 04:29 - 2018-09-15 15:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-02-20 03:57 - 2017-12-07 13:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-02-20 03:37 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\appcompat
2019-02-20 02:56 - 2018-09-15 15:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-02-20 02:52 - 2018-09-30 06:40 - 000000000 ____D C:\Users\Edison\AppData\Local\ElevatedDiagnostics
2019-02-20 02:50 - 2018-09-15 14:09 - 000032768
_ C:\WINDOWS\system32\config\ELAM
2019-02-20 02:33 - 2018-09-30 19:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-02-20 02:33 - 2018-09-30 19:16 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-02-20 02:31 - 2018-09-30 19:18 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-02-20 02:23 - 2018-09-15 15:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-02-20 02:22 - 2016-11-21 02:54 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-02-20 02:12 - 2018-09-15 15:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-02-20 02:06 - 2018-09-15 15:33 - 000000000 __RSD C:\WINDOWS\media
2019-02-20 01:53 - 2018-11-11 00:24 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LUNE
2019-02-20 01:53 - 2018-10-16 01:40 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citra
2019-02-20 01:53 - 2018-10-12 00:41 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs_000
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YU-NO
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yamicsoft
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Glulxe
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Utawarerumono
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\True Remembrance
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Royal Trap
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subliminal Messages
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subliminal Blaster 4
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\sprite
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Special K
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SMEE
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Should I Remove It
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Shira Oka - Second Chances
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recursion
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PDFtoMusic Pro
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Omerta - City of Gangsters
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Narcissu [Web Edition]
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MuseScore 2
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MoeNovel
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mass Effect 2
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LucasArts
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Leaf
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KISS
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JAST Densetsu
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HandBrake
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Everything
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ever17
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ef - a fairy tale of the two
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\don't take it personally, babe, it just ain't your story
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Distant Worlds
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dischan
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cinders
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Children of the Nile - Enhanced Edition
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Caramel-Box
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blue Rose
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BleachBit
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baseson
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\August
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AngelSmile
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\age
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\3rdEye_MangaGamer
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000
D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\_
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000
D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000
__D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\_ Classics for Windows
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\Nox
2019-02-20 01:53 - 2018-09-30 06:46 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Microsoft\Windows\Start Menu\MangaGamer
2019-02-20 01:51 - 2018-09-15 15:33 - 000000000 ____D C:\ProgramData\USOPrivate
2019-02-20 00:58 - 2018-12-24 02:59 - 000000000 ____D C:\Users\Edison\AppData\Local\Wondershare
2019-02-19 23:04 - 2018-10-08 00:09 - 000000000 ____D C:\Users\Edison\AppData\Local\CrashDumps
2019-02-19 21:31 - 2018-09-30 21:34 - 000000000 ____D C:\Program Files\JDownloader 2.0
2019-02-19 21:18 - 2018-09-30 03:11 - 000000000 ____D C:\Users\Edison\AppData\Roaming\vlc
2019-02-19 21:17 - 2018-09-21 16:17 - 000000000 ___RD C:\Users\Edison\OneDrive
2019-02-19 21:14 - 2012-06-03 20:48 - 000000000 ___RD C:\Users\Edison\Podcasts
2019-02-19 18:21 - 2018-09-12 01:20 - 000000000 ____D C:\ProgramData\Packages
2019-02-19 17:53 - 2016-03-31 23:58 - 000002337
_ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-19 01:07 - 2018-09-30 06:21 - 000000000 ____D C:\Users\Edison\Desktop\Games
2019-02-19 00:33 - 2018-09-30 10:20 - 000000000 ____D C:\Users\Edison\AppData\Roaming\SmartSteamEmu
2019-02-19 00:33 - 2013-09-18 19:34 - 000000000 ____D C:\Program Files (x86)\Steam
2019-02-19 00:16 - 2018-09-30 03:06 - 000000000 ____D C:\Users\Edison\AppData\Local\D3DSCache
2019-02-18 22:56 - 2018-09-30 06:23 - 000000000 ____D C:\Users\Edison\Desktop\Folders
2019-02-18 20:34 - 2018-10-10 21:56 - 000000000 ____D C:\Users\Edison\AppData\Roaming\ProtonVPN AG
2019-02-16 22:50 - 2018-09-30 06:22 - 000000000 ____D C:\Users\Edison\Desktop\Job Related
2019-02-15 23:27 - 2018-09-30 08:03 - 000000000 ____D C:\Users\Edison\Desktop\Tweaks and Repairs
2019-02-15 22:38 - 2018-09-30 06:45 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Yamicsoft
2019-02-15 04:26 - 2018-10-28 04:29 - 000000000 ____D C:\Users\Edison\AppData\LocalLow\Mozilla
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\te-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\or-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\km-KH
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\is-IS
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\id-ID
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\be-BY
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\as-IN
2019-02-15 03:46 - 2018-04-12 17:19 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2019-02-14 18:21 - 2019-01-10 00:57 - 000000000 ____D C:\Users\Edison\Desktop\KEFIR GUIDE
2019-02-14 15:36 - 2013-04-25 16:56 - 000022840
_ C:\WINDOWS\system32\emptyregdb.dat
2019-02-14 02:43 - 2017-07-18 08:42 - 000000000 ____D C:\Program Files\Core Temp
2019-02-14 02:43 - 2015-05-25 01:44 - 000000000 ____D C:\Users\Edison\Documents\The Witcher 3
2019-02-14 01:49 - 2018-12-12 21:02 - 000565162
_ C:\WINDOWS\Tweaking.com - Windows Repair Setup Log.txt
2019-02-14 00:25 - 2015-05-28 15:43 - 000000000 ____D C:\ProgramData\boost_interprocess
2019-02-12 02:13 - 2018-04-21 03:39 - 000000000 ____D C:\RegBackup
2019-02-11 19:12 - 2011-12-09 22:42 - 000000000 ____D C:\Program Files (x86)\QuickTime
2019-02-11 04:14 - 2014-05-24 22:30 - 000000000 ____D C:\VBR
2019-02-11 01:33 - 2018-09-30 06:45 - 000000000 ____D C:\Users\Edison\AppData\Roaming\Synthesia
2019-02-08 23:19 - 2018-10-03 00:57 - 000000000 ____D C:\Users\Edison\AppData\Roaming\discord
2019-02-08 02:55 - 2018-09-30 06:44 - 000000000 ____D C:\Users\Edison\AppData\Roaming\RenPy
2019-02-06 01:39 - 2018-09-30 08:06 - 000000000 ____D C:\Users\Edison\Desktop\VN
2019-01-29 20:40 - 2016-03-14 13:26 - 000000000 ____D C:\Program Files (x86)\NewBlue
2019-01-29 20:40 - 2014-10-14 18:27 - 000000000 ____D C:\Program Files\NewBlue
2019-01-26 06:17 - 2018-09-30 06:44 - 000000000 ____D C:\Users\Edison\AppData\Roaming\VidCoder-Beta
2019-01-26 04:04 - 2019-01-18 14:39 - 000000000 ____D C:\Users\Edison\AppData\Local\VidCoder-Beta
2019-01-21 20:45 - 2013-03-23 15:05 - 000000000 ____D C:\WINDOWS\pss
==================== Files in the root of some directories =======
2016-02-24 11:49 - 2016-02-24 11:49 - 000037607
_ () C:\Program Files (x86)\Common Files\license.rtf
2016-02-24 11:49 - 2016-02-24 11:49 - 000008046
_ () C:\Program Files (x86)\Common Files\setupBanner.jpg
2015-10-10 20:04 - 2010-01-15 10:36 - 000075040
_ () C:\Program Files (x86)\Common Files\SpeechUninstall.exe
2015-11-04 19:50 - 2015-11-04 19:50 - 000000942
_ () C:\Users\Edison\AppData\Roaming\Microsoft\ATIODE.exe.config
2016-02-04 14:04 - 2016-02-08 12:41 - 000000004
_ () C:\Users\Edison\AppData\Roaming\Microsoft\notaut.txt
2016-02-06 12:26 - 2016-02-06 12:26 - 000000004
_ () C:\Users\Edison\AppData\Roaming\Microsoft\notautfbb.txt
2018-04-07 21:12 - 2018-04-07 21:12 - 000140800
_ () C:\Users\Edison\AppData\Local\installer.dat
2019-02-14 00:38 - 2019-02-14 00:38 - 000000218
_ () C:\Users\Edison\AppData\Local\recently-used.xbel
2018-10-03 11:19 - 2019-01-15 21:38 - 000007619
_ () C:\Users\Edison\AppData\Local\Resmon.ResmonCfg
2019-02-14 00:22 - 2019-02-14 00:22 - 000722944
_ () C:\Users\Edison\AppData\Local\sha.db
Some files in TEMP:
====================
2019-02-20 04:00 - 2019-02-20 04:00 - 000982528
_ () C:\Users\Edison\AppData\Local\Temp\utildel.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18.02.2019
Ran by Edison (20-02-2019 16:04:02)
Running from C:\Users\Edison\Desktop\FRST\Archive
Windows 10 Enterprise Version 1809 17763.253 (X64) (2019-02-19 18:12:58)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1524516680-1023419535-1535688680-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-1524516680-1023419535-1535688680-503 - Limited - Disabled)
Edison (S-1-5-21-1524516680-1023419535-1535688680-1046 - Administrator - Enabled) => C:\Users\Edison
For Fix Account (S-1-5-21-1524516680-1023419535-1535688680-1045 - Administrator - Enabled) => C:\Users\For Fix Account
Guest (S-1-5-21-1524516680-1023419535-1535688680-501 - Limited - Disabled) => C:\Users\Guest
WDAGUtilityAccount (S-1-5-21-1524516680-1023419535-1535688680-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Acrobat.com (HKLM-x32\...\{77DCDCE3-2DED-62F3-8154-05E745472D07}) (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)
AdiIRC (HKLM-x32\...\AdiIRC) (Version: 2.8 - Per Amundsen)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 29.0.0.112 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0) (Version: 20.0.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\{49CD151E-5BE3-4A32-B9C3-687AD5B579B1}) (Version: 12.3.2.202 - Adobe Systems, Inc)
Aggressors: Ancient Rome (HKLM-x32\...\1971695113_is1) (Version: 1.0.2 - GOG.com)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation)
Anvil Studio (HKLM-x32\...\{1D8FBF5C-B68B-4D4E-9207-84D2025AA387}) (Version: 16.02.04 - Willow Software)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arasan 21.0 (HKLM-x32\...\Arasan_is1) (Version: - )
ARIA Engine v1.9.1.6 (HKLM\...\ARIA Engine_is1) (Version: v1.9.1.6 - Plogue Art et Technologie, Inc)
ATLAS Translation Standard V14.0 Trial Version (HKLM-x32\...\{6652750B-AA69-49B7-9D09-C0A28B6FFC9F}) (Version: 14.00.2000 - FUJITSU LIMITED)
ATLAS V14.0 L10 Update Pack U004 (HKLM-x32\...\{6A72EDA1-B12B-4940-8DE1-EDCD489659ED}) (Version: 14.04.0000 - FUJITSU LIMITED) Hidden
Balrum (HKLM-x32\...\1769415595_is1) (Version: 1.6 Hotfix 4 - GOG.com)
Bandicam (HKLM-x32\...\Bandicam) (Version: 3.1.1.1073 - Bandisoft.com)
Battle.net (HKLM-x32\...\Battle.net) (Version: - )
Beat Blades Haruka (HKLM-x32\...\Beat Blades Haruka) (Version: 1.02 - AliceSoft)
BleachBit (HKLM-x32\...\BleachBit) (Version: 2.0 - BleachBit)
BoBaFeTT Diablo Trainer (HKLM-x32\...\BoBaFeTT Diablo Trainer) (Version: - )
Bulk Rename Utility 3.0.0.1 (64-bit) (HKLM\...\Bulk Rename Utility Installation_is1) (Version: - TGRMN Software)
Cinders (HKLM-x32\...\CindersFinal) (Version: Final - AllSmartGames)
Cities: Skylines (HKLM-x32\...\Cities: Skylines_is1) (Version: - )
Consolas Font Family (HKLM-x32\...\{6AE22174-4FFA-4572-B692-31F0C386ED38}) (Version: 1.00.0000 - Microsoft Corporation)
Core Temp 1.12.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.12.1 - ALCPU)
CPUID CPU-Z 1.86 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.86 - CPUID, Inc.)
CyberLink Director Suite 2 (HKLM-x32\...\InstallShield_{A30E37E0-F17E-4488-B0DB-6863BDA521F0}) (Version: 2.0 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.2930.0 - CyberLink Corp.) Hidden
CyberLink WaveEditor 2 (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 2.0.0.4203 - CyberLink Corp.)
Device Remover (HKLM\...\{EFA597E4-73D3-4142-90DB-BE28E5589F99}_is1) (Version: 0.9 - Kerem Gümrükcü)
Diablo (HKLM-x32\...\Diablo) (Version: - )
DiRT 3 (HKLM-x32\...\{434D0FA0-1558-4D8E-AC3D-BD1000008200}) (Version: 1.0.0000.130 - Codemasters) Hidden
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 418.81 - NVIDIA Corporation) Hidden
Distant Worlds (HKLM-x32\...\Distant Worlds1.00) (Version: 1.00 - Matrix Games)
Dragon Age 2 - The Deep Green 1.03 (HKLM-x32\...\Dragon Age 2 - The Deep Green 1.03) (Version: - )
EaseUS Partition Master 12.10 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
Europa Universalis IV Golden Century (HKLM-x32\...\Europa Universalis IV Golden Century_is1) (Version: - )
Everything 1.3.4.686 (x86) (HKLM-x32\...\Everything) (Version: - )
ƒOƒŠƒUƒCƒA‚̉ʎÀ (HKLM-x32\...\FW_Grisaia) (Version: - )
Forgotton Anne (HKLM-x32\...\Forgotton Anne_is1) (Version: - )
FORTUNE ARTERIAL (HKLM-x32\...\FORTUNE ARTERIAL) (Version: - )
Fortune Arterial English Patch v0.7.1 (HKLM-x32\...\{DC70961B-FC1E-48EF-A2A6-C564F27B93C6}) (Version: 1.5.1 - Anime-Sharing)
FTL: Advanced Edition (HKLM-x32\...\1207659102_is1) (Version: 1.6.9 - GOG.com)
Fureraba HD Renewal Edition (HKLM-x32\...\Fureraba HD Renewal Edition) (Version: - SMEE)
Gaokao.Love.100Days (HKLM-x32\...\R2Fva2FvTG92ZTEwMERheXM=_is1) (Version: 1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.109 - Google Inc.)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
GSmartControl (HKLM-x32\...\GSmartControl) (Version: 1.1.1 - Alexander Shaduri)
Hakuoki Edo Blossoms (HKLM-x32\...\Hakuoki Edo Blossoms_is1) (Version: - )
HandBrake 1.0.1 (HKLM-x32\...\HandBrake) (Version: 1.0.1 - )
Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.30 - Janos Mathe)
Harukoi Otome (HKLM-x32\...\{4A29085B-A409-4EE1-AEB5-8D2D7355D0BD}) (Version: 1.00.0000 - NEXTON)
herdProtect Anti-Malware Scanner (HKLM-x32\...\herdProtectScan) (Version: 1.0 - Reason Company Software Inc.)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.241 - SurfRight B.V.)
Hotel Giant 2 (HKLM-x32\...\{9CB541BB-4C26-4625-ACBA-16B3B2C6B0F8}) (Version: 101 - Nobilis)
IBM SPSS Statistics 22 (HKLM\...\{104875A1-D083-4A34-BC4F-3F635B7F8EF7}) (Version: 22.0.0.0 - IBM Corp)
IF MY HEART HAD WINGS (HKLM-x32\...\{4EA72038-4DE2-4E41-B062-7A2640F18F35}) (Version: 1.00.0000 - MoeNovel) Hidden
ILLUSION HoneySelect (HKLM-x32\...\{1F709DAC-507B-47DA-B04F-367EF5AA20B4}) (Version: 1.00.0000 - ILLUSION)
ILLUSION コイカツ! (HKLM-x32\...\{6CBCD79F-5B99-4F6B-83A8-6B755C63C95B}) (Version: 1.00.0000 - ILLUSION)
ILLUSION プレイホーム (HKLM-x32\...\{0F41AD99-6677-4B8B-A3FE-3774E088B61C}) (Version: 1.00.0000 - ILLUSION)
Impulse (HKLM-x32\...\{EA450D5D-95EA-4FD0-B8B0-6D8E68FBE2C7}) (Version: 1.0 - Stardock Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{bd366c5e-00cd-46ed-b647-0b9874f32140}) (Version: 10.1.17809.8096 - Intel(R) Corporation) Hidden
Item Set Creator 5.14 (HKLM-x32\...\Item Set Creator 5.14) (Version: 5.14 - InvertedComposer)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java SE Development Kit 7 Update 79 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170790}) (Version: 1.7.0.790 - Oracle)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Kingdom Come: Deliverance (HKLM-x32\...\Kingdom Come: Deliverance_is1) (Version: - )
K-Lite Codec Pack 13.1.0 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.1.0 - KLCP)
Labyrinth of Refrain Coven of Dusk (HKLM-x32\...\Labyrinth of Refrain Coven of Dusk_is1) (Version: - )
LANDR (HKLM-x32\...\{0FFB88B0-4791-4C4F-B76C-89AFDE56F7E5}) (Version: 1.3.0.0 - LANDR Audio) Hidden
LANDR (HKLM-x32\...\{64ad0ade-4782-4649-b4cf-64e9781aade2}) (Version: 1.3.0.0 - LANDR Audio)
LatencyMon 6.70 (HKLM\...\LatencyMon_is1) (Version: - Resplendence Software Projects Sp.)
LEC Translate (HKLM-x32\...\{B593248E-8CD9-4C54-AD3C-F6848C6A4209}) (Version: 1.00.0004 - Language Engineering, LLC)
Macrium Reflect Free Edition (HKLM\...\{6085136C-5E0B-4516-BA48-2B909062778A}) (Version: 6.3.1835 - Paramount Software (UK) Ltd.) Hidden
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Mass Effect™ 3 (HKLM-x32\...\{6A9D1594-7791-48f5-9CAA-DE9BCB968320}) (Version: 1.01.0.0 - Electronic Arts)
May Sky 1.1E (HKLM-x32\...\May Sky) (Version: 1.1E - Irene Ying)
Megadimension Neptunia VIIR (HKLM-x32\...\Megadimension Neptunia VIIR_is1) (Version: - )
Memory's Dogma CODE:01 (HKLM\...\bWVtb3J5c2RvZ21hY29kZTAx_is1) (Version: 1 - )
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1524516680-1023419535-1535688680-1046\...\OneDriveSetup.exe) (Version: 18.143.0717.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual Basic/C++ Runtime (x86) (HKLM-x32\...\{C5E3A69D-D391-45A6-A8FB-00B01E2B010D}) (Version: 1.1.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.12.25810 (HKLM\...\{2CD849A7-86A1-34A6-B8F9-D72F5B21A9AE}) (Version: 14.12.25810 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.12.25810 (HKLM\...\{C99E2ADC-0347-336E-A603-F1992B09D582}) (Version: 14.12.25810 - Microsoft Corporation)
Microsoft Visual C++ 2017 x86 Additional Runtime - 14.12.25810 (HKLM-x32\...\{7FED75A1-600C-394B-8376-712E2A8861F2}) (Version: 14.12.25810 - Microsoft Corporation)
Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.12.25810 (HKLM-x32\...\{828952EB-5572-3666-8CA9-000B6CE79350}) (Version: 14.12.25810 - Microsoft Corporation)
mIRC (HKLM-x32\...\mIRC) (Version: 7.49 - mIRC Co. Ltd.)
Mirror's Edge™ Catalyst (HKLM-x32\...\{12228a0d-f6ad-4691-82af-d2c643424468}) (Version: 1.0.3.47248 - Electronic Arts)
Moonshine 1.0E (HKLM-x32\...\Moonshine) (Version: 1.0E - AstCd2)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MuseScore 2 (HKLM-x32\...\{4F0E15EA-F64C-11E5-9992-E717EA7DB0C8}) (Version: 2.0.3 - Werner Schweer and Others)
NBA 2K19 (HKLM-x32\...\NBA 2K19_is1) (Version: - )
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials V for Windows (HKLM-x32\...\NewBlue Video Essentials V for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VII for Windows (HKLM-x32\...\NewBlue Video Essentials VII for Windows) (Version: 3.0 - NewBlue)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.13 - Black Tree Gaming)
No Man's Sky (HKLM-x32\...\1446213994_is1) (Version: 43614_Main - GOG.com)
No Man's Sky Pre-order DLC (HKLM-x32\...\2022706229_is1) (Version: 44233_Main - GOG.com)
Noteable (HKLM-x32\...\{D856794F-81E3-478C-8859-7AB05A9EF656}) (Version: 9.20.0000 - The Noteable Software Company)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.9 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.1.1.0 - Duodian Technology Co. Ltd.)
NVIDIA Graphics Driver 418.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 418.81 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{69C424A3-8863-FF59-FCF3-E3D94AB696FA}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
ParkControl (HKLM-x32\...\ParkControl) (Version: 1.2.7.6 - Bitsum)
PatchCleaner (HKLM-x32\...\{727DA176-50BB-452C-8DB5-96EE0A573ED4}) (Version: 1.4.20 - HomeDev)
PDFtoMusic Pro (HKLM-x32\...\PDFtoMusic Pro) (Version: 1.5.1c - Myriad SARL)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Plogue sforzando v1.916 (HKLM\...\__ARIA_1014___is1) (Version: v1.916 - Plogue)
PreSonus Studio One 3 x64 (HKLM\...\PreSonus Studio One 3) (Version: 3.2.1.37177 - PreSonus Audio Electronics)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 9.0.0.543 BETA - Bitsum)
Python 2.7.14 (HKLM-x32\...\{0398A685-FD8D-46B3-9816-C47319B0CF5E}) (Version: 2.7.14150 - Python Software Foundation)
QuickSFV (HKLM\...\{89B56CFC-0270-4ACF-8BF1-048251FD9E08}) (Version: 3.0.0 - Totally Useful Software, Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
REAPER (x64) (HKLM\...\REAPER) (Version: - )
Recursion Tracker (HKLM-x32\...\{95174990-38D2-4997-9E6E-C229769D4754}) (Version: 0.11.0.8 - Recursion)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Revo Uninstaller Pro 3.2.0 (HKLM-x32\...\Revo Uninstaller Pro 3.2.0) (Version: - )
Revo Uninstaller Pro 4.0.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.1 - VS Revo Group, Ltd.)
RivaTuner Statistics Server 7.1.0 (HKLM-x32\...\RTSS) (Version: 7.1.0 - Unwinder)
RogueKiller version 12.9.1.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.9.1.0 - Adlice Software)
Rose of Winter version 1.0 (HKLM-x32\...\{08785FB9-0AE6-4514-89D9-5080AF21E2DA}_is1) (Version: 1.0 - Rose of Winter)
RPG Maker VX RTP (HKLM-x32\...\RPG Maker VX RTP_is1) (Version: 1.02 - Enterbrain)
RPGツクール2000 ランタイムパッケージ (HKLM-x32\...\{33F7A957-A66D-45A1-BADF-6576083B14E2}) (Version: - )
School of Talent SUZU-ROUTE (HKLM-x32\...\School of Talent SUZU-ROUTE_is1) (Version: - )
SCHOOLDAYS HQ (HKLM-x32\...\SCHOOLDAYS HQ) (Version: - )
Sengoku (HKLM-x32\...\1445506889_is1) (Version: 2.0.0.3 - GOG.com)
sfArk (HKLM-x32\...\sfArk) (Version: - )
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 12.3.1 - ShareX Team)
Should I Remove It (HKLM-x32\...\{4E62123C-4C0D-4123-A8A2-C0103B92D7EA}) (Version: 1.0.4 - Reason Software Company Inc.) Hidden
Slime Rancher (HKLM-x32\...\1459259227_is1) (Version: 1.3.0b - GOG.com)
SmartSound Quicktracks 5 (HKLM-x32\...\{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.)
Snow Sakura (HKLM-x32\...\Snow Sakura) (Version: - )
SoulseekQt version 2017.2.20 (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2017.2.20 - Soulseek LLC)
SpaceEngine version 0.9.8.0 (HKLM-x32\...\{6E7A40FA-86CE-4844-A7DC-F8769F21A62F}_is1) (Version: 0.9.8.0 - SpaceEngine)
SpaceMonger 2.1.1 (HKLM-x32\...\SpaceMonger) (Version: 2.1.1 - Sixty-Five)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
Speech Support (HKLM-x32\...\Speech Support) (Version: - LEC)
Stardew Valley (HKLM-x32\...\1453375253_is1) (Version: 1.3.27.111340 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steins;Gate 0 (HKLM-x32\...\Steins;Gate 0_is1) (Version: - )
Stellaris MegaCorp (HKLM-x32\...\Stellaris MegaCorp_is1) (Version: - )
Subliminal Messages (HKLM-x32\...\{5583D2D0-C960-441C-ACA7-3A0E06C471EC}) (Version: 1.1.2.0 - Mind of Winner)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.0 - Krzysztof Kowalczyk)
Synthesia (HKLM-x32\...\Synthesia) (Version: 10.2 - Synthesia LLC)
System Ninja version 3.2.4 (HKLM-x32\...\{6E67710E-206D-43AB-BF21-E7CD63056C55}_is1) (Version: 3.2.4 - SingularLabs)
System Requirements Lab CYRI (HKLM-x32\...\{E5F05232-96B6-4552-A480-785A60A94B21}) (Version: 5.0.6.0 - Husdawg, LLC)
Tarrasch Chess GUI V3.03a (HKLM-x32\...\Tarrasch Chess GUI_is1) (Version: - Triple Happy Ltd.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.8 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.1.7 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
The Council (HKLM-x32\...\The Council_is1) (Version: - )
The House in Fata Morgana (HKLM-x32\...\The House in Fata Morgana_is1) (Version: 1.0 - MangaGamer)
The Royal Trap (HKLM-x32\...\The Royal TrapFinal) (Version: Final - AllSmartGames)
The Sims Medieval (HKLM-x32\...\{83BEEFB4-8C28-4F4F-8A9D-E0D1ADCE335B}) (Version: 2.0.113 - Electronic Arts)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.47.49.1020 - Electronic Arts Inc.)
Tokyo Babel (HKLM-x32\...\Tokyo Babel_is1) (Version: - )
Total War: Rome 2 (HKLM-x32\...\Total War: Rome 2_is1) (Version: - )
TranslateDotNetClients (HKLM-x32\...\{82051F39-B72E-40C9-AEEF-F38294618F5B}) (Version: 1.00.2040 - Language Engineering, LLC)
TSR RigFix (HKLM-x32\...\{1F2A56A0-AF80-4423-8C73-ADBFAB40E629}) (Version: 1.0.10 - The Sims Resource)
Tweaking.com - Registry Backup (HKLM-x32\...\Tweaking.com - Registry Backup) (Version: 3.5.3 - Tweaking.com)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 4.4.4 - Tweaking.com)
Unavowed (HKLM-x32\...\1637485057_is1) (Version: 1.1 - GOG.com)
Unchecky v1.0.3 (HKLM-x32\...\Unchecky) (Version: 1.0.3 - RaMMicHaeL)
UnCleaner (HKLM\...\UnCleaner) (Version: 1.7 - Josh Cell Softwares Corporation)
Undertale (HKLM-x32\...\1456487183_is1) (Version: 1.08 - GOG.com)
Update for Skype for Business 2016 (KB4092445) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}
Office16.PROPLUS{1D3EBE92-8BB5-4F75-B272-4AE736882A7D}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4092445) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}
Office16.PROPLUS{1D3EBE92-8BB5-4F75-B272-4AE736882A7D}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4092445) 64-Bit Edition (HKLM\...\{90160000-012B-0409-1000-0000000FF1CE}
Office16.PROPLUS{1D3EBE92-8BB5-4F75-B272-4AE736882A7D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F94A5095-E4DD-4ED8-AB0B-BFAC62176F8C}) (Version: 2.49.0.0 - Microsoft Corporation)
USB Game Controller (HKLM-x32\...\{D3DF3D05-DE2A-476A-A384-08FCD58D9FE7}) (Version: 2007.01.01 - )
Utawarerumono English v1.1 (HKLM-x32\...\Utawarerumono English) (Version: - )
VidCoder 5.1 Beta (Installer) (HKLM\...\VidCoder-Beta-x64_is1) (Version: 5.1 - RandomEngy)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.0 - VideoLAN)
Webroot SecureAnywhere (HKLM-x32\...\WRUNINST) (Version: 9.0.24.49 - Webroot)
Where The Water Tastes Like Wine Tall Tales (HKLM-x32\...\Where The Water Tastes Like Wine Tall Tales_is1) (Version: - )
WHITE ALBUM2 (HKLM-x32\...\WHITE ALBUM2) (Version: - AQUAPLUS)
WhoCrashed 6.50 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
Windows Glulxe (HKLM-x32\...\WinGlulxe) (Version: - )
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.30 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.6 - win.rar GmbH)
Wise Auto Shutdown 1.7.2 (HKLM-x32\...\Wise Auto Shutdown_is1) (Version: 1.7.2 - WiseCleaner.com, Inc.)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
YUME MIRU KUSURI (HKLM-x32\...\{03ABC33C-10B1-400E-B1FA-E817FE98D11C}) (Version: 1.00.0000 - Peach Princess)
Yumina the Ethereal (HKLM-x32\...\Yumina) (Version: English 1.0 - JAST Densetsu)
アストラエアの白き永遠 (HKLM-x32\...\{28714F77-7F0B-4297-B0E7-05748A926F06}) (Version: 1.0 - FAVORITE)
いろとりどりのセカイ (HKLM-x32\...\{3DC8D5BA-E704-402F-88F0-E22BF4C41F6F}) (Version: 1.00.0000 - FAVORITE)
姫狩りダンジョンマイスター (HKLM-x32\...\{70724B91-F673-40FB-9EC4-5DE21EA68367}) (Version: 1.00.0004 - Eushully) Hidden
姫狩りダンジョンマイスター (HKLM-x32\...\InstallShield_{70724B91-F673-40FB-9EC4-5DE21EA68367}) (Version: 1.03.0008 - Eushully)
姫狩りダンジョンマイスター Append01 (HKLM-x32\...\{88BDB159-7597-4E05-9818-C288AA7D83DC}) (Version: 1.00.0005 - Eushully) Hidden
姫狩りダンジョンマイスター Append01 (HKLM-x32\...\InstallShield_{88BDB159-7597-4E05-9818-C288AA7D83DC}) (Version: 1.00.0005 - Eushully)
姫狩りダンジョンマイスター Ver1.03 Update (HKLM-x32\...\{9C9D2ABE-1481-4986-8CD6-E367E90B6DA5}) (Version: 1.03.0008 - Eushully) Hidden
姫狩りダンジョンマイスター Ver1.03 Update (HKLM-x32\...\InstallShield_{9C9D2ABE-1481-4986-8CD6-E367E90B6DA5}) (Version: 1.03.0008 - Eushully)
恋と選挙とチョコレート (HKLM-x32\...\{37F3A948-31C2-4C33-942D-775E47C9CE9A}) (Version: 1.00.0000 - sprite)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ ] -> {1914B27A-33C8-46F8-A1C2-F993268D4564} => C:\WINDOWS\system32\WRusr.dll -> No File
ShellIconOverlayIdentifiers: [ ] -> {C14874EA-ACE4-4A47-8A81-18C4D1C40868} => C:\WINDOWS\system32\WRusr.dll -> No File
ShellIconOverlayIdentifiers: [ ] -> {6DA1ED92-315E-4D0B-B354-9D5F519DBA95} => C:\WINDOWS\system32\WRusr.dll -> No File
ShellIconOverlayIdentifiers: [ ] -> {8D7FC74C-E409-42DF-8EEE-69D45FAE2F30} => C:\WINDOWS\system32\WRusr.dll -> No File
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers-x32-x32-x32: [! IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => -> No File
ShellIconOverlayIdentifiers-x32-x32-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32-x32-x32: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ShellIconOverlayIdentifiers-x32-x32-x32: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => -> No File
ShellIconOverlayIdentifiers-x32-x32-x32-x32: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-05-18] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [BRUMenuHandler] -> {5D924130-4CB1-11DB-B0DE-0800200C9A66} => C:\Program Files\Bulk Rename Utility\BRUhere64.dll [2016-02-04] (TGRMN Software -> Bulk Rename Utility)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-10-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WRShellExt] -> {69D72956-317C-44bd-B369-8E44D4EF9802} => C:\WINDOWS\system32\WRusr.dll -> No File
ContextMenuHandlers2: [BRUMenuHandler] -> {5D924130-4CB1-11DB-B0DE-0800200C9A66} => C:\Program Files\Bulk Rename Utility\BRUhere64.dll [2016-02-04] (TGRMN Software -> Bulk Rename Utility)
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers4: [BRUMenuHandler] -> {5D924130-4CB1-11DB-B0DE-0800200C9A66} => C:\Program Files\Bulk Rename Utility\BRUhere64.dll [2016-02-04] (TGRMN Software -> Bulk Rename Utility)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [WorkFolders] -> {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [WorkFolders] -> {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} => -> No File
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WRShellExt] -> {69D72956-317C-44bd-B369-8E44D4EF9802} => C:\WINDOWS\system32\WRusr.dll -> No File
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02070F79-C941-42A8-B462-1F7621F3478C} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {03A226EF-6153-419C-8BCF-2897C2386953} - System32\Tasks\Tweaking.com - Registry Backup => C:\Program Files (x86)\Tweaking.com\Registry Backup\TweakingRegistryBackup.exe (Tweaking LLC -> Tweaking.com)
Task: {16506914-C203-4687-ACF9-DFC35E13171A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {256B0266-0A25-4858-9442-37448A4B0DBC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {2BCA7CF4-F4C6-4911-A41B-28A14484A263} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {2DDFC9B1-FD4F-469E-B1A3-391363B358F8} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Edison => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe (Janos Mathe -> H.D.S. Hungary)
Task: {4191AA41-A8FF-4E57-96B7-0A9400B95493} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_142_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {43BEA681-6C48-4D51-A48B-9F0E8BE0EFE6} - System32\Tasks\Core Temp Autostart Edison Main => C:\Program Files\Core Temp\Core Temp.exe (ALCPU -> ALCPU)
Task: {49E126B1-80A8-4ABD-B02C-F8A56F54AE21} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {4DDBF4D8-C673-4A1A-959D-EA9009EDE85B} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5629F450-EDA3-4996-8BF8-9514D55955C6} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5AA20168-7324-420F-B834-1DF754AB027E} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {62086665-5A3D-4F42-9FD9-93BB713428BF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {776B44ED-EB43-47D2-9B66-A7942CD42013} - \Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization -> No File <==== ATTENTION
Task: {7DF0FFAB-3DF2-40E8-B0B0-216CA643749D} - System32\Tasks\REDUCE STUTTER FOLDER\REDUCE STUTTER => C:\Users\Edison\Desktop\Tweaks and Repairs\LATENCY FIX AND DIAGNOSTIC\EmptyStandbyList.exe (Wen Jia Liu -> )
Task: {8393D39B-0A00-4FFA-BBF8-573FE0D0D8AB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {9697F0EA-2842-47BE-AE8A-EC4E01AC64B4} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Edz => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe (Janos Mathe -> H.D.S. Hungary)
Task: {9E69053D-2906-4D83-827C-05A6B6031431} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_142_pepper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {A138C065-C3C1-4089-BFB0-86CE7A51983A} - System32\Tasks\S-1-5-21-1524516680-1023419535-1535688680-1038\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {BFD8D145-720E-42EF-8425-F0C8A54434A7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {C0CCCD08-5690-4F5D-A3DD-022E192CB824} - System32\Tasks\S-1-5-21-1524516680-1023419535-1535688680-1046\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {C3DEC808-5537-4D66-9434-69108ABBE920} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {CD23B35B-5C5E-499E-98D5-92F556B0DAFA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {D583981B-A3C3-491B-8B4D-CE596AF8A643} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD33A8BA-AC3F-4C83-9E4C-C73C4CD5C591} - System32\Tasks\GoogleUpdateTaskMachineUA1ce7ea85b1bb4cb => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {E15D0692-401F-477B-A71E-D377FC1D0682} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {FAF990DA-BBF1-414D-AA31-B8EC7C82459D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Windows Installer Update Task.job => Wscript.exe O/nologo /E:jscript /B C:\Program Files (x86)\Windows Installer\msiupd.ini <==== ATTENTION
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Edison\Desktop\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
==================== Loaded Modules (Whitelisted) ==============
2018-09-15 15:28 - 2018-09-15 15:28 - 000834088
_ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-09-15 15:28 - 2018-09-15 15:28 - 000474624
_ () C:\Windows\ShellExperiences\TileControl.dll
2019-01-08 09:04 - 2019-01-08 09:04 - 002801152
_ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-09-15 15:28 - 2018-09-15 15:28 - 001740288
_ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2019-02-19 17:53 - 2019-02-13 13:14 - 002684400
_ () C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\swiftshader\libglesv2.dll
2019-02-19 17:53 - 2019-02-13 13:14 - 000156656
_ () C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\swiftshader\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\system.ini:c10_encryption_d [14]
AlternateDataStreams: C:\WINDOWS\system.ini:c1_encryption_d [14]
AlternateDataStreams: C:\WINDOWS\system.ini:c1_encryption_e [84]
AlternateDataStreams: C:\WINDOWS\win.ini:c10_encryption_d [14]
AlternateDataStreams: C:\WINDOWS\win.ini:c1_encryption_d [14]
AlternateDataStreams: C:\WINDOWS\win.ini:c1_encryption_e [84]
AlternateDataStreams: C:\ProgramData\TEMP:07BF512B [121]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [115]
AlternateDataStreams: C:\ProgramData\TEMP:6DAA43DB [177]
AlternateDataStreams: C:\ProgramData\TEMP
1B5B4F1 [91]
AlternateDataStreams: C:\Users\Public\AppData:CSM [181]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-02-15 16:34 - 2019-02-20 11:40 - 000000828
_ C:\WINDOWS\system32\drivers\etc\hosts
2011-04-21 00:52 - 2011-08-29 22:04 - 000000375
_ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: %SystemRoot%\System32;c:\windows\system32\wbem;c:\program files\java\jdk1.7.0_79\bin;c:\windows\system32;c:\windows;c:\program files (x86)\intel\icls client;c:\windows\system32\windowspowershell\v1.0;c:\program files (x86)\quicktime\qtsystem;c:\program files\roguekiller;c:\windows\syswow64;c:\program files\process lasso;c:\program files (x86)\nvidia corporation\physx\common;c:\windows\system32\openssh;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;%SYSTEMROOT%\System32\OpenSSH;%SystemRoot%\system32;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1524516680-1023419535-1535688680-1046\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
MSCONFIG\Services: amdacpusrsvc => 2
MSCONFIG\Services: Apple Mobile Device => 3
MSCONFIG\Services: aspnet_state => 3
MSCONFIG\Services: BthHFSrv => 3
MSCONFIG\Services: CachemanService => 2
MSCONFIG\Services: clr_optimization_v2.0.50727_32 => 3
MSCONFIG\Services: clr_optimization_v2.0.50727_64 => 3
MSCONFIG\Services: clr_optimization_v4.0.30319_32 => 2
MSCONFIG\Services: DAUpdaterSvc => 3
MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 3
MSCONFIG\Services: GarenaPlatform => 2
MSCONFIG\Services: GfExperienceService => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: MacriumService => 3
MSCONFIG\Services: NvContainerLocalSystem => 3
MSCONFIG\Services: NvContainerNetworkService => 3
MSCONFIG\Services: NVIDIA Wireless Controller Service => 2
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamNetworkSvc => 3
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: NvTelemetryContainer => 2
MSCONFIG\Services: OpenVPNService => 3
MSCONFIG\Services: OpenVPNServiceInteractive => 2
MSCONFIG\Services: OpenVPNServiceLegacy => 3
MSCONFIG\Services: OverwolfUpdater => 3
MSCONFIG\Services: PAExec => 3
MSCONFIG\Services: PingzapperSvc => 2
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: UI0Detect => 3
MSCONFIG\Services: UNS => 2
MSCONFIG\Services: USER_ESRV_SVC_QUEENCREEK => 3
MSCONFIG\Services: VIAKaraokeService => 2
MSCONFIG\Services: VMAuthdService => 3
MSCONFIG\Services: VMnetDHCP => 3
MSCONFIG\Services: VMUSBArbService => 3
MSCONFIG\Services: VMware NAT Service => 2
MSCONFIG\Services: WinDefend => 3
MSCONFIG\startupreg: AdobeARM.exe => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: armsvc.exe => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
MSCONFIG\startupreg: IDMan.exe =>
MSCONFIG\startupreg: QuickTime Task =>
MSCONFIG\startupreg: sppsvc.exe => %SystemRoot%\system32\sppsvc.exe
MSCONFIG\startupreg: Steam.exe => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => c:\program files (x86)\common files\java\java update\jusched.exe
MSCONFIG\startupreg: unregmp2.exe =>
MSCONFIG\startupreg: viakaraokesrv.exe => %SystemRoot%\system32\viakaraokesrv.exe
MSCONFIG\startupreg: WinMail.exe =>
MSCONFIG\startupreg: Xvid => c:\program files (x86)\xvid\checkupdate.exe
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "OODefragTray"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "ooccctrl.exe"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "WindowsPCMON"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run32: => "WRSVC"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM Tray Agent"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Everything"
HKLM\...\StartupApproved\Run32: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "DSATray"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{92DE01DE-6E05-4411-A828-08314882CDBE}C:\users\edison\desktop\tweaks and repairs\snappy driver installer\sdi_x64_r1811.exe] => (Allow) C:\users\edison\desktop\tweaks and repairs\snappy driver installer\sdi_x64_r1811.exe (
www.SamLab.ws)
FirewallRules: [TCP Query User{9FE33291-1FAC-44B9-94CA-1DA38A830D8E}C:\users\edison\desktop\tweaks and repairs\snappy driver installer\sdi_x64_r1811.exe] => (Allow) C:\users\edison\desktop\tweaks and repairs\snappy driver installer\sdi_x64_r1811.exe (
www.SamLab.ws)
FirewallRules: [UDP Query User{CBA2AFA1-709E-4F4D-9D66-9D85901BF58E}C:\users\edison\desktop\tweaks and repairs\snappy driver installer origin\sdio_x64_r698.exe] => (Allow) C:\users\edison\desktop\tweaks and repairs\snappy driver installer origin\sdio_x64_r698.exe (Mr Glenn Stuart Delahoy -> Glenn Delahoy)
FirewallRules: [TCP Query User{06FA99C9-4BD7-4797-A0C2-7B22F4EACF89}C:\users\edison\desktop\tweaks and repairs\snappy driver installer origin\sdio_x64_r698.exe] => (Allow) C:\users\edison\desktop\tweaks and repairs\snappy driver installer origin\sdio_x64_r698.exe (Mr Glenn Stuart Delahoy -> Glenn Delahoy)
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [{B385BF59-8537-4AC6-8235-7458578EFFDB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
==================== Restore Points =========================
20-02-2019 04:07:44 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/20/2019 03:29:54 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (02/20/2019 03:29:27 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (02/20/2019 02:57:48 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (02/20/2019 02:57:43 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (02/20/2019 02:57:35 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (02/20/2019 02:57:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=TimerEvent
Error: (02/20/2019 11:48:44 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (02/20/2019 11:48:38 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
System errors:
=============
Error: (02/20/2019 03:52:14 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service terminated with the following error:
Load failed
Error: (02/20/2019 03:48:01 PM) (Source: DCOM) (EventID: 10016) (User: EDZ-PC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user EDZ-PC\Edison SID (S-1-5-21-1524516680-1023419535-1535688680-1046) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/20/2019 03:31:07 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscDataProtection
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/20/2019 03:29:40 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service terminated with the following error:
Load failed
Error: (02/20/2019 03:28:41 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Windows Media Player Network Sharing Service service terminated with the following error:
An attempt was made to reference a token that does not exist.
Error: (02/20/2019 03:28:41 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1068" attempting to start the service upnphost with arguments "Unavailable" in order to run the server:
{204810B9-73B2-11D4-BF42-00B0D0118B56}
Error: (02/20/2019 03:28:41 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service terminated with the following error:
Load failed
Error: (02/20/2019 03:28:41 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The UPnP Device Host service depends on the SSDP Discovery service which failed to start because of the following error:
The operation completed successfully.
Windows Defender:
===================================
Date: 2019-02-20 15:39:22.511
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.285.1510.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15600.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2019-02-20 15:39:22.511
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.285.1510.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15600.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2019-02-20 15:39:22.511
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.285.1510.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15600.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2019-02-20 15:39:22.501
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.285.1510.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15600.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2019-02-20 15:39:22.501
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.285.1510.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15600.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3330 CPU @ 3.00GHz
Percentage of memory in use: 35%
Total physical RAM: 8174.3 MB
Available physical RAM: 5277.21 MB
Total Virtual: 16366.3 MB
Available Virtual: 12748.02 MB
==================== Drives ================================
Drive c: (Bleh) (Fixed) (Total:205.94 GB) (Free:49.91 GB) NTFS
Drive d: (Blah) (Fixed) (Total:1655.01 GB) (Free:190.88 GB) NTFS
Drive e: (Backup Drive) (Fixed) (Total:1863.02 GB) (Free:1054.36 GB) NTFS
\\?\Volume{e94dead9-3253-48ed-9bb6-9fbc75f914a3}\ () (Fixed) (Total:0.83 GB) (Free:0.32 GB) NTFS
\\?\Volume{22249e57-34ce-45ee-8a29-3f91e9f44a54}\ () (Fixed) (Total:0.82 GB) (Free:0.81 GB) NTFS
\\?\Volume{95f967eb-2710-0000-6012-806e6f6e6963}\ () (Fixed) (Total:0.29 GB) (Free:0.25 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 0CC8C990)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 0E2AAC54)
Partition: GPT.
==================== End of Addition.txt ============================