Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Pc keeps freezing and starting poorly.

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Pc keeps freezing and starting poorly.

Unread postby Ilya » February 15th, 2019, 4:21 am

Hello. My PC keeps freezing and unfreezing a few times a day. It also has a little trouble starting. Today I had to restart it twice before it even went into the log in screen. When it unfreezes the screen goes black and then it turns on again. I attach the logs.


FRST.txt


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13.02.2019
Ran by ilyaj (administrator) on DESKTOP-EBCI9IE (15-02-2019 08:16:02)
Running from C:\Users\ilyaj\Downloads
Loaded Profiles: ilyaj (Available Profiles: ilyaj)
Platform: Windows 10 Pro Version 1803 17134.590 (X64) Language: English (United Kingdom)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.16.3.21\NortonSecurity.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.16.3.21\nsWscSvc.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_a2fcfdfc3497e17c\RstMwService.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.16.3.21\NortonSecurity.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
() C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\Microsoft.Notes.DesktopBridge.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Cisco) C:\Users\ilyaj\AppData\Local\Cisco\VideoGuardPlayer\VideoGuardMonitor\CiscoVideoGuardMonitor.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230816 2017-07-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-415037110-3038116315-1291655453-1001\...\Run: [VideoGuardMonitor] => C:\Users\ilyaj\AppData\Local\Cisco\VideoGuardPlayer\VideoGuardMonitor\CiscoVideoGuardMonitor.exe [2345736 2018-04-17] (Cisco Video Technologies Israel Ltd. -> Cisco)
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\system32\vorbis.acm [1470976 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
HKLM\...\Drivers32-x32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1554944 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d27d0eda-d5e2-4814-a000-8d10e54b2a06}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-415037110-3038116315-1291655453-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?Link ... id=UE01DHP
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.16.3.21\coIEPlg.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.16.3.21\coIEPlg.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.16.3.21\coIEPlg.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.16.3.21\coIEPlg.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-415037110-3038116315-1291655453-1001 -> hxxp://google.co.uk/

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-02-06] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-02-06] (NVIDIA Corporation)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.16.3.21\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.16.3.21\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8352184 2018-12-19] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-16] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S2 iaStorAfsService; C:\Windows\System32\iaStorAfsService.exe [2769936 2018-08-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.16.3.21\NortonSecurity.exe [328648 2018-12-12] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.16.3.21\nsWscSvc.exe [915712 2018-12-12] (Symantec Corporation -> Symantec Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-01-23] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-01-23] (Electronic Arts, Inc. -> Electronic Arts)
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [3441152 2018-04-11] (Microsoft Corporation) [File not signed]
R2 RstMwService; C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_a2fcfdfc3497e17c\RstMwService.exe [1903120 2018-08-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4403496 2019-01-09] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107136 2018-09-21] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.16.2.22\Definitions\BASHDefs\20190212.002\BHDrvx64.sys [1934048 2019-02-12] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\1610030.015\ccSetx64.sys [189152 2018-12-12] (Symantec Corporation -> Symantec Corporation)
S3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [46944 2018-09-17] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
S3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [23392 2018-09-17] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [515792 2018-12-10] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153296 2019-02-12] (Symantec Corporation -> Symantec Corporation)
S3 gdrv; C:\Windows\gdrv.sys [26192 2018-12-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R1 HWiNFO; C:\Windows\system32\drivers\HWiNFO64A.SYS [65320 2019-01-24] (Martin Malik - REALiX -> REALiX(tm))
R0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [967696 2018-08-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R0 iaStorAfs; C:\Windows\System32\drivers\iaStorAfs.sys [72720 2018-08-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.16.2.22\Definitions\IPSDefs\20190214.061\IDSvia64.sys [1424904 2019-01-23] (Symantec Corporation -> Symantec Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_21a764822be8dff8\nvlddmkm.sys [20707744 2019-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [36384 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2018-11-29] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [3818056 2018-02-13] (NETGEAR TAIWAN CO., LTD -> Realtek Semiconductor Corporation )
R3 SIUSBXP; C:\Windows\system32\drivers\SiUSBXp.sys [19456 2018-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories)
R3 SRTSP; C:\Windows\System32\drivers\NGCx64\1610030.015\SRTSP64.SYS [855256 2018-12-12] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\1610030.015\SRTSPX64.SYS [49880 2018-12-12] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\1610030.015\SYMEFASI64.SYS [1969328 2018-12-12] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NGCx64\1610030.015\SymELAM.sys [25744 2018-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100032 2018-12-10] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; C:\Program Files\Norton Security\NortonData\22.16.2.22\SymPlatform\SymEvnt.sys [678616 2019-02-02] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\Windows\System32\drivers\NGCx64\1610030.015\Ironx64.SYS [308416 2018-12-12] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\Windows\System32\drivers\NGCx64\1610030.015\symnets.sys [567024 2018-12-12] (Symantec Corporation -> Symantec Corporation)
R3 UcmCxUcsiNvppc; C:\Windows\System32\drivers\UcmCxUcsiNvppc.sys [453192 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44616 2018-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [331680 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [44032 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\1610030.015\wpCtrlDrv.sys [1011056 2018-12-12] (Symantec Corporation -> Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-15 08:16 - 2019-02-15 08:16 - 000015927 _____ C:\Users\ilyaj\Downloads\FRST.txt
2019-02-15 08:15 - 2019-02-15 08:16 - 000000000 ____D C:\FRST
2019-02-15 08:15 - 2019-02-15 08:15 - 002433536 _____ (Farbar) C:\Users\ilyaj\Downloads\FRST64.exe
2019-02-15 08:03 - 2019-02-15 08:03 - 000000000 ____D C:\Windows\System32\Tasks\Remediation
2019-02-15 07:46 - 2019-02-15 07:46 - 000000000 __SHD C:\found.002
2019-02-13 16:16 - 2019-02-06 03:00 - 007520112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-02-13 16:16 - 2019-02-06 03:00 - 006572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-13 16:16 - 2019-02-06 02:41 - 025853952 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-02-13 16:16 - 2019-02-06 02:33 - 022714880 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-02-13 16:15 - 2019-02-06 07:54 - 004527584 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-02-13 16:15 - 2019-02-06 07:53 - 001634704 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-02-13 16:15 - 2019-02-06 07:35 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-02-13 16:15 - 2019-02-06 07:32 - 003648512 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-02-13 16:15 - 2019-02-06 07:30 - 004052992 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-02-13 16:15 - 2019-02-06 07:30 - 001662464 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-02-13 16:15 - 2019-02-06 07:30 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-02-13 16:15 - 2019-02-06 07:11 - 001454648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-02-13 16:15 - 2019-02-06 06:57 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-02-13 16:15 - 2019-02-06 06:52 - 004053504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-02-13 16:15 - 2019-02-06 06:52 - 002891776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-02-13 16:15 - 2019-02-06 06:52 - 001470976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-02-13 16:15 - 2019-02-06 03:01 - 001989040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-02-13 16:15 - 2019-02-06 03:01 - 001221432 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-02-13 16:15 - 2019-02-06 03:01 - 001029944 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-02-13 16:15 - 2019-02-06 03:01 - 000720480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-02-13 16:15 - 2019-02-06 03:01 - 000566568 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-02-13 16:15 - 2019-02-06 03:01 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-02-13 16:15 - 2019-02-06 03:01 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-02-13 16:15 - 2019-02-06 03:01 - 000033576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NtlmShared.dll
2019-02-13 16:15 - 2019-02-06 03:00 - 009084432 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-02-13 16:15 - 2019-02-06 03:00 - 002719760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-02-13 16:15 - 2019-02-06 03:00 - 002465792 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-02-13 16:15 - 2019-02-06 03:00 - 002421264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-02-13 16:15 - 2019-02-06 03:00 - 001257904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-02-13 16:15 - 2019-02-06 03:00 - 001140680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-02-13 16:15 - 2019-02-06 03:00 - 001130568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2019-02-13 16:15 - 2019-02-06 03:00 - 001098272 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2019-02-13 16:15 - 2019-02-06 03:00 - 000945680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2019-02-13 16:15 - 2019-02-06 03:00 - 000899728 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-02-13 16:15 - 2019-02-06 03:00 - 000466960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-02-13 16:15 - 2019-02-06 03:00 - 000376120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-02-13 16:15 - 2019-02-06 03:00 - 000043536 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2019-02-13 16:15 - 2019-02-06 03:00 - 000038792 _____ (Microsoft Corporation) C:\Windows\system32\NtlmShared.dll
2019-02-13 16:15 - 2019-02-06 02:59 - 001922064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-02-13 16:15 - 2019-02-06 02:59 - 001457248 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-02-13 16:15 - 2019-02-06 02:59 - 000983128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-02-13 16:15 - 2019-02-06 02:59 - 000144288 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-02-13 16:15 - 2019-02-06 02:52 - 022014464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-02-13 16:15 - 2019-02-06 02:45 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-02-13 16:15 - 2019-02-06 02:42 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-02-13 16:15 - 2019-02-06 02:41 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2019-02-13 16:15 - 2019-02-06 02:40 - 005792256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-02-13 16:15 - 2019-02-06 02:40 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2019-02-13 16:15 - 2019-02-06 02:38 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-02-13 16:15 - 2019-02-06 02:38 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-02-13 16:15 - 2019-02-06 02:37 - 004515840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-02-13 16:15 - 2019-02-06 02:37 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-02-13 16:15 - 2019-02-06 02:29 - 004865536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-02-13 16:15 - 2019-02-06 02:28 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-02-13 16:15 - 2019-02-06 02:28 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2019-02-13 16:15 - 2019-02-06 02:27 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-02-13 16:15 - 2019-02-06 02:27 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-02-13 16:15 - 2019-02-06 02:27 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-02-13 16:15 - 2019-02-06 02:27 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-02-13 16:15 - 2019-02-06 02:26 - 007599616 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-02-13 16:15 - 2019-02-06 02:26 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-02-13 16:15 - 2019-02-06 02:26 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-02-13 16:15 - 2019-02-06 02:26 - 000174592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2019-02-13 16:15 - 2019-02-06 02:26 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-02-13 16:15 - 2019-02-06 02:25 - 000736256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-02-13 16:15 - 2019-02-06 02:25 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2019-02-13 16:15 - 2019-02-06 02:24 - 004937728 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-02-13 16:15 - 2019-02-06 02:24 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2019-02-13 16:15 - 2019-02-06 02:23 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2019-02-13 16:15 - 2019-02-06 02:22 - 000960512 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2019-02-13 16:15 - 2019-02-06 02:22 - 000885760 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2019-02-13 16:15 - 2019-02-06 02:21 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-02-13 16:15 - 2019-02-06 01:04 - 000001314 _____ C:\Windows\system32\tcbres.wim
2019-02-13 16:15 - 2019-01-12 08:56 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2019-02-13 16:15 - 2019-01-12 02:28 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-02-13 16:15 - 2019-01-09 18:08 - 000309560 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-02-13 16:15 - 2019-01-09 17:57 - 000720536 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-02-13 16:15 - 2019-01-09 17:42 - 004716032 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2019-02-13 16:15 - 2019-01-09 17:41 - 012730368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-02-13 16:15 - 2019-01-09 17:41 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2019-02-13 16:15 - 2019-01-09 17:40 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2019-02-13 16:15 - 2019-01-09 17:36 - 001054720 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2019-02-13 16:15 - 2019-01-09 17:35 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2019-02-13 16:15 - 2019-01-09 10:14 - 000607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-02-13 16:15 - 2019-01-09 09:55 - 011919872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-02-13 16:15 - 2019-01-09 09:55 - 000150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2019-02-13 16:15 - 2019-01-09 08:55 - 001285432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2019-02-13 16:15 - 2019-01-09 08:48 - 000527368 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-02-13 16:15 - 2019-01-09 05:59 - 000611848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-02-13 16:15 - 2019-01-09 05:44 - 000078688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 006043496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 004789944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 002253480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 001981280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 001620264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 000607376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 000581592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 000287640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 000129088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 000127744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
2019-02-13 16:15 - 2019-01-09 05:43 - 000071456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2019-02-13 16:15 - 2019-01-09 05:42 - 001035232 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-02-13 16:15 - 2019-01-09 05:42 - 000092704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2019-02-13 16:15 - 2019-01-09 05:40 - 002765336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-02-13 16:15 - 2019-01-09 05:40 - 001063224 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2019-02-13 16:15 - 2019-01-09 05:40 - 000432952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2019-02-13 16:15 - 2019-01-09 05:40 - 000226104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-02-13 16:15 - 2019-01-09 05:40 - 000090872 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 007436016 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 004404720 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 002571632 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 001943128 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 000789696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 000713264 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 000349656 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 000269624 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 000260800 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 000175416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-02-13 16:15 - 2019-01-09 05:39 - 000164192 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
2019-02-13 16:15 - 2019-01-09 05:39 - 000085472 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe
2019-02-13 16:15 - 2019-01-09 05:33 - 016597504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2019-02-13 16:15 - 2019-01-09 05:32 - 013878272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2019-02-13 16:15 - 2019-01-09 05:29 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-02-13 16:15 - 2019-01-09 05:29 - 002500096 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2019-02-13 16:15 - 2019-01-09 05:27 - 004710912 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-02-13 16:15 - 2019-01-09 05:27 - 004384256 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-02-13 16:15 - 2019-01-09 05:27 - 001587712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2019-02-13 16:15 - 2019-01-09 05:26 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-02-13 16:15 - 2019-01-09 05:26 - 003396608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-02-13 16:15 - 2019-01-09 05:26 - 002966016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-02-13 16:15 - 2019-01-09 05:25 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\spacebridge.dll
2019-02-13 16:15 - 2019-01-09 05:24 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2019-02-13 16:15 - 2019-01-09 05:24 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2019-02-13 16:15 - 2019-01-09 05:24 - 000157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spacebridge.dll
2019-02-13 16:15 - 2019-01-09 05:23 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-02-13 16:15 - 2019-01-09 05:23 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2019-02-13 16:15 - 2019-01-09 05:23 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2019-02-13 16:15 - 2019-01-09 05:23 - 001189888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2019-02-13 16:15 - 2019-01-09 05:23 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-02-13 16:15 - 2019-01-09 05:23 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2019-02-13 16:15 - 2019-01-09 05:23 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2019-02-13 16:15 - 2019-01-09 05:23 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2019-02-13 16:15 - 2019-01-09 05:22 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-02-13 16:15 - 2019-01-09 05:22 - 001395200 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2019-02-13 16:15 - 2019-01-09 05:22 - 000624640 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2019-02-13 16:15 - 2019-01-09 05:22 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2019-02-13 16:15 - 2019-01-09 05:22 - 000333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-02-13 16:15 - 2019-01-09 05:22 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2019-02-13 16:15 - 2019-01-09 05:22 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 16:15 - 2019-01-09 05:22 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2019-02-13 16:15 - 2019-01-09 05:21 - 002173440 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-02-13 16:15 - 2019-01-09 05:21 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2019-02-13 16:15 - 2019-01-09 05:21 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 16:15 - 2019-01-09 05:20 - 001000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2019-02-13 16:15 - 2019-01-09 05:20 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-02-13 16:15 - 2019-01-09 05:20 - 000607232 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2019-02-13 16:15 - 2019-01-09 05:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2019-02-13 16:15 - 2019-01-09 05:19 - 000678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-02-13 16:15 - 2019-01-09 05:19 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-02-13 16:15 - 2019-01-09 05:19 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2019-02-13 16:15 - 2019-01-09 05:19 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2019-02-13 16:15 - 2019-01-09 05:18 - 000195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2019-02-13 16:15 - 2019-01-09 04:34 - 000806320 _____ C:\Windows\SysWOW64\locale.nls
2019-02-13 16:15 - 2019-01-09 04:34 - 000806320 _____ C:\Windows\system32\locale.nls
2019-02-13 16:15 - 2019-01-08 09:08 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-02-13 16:15 - 2019-01-08 03:06 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-02-13 16:15 - 2019-01-08 03:06 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-02-13 16:15 - 2019-01-08 03:06 - 000000072 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2019-02-13 16:12 - 2019-02-06 19:26 - 000133328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-02-13 16:09 - 2019-02-08 14:41 - 001005776 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-02-13 16:09 - 2019-02-08 14:41 - 001005776 _____ C:\Windows\system32\vulkan-1.dll
2019-02-13 16:09 - 2019-02-08 14:41 - 000869584 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-02-13 16:09 - 2019-02-08 14:41 - 000869584 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-02-13 16:09 - 2019-02-08 14:41 - 000551680 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-02-13 16:09 - 2019-02-08 14:41 - 000456992 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-02-13 16:09 - 2019-02-08 14:41 - 000269520 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-02-13 16:09 - 2019-02-08 14:41 - 000269520 _____ C:\Windows\system32\vulkaninfo.exe
2019-02-13 16:09 - 2019-02-08 14:41 - 000243920 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-02-13 16:09 - 2019-02-08 14:41 - 000243920 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-02-13 16:09 - 2019-02-08 14:39 - 001464224 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-02-13 16:09 - 2019-02-08 14:39 - 001129104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-02-13 16:09 - 2019-02-08 14:39 - 000668848 _____ C:\Windows\system32\nvofapi64.dll
2019-02-13 16:09 - 2019-02-08 14:39 - 000631896 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-02-13 16:09 - 2019-02-08 14:39 - 000534752 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-02-13 16:09 - 2019-02-08 14:39 - 000521872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 040234432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 035139840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 005272832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 004623968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 002032104 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 001734104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441891.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 001535120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 001468048 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441891.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 000752416 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2019-02-13 16:09 - 2019-02-08 14:38 - 000611264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 020102000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 010894304 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 009254488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 001471624 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 001462424 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 001169152 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 001152016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 001145928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 000915144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 000822784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 000794656 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-02-13 16:09 - 2019-02-08 14:37 - 000638392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-02-13 16:09 - 2019-02-08 14:36 - 017428536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-02-13 16:09 - 2019-02-08 14:36 - 004297208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-02-11 17:37 - 2019-02-11 17:37 - 000000000 __SHD C:\found.001
2019-02-11 17:32 - 2019-02-11 17:32 - 000000000 __SHD C:\found.000
2019-02-07 08:46 - 2019-02-07 08:46 - 000000000 ____D C:\Users\ilyaj\AppData\Roaming\MK10
2019-02-05 15:55 - 2019-02-01 21:36 - 000047592 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-02-05 15:55 - 2019-02-01 01:38 - 001734560 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441881.dll
2019-02-05 15:55 - 2019-02-01 01:38 - 001467864 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441881.dll
2019-02-05 15:55 - 2019-01-31 06:09 - 001468200 _____ (NVIDIA Corporation) C:\Windows\system32\nvppcgenco64_1127831.dll
2019-02-05 15:55 - 2019-01-31 06:09 - 000453192 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\UcmCxUcsiNvppc.sys
2019-01-28 06:42 - 2018-09-20 04:12 - 001483576 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2019-01-24 09:32 - 2019-01-24 09:33 - 326273611 _____ C:\Users\ilyaj\Downloads\RealBench_v2.56.zip
2019-01-24 09:14 - 2019-01-24 09:14 - 000065320 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS
2019-01-24 09:14 - 2019-01-24 09:14 - 000000000 ____D C:\Program Files\HWiNFO64
2019-01-24 09:13 - 2019-01-24 09:13 - 008553176 _____ (Martin Malík - REALiX ) C:\Users\ilyaj\Downloads\hwi_600.exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-15 07:44 - 2018-12-10 22:58 - 000000000 ___HD C:\Program Files\WindowsApps
2019-02-15 07:44 - 2018-12-10 22:58 - 000000000 ____D C:\Windows\AppReadiness
2019-02-15 07:41 - 2018-12-10 15:20 - 000000000 ____D C:\Windows\System32\Tasks\Norton Security
2019-02-15 07:40 - 2018-12-10 22:58 - 000000000 ____D C:\Windows\INF
2019-02-15 07:40 - 2018-12-10 15:12 - 000838560 _____ C:\Windows\system32\PerfStringBackup.INI
2019-02-15 07:34 - 2018-12-10 15:04 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-02-15 07:34 - 2018-12-10 15:04 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-02-14 17:30 - 2018-12-10 17:40 - 000000000 ____D C:\Users\ilyaj\AppData\Roaming\Sky Go
2019-02-14 16:48 - 2018-12-10 22:58 - 000000000 ____D C:\Windows\system32\NDF
2019-02-14 16:47 - 2018-12-10 15:10 - 000000000 ____D C:\Users\ilyaj
2019-02-14 16:34 - 2018-12-10 15:20 - 000000000 ____D C:\Users\ilyaj\AppData\Local\Battle.net
2019-02-14 16:32 - 2018-12-10 15:23 - 000000000 ____D C:\Program Files (x86)\Call of Duty Black Ops 4
2019-02-14 12:47 - 2018-12-11 11:58 - 000000000 ____D C:\Users\ilyaj\AppData\Local\Spotify
2019-02-14 12:15 - 2018-12-11 11:57 - 000000000 ____D C:\Users\ilyaj\AppData\Roaming\Spotify
2019-02-14 11:46 - 2018-12-10 15:19 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-02-14 11:34 - 2018-12-10 16:24 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-02-14 11:34 - 2018-12-10 16:16 - 000000000 ____D C:\Users\ilyaj\AppData\Roaming\Origin
2019-02-13 23:11 - 2018-12-11 12:57 - 000000000 ____D C:\Users\ilyaj\AppData\Local\CrashDumps
2019-02-13 21:02 - 2018-12-10 15:05 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-02-13 21:02 - 2018-12-10 15:04 - 000234720 _____ C:\Windows\system32\FNTCACHE.DAT
2019-02-13 21:01 - 2018-12-10 22:58 - 000000000 ___SD C:\Windows\SysWOW64\F12
2019-02-13 21:01 - 2018-12-10 22:58 - 000000000 ___SD C:\Windows\system32\F12
2019-02-13 21:01 - 2018-12-10 22:58 - 000000000 ____D C:\Windows\TextInput
2019-02-13 21:01 - 2018-12-10 22:58 - 000000000 ____D C:\Windows\ShellExperiences
2019-02-13 21:01 - 2018-12-10 22:58 - 000000000 ____D C:\Windows\bcastdvr
2019-02-13 21:01 - 2018-12-10 22:58 - 000000000 ____D C:\Program Files\Windows Defender
2019-02-13 21:01 - 2018-12-10 22:56 - 000524288 _____ C:\Windows\system32\config\BBI
2019-02-13 16:17 - 2018-12-10 22:56 - 000000000 ____D C:\Windows\CbsTemp
2019-02-13 16:15 - 2018-12-10 17:54 - 000000000 ____D C:\Windows\system32\MRT
2019-02-13 16:15 - 2018-12-10 17:53 - 129330784 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-02-13 16:06 - 2018-12-30 01:34 - 000000000 ____D C:\NVIDIA
2019-02-13 16:06 - 2018-12-10 15:51 - 000004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000004106 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000003976 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000003940 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:51 - 000003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-13 16:06 - 2018-12-10 15:05 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-02-13 07:26 - 2018-12-10 15:24 - 000000000 ____D C:\Program Files (x86)\Steam
2019-02-12 19:50 - 2018-12-14 04:22 - 000000000 ____D C:\Windows\Minidump
2019-02-11 06:54 - 2018-12-10 22:58 - 000000000 ____D C:\Windows\LiveKernelReports
2019-02-10 07:47 - 2018-12-10 16:23 - 000000000 ____D C:\Users\ilyaj\AppData\Local\D3DSCache
2019-02-10 06:16 - 2018-12-10 15:13 - 000003376 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-415037110-3038116315-1291655453-1001
2019-02-10 06:16 - 2018-12-10 15:12 - 000000000 ___RD C:\Users\ilyaj\OneDrive
2019-02-10 06:16 - 2018-12-10 15:10 - 000002370 _____ C:\Users\ilyaj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-02-10 06:14 - 2018-12-10 22:56 - 000016384 _____ C:\Windows\system32\config\ELAM
2019-02-08 14:36 - 2018-12-30 02:48 - 005037936 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-02-07 08:50 - 2018-12-11 23:26 - 000000000 ____D C:\Users\ilyaj\AppData\Local\UnrealEngine
2019-02-07 08:50 - 2018-12-10 18:25 - 000000000 ____D C:\Users\ilyaj\AppData\Local\NVIDIA Corporation
2019-02-06 23:37 - 2018-12-10 15:50 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2019-02-06 23:37 - 2018-12-07 09:10 - 000049634 _____ C:\Windows\system32\nvinfo.pb
2019-02-06 19:22 - 2018-12-10 15:05 - 005364776 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-02-06 19:22 - 2018-12-10 15:05 - 002624824 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-02-06 19:22 - 2018-12-10 15:05 - 001767280 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-02-06 19:22 - 2018-12-10 15:05 - 000651248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-02-06 19:22 - 2018-12-10 15:05 - 000450768 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-02-06 19:22 - 2018-12-10 15:05 - 000125136 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-02-06 19:22 - 2018-12-10 15:05 - 000082800 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-02-06 18:09 - 2018-12-10 15:04 - 000000000 __SHD C:\IntelOptaneData
2019-02-06 12:37 - 2018-12-10 15:05 - 008491402 _____ C:\Windows\system32\nvcoproc.bin
2019-02-06 01:33 - 2018-12-10 16:23 - 000000000 ____D C:\Program Files (x86)\Origin
2019-02-03 10:49 - 2018-12-10 15:05 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-02-02 22:53 - 2018-12-10 23:00 - 000835480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-02-02 22:53 - 2018-12-10 23:00 - 000179600 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-01 21:36 - 2018-12-07 09:10 - 001682392 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2019-02-01 21:36 - 2018-12-07 09:10 - 000228768 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2019-01-30 20:17 - 2018-12-10 15:51 - 002741640 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2019-01-30 20:17 - 2018-12-10 15:51 - 002124680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2019-01-30 20:17 - 2018-12-10 15:51 - 001323400 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2019-01-26 01:19 - 2018-12-10 17:40 - 000000000 ____D C:\Users\ilyaj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sky
2019-01-18 19:59 - 2018-12-10 17:52 - 000000000 ____D C:\Program Files\rempl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-12-10 15:04

==================== End of FRST.txt ============================



Addition.txt



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13.02.2019
Ran by ilyaj (15-02-2019 08:16:31)
Running from C:\Users\ilyaj\Downloads
Windows 10 Pro Version 1803 17134.590 (X64) (2018-12-10 15:08:20)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-415037110-3038116315-1291655453-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-415037110-3038116315-1291655453-503 - Limited - Disabled)
Guest (S-1-5-21-415037110-3038116315-1291655453-501 - Limited - Disabled)
ilyaj (S-1-5-21-415037110-3038116315-1291655453-1001 - Administrator - Enabled) => C:\Users\ilyaj
WDAGUtilityAccount (S-1-5-21-415037110-3038116315-1291655453-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Call of Duty Black Ops 4 (HKLM-x32\...\Call of Duty Black Ops 4) (Version: - Blizzard Entertainment)
Cisco VideoGuard Player (HKLM-x32\...\{30e4813e-2a86-4e4f-82ea-23df71ca8ffb}) (Version: 10.1.1.6570 - Cisco Systems, Inc)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 418.91 - NVIDIA Corporation) Hidden
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.44.20513.9 - Electronic Arts)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
HWiNFO64 Version 6.00 (HKLM\...\HWiNFO64_is1) (Version: 6.00 - Martin Malík - REALiX)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{88667F43-B63E-4046-AF02-35E5412B8FAF}) (Version: 16.5.1.1030 - Intel Corporation)
Microsoft OneDrive (HKU\S-1-5-21-415037110-3038116315-1291655453-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Norton Security (HKLM-x32\...\NGC) (Version: 22.16.3.21 - Symantec Corporation)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 418.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 418.91 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Graphics Driver 418.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 418.91 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
NVIDIA USBC Driver 1.1.27.831 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.1.27.831 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8210 - Realtek Semiconductor Corp.)
Sky Go 1.3.13.0 (HKU\S-1-5-21-415037110-3038116315-1291655453-1001\...\com.bskyb.skygoplayer_is1) (Version: 1.3.13.0 - Sky)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Spotify (HKU\S-1-5-21-415037110-3038116315-1291655453-1001\...\Spotify) (Version: 1.1.0.237.g378f6f25 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Titanfall™ 2 (HKLM-x32\...\{4BD80373-FEE7-45B6-8249-6E8E98717405}) (Version: 1.0.1.3 - Electronic Arts, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Windows\system32\mscoree.dll [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.16.3.21\buShell.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.16.3.21\buShell.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.16.3.21\buShell.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.16.3.21\buShell.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.16.3.21\buShell.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.16.3.21\buShell.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.16.3.21\buShell.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.16.3.21\NavShExt.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.16.3.21\NavShExt.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Windows\system32\mscoree.dll [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-02-06] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.16.3.21\buShell.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.16.3.21\NavShExt.dll [2018-12-12] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {011B526A-94E9-4ED8-9AF3-E7C0D549FAB6} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.16.3.21\SymErr.exe (Symantec Corporation -> Symantec Corporation)
Task: {29EE9699-D6CF-44E4-BC63-1142E7656F5A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35A33409-C281-44F7-9A0C-85752A4FCA0D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4708C469-CCAA-4E5C-BEE7-D3A95F2836D7} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe (Symantec Corporation -> Symantec Corporation)
Task: {554D50E2-CE0F-4683-83ED-33908F64E612} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.16.3.21\SymErr.exe (Symantec Corporation -> Symantec Corporation)
Task: {6A9016BB-740C-43A0-9300-312C4FD04DD9} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7DD74F78-8080-4636-A971-897499C028F4} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.16.3.21\SymErr.exe (Symantec Corporation -> Symantec Corporation)
Task: {92FDB388-8694-4A25-BD45-BF9603D757CD} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A294CB1B-D2CC-4F3D-8305-BBD2B910A2A1} - System32\Tasks\Intel\Intel(R) Optane(TM) Memory - Volume Optimization
Task: {ACE1E009-78E7-489C-B11F-A6473DBE7C1C} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0D57C45-C157-4786-BFFF-8408B01CABAE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B384C7C0-3A30-4016-B7EB-A892D05612AA} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.16.3.21\WSCStub.exe (Symantec Corporation -> Symantec Corporation)
Task: {B9A50A43-CA36-4BF7-928D-FE54AC9DDC62} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C35112E1-F5AA-4E2A-A3F0-49E6D305A512} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD354F60-D419-4B68-A8B5-6A12D14378DF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F1A7098C-306E-47B9-9BA4-DEB565016E00} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F60863B8-0D2A-44E0-8313-AE372FC718D0} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-04-11 23:34 - 2018-04-11 23:34 - 000491744 ____N () C:\Windows\System32\InputHost.dll
2018-12-10 15:51 - 2019-01-30 20:17 - 001315208 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-04-11 23:34 - 2018-04-11 23:34 - 000472064 ____N () C:\Windows\ShellExperiences\TileControl.dll
2018-12-04 07:19 - 2018-11-09 02:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-12-10 15:05 - 2019-02-06 19:22 - 000154504 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-04-12 09:23 - 2018-04-12 09:23 - 000948736 ____N () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\e_sqlite3.dll
2018-12-10 16:16 - 2018-12-10 16:19 - 002974888 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-12-10 16:16 - 2018-12-10 16:19 - 000355840 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\Microsoft.Notes.Upgrade.dll
2018-04-12 09:24 - 2018-04-12 09:24 - 000631296 ____N () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-12-10 15:29 - 2018-12-10 15:29 - 000777728 _____ () C:\Program Files\WindowsApps\Microsoft.Services.Store.Engagement_10.0.18101.0_x64__8wekyb3d8bbwe\Microsoft.Services.Store.Engagement.dll
2019-02-13 16:15 - 2019-02-06 02:25 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-12-10 16:16 - 2018-12-10 16:19 - 000165888 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\Microsoft.Notes.DesktopBridge.exe
2019-02-07 19:38 - 2019-02-07 19:38 - 028028416 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2019-02-07 19:38 - 2019-02-07 19:38 - 000305152 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-04-12 09:25 - 2018-04-12 09:25 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-12-10 15:41 - 2018-12-10 15:41 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-07 19:38 - 2019-02-07 19:38 - 006033408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2019-02-07 19:38 - 2019-02-07 19:38 - 009338368 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-12-10 15:51 - 2019-01-30 20:17 - 101252488 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-12-10 15:51 - 2019-01-30 20:17 - 004620168 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll
2018-12-10 15:51 - 2019-01-30 20:17 - 000108936 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll
2018-12-10 15:43 - 2018-12-10 15:44 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2019-02-15 07:44 - 2019-02-15 07:44 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2019-02-15 07:44 - 2019-02-15 07:44 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2019-02-15 07:44 - 2019-02-15 07:44 - 010541568 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2019-02-15 07:44 - 2019-02-15 07:44 - 002933760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\skypert.dll
2019-02-15 07:44 - 2019-02-15 07:44 - 000688640 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2019-02-15 07:44 - 2019-02-15 07:44 - 002362096 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\Processing.NDI.Lib.UWP.x64.dll
2019-01-26 23:55 - 2019-01-26 23:55 - 000481280 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2019-01-26 23:55 - 2019-01-26 23:55 - 080636416 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-12-10 15:43 - 2018-12-10 16:16 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2019-01-26 23:55 - 2019-01-26 23:55 - 003824640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2019-01-17 19:41 - 2019-01-17 19:41 - 000012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2019-01-26 23:55 - 2019-01-26 23:55 - 014225408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2019-01-26 23:55 - 2019-01-26 23:55 - 002871296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-12-10 15:43 - 2018-12-10 16:16 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-12-10 15:43 - 2018-12-10 16:16 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-15 07:44 - 2019-02-15 07:44 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2019-01-24 11:40 - 2019-01-24 11:40 - 000038400 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.13321.0_x64__8wekyb3d8bbwe\SourceAppService.dll
2019-01-24 11:40 - 2019-01-24 11:40 - 000205312 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.13321.0_x64__8wekyb3d8bbwe\FFmpegInterop.dll
2019-01-24 11:40 - 2019-01-24 11:40 - 000750080 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.13321.0_x64__8wekyb3d8bbwe\avcodec-58_ms.dll
2019-01-24 11:40 - 2019-01-24 11:40 - 000322560 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.13321.0_x64__8wekyb3d8bbwe\avformat-58_ms.dll
2019-01-24 11:40 - 2019-01-24 11:40 - 000174592 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.13321.0_x64__8wekyb3d8bbwe\swresample-3_ms.dll
2019-01-24 11:40 - 2019-01-24 11:40 - 000480768 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.13321.0_x64__8wekyb3d8bbwe\avutil-56_ms.dll
2019-01-24 11:40 - 2019-01-24 11:40 - 000737280 _____ () C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.13321.0_x64__8wekyb3d8bbwe\swscale-5_ms.dll
2018-12-10 15:51 - 2019-01-30 20:17 - 001033096 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-12-10 22:58 - 2018-12-10 22:58 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-415037110-3038116315-1291655453-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ilyaj\Pictures\aHR0cDovL3d3dy5zcGFjZS5jb20vaW1hZ2VzL2kvMDAwLzA1Ni8zMzYvb3JpZ2luYWwvZWluc3RlaW4tcmluZy0xOTIwLmpwZw==.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{7A513FF6-C2A2-42E9-A172-497B622935BB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{65520D1C-6440-4A66-A600-092334C21559}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{5C13441A-7947-4F13-8D7F-C07F90545EFB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{3F1CA370-B51B-46BE-91C5-038D6DADCA9C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{080EF9FA-5D0C-48F9-8716-5445DEEBE665}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{179527C9-9DCF-41EC-A986-699CDA720910}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E1B98406-034A-45D6-8785-A6CF4B078DE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{FE4FFA29-4A1F-40DA-9E2F-0FCFF3FE9ECC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{69506F6E-19C2-464A-93DF-6FDE341D5A95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Absolver\Absolver.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{49F73FE1-B4D9-4541-A7FB-52E6A6E962E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Absolver\Absolver.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{A2AF78D1-5A5D-4685-9403-D81266AF7A6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Peggle Deluxe\Peggle.exe (PopCap Games -> )
FirewallRules: [{CDF32914-635B-427C-8212-F8F1007E66A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Peggle Deluxe\Peggle.exe (PopCap Games -> )
FirewallRules: [{985FF4DA-D258-40B2-B455-F2DFE2617219}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Peggle Nights\PeggleNights.exe (PopCap Games -> )
FirewallRules: [{6BAF819D-8085-4ADF-9E30-B6FC41876F7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Peggle Nights\PeggleNights.exe (PopCap Games -> )
FirewallRules: [{C2D5483D-2003-4DF6-A1D3-36D8558F3E1D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Observer\TheObserver.exe ()
FirewallRules: [{EC1E0C02-7520-4896-9882-AAA16BD51054}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Observer\TheObserver.exe ()
FirewallRules: [{BD063639-9145-45FD-91A3-FCC887A1BF9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{4C78B3D7-0B69-4EA7-BB49-2A68ABD28A9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{FE170143-016B-4BBE-A04B-CF219CF7F98F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SleepingDogsDefinitiveEdition\sdhdship.exe (SQUARE ENIX LIMITED)
FirewallRules: [{593BFAD0-C0EB-42A7-9ED8-7A593EA04AAB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SleepingDogsDefinitiveEdition\sdhdship.exe (SQUARE ENIX LIMITED)
FirewallRules: [{303EA8C1-AE58-41DB-BA89-34DC10626470}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DOOM\DOOMx64.exe (id Software)
FirewallRules: [{74C72C7F-3DF5-4FA8-8BF0-EA7F33DB945F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DOOM\DOOMx64.exe (id Software)
FirewallRules: [TCP Query User{9BB51B78-33BC-43E2-A203-ACBFEA086A7C}C:\users\ilyaj\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ilyaj\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{5FBB0589-DF6D-4AB4-AE92-58DE9B9FB184}C:\users\ilyaj\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ilyaj\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B87B045E-84A9-458B-A637-417AF00D7900}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{972AA79E-E37F-4430-9CE2-97B8CC6C06BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{19C50E1F-DC13-4136-9EF5-0F3CBA2A1983}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{674A434B-5657-4C94-AF2F-26FAFE808D47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{D17DE549-B46E-4A84-9ECA-FDB738490EB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\StickFightTheGame\StickFight.exe ()
FirewallRules: [{5535000B-6292-4D7E-8659-C8204102D04A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\StickFightTheGame\StickFight.exe ()
FirewallRules: [{DB330B82-ABCD-4809-B1BA-3FB0733B52C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Crew\TheCrew.exe (Shanghai Ubi Computer Software Co Ltd -> UBISoft)
FirewallRules: [{CBA5A47F-A73B-4487-AB41-1DEE6AFAE434}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Crew\TheCrew.exe (Shanghai Ubi Computer Software Co Ltd -> UBISoft)
FirewallRules: [{DB37005C-25DA-4D90-8CBD-6847FC833B32}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall2\Titanfall2.exe (Respawn Entertainment, LLC -> Respawn Entertainment)
FirewallRules: [{6289EC5E-D692-4F9C-B72E-E8433E771BB7}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall2\Titanfall2.exe (Respawn Entertainment, LLC -> Respawn Entertainment)
FirewallRules: [{E209317E-9C85-40E7-BAB6-CE93774328E8}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall2\Titanfall2_trial.exe (Respawn Entertainment, LLC -> Respawn Entertainment)
FirewallRules: [{1D17B1D8-C53B-4AB5-BD11-3E00EC606119}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall2\Titanfall2_trial.exe (Respawn Entertainment, LLC -> Respawn Entertainment)
FirewallRules: [{3A787B56-F8D5-4FA5-8121-CAF7CE9E2858}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Watch_Dogs2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{72F04315-48AF-46D0-9639-F215C46309CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Watch_Dogs2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{192E179C-9790-4C2E-9888-B7A6F3823165}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Watch_Dogs2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{86B709CA-DA03-4CD1-AFDB-5C887FA78A47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Watch_Dogs2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{69B03823-FF89-445C-9EF2-6318162234EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe ()
FirewallRules: [{92E27522-2EDC-4AF0-A04E-2E52B6818604}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe ()
FirewallRules: [{4AD42A2C-7F5B-43D5-AE07-C5E4D2F0ADA4}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{9B50DC91-D59B-45D0-B536-EF1C579B0D8A}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{4009A751-F320-408B-94AC-8D3ABF98E729}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{8FB04E04-1B29-480C-AA15-257B10756E59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{50E4EEEB-7A57-4222-848A-141278F394E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe (Koch Media GmbH)
FirewallRules: [{517BBB25-7803-4CAF-ABBA-2C8C84B59DFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe (Koch Media GmbH)
FirewallRules: [{129857AD-778C-4DF7-881E-7F5CBCFF7E68}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe (WARNER BROS. ENTERTAINMENT INC. -> Rocksteady Studios Ltd.)
FirewallRules: [{4BD4585B-C4BC-4D18-8EBE-13F789CCCB29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe (WARNER BROS. ENTERTAINMENT INC. -> Rocksteady Studios Ltd.)
FirewallRules: [{A6F1CC93-0F81-411A-9A7B-111C8E5DB343}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MK10\Binaries\Retail\MK10.exe (WARNER BROS. ENTERTAINMENT INC. -> )
FirewallRules: [{A14CAD1A-A1A4-4930-A7EC-13AEE145DAE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MK10\Binaries\Retail\MK10.exe (WARNER BROS. ENTERTAINMENT INC. -> )
FirewallRules: [{ED5D7C8F-73F7-45EC-9EFD-5D8DFF9DC6E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe (WARNER BROS. ENTERTAINMENT INC. -> )
FirewallRules: [{E6301673-2780-47F0-B81C-D02C2AC43E7C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe (WARNER BROS. ENTERTAINMENT INC. -> )
FirewallRules: [{A9A04314-A0CA-4C42-8D2C-11497ABBF406}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [{37F37323-2E97-4C30-97DC-1ACB9876DCAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [{924787D8-EFB6-4F7A-BD44-F83363C98488}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mad Max\MadMax.exe (Fatalist Development -> )
FirewallRules: [{B8912B59-84DD-4694-BAA0-335402A68AF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mad Max\MadMax.exe (Fatalist Development -> )
FirewallRules: [{75319BB3-08A4-4BDA-91D6-3B6DC82A9A01}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{416BF538-2DA3-4A52-997B-DE9B1AA567B5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E5E07CCF-1139-4507-9FCA-D004EA7C9CFF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RAGE\Rage.exe (Bethesda Softworks -> id Software)
FirewallRules: [{0BE964D0-33D4-4770-A5FE-39E1B62541FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RAGE\Rage.exe (Bethesda Softworks -> id Software)
FirewallRules: [{583E5A76-174A-45A3-ADA2-CD3AD4A1A7DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RAGE\Rage64.exe (Bethesda Softworks -> id Software)
FirewallRules: [{E6D61A93-2095-4652-86DF-DFA509BEB15D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RAGE\Rage64.exe (Bethesda Softworks -> id Software)
FirewallRules: [{E5F94A01-B320-45E8-8342-759C0AA58757}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TEKKEN 7\TEKKEN 7.exe ()
FirewallRules: [{533BC1C9-ABE0-4AF7-A550-C11436BB0D88}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TEKKEN 7\TEKKEN 7.exe ()
FirewallRules: [{EA31DDE9-BCFF-4B32-B78E-A3DB002BB372}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix)
FirewallRules: [{01DF7AAF-9560-448D-ABD7-219472CD6B44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix)
FirewallRules: [{56F6A13B-BF74-4CBE-961C-07BD5FD4E720}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11126.20266.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{25993222-FB4E-449B-8E8C-B0D0DAA54BFE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{558FB838-EF62-463E-9C59-33AD8C64029A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{57848D0C-89FB-4B44-9F87-DE71470CDAC0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BECAAC26-8C25-401B-B0D0-39899E8753D4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B2574E4C-E779-4E68-9153-07BF883C15BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AE2449FC-B9E0-4045-B6E2-FFF79A6348D4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

==================== Restore Points =========================

13-02-2019 16:14:52 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/15/2019 07:48:28 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program ShellExperienceHost.exe version 10.0.17134.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1af0

Start Time: 01d4c500f12089eb

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

Report Id: d81d2b19-05fb-4a2e-a336-8723a6771a5e

Faulting package full name: Microsoft.Windows.ShellExperienceHost_10.0.17134.112_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: App

Error: (02/14/2019 04:33:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program BlackOps4.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2b04

Start Time: 01d4c481be0a7e27

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Call of Duty Black Ops 4\BlackOps4.exe

Report Id: 7ee587f3-66d8-4d72-b948-c93cddba4dbc

Faulting package full name:

Faulting package-relative application ID:

Error: (02/14/2019 04:32:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program ShellExperienceHost.exe version 10.0.17134.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 19d0

Start Time: 01d4c3df71549828

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

Report Id: f2c94d6d-e00e-424b-adfe-1ce8bbf85b0c

Faulting package full name: Microsoft.Windows.ShellExperienceHost_10.0.17134.112_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: App

Error: (02/14/2019 12:01:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program BlackOps4.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 3164

Start Time: 01d4c45b743fc780

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Call of Duty Black Ops 4\BlackOps4.exe

Report Id: 20811159-bf51-419d-8ae2-7fb8bdd0e9b3

Faulting package full name:

Faulting package-relative application ID:

Error: (02/14/2019 11:33:13 AM) (Source: ESENT) (EventID: 639) (User: )
Description: taskhostw (6628,D,29) WebCacheLocal: Inconsistent timestamp detected on page 0 (0x00000000) of flush map file "C:\Users\ilyaj\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm" (empty if flush map persistence in disabled). The maximum timestamp on the flush map is 204655 (0x0000000000031f6f), but database page 363 (0x0000016b) has a timestamp of 204656 (0x0000000000031f70). If flush map persistence is enabled, this problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (02/13/2019 11:17:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program BlackOps4.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 25c4

Start Time: 01d4c3f17f29fc67

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Call of Duty Black Ops 4\BlackOps4.exe

Report Id: 20e0d157-ddf2-40cc-8618-8ae3ef8f427e

Faulting package full name:

Faulting package-relative application ID:

Error: (02/13/2019 11:11:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: MicrosoftEdge.exe, version: 11.0.17134.556, time stamp: 0x5c35b0e8
Faulting module name: EMODEL.dll, version: 11.0.17134.556, time stamp: 0x5c35ae1a
Exception code: 0xcfffffff
Fault offset: 0x000000000001a797
Faulting process ID: 0x24f8
Faulting application start time: 0x01d4c3e4882bbff1
Faulting application path: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
Faulting module path: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\EMODEL.dll
Report ID: ebe41f0b-6ca2-4919-895c-2343b43eeaa5
Faulting package full name: Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe
Faulting package-relative application ID: MicrosoftEdge

Error: (02/13/2019 09:36:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program BlackOps4.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 13d0

Start Time: 01d4c3e3368401d9

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Call of Duty Black Ops 4\BlackOps4.exe

Report Id: a9f4d68f-ba72-429c-b762-0d5d27aa9b5f

Faulting package full name:

Faulting package-relative application ID:


System errors:
=============
Error: (02/15/2019 07:48:26 AM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: Event-ID 14

Error: (02/15/2019 07:47:57 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {D19AAF57-65A7-484B-9E7A-26C0E667DC66} did not register with DCOM within the required timeout.

Error: (02/15/2019 07:47:47 AM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: Event-ID 14

Error: (02/15/2019 07:46:09 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY)
Description: C:\Device\HarddiskVolume62

Error: (02/15/2019 07:45:57 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel(R) Optane(TM) Memory Service service terminated unexpectedly. It has done this 2 time(s).

Error: (02/15/2019 07:44:28 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume C:.

A file system index structure contains entries that violate ordering rules. The file reference number is 0x200000007cc66. The name of the file is "\Program Files\rempl\Logs". The corrupted index attribute is ":$I30:$INDEX_ALLOCATION". The corrupted subtree is rooted at entry number 0 of the index block located at Vcn 0x26.

Error: (02/15/2019 07:41:25 AM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: Event-ID 14

Error: (02/15/2019 07:38:19 AM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: Event-ID 14


CodeIntegrity:
===================================

Date: 2019-01-30 09:07:25.195
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume6\Program Files\Norton Security\Engine\22.16.3.21\BuShell.dll that did not meet the Microsoft signing level requirements.

Date: 2019-01-30 09:07:25.185
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume6\Program Files\Norton Security\Engine\22.16.3.21\BuShell.dll that did not meet the Microsoft signing level requirements.

Date: 2019-01-30 09:07:25.175
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume6\Program Files\Norton Security\Engine\22.16.3.21\BuShell.dll that did not meet the Microsoft signing level requirements.

Date: 2019-01-29 09:07:24.673
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume6\Program Files\Norton Security\Engine\22.16.3.21\BuShell.dll that did not meet the Microsoft signing level requirements.

Date: 2019-01-29 09:07:24.663
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume6\Program Files\Norton Security\Engine\22.16.3.21\BuShell.dll that did not meet the Microsoft signing level requirements.

Date: 2019-01-29 09:07:24.653
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume6\Program Files\Norton Security\Engine\22.16.3.21\BuShell.dll that did not meet the Microsoft signing level requirements.

Date: 2019-01-28 06:42:35.841
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume6\Program Files\Norton Security\Engine\22.16.3.21\BuShell.dll that did not meet the Microsoft signing level requirements.

Date: 2019-01-28 06:42:35.831
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume6\Program Files\Norton Security\Engine\22.16.3.21\BuShell.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i9-9980XE CPU @ 3.00GHz
Percentage of memory in use: 15%
Total physical RAM: 32463.65 MB
Available physical RAM: 27367.21 MB
Total Virtual: 37327.65 MB
Available Virtual: 27086.25 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:3725.15 GB) (Free:2700.79 GB) NTFS
Drive d: (New Volume) (Fixed) (Total:3726.01 GB) (Free:3725.67 GB) NTFS

\\?\Volume{4024b20f-f413-4b20-9b6a-858affc6387d}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.12 GB) NTFS
\\?\Volume{2c6c237d-e5b6-4489-8f3b-4aa52878c294}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.23 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (Size: 3726 GB) (Disk ID: 69C0F710)

Partition: GPT.

==================== End of Addition.txt ============================
Ilya
Regular Member
 
Posts: 18
Joined: February 15th, 2019, 4:05 am
Advertisement
Register to Remove

Re: Pc keeps freezing and starting poorly.

Unread postby Ilya » February 15th, 2019, 4:27 am

Third time the PC is asking to restart to fix drive errors.
Ilya
Regular Member
 
Posts: 18
Joined: February 15th, 2019, 4:05 am

Re: Pc keeps freezing and starting poorly.

Unread postby mAL_rEm018 » February 15th, 2019, 5:11 am

Bumping or Replying to Your Own Topic

May I draw your attention to the topic: ALL USERS OF THIS FORUM MUST READ THIS FIRST, which you should have read before posting for help.

The section here explains why you should not reply to or try to bump your topic.
Please submit a new log and wait for a helper to reply. Thank you for your understanding.

This topic is now closed.
User avatar
mAL_rEm018
Admin/Teacher
Admin/Teacher
 
Posts: 2689
Joined: November 11th, 2013, 6:26 pm
Location: Saint-Petersburg, Russia


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 294 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware