Solved DISM Host Servicing Process High CPU Usage
- Thread starter Nicki
- Start date
Nicki
Posts: 210 +0
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-08-2020
Ran by Nicki (administrator) on HENRY (HP HP ENVY x360 Convertible 15-cn1xxx) (07-08-2020 16:09:44)
Running from C:\Users\Nicki\Desktop
Loaded Profiles: Nicki
Platform: Windows 10 Home Version 1903 18362.959 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Conexant Systems LLC -> Conexant Systems LLC.) C:\Windows\System32\CxAudioSvc.exe
(Conexant Systems LLC -> Synaptics Incorporated.) C:\Windows\System32\SynAudSrv.exe
(ELAN Microelectronics Corporation -> ELAN) C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\SysInfoCap.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\HpSystemManagement.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\Win32Process\HPCC.Bg.BackgroundApp.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(Intel(R) pGFX 2020 -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_dc7a0fe3ada1cbf5\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_dc2a57d591329a30\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_dc2a57d591329a30\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87a05f372b04db63\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87a05f372b04db63\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_0c50c5dc47ed0efe\RstMwService.exe
(Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_bff7913eb62bbf90\aesm_service.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_34687bf44d0a152a\lib\SocketHeciServer.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.20.5.39\nsWscSvc.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.20.5.39\NortonSecurity.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
Ran by Nicki (administrator) on HENRY (HP HP ENVY x360 Convertible 15-cn1xxx) (07-08-2020 16:09:44)
Running from C:\Users\Nicki\Desktop
Loaded Profiles: Nicki
Platform: Windows 10 Home Version 1903 18362.959 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Conexant Systems LLC -> Conexant Systems LLC.) C:\Windows\System32\CxAudioSvc.exe
(Conexant Systems LLC -> Synaptics Incorporated.) C:\Windows\System32\SynAudSrv.exe
(ELAN Microelectronics Corporation -> ELAN) C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\SysInfoCap.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\HpSystemManagement.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\Win32Process\HPCC.Bg.BackgroundApp.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(Intel(R) pGFX 2020 -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_dc7a0fe3ada1cbf5\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_dc2a57d591329a30\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_dc2a57d591329a30\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87a05f372b04db63\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87a05f372b04db63\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_0c50c5dc47ed0efe\RstMwService.exe
(Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_bff7913eb62bbf90\aesm_service.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_34687bf44d0a152a\lib\SocketHeciServer.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.20.5.39\nsWscSvc.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.20.5.39\NortonSecurity.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
Nicki
Posts: 210 +0
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\windows\System32\RtkAudUService64.exe [970528 2019-09-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EzTiltPenSrvc] => C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe [238280 2019-04-22] (ELAN Microelectronics Corporation -> ELAN)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319544 2019-02-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [7507624 2020-06-15] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
HKLM\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [527368 2020-07-23] (HP Inc. -> HP Inc.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2109064 2019-11-27] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-07-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.) [File not signed]
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [527368 2020-07-23] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\MountPoints2: {8ae3d9fd-bbb7-11e9-818f-5c879cbafe1d} - "F:\LaunchU3.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Billminder.lnk [2019-08-10]
ShortcutTarget: Billminder.lnk -> C:\Program Files (x86)\Quicken\billmind.exe (Intuit) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Quicken Scheduled Updates.lnk [2019-08-10]
ShortcutTarget: Quicken Scheduled Updates.lnk -> C:\Program Files (x86)\Quicken\bagent.exe (Intuit Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Quicken Startup.lnk [2019-08-10]
ShortcutTarget: Quicken Startup.lnk -> C:\Program Files (x86)\Quicken\QWDLLS.EXE (Intuit) [File not signed]
Startup: C:\Users\Nicki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2019-08-10]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
BootExecute: autocheck autochk * bootdelete
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {09BEEE25-93D4-4B55-A50C-0AD2ED427538} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0F8F0B9D-9594-4794-B41E-B559FD0278F5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {272000D1-07C1-484B-B1FC-AAFFCE6A444E} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)
Task: {292C83A7-82CC-4D4F-B85A-FD2B1DCE0608} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-09] (Google Inc -> Google LLC)
Task: {3242FFB1-E6AA-4BD9-978F-12D4C7232176} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [135544 2019-05-03] (HP Inc. -> HP Inc.)
Task: {4B4632BD-0115-4B1F-98BB-5A35CD1F6608} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-08-09] (HP Inc. -> HP Inc.)
Task: {5100A477-348F-48CA-A0F9-BA0C7018AC24} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-282240636-1967671034-2412643917-500 => C:\Users\Nicki\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {5360F148-0A63-40CA-B715-EBAB5367A5D5} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [123600 2020-07-30] (Mozilla Corporation -> Mozilla Foundation)
Task: {652B67CC-9913-4199-838F-3824A669BACA} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Processor => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {78EB442A-649E-47F4-94A4-37AAD86A42A9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-09] (Google Inc -> Google LLC)
Task: {835AF8F1-1D80-4892-9E87-9933C295CDB8} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.20.5.39\WSCStub.exe [644608 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {9070A544-D8C5-4BC2-93E1-FEE36B7BF418} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_403_Plugin.exe [1475640 2020-07-14] (Adobe Inc. -> Adobe)
Task: {B235C8BA-F1C2-4732-8FA7-FDE1DCD79B23} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Analyzer => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {B9F6249D-48B7-4FE1-A4DE-AEB17A63220B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-08-09] (HP Inc. -> HP Inc.)
Task: {BF41F043-1D93-4159-80A0-BD5EE1CEA295} - System32\Tasks\Norton Security with Backup\Norton Security Online Autofix => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {C1D90BA0-E816-4D05-A45C-E97679365E9D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {D2199FC9-41D9-4E8D-A16C-9B995C023BFD} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security Online\Upgrade.exe [2162328 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {D4FBB0C9-84F0-4F52-A1C7-827FB41EA31F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-08-24] (Piriform Ltd -> Piriform Ltd)
Task: {E327E790-D5A3-4D64-B31B-994858062118} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {E8A9B32E-2282-453D-8D72-8F07398537E0} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\windows\System32\RtkAudUService64.exe [970528 2019-09-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EzTiltPenSrvc] => C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe [238280 2019-04-22] (ELAN Microelectronics Corporation -> ELAN)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319544 2019-02-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [7507624 2020-06-15] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
HKLM\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [527368 2020-07-23] (HP Inc. -> HP Inc.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2109064 2019-11-27] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-07-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.) [File not signed]
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [527368 2020-07-23] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\MountPoints2: {8ae3d9fd-bbb7-11e9-818f-5c879cbafe1d} - "F:\LaunchU3.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Billminder.lnk [2019-08-10]
ShortcutTarget: Billminder.lnk -> C:\Program Files (x86)\Quicken\billmind.exe (Intuit) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Quicken Scheduled Updates.lnk [2019-08-10]
ShortcutTarget: Quicken Scheduled Updates.lnk -> C:\Program Files (x86)\Quicken\bagent.exe (Intuit Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Quicken Startup.lnk [2019-08-10]
ShortcutTarget: Quicken Startup.lnk -> C:\Program Files (x86)\Quicken\QWDLLS.EXE (Intuit) [File not signed]
Startup: C:\Users\Nicki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2019-08-10]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
BootExecute: autocheck autochk * bootdelete
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {09BEEE25-93D4-4B55-A50C-0AD2ED427538} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0F8F0B9D-9594-4794-B41E-B559FD0278F5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {272000D1-07C1-484B-B1FC-AAFFCE6A444E} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)
Task: {292C83A7-82CC-4D4F-B85A-FD2B1DCE0608} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-09] (Google Inc -> Google LLC)
Task: {3242FFB1-E6AA-4BD9-978F-12D4C7232176} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [135544 2019-05-03] (HP Inc. -> HP Inc.)
Task: {4B4632BD-0115-4B1F-98BB-5A35CD1F6608} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-08-09] (HP Inc. -> HP Inc.)
Task: {5100A477-348F-48CA-A0F9-BA0C7018AC24} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-282240636-1967671034-2412643917-500 => C:\Users\Nicki\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {5360F148-0A63-40CA-B715-EBAB5367A5D5} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [123600 2020-07-30] (Mozilla Corporation -> Mozilla Foundation)
Task: {652B67CC-9913-4199-838F-3824A669BACA} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Processor => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {78EB442A-649E-47F4-94A4-37AAD86A42A9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-09] (Google Inc -> Google LLC)
Task: {835AF8F1-1D80-4892-9E87-9933C295CDB8} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.20.5.39\WSCStub.exe [644608 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {9070A544-D8C5-4BC2-93E1-FEE36B7BF418} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_403_Plugin.exe [1475640 2020-07-14] (Adobe Inc. -> Adobe)
Task: {B235C8BA-F1C2-4732-8FA7-FDE1DCD79B23} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Analyzer => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {B9F6249D-48B7-4FE1-A4DE-AEB17A63220B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-08-09] (HP Inc. -> HP Inc.)
Task: {BF41F043-1D93-4159-80A0-BD5EE1CEA295} - System32\Tasks\Norton Security with Backup\Norton Security Online Autofix => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {C1D90BA0-E816-4D05-A45C-E97679365E9D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {D2199FC9-41D9-4E8D-A16C-9B995C023BFD} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security Online\Upgrade.exe [2162328 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {D4FBB0C9-84F0-4F52-A1C7-827FB41EA31F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-08-24] (Piriform Ltd -> Piriform Ltd)
Task: {E327E790-D5A3-4D64-B31B-994858062118} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {E8A9B32E-2282-453D-8D72-8F07398537E0} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Nicki
Posts: 210 +0
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{63df01f0-50fb-4a1d-903f-3c62c404e66e}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{b332947e-406c-4b78-8c25-71ce0868b9c0}: [DhcpNameServer] 172.168.0.7
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {BFF249C9-3DBF-45D9-9369-5799E10BD69C} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-282240636-1967671034-2412643917-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-282240636-1967671034-2412643917-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho_64.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.20.5.39\coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.20.5.39\coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.20.5.39\coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.20.5.39\coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Edge:
======
Edge Profile: C:\Users\Nicki\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-12]
FireFox:
========
FF DefaultProfile: 4xxavejw.default
FF ProfilePath: C:\Users\Nicki\AppData\Roaming\Mozilla\Firefox\Profiles\4xxavejw.default [2020-07-12]
FF ProfilePath: C:\Users\Nicki\AppData\Roaming\Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428 [2020-08-07]
FF Homepage: Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428 -> hxxps://www.google.com/
FF Notifications: Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428 -> hxxps://www.instagram.com
FF Extension: (Facebook Container) - C:\Users\Nicki\AppData\Roaming\Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428\Extensions\@contain-facebook.xpi [2020-07-12]
FF Extension: (Norton Password Manager) - C:\Users\Nicki\AppData\Roaming\Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428\Extensions\idsafe@norton.com.xpi [2020-07-12]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_403.dll [2020-07-14] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_403.dll [2020-07-14] (Adobe Inc. -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{63df01f0-50fb-4a1d-903f-3c62c404e66e}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{b332947e-406c-4b78-8c25-71ce0868b9c0}: [DhcpNameServer] 172.168.0.7
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {BFF249C9-3DBF-45D9-9369-5799E10BD69C} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-282240636-1967671034-2412643917-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-282240636-1967671034-2412643917-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho_64.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.20.5.39\coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.20.5.39\coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.20.5.39\coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.20.5.39\coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Edge:
======
Edge Profile: C:\Users\Nicki\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-12]
FireFox:
========
FF DefaultProfile: 4xxavejw.default
FF ProfilePath: C:\Users\Nicki\AppData\Roaming\Mozilla\Firefox\Profiles\4xxavejw.default [2020-07-12]
FF ProfilePath: C:\Users\Nicki\AppData\Roaming\Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428 [2020-08-07]
FF Homepage: Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428 -> hxxps://www.google.com/
FF Notifications: Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428 -> hxxps://www.instagram.com
FF Extension: (Facebook Container) - C:\Users\Nicki\AppData\Roaming\Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428\Extensions\@contain-facebook.xpi [2020-07-12]
FF Extension: (Norton Password Manager) - C:\Users\Nicki\AppData\Roaming\Mozilla\Firefox\Profiles\r96ez6m4.default-release-1594585081428\Extensions\idsafe@norton.com.xpi [2020-07-12]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_403.dll [2020-07-14] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_403.dll [2020-07-14] (Adobe Inc. -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)
Nicki
Posts: 210 +0
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default [2020-08-06]
CHR HomePage: Default -> hxxp://www.google.com/
CHR Extension: (Slides) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-09]
CHR Extension: (Docs) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-09]
CHR Extension: (Google Drive) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-09]
CHR Extension: (YouTube) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-09]
CHR Extension: (Sheets) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-09]
CHR Extension: (Google Docs Offline) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-09]
CHR Extension: (Chrome Media Router) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-25]
CHR Profile: C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-08-06]
CHR Profile: C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-06]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\AppHelperCap.exe [613136 2020-06-15] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\NetworkCap.exe [612112 2020-06-15] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\SysInfoCap.exe [612112 2020-06-15] (HP Inc. -> HP Inc.)
R2 IntelAudioService; C:\windows\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe [416048 2020-05-18] (Smart Sound Technology -> Intel)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [7407368 2020-06-15] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-08-07] (Malwarebytes Inc -> Malwarebytes)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.20.5.39\NortonSecurity.exe [344760 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.20.5.39\nsWscSvc.exe [1056096 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13587000 2020-07-27] (Adlice -> )
R2 SECOMNService; C:\windows\System32\SECOMN64.exe [161296 2019-07-31] (Sound Research Corporation -> Sound Research, Corp.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default [2020-08-06]
CHR HomePage: Default -> hxxp://www.google.com/
CHR Extension: (Slides) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-09]
CHR Extension: (Docs) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-09]
CHR Extension: (Google Drive) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-09]
CHR Extension: (YouTube) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-09]
CHR Extension: (Sheets) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-09]
CHR Extension: (Google Docs Offline) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-09]
CHR Extension: (Chrome Media Router) - C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-25]
CHR Profile: C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-08-06]
CHR Profile: C:\Users\Nicki\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-06]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\AppHelperCap.exe [613136 2020-06-15] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\NetworkCap.exe [612112 2020-06-15] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\SysInfoCap.exe [612112 2020-06-15] (HP Inc. -> HP Inc.)
R2 IntelAudioService; C:\windows\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe [416048 2020-05-18] (Smart Sound Technology -> Intel)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [7407368 2020-06-15] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-08-07] (Malwarebytes Inc -> Malwarebytes)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.20.5.39\NortonSecurity.exe [344760 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.20.5.39\nsWscSvc.exe [1056096 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13587000 2020-07-27] (Adlice -> )
R2 SECOMNService; C:\windows\System32\SECOMN64.exe [161296 2019-07-31] (Sound Research Corporation -> Sound Research, Corp.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Nicki
Posts: 210 +0
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.20.2.57\Definitions\BASHDefs\20200728.001\BHDrvx64.sys [1952136 2020-07-07] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\windows\System32\drivers\NGCx64\1614050.027\ccSetx64.sys [192248 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516960 2020-08-04] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154464 2020-08-06] (Symantec Corporation -> Broadcom)
R3 EzTouchFilter; C:\windows\System32\drivers\EzTouchFilter.sys [50424 2019-06-21] (ELAN Microelectronics Corporation -> )
S3 hitmanpro37; C:\windows\system32\drivers\hitmanpro37.sys [57728 2020-08-06] (SurfRight B.V. -> )
R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.20.2.57\Definitions\IPSDefs\20200807.061\IDSvia64.sys [1451016 2020-07-10] (Symantec Corporation -> Symantec Corporation)
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [216056 2020-08-07] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [19912 2020-08-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-07] (Malwarebytes Inc -> Malwarebytes)
S2 mrtRate; no ImagePath
S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [179416 2019-02-15] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
S3 psvolacc; C:\windows\system32\drivers\psvolacc.sys [34520 2018-12-06] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
R3 SRTSP; C:\windows\System32\drivers\NGCx64\1614050.027\SRTSP64.SYS [889704 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\windows\System32\drivers\NGCx64\1614050.027\SRTSPX64.SYS [50920 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\windows\System32\drivers\NGCx64\1614050.027\SYMEFASI64.SYS [1964384 2020-07-23] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\windows\System32\drivers\NGCx64\1614050.027\SymELAM.sys [25080 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [99848 2020-07-12] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.20.2.57\SymPlatform\SymEvnt.sys [712368 2020-03-20] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\windows\System32\drivers\NGCx64\1614050.027\Ironx64.SYS [316488 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\windows\System32\drivers\NGCx64\1614050.027\symnets.sys [575328 2020-07-23] (Symantec Corporation -> Symantec Corporation)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2020-08-07] (Adlice -> )
S3 USBAAPL64; C:\windows\System32\Drivers\usbaapl64.sys [54784 2018-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\windows\system32\drivers\wd\WdBoot.sys [47496 2019-08-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\windows\system32\drivers\wd\WdFilter.sys [344288 2019-08-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-08-09] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\program files\macrium\reflect\wimmount.sys [37176 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
S3 wpCtrlDrv_NGC; C:\windows\System32\drivers\NGCx64\1614050.027\wpCtrlDrv.sys [1013792 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.20.2.57\Definitions\BASHDefs\20200728.001\BHDrvx64.sys [1952136 2020-07-07] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\windows\System32\drivers\NGCx64\1614050.027\ccSetx64.sys [192248 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516960 2020-08-04] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154464 2020-08-06] (Symantec Corporation -> Broadcom)
R3 EzTouchFilter; C:\windows\System32\drivers\EzTouchFilter.sys [50424 2019-06-21] (ELAN Microelectronics Corporation -> )
S3 hitmanpro37; C:\windows\system32\drivers\hitmanpro37.sys [57728 2020-08-06] (SurfRight B.V. -> )
R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.20.2.57\Definitions\IPSDefs\20200807.061\IDSvia64.sys [1451016 2020-07-10] (Symantec Corporation -> Symantec Corporation)
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [216056 2020-08-07] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [19912 2020-08-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-07] (Malwarebytes Inc -> Malwarebytes)
S2 mrtRate; no ImagePath
S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [179416 2019-02-15] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
S3 psvolacc; C:\windows\system32\drivers\psvolacc.sys [34520 2018-12-06] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
R3 SRTSP; C:\windows\System32\drivers\NGCx64\1614050.027\SRTSP64.SYS [889704 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\windows\System32\drivers\NGCx64\1614050.027\SRTSPX64.SYS [50920 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\windows\System32\drivers\NGCx64\1614050.027\SYMEFASI64.SYS [1964384 2020-07-23] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\windows\System32\drivers\NGCx64\1614050.027\SymELAM.sys [25080 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [99848 2020-07-12] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.20.2.57\SymPlatform\SymEvnt.sys [712368 2020-03-20] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\windows\System32\drivers\NGCx64\1614050.027\Ironx64.SYS [316488 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\windows\System32\drivers\NGCx64\1614050.027\symnets.sys [575328 2020-07-23] (Symantec Corporation -> Symantec Corporation)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2020-08-07] (Adlice -> )
S3 USBAAPL64; C:\windows\System32\Drivers\usbaapl64.sys [54784 2018-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\windows\system32\drivers\wd\WdBoot.sys [47496 2019-08-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\windows\system32\drivers\wd\WdFilter.sys [344288 2019-08-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-08-09] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\program files\macrium\reflect\wimmount.sys [37176 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
S3 wpCtrlDrv_NGC; C:\windows\System32\drivers\NGCx64\1614050.027\wpCtrlDrv.sys [1013792 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Nicki
Posts: 210 +0
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-08-07 15:43 - 2020-08-07 15:43 - 000003888 _____ C:\Users\Nicki\Desktop\AdwCleaner Log.txt
2020-08-07 15:42 - 2020-08-07 15:42 - 008414384 _____ (Malwarebytes) C:\Users\Nicki\Downloads\AdwCleaner.exe
2020-08-07 15:40 - 2020-08-07 15:40 - 000001222 _____ C:\Users\Nicki\Desktop\Malware Bytes Report.txt
2020-08-07 15:29 - 2020-08-07 15:29 - 000002000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-08-07 15:29 - 2020-08-07 15:29 - 000001988 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-08-07 15:29 - 2020-08-07 15:29 - 000001988 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-08-07 15:28 - 2020-08-07 15:28 - 000248968 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2020-08-07 15:28 - 2020-08-07 15:28 - 000216056 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys
2020-08-07 15:28 - 2020-08-07 15:28 - 000153312 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys
2020-08-07 15:28 - 2020-08-07 15:28 - 000019912 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamElam.sys
2020-08-07 15:28 - 2020-08-07 15:28 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-08-07 15:28 - 2020-08-07 15:28 - 000000000 ____D C:\Program Files\Malwarebytes
2020-08-07 15:27 - 2020-08-07 15:28 - 002040904 _____ (Malwarebytes) C:\Users\Nicki\Downloads\MBSetup.exe
2020-08-07 15:27 - 2020-08-07 15:27 - 000002274 _____ C:\Users\Nicki\Desktop\RKiller Report.txt
2020-08-07 15:15 - 2020-08-07 15:20 - 000000000 ____D C:\ProgramData\RogueKiller
2020-08-07 15:15 - 2020-08-07 15:15 - 000038032 _____ C:\windows\system32\Drivers\truesight.sys
2020-08-07 15:15 - 2020-08-07 15:15 - 000000866 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2020-08-07 15:15 - 2020-08-07 15:15 - 000000866 _____ C:\ProgramData\Desktop\RogueKiller.lnk
2020-08-07 15:15 - 2020-08-07 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-08-07 15:15 - 2020-08-07 15:15 - 000000000 ____D C:\Program Files\RogueKiller
2020-08-07 15:14 - 2020-08-07 15:14 - 040314800 _____ (Adlice Software ) C:\Users\Nicki\Downloads\RogueKiller_setup_ref3.exe
2020-08-07 13:59 - 2020-08-07 13:59 - 000000000 ____D C:\windows\system32\Tasks\Remediation
2020-08-07 13:54 - 2020-08-07 13:54 - 000083288 _____ (Zoom Video Communications, Inc.) C:\Users\Nicki\Downloads\Zoom_cm_foyrivrZ9vvrZo4_mJrcxMslyQ8CYOSrygvcG19RaKP2B0tY85AOP@tYtGVWgZVNrvk8vV_k4f3b07ce59f2907a_.exe
2020-08-07 13:31 - 2020-08-07 13:32 - 000032306 _____ C:\Users\Nicki\Desktop\Addition.txt
2020-08-07 13:30 - 2020-08-07 16:10 - 000028613 _____ C:\Users\Nicki\Desktop\FRST.txt
2020-08-07 13:27 - 2020-08-07 13:27 - 002296320 _____ (Farbar) C:\Users\Nicki\Desktop\FRST64.exe
2020-08-06 19:53 - 2020-08-06 20:01 - 000057728 _____ C:\windows\system32\Drivers\hitmanpro37.sys
2020-08-06 17:27 - 2020-08-06 17:27 - 000000000 ___HD C:\$WinREAgent
2020-08-05 13:55 - 2020-08-05 13:55 - 000000000 ____D C:\Users\Nicki\Documents\Zoom
2020-08-05 13:54 - 2020-08-05 13:54 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\Zoom
2020-08-05 13:54 - 2020-08-05 13:54 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-08-03 19:41 - 2020-08-07 14:12 - 000000000 ____D C:\windows\system32\Tasks\Norton Security with Backup
2020-08-03 19:41 - 2020-08-03 19:41 - 000003376 _____ C:\windows\system32\Tasks\Norton WSC Integration
2020-08-03 19:41 - 2020-08-03 19:41 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2020-08-02 20:47 - 2020-08-02 20:47 - 000001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2020-08-02 20:47 - 2020-08-02 20:47 - 000001783 _____ C:\ProgramData\Desktop\iTunes.lnk
2020-08-02 20:47 - 2020-08-02 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2020-08-02 20:47 - 2020-08-02 20:47 - 000000000 ____D C:\Program Files\iTunes
2020-08-02 20:47 - 2020-08-02 20:47 - 000000000 ____D C:\Program Files\iPod
2020-08-01 08:45 - 2020-08-01 08:45 - 000461737 _____ C:\Users\Nicki\Desktop\Academy Families Travel Network Info Handout 21 Apr 2020.pdf
2020-07-31 20:23 - 2020-08-01 13:13 - 000009799 _____ C:\Users\Nicki\Desktop\Book1.xlsx
2020-07-30 18:40 - 2020-07-30 18:40 - 000000000 ____D C:\windows\system32\Tasks\Mozilla
2020-07-30 18:23 - 2020-08-02 06:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-07-30 17:18 - 2020-08-07 06:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-07-25 07:20 - 2020-07-25 07:21 - 000000000 ____D C:\Users\Nicki\Desktop\Tidy
2020-07-15 13:30 - 2020-07-15 13:30 - 025444352 _____ (Microsoft Corporation) C:\windows\system32\Hydrogen.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 019851776 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 019812864 _____ (Microsoft Corporation) C:\windows\system32\HologramWorld.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 018031104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 007823912 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 007012864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 006292992 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 005099384 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 004129424 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 002494744 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001610240 _____ (Microsoft Corporation) C:\windows\system32\HologramCompositor.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001346048 _____ (Microsoft Corporation) C:\windows\system32\HoloSI.PCShell.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001344512 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Audio.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001312256 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001307136 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Audio.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001151816 _____ (Microsoft Corporation) C:\windows\system32\mfmpeg2srcsnk.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000967680 _____ (Microsoft Corporation) C:\windows\system32\WebcamUi.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000891392 _____ (Microsoft Corporation) C:\windows\system32\HolographicExtensions.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000815616 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebcamUi.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Mirage.Internal.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000669184 _____ (Microsoft Corporation) C:\windows\SysWOW64\EdgeManager.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000521728 _____ (Microsoft Corporation) C:\windows\system32\WinBioDataModel.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000484352 _____ (Microsoft Corporation) C:\windows\system32\MixedReality.Broker.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000467456 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Picker.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000444416 _____ (Microsoft Corporation) C:\windows\system32\fhsettingsprovider.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000432128 _____ (Microsoft Corporation) C:\windows\system32\WalletService.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000430592 _____ (Microsoft Corporation) C:\windows\SysWOW64\werui.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000416768 _____ (Microsoft Corporation) C:\windows\system32\RDXTaskFactory.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000411136 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToManager.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000406992 _____ (Microsoft Corporation) C:\windows\system32\tsmf.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000355328 _____ (Microsoft Corporation) C:\windows\system32\ConsoleLogon.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000353792 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000352256 _____ (Microsoft Corporation) C:\windows\system32\APHostService.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000345560 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsmf.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000338944 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Picker.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000329728 _____ (Microsoft Corporation) C:\windows\SysWOW64\upnphost.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000293888 _____ (Microsoft Corporation) C:\windows\system32\CXHProvisioningServer.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000256000 _____ (Microsoft Corporation) C:\windows\SysWOW64\ConsoleLogon.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000231424 _____ (Microsoft Corporation) C:\windows\system32\HoloShellRuntime.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000215040 _____ (Microsoft Corporation) C:\windows\system32\DiagSvc.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000186880 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWWIN.EXE
2020-07-15 13:30 - 2020-07-15 13:30 - 000179712 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Clipboard.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\HoloShellRuntime.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\dialclient.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000143360 _____ (Microsoft Corporation) C:\windows\SysWOW64\easwrt.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\fdWSD.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintWSDAHost.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000063488 _____ (Microsoft Corporation) C:\windows\SysWOW64\iemigplugin.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000058368 _____ (Microsoft Corporation) C:\windows\SysWOW64\udhisapi.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000058368 _____ (Microsoft Corporation) C:\windows\SysWOW64\MiracastReceiverExt.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\upnpcont.exe
2020-07-15 13:29 - 2020-07-15 13:30 - 008015872 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 025902592 _____ (Microsoft Corporation) C:\windows\system32\edgehtml.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 022641664 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 014820352 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 009931576 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 007917408 _____ (Microsoft Corporation) C:\windows\system32\windows.storage.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007850288 _____ (Microsoft Corporation) C:\windows\system32\OneCoreUAPCommonProxyStub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007604584 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Protection.PlayReady.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007297536 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007269376 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007268640 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 006523856 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 006437376 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 006169088 _____ (Microsoft Corporation) C:\windows\system32\twinui.pcshell.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 006089512 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.storage.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 005946368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 005765648 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 005111808 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 004565264 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 004014592 _____ (Microsoft Corporation) C:\windows\system32\Microsoft.Bluetooth.Service.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 003974368 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 003800576 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 003748352 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_nt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 003743048 _____ (Microsoft Corporation) C:\windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 003727360 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 003084800 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002799104 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32kfull.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 002768984 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002737664 _____ (Microsoft Corporation) C:\windows\system32\WebRuntimeManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002716672 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 002576896 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002552120 _____ (Microsoft Corporation) C:\windows\system32\UpdateAgent.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002505496 _____ (Microsoft Corporation) C:\windows\system32\twinapi.appcore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002467840 _____ (Microsoft Corporation) C:\windows\system32\InstallService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002448712 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002357248 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Perception.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002285056 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.3D.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002264064 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Bluetooth.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002237096 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002161664 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.PointOfService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002087168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002074112 _____ (Microsoft Corporation) C:\windows\system32\ISM.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002060288 _____ (Microsoft Corporation) C:\windows\system32\cdprt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001991592 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.appcore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001952880 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001946144 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001918464 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001885184 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001877504 _____ (Microsoft Corporation) C:\windows\system32\LocationFramework.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001827328 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Speech.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001821696 _____ (Microsoft Corporation) C:\windows\system32\CoreShell.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001787392 _____ (Microsoft Corporation) C:\windows\system32\Windows.Globalization.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001764336 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001743680 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001737728 _____ (Microsoft Corporation) C:\windows\SysWOW64\InstallService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001697792 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001665728 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001658368 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001656904 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001655472 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001654304 _____ (Microsoft Corporation) C:\windows\system32\gdi32full.dll
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-08-07 15:43 - 2020-08-07 15:43 - 000003888 _____ C:\Users\Nicki\Desktop\AdwCleaner Log.txt
2020-08-07 15:42 - 2020-08-07 15:42 - 008414384 _____ (Malwarebytes) C:\Users\Nicki\Downloads\AdwCleaner.exe
2020-08-07 15:40 - 2020-08-07 15:40 - 000001222 _____ C:\Users\Nicki\Desktop\Malware Bytes Report.txt
2020-08-07 15:29 - 2020-08-07 15:29 - 000002000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-08-07 15:29 - 2020-08-07 15:29 - 000001988 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-08-07 15:29 - 2020-08-07 15:29 - 000001988 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-08-07 15:28 - 2020-08-07 15:28 - 000248968 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2020-08-07 15:28 - 2020-08-07 15:28 - 000216056 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys
2020-08-07 15:28 - 2020-08-07 15:28 - 000153312 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys
2020-08-07 15:28 - 2020-08-07 15:28 - 000019912 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamElam.sys
2020-08-07 15:28 - 2020-08-07 15:28 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-08-07 15:28 - 2020-08-07 15:28 - 000000000 ____D C:\Program Files\Malwarebytes
2020-08-07 15:27 - 2020-08-07 15:28 - 002040904 _____ (Malwarebytes) C:\Users\Nicki\Downloads\MBSetup.exe
2020-08-07 15:27 - 2020-08-07 15:27 - 000002274 _____ C:\Users\Nicki\Desktop\RKiller Report.txt
2020-08-07 15:15 - 2020-08-07 15:20 - 000000000 ____D C:\ProgramData\RogueKiller
2020-08-07 15:15 - 2020-08-07 15:15 - 000038032 _____ C:\windows\system32\Drivers\truesight.sys
2020-08-07 15:15 - 2020-08-07 15:15 - 000000866 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2020-08-07 15:15 - 2020-08-07 15:15 - 000000866 _____ C:\ProgramData\Desktop\RogueKiller.lnk
2020-08-07 15:15 - 2020-08-07 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-08-07 15:15 - 2020-08-07 15:15 - 000000000 ____D C:\Program Files\RogueKiller
2020-08-07 15:14 - 2020-08-07 15:14 - 040314800 _____ (Adlice Software ) C:\Users\Nicki\Downloads\RogueKiller_setup_ref3.exe
2020-08-07 13:59 - 2020-08-07 13:59 - 000000000 ____D C:\windows\system32\Tasks\Remediation
2020-08-07 13:54 - 2020-08-07 13:54 - 000083288 _____ (Zoom Video Communications, Inc.) C:\Users\Nicki\Downloads\Zoom_cm_foyrivrZ9vvrZo4_mJrcxMslyQ8CYOSrygvcG19RaKP2B0tY85AOP@tYtGVWgZVNrvk8vV_k4f3b07ce59f2907a_.exe
2020-08-07 13:31 - 2020-08-07 13:32 - 000032306 _____ C:\Users\Nicki\Desktop\Addition.txt
2020-08-07 13:30 - 2020-08-07 16:10 - 000028613 _____ C:\Users\Nicki\Desktop\FRST.txt
2020-08-07 13:27 - 2020-08-07 13:27 - 002296320 _____ (Farbar) C:\Users\Nicki\Desktop\FRST64.exe
2020-08-06 19:53 - 2020-08-06 20:01 - 000057728 _____ C:\windows\system32\Drivers\hitmanpro37.sys
2020-08-06 17:27 - 2020-08-06 17:27 - 000000000 ___HD C:\$WinREAgent
2020-08-05 13:55 - 2020-08-05 13:55 - 000000000 ____D C:\Users\Nicki\Documents\Zoom
2020-08-05 13:54 - 2020-08-05 13:54 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\Zoom
2020-08-05 13:54 - 2020-08-05 13:54 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-08-03 19:41 - 2020-08-07 14:12 - 000000000 ____D C:\windows\system32\Tasks\Norton Security with Backup
2020-08-03 19:41 - 2020-08-03 19:41 - 000003376 _____ C:\windows\system32\Tasks\Norton WSC Integration
2020-08-03 19:41 - 2020-08-03 19:41 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2020-08-02 20:47 - 2020-08-02 20:47 - 000001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2020-08-02 20:47 - 2020-08-02 20:47 - 000001783 _____ C:\ProgramData\Desktop\iTunes.lnk
2020-08-02 20:47 - 2020-08-02 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2020-08-02 20:47 - 2020-08-02 20:47 - 000000000 ____D C:\Program Files\iTunes
2020-08-02 20:47 - 2020-08-02 20:47 - 000000000 ____D C:\Program Files\iPod
2020-08-01 08:45 - 2020-08-01 08:45 - 000461737 _____ C:\Users\Nicki\Desktop\Academy Families Travel Network Info Handout 21 Apr 2020.pdf
2020-07-31 20:23 - 2020-08-01 13:13 - 000009799 _____ C:\Users\Nicki\Desktop\Book1.xlsx
2020-07-30 18:40 - 2020-07-30 18:40 - 000000000 ____D C:\windows\system32\Tasks\Mozilla
2020-07-30 18:23 - 2020-08-02 06:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-07-30 17:18 - 2020-08-07 06:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-07-25 07:20 - 2020-07-25 07:21 - 000000000 ____D C:\Users\Nicki\Desktop\Tidy
2020-07-15 13:30 - 2020-07-15 13:30 - 025444352 _____ (Microsoft Corporation) C:\windows\system32\Hydrogen.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 019851776 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 019812864 _____ (Microsoft Corporation) C:\windows\system32\HologramWorld.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 018031104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 007823912 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 007012864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 006292992 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 005099384 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 004129424 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 002494744 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001610240 _____ (Microsoft Corporation) C:\windows\system32\HologramCompositor.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001346048 _____ (Microsoft Corporation) C:\windows\system32\HoloSI.PCShell.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001344512 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Audio.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001312256 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001307136 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Audio.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 001151816 _____ (Microsoft Corporation) C:\windows\system32\mfmpeg2srcsnk.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000967680 _____ (Microsoft Corporation) C:\windows\system32\WebcamUi.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000891392 _____ (Microsoft Corporation) C:\windows\system32\HolographicExtensions.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000815616 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebcamUi.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Mirage.Internal.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000669184 _____ (Microsoft Corporation) C:\windows\SysWOW64\EdgeManager.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000521728 _____ (Microsoft Corporation) C:\windows\system32\WinBioDataModel.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000484352 _____ (Microsoft Corporation) C:\windows\system32\MixedReality.Broker.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000467456 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Picker.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000444416 _____ (Microsoft Corporation) C:\windows\system32\fhsettingsprovider.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000432128 _____ (Microsoft Corporation) C:\windows\system32\WalletService.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000430592 _____ (Microsoft Corporation) C:\windows\SysWOW64\werui.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000416768 _____ (Microsoft Corporation) C:\windows\system32\RDXTaskFactory.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000411136 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToManager.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000406992 _____ (Microsoft Corporation) C:\windows\system32\tsmf.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000355328 _____ (Microsoft Corporation) C:\windows\system32\ConsoleLogon.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000353792 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000352256 _____ (Microsoft Corporation) C:\windows\system32\APHostService.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000345560 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsmf.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000338944 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Picker.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000329728 _____ (Microsoft Corporation) C:\windows\SysWOW64\upnphost.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000293888 _____ (Microsoft Corporation) C:\windows\system32\CXHProvisioningServer.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000256000 _____ (Microsoft Corporation) C:\windows\SysWOW64\ConsoleLogon.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000231424 _____ (Microsoft Corporation) C:\windows\system32\HoloShellRuntime.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000215040 _____ (Microsoft Corporation) C:\windows\system32\DiagSvc.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000186880 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWWIN.EXE
2020-07-15 13:30 - 2020-07-15 13:30 - 000179712 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Clipboard.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\HoloShellRuntime.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\dialclient.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000143360 _____ (Microsoft Corporation) C:\windows\SysWOW64\easwrt.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\fdWSD.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintWSDAHost.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000063488 _____ (Microsoft Corporation) C:\windows\SysWOW64\iemigplugin.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000058368 _____ (Microsoft Corporation) C:\windows\SysWOW64\udhisapi.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000058368 _____ (Microsoft Corporation) C:\windows\SysWOW64\MiracastReceiverExt.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2020-07-15 13:30 - 2020-07-15 13:30 - 000035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\upnpcont.exe
2020-07-15 13:29 - 2020-07-15 13:30 - 008015872 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 025902592 _____ (Microsoft Corporation) C:\windows\system32\edgehtml.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 022641664 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 014820352 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 009931576 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 007917408 _____ (Microsoft Corporation) C:\windows\system32\windows.storage.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007850288 _____ (Microsoft Corporation) C:\windows\system32\OneCoreUAPCommonProxyStub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007604584 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Protection.PlayReady.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007297536 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007269376 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 007268640 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 006523856 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 006437376 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 006169088 _____ (Microsoft Corporation) C:\windows\system32\twinui.pcshell.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 006089512 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.storage.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 005946368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 005765648 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 005111808 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 004565264 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 004014592 _____ (Microsoft Corporation) C:\windows\system32\Microsoft.Bluetooth.Service.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 003974368 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 003800576 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 003748352 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_nt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 003743048 _____ (Microsoft Corporation) C:\windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 003727360 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 003084800 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002799104 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32kfull.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 002768984 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002737664 _____ (Microsoft Corporation) C:\windows\system32\WebRuntimeManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002716672 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 002576896 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002552120 _____ (Microsoft Corporation) C:\windows\system32\UpdateAgent.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002505496 _____ (Microsoft Corporation) C:\windows\system32\twinapi.appcore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002467840 _____ (Microsoft Corporation) C:\windows\system32\InstallService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002448712 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002357248 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Perception.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002285056 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.3D.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002264064 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Bluetooth.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002237096 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002161664 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.PointOfService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002087168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002074112 _____ (Microsoft Corporation) C:\windows\system32\ISM.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 002060288 _____ (Microsoft Corporation) C:\windows\system32\cdprt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001991592 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.appcore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001952880 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001946144 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001918464 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001885184 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001877504 _____ (Microsoft Corporation) C:\windows\system32\LocationFramework.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001827328 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Speech.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001821696 _____ (Microsoft Corporation) C:\windows\system32\CoreShell.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001787392 _____ (Microsoft Corporation) C:\windows\system32\Windows.Globalization.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001764336 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001743680 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001737728 _____ (Microsoft Corporation) C:\windows\SysWOW64\InstallService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001697792 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001665728 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001658368 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001656904 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001655472 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001654304 _____ (Microsoft Corporation) C:\windows\system32\gdi32full.dll
Nicki
Posts: 210 +0
2020-07-15 13:29 - 2020-07-15 13:29 - 001612800 _____ (Microsoft Corporation) C:\windows\system32\wpncore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001604608 _____ (Microsoft Corporation) C:\windows\system32\dosvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001581568 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Perception.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001550336 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001540608 _____ (Microsoft Corporation) C:\windows\system32\WindowManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001512960 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdprt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001500160 _____ (Microsoft Corporation) C:\windows\system32\TokenBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001495040 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001486848 _____ (Microsoft Corporation) C:\windows\system32\usocoreworker.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 001484384 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001477632 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001463808 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001458688 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001420328 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32full.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001397568 _____ (Microsoft Corporation) C:\windows\system32\hvix64.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 001392128 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.FaceAnalysis.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001374208 _____ (Microsoft Corporation) C:\windows\system32\NotificationController.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001371136 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001357824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Globalization.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001337856 _____ (Microsoft Corporation) C:\windows\system32\wpnapps.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001335296 _____ (Microsoft Corporation) C:\windows\system32\MiracastReceiver.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001306944 _____ (Microsoft Corporation) C:\windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001290192 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Sensors.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001284608 _____ (Microsoft Corporation) C:\windows\system32\werconcpl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001284608 _____ (Microsoft Corporation) C:\windows\system32\usermgr.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001271296 _____ (Microsoft Corporation) C:\windows\system32\SEMgrSvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001265152 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Speech.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001247232 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001223168 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001195008 _____ (Microsoft Corporation) C:\windows\system32\sdengin2.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001183744 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001159168 _____ (Microsoft Corporation) C:\windows\system32\MbaeApiPublic.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001151304 _____ (Microsoft Corporation) C:\windows\system32\InputHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001125376 _____ (Microsoft Corporation) C:\windows\system32\CBDHSvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001121792 _____ (Microsoft Corporation) C:\windows\system32\MrmCoreR.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001100800 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Immersive.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001086776 _____ (Microsoft Corporation) C:\windows\system32\Windows.Services.TargetedContent.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001081344 _____ (Microsoft Corporation) C:\windows\system32\ShareHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001077048 _____ (Microsoft Corporation) C:\windows\system32\hvax64.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 001068544 _____ (Microsoft Corporation) C:\windows\system32\SettingSyncCore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001055232 _____ (Microsoft Corporation) C:\windows\system32\Windows.AccountsControl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001048992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001028336 _____ (Microsoft Corporation) C:\windows\system32\Windows.Perception.Stub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001014784 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnapps.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001009152 _____ (Microsoft Corporation) C:\windows\system32\StorSvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001008960 _____ (Microsoft Corporation) C:\windows\system32\CloudExperienceHostCommon.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001007616 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000995840 _____ (Microsoft Corporation) C:\windows\system32\EdgeManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000958608 _____ (Microsoft Corporation) C:\windows\system32\AppContracts.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000950272 _____ (Microsoft Corporation) C:\windows\system32\rasapi32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000949760 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Ocr.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000945176 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Sensors.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000931840 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Management.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000919880 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000917504 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000913408 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Search.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000912896 _____ (Microsoft Corporation) C:\windows\SysWOW64\MiracastReceiver.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000904192 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SmartCards.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000899584 _____ (Microsoft Corporation) C:\windows\system32\MdmDiagnostics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000898048 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Immersive.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000895600 _____ (Microsoft Corporation) C:\windows\SysWOW64\MrmCoreR.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000892928 _____ (Microsoft Corporation) C:\windows\SysWOW64\MbaeApiPublic.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000889416 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Shell.Broker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000882184 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000882176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ShareHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000875008 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasapi32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000867840 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000865280 _____ (Microsoft Corporation) C:\windows\system32\efswrt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000848384 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000844096 _____ (Microsoft Corporation) C:\windows\SysWOW64\CloudExperienceHostCommon.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000827904 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Import.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000822200 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000821232 _____ (Microsoft Corporation) C:\windows\system32\windows.applicationmodel.datatransfer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000814080 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSyncCore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000809984 _____ (Microsoft Corporation) C:\windows\system32\Windows.Gaming.Input.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000797448 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000793320 _____ (Microsoft Corporation) C:\windows\SysWOW64\InputHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000783488 _____ (Microsoft Corporation) C:\windows\system32\tcblaunch.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000782848 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000779080 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000778872 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppContracts.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000750592 _____ (Microsoft Corporation) C:\windows\system32\ActivationManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000750080 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000742712 _____ (Microsoft Corporation) C:\windows\system32\LicensingWinRT.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000737792 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Launcher.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\windows.immersiveshell.serviceprovider.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000717824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.AccountsControl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000695208 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000692224 _____ (Microsoft Corporation) C:\windows\system32\LockController.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000689664 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Search.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000687104 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Ocr.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000685384 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000684864 _____ (Microsoft Corporation) C:\windows\system32\SHCore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000678720 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000673448 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000653824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Management.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000651264 _____ (Microsoft Corporation) C:\windows\system32\DevicesFlowBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000639488 _____ (Microsoft Corporation) C:\windows\system32\twinapi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000638464 _____ (Microsoft Corporation) C:\windows\system32\twinui.appcore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000630784 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.AllJoyn.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000628416 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000628024 _____ (Microsoft Corporation) C:\windows\SysWOW64\LicensingWinRT.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000624640 _____ (Microsoft Corporation) C:\windows\system32\TileDataRepository.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000616960 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.LowLevel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000614912 _____ (Microsoft Corporation) C:\windows\SysWOW64\efswrt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000614912 _____ (Microsoft Corporation) C:\windows\system32\netprofmsvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000608256 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000605896 _____ (Microsoft Corporation) C:\windows\system32\sechost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000602112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Payments.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000600064 _____ (Microsoft Corporation) C:\windows\SysWOW64\ActivationManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000596992 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000594992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Perception.Stub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000593408 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000584704 _____ (Microsoft Corporation) C:\windows\system32\PlayToManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000582056 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000570368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Import.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000565248 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Gaming.Input.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000550400 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 000549048 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.MediaControl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000544256 _____ (Microsoft Corporation) C:\windows\system32\usosvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000542288 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000540672 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000538664 _____ (Microsoft Corporation) C:\windows\SysWOW64\SHCore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000534016 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000533504 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000526848 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000524784 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Enumeration.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000522240 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Launcher.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000518656 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000518464 _____ (Microsoft Corporation) C:\windows\system32\WerFault.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000513024 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000513024 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Activities.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000512000 _____ (Microsoft Corporation) C:\windows\system32\Windows.Cortana.Desktop.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000502784 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.appcore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000501760 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\werui.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000495616 _____ (Microsoft Corporation) C:\windows\system32\RTMediaFrame.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000490496 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000478296 _____ (Microsoft Corporation) C:\windows\SysWOW64\sechost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000477184 _____ (Microsoft Corporation) C:\windows\system32\CloudDomainJoinDataModelServer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000476160 _____ (Microsoft Corporation) C:\windows\system32\MicrosoftAccountWAMExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000475136 _____ (Microsoft Corporation) C:\windows\system32\Geolocation.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001604608 _____ (Microsoft Corporation) C:\windows\system32\dosvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001581568 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Perception.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001550336 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001540608 _____ (Microsoft Corporation) C:\windows\system32\WindowManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001512960 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdprt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001500160 _____ (Microsoft Corporation) C:\windows\system32\TokenBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001495040 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001486848 _____ (Microsoft Corporation) C:\windows\system32\usocoreworker.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 001484384 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001477632 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001463808 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001458688 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001420328 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32full.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001397568 _____ (Microsoft Corporation) C:\windows\system32\hvix64.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 001392128 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.FaceAnalysis.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001374208 _____ (Microsoft Corporation) C:\windows\system32\NotificationController.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001371136 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001357824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Globalization.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001337856 _____ (Microsoft Corporation) C:\windows\system32\wpnapps.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001335296 _____ (Microsoft Corporation) C:\windows\system32\MiracastReceiver.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001306944 _____ (Microsoft Corporation) C:\windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001290192 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Sensors.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001284608 _____ (Microsoft Corporation) C:\windows\system32\werconcpl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001284608 _____ (Microsoft Corporation) C:\windows\system32\usermgr.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001271296 _____ (Microsoft Corporation) C:\windows\system32\SEMgrSvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001265152 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Speech.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001247232 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001223168 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001195008 _____ (Microsoft Corporation) C:\windows\system32\sdengin2.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001183744 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001159168 _____ (Microsoft Corporation) C:\windows\system32\MbaeApiPublic.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001151304 _____ (Microsoft Corporation) C:\windows\system32\InputHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001125376 _____ (Microsoft Corporation) C:\windows\system32\CBDHSvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001121792 _____ (Microsoft Corporation) C:\windows\system32\MrmCoreR.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001100800 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Immersive.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001086776 _____ (Microsoft Corporation) C:\windows\system32\Windows.Services.TargetedContent.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001081344 _____ (Microsoft Corporation) C:\windows\system32\ShareHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001077048 _____ (Microsoft Corporation) C:\windows\system32\hvax64.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 001068544 _____ (Microsoft Corporation) C:\windows\system32\SettingSyncCore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001055232 _____ (Microsoft Corporation) C:\windows\system32\Windows.AccountsControl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001048992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001028336 _____ (Microsoft Corporation) C:\windows\system32\Windows.Perception.Stub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001014784 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnapps.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001009152 _____ (Microsoft Corporation) C:\windows\system32\StorSvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001008960 _____ (Microsoft Corporation) C:\windows\system32\CloudExperienceHostCommon.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 001007616 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000995840 _____ (Microsoft Corporation) C:\windows\system32\EdgeManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000958608 _____ (Microsoft Corporation) C:\windows\system32\AppContracts.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000950272 _____ (Microsoft Corporation) C:\windows\system32\rasapi32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000949760 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Ocr.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000945176 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Sensors.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000931840 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Management.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000919880 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000917504 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000913408 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Search.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000912896 _____ (Microsoft Corporation) C:\windows\SysWOW64\MiracastReceiver.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000904192 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SmartCards.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000899584 _____ (Microsoft Corporation) C:\windows\system32\MdmDiagnostics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000898048 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Immersive.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000895600 _____ (Microsoft Corporation) C:\windows\SysWOW64\MrmCoreR.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000892928 _____ (Microsoft Corporation) C:\windows\SysWOW64\MbaeApiPublic.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000889416 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Shell.Broker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000882184 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000882176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ShareHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000875008 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasapi32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000867840 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000865280 _____ (Microsoft Corporation) C:\windows\system32\efswrt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000848384 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000844096 _____ (Microsoft Corporation) C:\windows\SysWOW64\CloudExperienceHostCommon.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000827904 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Import.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000822200 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000821232 _____ (Microsoft Corporation) C:\windows\system32\windows.applicationmodel.datatransfer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000814080 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSyncCore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000809984 _____ (Microsoft Corporation) C:\windows\system32\Windows.Gaming.Input.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000797448 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000793320 _____ (Microsoft Corporation) C:\windows\SysWOW64\InputHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000783488 _____ (Microsoft Corporation) C:\windows\system32\tcblaunch.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000782848 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000779080 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000778872 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppContracts.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000750592 _____ (Microsoft Corporation) C:\windows\system32\ActivationManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000750080 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000742712 _____ (Microsoft Corporation) C:\windows\system32\LicensingWinRT.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000737792 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Launcher.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\windows.immersiveshell.serviceprovider.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000717824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.AccountsControl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000695208 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000692224 _____ (Microsoft Corporation) C:\windows\system32\LockController.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000689664 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Search.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000687104 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Ocr.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000685384 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000684864 _____ (Microsoft Corporation) C:\windows\system32\SHCore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000678720 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000673448 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000653824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Management.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000651264 _____ (Microsoft Corporation) C:\windows\system32\DevicesFlowBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000639488 _____ (Microsoft Corporation) C:\windows\system32\twinapi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000638464 _____ (Microsoft Corporation) C:\windows\system32\twinui.appcore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000630784 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.AllJoyn.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000628416 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000628024 _____ (Microsoft Corporation) C:\windows\SysWOW64\LicensingWinRT.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000624640 _____ (Microsoft Corporation) C:\windows\system32\TileDataRepository.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000616960 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.LowLevel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000614912 _____ (Microsoft Corporation) C:\windows\SysWOW64\efswrt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000614912 _____ (Microsoft Corporation) C:\windows\system32\netprofmsvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000608256 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000605896 _____ (Microsoft Corporation) C:\windows\system32\sechost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000602112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Payments.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000600064 _____ (Microsoft Corporation) C:\windows\SysWOW64\ActivationManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000596992 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000594992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Perception.Stub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000593408 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000584704 _____ (Microsoft Corporation) C:\windows\system32\PlayToManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000582056 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000570368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Import.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000565248 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Gaming.Input.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000550400 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 000549048 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.MediaControl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000544256 _____ (Microsoft Corporation) C:\windows\system32\usosvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000542288 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000540672 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000538664 _____ (Microsoft Corporation) C:\windows\SysWOW64\SHCore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000534016 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000533504 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000526848 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000524784 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Enumeration.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000522240 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Launcher.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000518656 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000518464 _____ (Microsoft Corporation) C:\windows\system32\WerFault.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000513024 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000513024 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Activities.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000512000 _____ (Microsoft Corporation) C:\windows\system32\Windows.Cortana.Desktop.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000502784 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.appcore.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000501760 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\werui.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000495616 _____ (Microsoft Corporation) C:\windows\system32\RTMediaFrame.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000490496 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000478296 _____ (Microsoft Corporation) C:\windows\SysWOW64\sechost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000477184 _____ (Microsoft Corporation) C:\windows\system32\CloudDomainJoinDataModelServer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000476160 _____ (Microsoft Corporation) C:\windows\system32\MicrosoftAccountWAMExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000475136 _____ (Microsoft Corporation) C:\windows\system32\Geolocation.dll
Nicki
Posts: 210 +0
2020-07-15 13:29 - 2020-07-15 13:29 - 000467960 _____ (Microsoft Corporation) C:\windows\system32\Faultrep.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000467456 _____ (Microsoft Corporation) C:\windows\system32\modernexecserver.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000466432 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000462848 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000461112 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000456704 _____ (Microsoft Corporation) C:\windows\system32\upnphost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000453944 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFault.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000452096 _____ (Microsoft Corporation) C:\windows\SysWOW64\TileDataRepository.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000444416 _____ (Microsoft Corporation) C:\windows\system32\edgeIso.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000442096 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.MediaControl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000434176 _____ (Microsoft Corporation) C:\windows\system32\MicrosoftAccountExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000419328 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000419328 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000416768 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Usb.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000412672 _____ (Microsoft Corporation) C:\windows\system32\AboveLockAppHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000410112 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000406992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000405944 _____ (Microsoft Corporation) C:\windows\SysWOW64\Faultrep.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000403968 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Payments.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000397824 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Lights.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000395264 _____ (Microsoft Corporation) C:\windows\system32\Windows.Gaming.Preview.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000392504 _____ (Microsoft Corporation) C:\windows\system32\CloudExperienceHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000388096 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000387584 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000382976 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000380224 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000375296 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Diagnostics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000374272 _____ (Microsoft Corporation) C:\windows\system32\PickerPlatform.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000371712 _____ (Microsoft Corporation) C:\windows\SysWOW64\Geolocation.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000361472 _____ (Microsoft Corporation) C:\windows\system32\vaultsvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000361472 _____ (Microsoft Corporation) C:\windows\system32\QuickActionsDataModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000358912 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000355840 _____ (Microsoft Corporation) C:\windows\system32\wpnclient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000355840 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicSvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\RTMediaFrame.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\AboveLockAppHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000340328 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.ApplicationData.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000335360 _____ (Microsoft Corporation) C:\windows\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000334336 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Cortana.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000328192 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgeIso.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000327168 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32k.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 000317440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Midi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000311608 _____ (Microsoft Corporation) C:\windows\system32\CloudExperienceHostBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000311440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Devices.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000306688 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.CredDialogController.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\TDLMigration.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnclient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000292864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Diagnostics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000290304 _____ (Microsoft Corporation) C:\windows\system32\vaultcli.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000287744 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Gaming.Preview.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000285184 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicCapsule.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000283648 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000281600 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000280576 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Usb.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Lights.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000274432 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000272384 _____ (Microsoft Corporation) C:\windows\SysWOW64\PickerPlatform.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000268552 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000266552 _____ (Microsoft Corporation) C:\windows\SysWOW64\SystemSettings.DataModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000261632 _____ (Microsoft Corporation) C:\windows\system32\bthprops.cpl
2020-07-15 13:29 - 2020-07-15 13:29 - 000260288 _____ (Microsoft Corporation) C:\windows\system32\logoncli.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000248832 _____ (Microsoft Corporation) C:\windows\system32\PasswordEnrollmentManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000247864 _____ (Microsoft Corporation) C:\windows\system32\weretw.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000243200 _____ (Microsoft Corporation) C:\windows\system32\SystemEventsBrokerServer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000242688 _____ (Microsoft Corporation) C:\windows\system32\CapabilityAccessManagerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000241152 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000240640 _____ (Microsoft Corporation) C:\windows\system32\dialclient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000239928 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Workplace.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\psmsrv.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\wersvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\netprofm.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000227840 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncSettings.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000224768 _____ (Microsoft Corporation) C:\windows\system32\DWWIN.EXE
2020-07-15 13:29 - 2020-07-15 13:29 - 000220992 _____ (Microsoft Corporation) C:\windows\system32\wermgr.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000220672 _____ (Microsoft Corporation) C:\windows\system32\MtcModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000219136 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000217600 _____ (Microsoft Corporation) C:\windows\SysWOW64\bthprops.cpl
2020-07-15 13:29 - 2020-07-15 13:29 - 000215040 _____ (Microsoft Corporation) C:\windows\system32\PeopleBand.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000211256 _____ (Microsoft Corporation) C:\windows\system32\tcbloader.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000210944 _____ (Microsoft Corporation) C:\windows\system32\ErrorDetails.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000206336 _____ (Microsoft Corporation) C:\windows\system32\useractivitybroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000199496 _____ (Microsoft Corporation) C:\windows\SysWOW64\wermgr.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000196096 _____ (Microsoft Corporation) C:\windows\SysWOW64\pku2u.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000193600 _____ (Microsoft Corporation) C:\windows\SysWOW64\weretw.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000190056 _____ (Microsoft Corporation) C:\windows\SysWOW64\logoncli.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000188928 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000188928 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000186368 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000183808 _____ (Microsoft Corporation) C:\windows\system32\Windows.Energy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000180224 _____ (Microsoft Corporation) C:\windows\system32\dialserver.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000179512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\PrintWorkflowService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\easwrt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\AppExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000178688 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000176952 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Management.Workplace.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000172032 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.CapturePicker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000165840 _____ (Microsoft Corporation) C:\windows\system32\WerFaultSecure.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000162816 _____ (Microsoft Corporation) C:\windows\SysWOW64\ErrorDetails.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000162304 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserDeviceRegistration.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000160768 _____ (Microsoft Corporation) C:\windows\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000159744 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000157184 _____ (Microsoft Corporation) C:\windows\system32\PrintWSDAHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000152064 _____ (Microsoft Corporation) C:\windows\SysWOW64\useractivitybroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\fdWSD.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000151040 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SerialCommunication.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000150336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFaultSecure.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000147968 _____ (Microsoft Corporation) C:\windows\system32\Family.Client.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000146232 _____ (Microsoft Corporation) C:\windows\system32\ResourcePolicyServer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\AppointmentActivation.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintWorkflowService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000140800 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Energy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000133632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000133632 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000132408 _____ (Microsoft Corporation) C:\windows\system32\offlinelsa.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000131584 _____ (Microsoft Corporation) C:\windows\system32\DevicePairingExperienceMEM.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000131072 _____ (Microsoft Corporation) C:\windows\system32\CredDialogBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000130560 _____ (Microsoft Corporation) C:\windows\system32\StorageUsage.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\CameraCaptureUI.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000128512 _____ (Microsoft Corporation) C:\windows\system32\CaptureService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000127064 _____ (Microsoft Corporation) C:\windows\system32\win32u.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000124928 _____ (Microsoft Corporation) C:\windows\system32\wercplsupport.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000118784 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000118272 _____ (Microsoft Corporation) C:\windows\system32\EaseOfAccessDialog.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppointmentActivation.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000112128 _____ (Microsoft Corporation) C:\windows\system32\AxInstSv.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000107520 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000105984 _____ (Microsoft Corporation) C:\windows\system32\utcutil.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000100864 _____ (Microsoft Corporation) C:\windows\system32\sethc.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000100864 _____ (Microsoft Corporation) C:\windows\system32\Family.Authentication.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000100352 _____ (Microsoft Corporation) C:\windows\system32\DiagnosticInvoker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000094720 _____ (Microsoft Corporation) C:\windows\SysWOW64\CameraCaptureUI.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000094208 _____ (Microsoft Corporation) C:\windows\SysWOW64\EaseOfAccessDialog.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000093184 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000092672 _____ (Microsoft Corporation) C:\windows\system32\wsqmcons.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000091648 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000090624 _____ (Microsoft Corporation) C:\windows\system32\keyiso.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000089600 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000089328 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32u.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000467456 _____ (Microsoft Corporation) C:\windows\system32\modernexecserver.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000466432 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000462848 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000461112 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000456704 _____ (Microsoft Corporation) C:\windows\system32\upnphost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000453944 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFault.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000452096 _____ (Microsoft Corporation) C:\windows\SysWOW64\TileDataRepository.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000444416 _____ (Microsoft Corporation) C:\windows\system32\edgeIso.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000442096 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.MediaControl.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000434176 _____ (Microsoft Corporation) C:\windows\system32\MicrosoftAccountExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000419328 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000419328 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000416768 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Usb.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000412672 _____ (Microsoft Corporation) C:\windows\system32\AboveLockAppHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000410112 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000406992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000405944 _____ (Microsoft Corporation) C:\windows\SysWOW64\Faultrep.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000403968 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Payments.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000397824 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Lights.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000395264 _____ (Microsoft Corporation) C:\windows\system32\Windows.Gaming.Preview.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000392504 _____ (Microsoft Corporation) C:\windows\system32\CloudExperienceHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000388096 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000387584 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000382976 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000380224 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000375296 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Diagnostics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000374272 _____ (Microsoft Corporation) C:\windows\system32\PickerPlatform.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000371712 _____ (Microsoft Corporation) C:\windows\SysWOW64\Geolocation.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000361472 _____ (Microsoft Corporation) C:\windows\system32\vaultsvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000361472 _____ (Microsoft Corporation) C:\windows\system32\QuickActionsDataModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000358912 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000355840 _____ (Microsoft Corporation) C:\windows\system32\wpnclient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000355840 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicSvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\RTMediaFrame.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\AboveLockAppHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000340328 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.ApplicationData.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000335360 _____ (Microsoft Corporation) C:\windows\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000334336 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Cortana.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000328192 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgeIso.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000327168 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32k.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 000317440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Midi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000311608 _____ (Microsoft Corporation) C:\windows\system32\CloudExperienceHostBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000311440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Devices.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000306688 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.CredDialogController.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\TDLMigration.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnclient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000292864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Diagnostics.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000290304 _____ (Microsoft Corporation) C:\windows\system32\vaultcli.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000287744 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Gaming.Preview.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000285184 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicCapsule.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000283648 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000281600 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000280576 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Usb.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Lights.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000274432 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000272384 _____ (Microsoft Corporation) C:\windows\SysWOW64\PickerPlatform.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000268552 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000266552 _____ (Microsoft Corporation) C:\windows\SysWOW64\SystemSettings.DataModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000261632 _____ (Microsoft Corporation) C:\windows\system32\bthprops.cpl
2020-07-15 13:29 - 2020-07-15 13:29 - 000260288 _____ (Microsoft Corporation) C:\windows\system32\logoncli.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000248832 _____ (Microsoft Corporation) C:\windows\system32\PasswordEnrollmentManager.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000247864 _____ (Microsoft Corporation) C:\windows\system32\weretw.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000243200 _____ (Microsoft Corporation) C:\windows\system32\SystemEventsBrokerServer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000242688 _____ (Microsoft Corporation) C:\windows\system32\CapabilityAccessManagerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000241152 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000240640 _____ (Microsoft Corporation) C:\windows\system32\dialclient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000239928 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Workplace.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\psmsrv.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\wersvc.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\netprofm.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000227840 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncSettings.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000224768 _____ (Microsoft Corporation) C:\windows\system32\DWWIN.EXE
2020-07-15 13:29 - 2020-07-15 13:29 - 000220992 _____ (Microsoft Corporation) C:\windows\system32\wermgr.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000220672 _____ (Microsoft Corporation) C:\windows\system32\MtcModel.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000219136 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000217600 _____ (Microsoft Corporation) C:\windows\SysWOW64\bthprops.cpl
2020-07-15 13:29 - 2020-07-15 13:29 - 000215040 _____ (Microsoft Corporation) C:\windows\system32\PeopleBand.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000211256 _____ (Microsoft Corporation) C:\windows\system32\tcbloader.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000210944 _____ (Microsoft Corporation) C:\windows\system32\ErrorDetails.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000206336 _____ (Microsoft Corporation) C:\windows\system32\useractivitybroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000199496 _____ (Microsoft Corporation) C:\windows\SysWOW64\wermgr.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000196096 _____ (Microsoft Corporation) C:\windows\SysWOW64\pku2u.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000193600 _____ (Microsoft Corporation) C:\windows\SysWOW64\weretw.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000190056 _____ (Microsoft Corporation) C:\windows\SysWOW64\logoncli.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000188928 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000188928 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000186368 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000183808 _____ (Microsoft Corporation) C:\windows\system32\Windows.Energy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000180224 _____ (Microsoft Corporation) C:\windows\system32\dialserver.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000179512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2020-07-15 13:29 - 2020-07-15 13:29 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\PrintWorkflowService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\easwrt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\AppExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000178688 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000176952 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Management.Workplace.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000172032 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.CapturePicker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000165840 _____ (Microsoft Corporation) C:\windows\system32\WerFaultSecure.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000162816 _____ (Microsoft Corporation) C:\windows\SysWOW64\ErrorDetails.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000162304 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserDeviceRegistration.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000160768 _____ (Microsoft Corporation) C:\windows\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000159744 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000157184 _____ (Microsoft Corporation) C:\windows\system32\PrintWSDAHost.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000152064 _____ (Microsoft Corporation) C:\windows\SysWOW64\useractivitybroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\fdWSD.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000151040 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SerialCommunication.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000150336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFaultSecure.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000147968 _____ (Microsoft Corporation) C:\windows\system32\Family.Client.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000146232 _____ (Microsoft Corporation) C:\windows\system32\ResourcePolicyServer.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\AppointmentActivation.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintWorkflowService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000140800 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Energy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000133632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000133632 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppExtension.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000132408 _____ (Microsoft Corporation) C:\windows\system32\offlinelsa.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000131584 _____ (Microsoft Corporation) C:\windows\system32\DevicePairingExperienceMEM.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000131072 _____ (Microsoft Corporation) C:\windows\system32\CredDialogBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000130560 _____ (Microsoft Corporation) C:\windows\system32\StorageUsage.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\CameraCaptureUI.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000128512 _____ (Microsoft Corporation) C:\windows\system32\CaptureService.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000127064 _____ (Microsoft Corporation) C:\windows\system32\win32u.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000124928 _____ (Microsoft Corporation) C:\windows\system32\wercplsupport.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000118784 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000118272 _____ (Microsoft Corporation) C:\windows\system32\EaseOfAccessDialog.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppointmentActivation.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000112128 _____ (Microsoft Corporation) C:\windows\system32\AxInstSv.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000107520 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000105984 _____ (Microsoft Corporation) C:\windows\system32\utcutil.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000100864 _____ (Microsoft Corporation) C:\windows\system32\sethc.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000100864 _____ (Microsoft Corporation) C:\windows\system32\Family.Authentication.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000100352 _____ (Microsoft Corporation) C:\windows\system32\DiagnosticInvoker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000094720 _____ (Microsoft Corporation) C:\windows\SysWOW64\CameraCaptureUI.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000094208 _____ (Microsoft Corporation) C:\windows\SysWOW64\EaseOfAccessDialog.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000093184 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000092672 _____ (Microsoft Corporation) C:\windows\system32\wsqmcons.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000091648 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000090624 _____ (Microsoft Corporation) C:\windows\system32\keyiso.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000089600 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000089328 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32u.dll
Nicki
Posts: 210 +0
2020-07-15 13:29 - 2020-07-15 13:29 - 000089088 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicAgent.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000086272 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000083456 _____ (Microsoft Corporation) C:\windows\system32\SystemUWPLauncher.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000082432 _____ (Microsoft Corporation) C:\windows\system32\LocationFrameworkInternalPS.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000081408 _____ (Microsoft Corporation) C:\windows\system32\Print.Workflow.Source.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000079360 _____ (Microsoft Corporation) C:\windows\SysWOW64\sethc.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000075776 _____ (Microsoft Corporation) C:\windows\SysWOW64\DiagnosticInvoker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000071168 _____ (Microsoft Corporation) C:\windows\system32\MiracastReceiverExt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000070248 _____ (Microsoft Corporation) C:\windows\system32\ResourcePolicyClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000068096 _____ (Microsoft Corporation) C:\windows\system32\udhisapi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000066560 _____ (Microsoft Corporation) C:\windows\SysWOW64\keyiso.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000066048 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000065536 _____ (Microsoft Corporation) C:\windows\system32\iemigplugin.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000064512 _____ (Microsoft Corporation) C:\windows\SysWOW64\SystemUWPLauncher.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\Print.Workflow.Source.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\mf3216.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\AxInstUI.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000052152 _____ (Microsoft Corporation) C:\windows\SysWOW64\ResourcePolicyClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000046080 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf3216.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\npmproxy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\werdiagcontroller.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000040960 _____ (Microsoft Corporation) C:\windows\system32\upnpcont.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000040248 _____ (Microsoft Corporation) C:\windows\system32\LocationFrameworkPS.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000038912 _____ (Microsoft Corporation) C:\windows\SysWOW64\werdiagcontroller.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\UIMgrBroker.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000029696 _____ (Microsoft Corporation) C:\windows\system32\SystemEventsBrokerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000029696 _____ (Microsoft Corporation) C:\windows\system32\nlmproxy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicPS.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\PrintWorkflowProxy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000024064 _____ (Microsoft Corporation) C:\windows\system32\CSystemEventsBrokerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000021504 _____ (Microsoft Corporation) C:\windows\SysWOW64\SystemEventsBrokerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\nlmsprep.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000016896 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintWorkflowProxy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000016896 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000013824 _____ (Microsoft Corporation) C:\windows\system32\UIManagerBrokerps.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000012288 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000011776 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\msimg32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimg32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000003072 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000002560 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth9.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth8.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth7.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth6.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth5.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth4.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth3.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth2.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth12.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth11.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth10.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth1.bin
2020-07-15 13:28 - 2020-07-15 13:28 - 017792512 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 006233080 _____ (Microsoft Corporation) C:\windows\system32\StartTileData.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 004625192 _____ (Microsoft Corporation) C:\windows\explorer.exe
2020-07-15 13:28 - 2020-07-15 13:28 - 003712000 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001745728 _____ (Microsoft Corporation) C:\windows\system32\ContentDeliveryManager.Utilities.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001723392 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001640448 _____ (Microsoft Corporation) C:\windows\system32\TaskFlowDataEngine.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001385696 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001149712 _____ (Microsoft Corporation) C:\windows\system32\ApplyTrustOffline.exe
2020-07-15 13:28 - 2020-07-15 13:28 - 001059840 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000922624 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Service.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000727040 _____ (Microsoft Corporation) C:\windows\system32\agentactivationruntime.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000722072 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000716288 _____ (Microsoft Corporation) C:\windows\system32\agentactivationruntimewindows.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000656696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2020-07-15 13:28 - 2020-07-15 13:28 - 000502784 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.WiFiDirect.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000458240 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000432128 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Midi.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000411640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Devices.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000399672 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.DataModel.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000381152 _____ (Microsoft Corporation) C:\windows\system32\CredentialEnrollmentManager.exe
2020-07-15 13:28 - 2020-07-15 13:28 - 000327168 _____ (Microsoft Corporation) C:\windows\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\SyncSettings.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000283136 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.AppDefaults.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000265728 _____ (Microsoft Corporation) C:\windows\system32\netman.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000217600 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Core.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\UserDeviceRegistration.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000204608 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spacedump.sys
2020-07-15 13:28 - 2020-07-15 13:28 - 000200704 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000195584 _____ (Microsoft Corporation) C:\windows\system32\AarSvc.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000165376 _____ (Microsoft Corporation) C:\windows\splwow64.exe
2020-07-15 13:28 - 2020-07-15 13:28 - 000132608 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Storage.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000110040 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000076952 _____ (Microsoft Corporation) C:\windows\system32\CredentialEnrollmentManagerForUser.dll
2020-07-15 13:24 - 2020-06-30 00:32 - 000390656 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2020-07-15 13:24 - 2020-06-30 00:26 - 000492544 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2020-07-14 17:03 - 2020-07-14 17:03 - 009585208 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2020-07-12 16:49 - 2020-08-06 20:39 - 000000000 ____D C:\Users\Nicki\AppData\Local\HP_Inc
2020-07-12 16:41 - 2020-07-12 16:42 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\hpqLog
2020-07-12 16:33 - 2020-08-03 19:41 - 000002387 _____ C:\Users\Public\Desktop\Norton Security.lnk
2020-07-12 16:33 - 2020-08-03 19:41 - 000002387 _____ C:\ProgramData\Desktop\Norton Security.lnk
2020-07-15 13:29 - 2020-07-15 13:29 - 000086272 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000083456 _____ (Microsoft Corporation) C:\windows\system32\SystemUWPLauncher.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000082432 _____ (Microsoft Corporation) C:\windows\system32\LocationFrameworkInternalPS.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000081408 _____ (Microsoft Corporation) C:\windows\system32\Print.Workflow.Source.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000079360 _____ (Microsoft Corporation) C:\windows\SysWOW64\sethc.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000075776 _____ (Microsoft Corporation) C:\windows\SysWOW64\DiagnosticInvoker.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000071168 _____ (Microsoft Corporation) C:\windows\system32\MiracastReceiverExt.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000070248 _____ (Microsoft Corporation) C:\windows\system32\ResourcePolicyClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000068096 _____ (Microsoft Corporation) C:\windows\system32\udhisapi.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000066560 _____ (Microsoft Corporation) C:\windows\SysWOW64\keyiso.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000066048 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000065536 _____ (Microsoft Corporation) C:\windows\system32\iemigplugin.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000064512 _____ (Microsoft Corporation) C:\windows\SysWOW64\SystemUWPLauncher.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\Print.Workflow.Source.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\mf3216.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\AxInstUI.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000052152 _____ (Microsoft Corporation) C:\windows\SysWOW64\ResourcePolicyClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000046080 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf3216.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\npmproxy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\werdiagcontroller.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000040960 _____ (Microsoft Corporation) C:\windows\system32\upnpcont.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000040248 _____ (Microsoft Corporation) C:\windows\system32\LocationFrameworkPS.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000038912 _____ (Microsoft Corporation) C:\windows\SysWOW64\werdiagcontroller.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\UIMgrBroker.exe
2020-07-15 13:29 - 2020-07-15 13:29 - 000029696 _____ (Microsoft Corporation) C:\windows\system32\SystemEventsBrokerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000029696 _____ (Microsoft Corporation) C:\windows\system32\nlmproxy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicPS.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\PrintWorkflowProxy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000024064 _____ (Microsoft Corporation) C:\windows\system32\CSystemEventsBrokerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000021504 _____ (Microsoft Corporation) C:\windows\SysWOW64\SystemEventsBrokerClient.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\nlmsprep.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000016896 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintWorkflowProxy.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000016896 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000013824 _____ (Microsoft Corporation) C:\windows\system32\UIManagerBrokerps.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000012288 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000011776 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\msimg32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimg32.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000003072 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000002560 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth9.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth8.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth7.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth6.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth5.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth4.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth3.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth2.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth12.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth11.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth10.bin
2020-07-15 13:29 - 2020-07-15 13:29 - 000000315 _____ C:\windows\system32\DrtmAuth1.bin
2020-07-15 13:28 - 2020-07-15 13:28 - 017792512 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 006233080 _____ (Microsoft Corporation) C:\windows\system32\StartTileData.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 004625192 _____ (Microsoft Corporation) C:\windows\explorer.exe
2020-07-15 13:28 - 2020-07-15 13:28 - 003712000 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001745728 _____ (Microsoft Corporation) C:\windows\system32\ContentDeliveryManager.Utilities.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001723392 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001640448 _____ (Microsoft Corporation) C:\windows\system32\TaskFlowDataEngine.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001385696 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 001149712 _____ (Microsoft Corporation) C:\windows\system32\ApplyTrustOffline.exe
2020-07-15 13:28 - 2020-07-15 13:28 - 001059840 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000922624 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Service.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000727040 _____ (Microsoft Corporation) C:\windows\system32\agentactivationruntime.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000722072 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000716288 _____ (Microsoft Corporation) C:\windows\system32\agentactivationruntimewindows.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000656696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2020-07-15 13:28 - 2020-07-15 13:28 - 000502784 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.WiFiDirect.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000458240 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000432128 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Midi.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000411640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Devices.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000399672 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.DataModel.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000381152 _____ (Microsoft Corporation) C:\windows\system32\CredentialEnrollmentManager.exe
2020-07-15 13:28 - 2020-07-15 13:28 - 000327168 _____ (Microsoft Corporation) C:\windows\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\SyncSettings.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000283136 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.AppDefaults.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000265728 _____ (Microsoft Corporation) C:\windows\system32\netman.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000217600 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Core.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\UserDeviceRegistration.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000204608 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spacedump.sys
2020-07-15 13:28 - 2020-07-15 13:28 - 000200704 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000195584 _____ (Microsoft Corporation) C:\windows\system32\AarSvc.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000165376 _____ (Microsoft Corporation) C:\windows\splwow64.exe
2020-07-15 13:28 - 2020-07-15 13:28 - 000132608 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Storage.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000110040 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-15 13:28 - 2020-07-15 13:28 - 000076952 _____ (Microsoft Corporation) C:\windows\system32\CredentialEnrollmentManagerForUser.dll
2020-07-15 13:24 - 2020-06-30 00:32 - 000390656 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2020-07-15 13:24 - 2020-06-30 00:26 - 000492544 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2020-07-14 17:03 - 2020-07-14 17:03 - 009585208 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2020-07-12 16:49 - 2020-08-06 20:39 - 000000000 ____D C:\Users\Nicki\AppData\Local\HP_Inc
2020-07-12 16:41 - 2020-07-12 16:42 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\hpqLog
2020-07-12 16:33 - 2020-08-03 19:41 - 000002387 _____ C:\Users\Public\Desktop\Norton Security.lnk
2020-07-12 16:33 - 2020-08-03 19:41 - 000002387 _____ C:\ProgramData\Desktop\Norton Security.lnk
Nicki
Posts: 210 +0
2020-07-12 16:33 - 2020-07-12 16:33 - 000099848 _____ (Symantec Corporation) C:\windows\system32\Drivers\SYMEVENT64x86.SYS
2020-07-12 16:33 - 2020-07-12 16:33 - 000008616 _____ C:\windows\system32\Drivers\SYMEVENT64x86.CAT
2020-07-12 16:33 - 2020-07-12 16:33 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2020-07-12 16:32 - 2020-07-12 16:32 - 000000000 ____D C:\Program Files\Norton Security
2020-07-12 16:31 - 2020-07-12 16:31 - 000000000 ____D C:\Program Files (x86)\NortonInstaller
2020-07-12 16:30 - 2020-07-12 16:31 - 003667192 _____ (Symantec Corporation) C:\Users\Nicki\Downloads\NSBUDownloader(1).exe
2020-07-12 11:21 - 2020-07-12 11:21 - 000000600 _____ C:\Users\Nicki\Documents\Firefox - 2020-07-12.pcv
2020-07-12 11:20 - 2020-07-12 11:20 - 000001103 _____ C:\Users\Public\Desktop\MozBackup.lnk
2020-07-12 11:20 - 2020-07-12 11:20 - 000001103 _____ C:\ProgramData\Desktop\MozBackup.lnk
2020-07-12 11:20 - 2020-07-12 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2020-07-12 11:20 - 2020-07-12 11:20 - 000000000 ____D C:\Program Files (x86)\MozBackup
2020-07-12 11:19 - 2020-07-12 11:19 - 001035926 _____ C:\Users\Nicki\Downloads\MozBackup-1.5.1-EN.exe
2020-07-12 04:34 - 2020-07-12 04:34 - 000000000 ____D C:\Users\Nicki\AppData\Local\CrashDumps
2020-07-12 03:27 - 2020-07-12 03:27 - 040310320 _____ (Adlice Software ) C:\Users\Nicki\Documents\RogueKiller_setup_ref3.exe
2020-07-11 22:12 - 2020-08-07 16:10 - 000000000 ____D C:\FRST
2020-07-10 14:25 - 2020-07-12 23:48 - 000000000 ____D C:\Users\Nicki\Desktop\Nicole
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-08-07 16:09 - 2019-08-09 07:31 - 000000000 ____D C:\Users\Nicki\AppData\LocalLow\Mozilla
2020-08-07 15:28 - 2019-03-19 00:52 - 000000000 ___HD C:\windows\ELAMBKUP
2020-08-07 15:08 - 2019-04-15 11:38 - 000000000 ____D C:\windows\system32\SleepStudy
2020-08-07 13:18 - 2019-03-19 00:52 - 000000000 ____D C:\windows\AppReadiness
2020-08-07 13:16 - 2019-08-09 00:46 - 000000000 __SHD C:\Users\Nicki\IntelGraphicsProfiles
2020-08-07 13:16 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-07 13:15 - 2019-04-15 11:38 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-08-07 13:15 - 2019-03-18 23:34 - 000000000 ____D C:\Intel
2020-08-07 07:26 - 2019-03-19 00:37 - 000524288 _____ C:\windows\system32\config\BBI
2020-08-07 07:11 - 2019-03-18 23:59 - 000072393 _____ C:\windows\diagwrn.xml
2020-08-07 07:11 - 2019-03-18 23:59 - 000072393 _____ C:\windows\diagerr.xml
2020-08-07 06:39 - 2019-03-19 00:50 - 000000000 ____D C:\windows\INF
2020-08-07 06:36 - 2019-12-07 06:22 - 000000000 ___HD C:\$WINDOWS.~BT
2020-08-07 06:15 - 2019-04-15 12:31 - 000000000 ____D C:\windows\Panther
2020-08-06 20:34 - 2019-03-19 00:37 - 000000000 ____D C:\windows\CbsTemp
2020-08-06 19:59 - 2020-03-13 07:05 - 000008770 _____ C:\windows\system32\.crusader
2020-08-06 19:59 - 2019-05-03 12:29 - 000000000 ____D C:\ProgramData\HP
2020-08-06 19:03 - 2019-03-19 00:37 - 000032768 _____ C:\windows\system32\config\ELAM
2020-08-06 18:43 - 2019-03-19 00:52 - 000000000 ____D C:\windows\system32\oobe
2020-08-05 19:29 - 2019-12-20 15:05 - 000001235 _____ C:\Users\Nicki\Desktop\Cook'n.lnk
2020-08-05 19:29 - 2019-08-09 06:45 - 000001257 _____ C:\Users\Nicki\Desktop\Windows Updates.lnk
2020-08-04 19:32 - 2019-08-09 06:54 - 000000000 ____D C:\Users\Nicki\00Documents
2020-08-03 20:17 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-03 20:06 - 2019-08-10 11:20 - 000000000 ____D C:\Program Files\Common Files\AV
2020-08-03 19:41 - 2020-07-07 12:16 - 000000000 ____D C:\windows\system32\Drivers\NGCx64
2020-08-03 17:30 - 2019-10-24 06:56 - 000000000 ____D C:\Users\Nicki\00Photos
2020-08-03 06:07 - 2019-03-18 23:32 - 000000024 _____ C:\windows\system32\Drivers\RtkR0Log.dat
2020-08-02 07:25 - 2020-06-20 20:05 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-02 06:25 - 2019-08-09 07:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-08-01 10:27 - 2019-08-09 00:46 - 000000000 ____D C:\Users\Nicki\AppData\Local\VirtualStore
2020-07-31 13:35 - 2019-12-01 19:01 - 000000000 ____D C:\Users\Nicki\Desktop\Stuff
2020-07-30 18:40 - 2019-08-09 07:31 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-07-30 18:15 - 2019-08-09 07:38 - 000001285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-07-29 18:37 - 2019-08-09 07:29 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-25 20:15 - 2019-08-09 14:09 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\vlc
2020-07-16 07:05 - 2019-05-03 12:33 - 000848226 _____ C:\windows\system32\PerfStringBackup.INI
2020-07-16 07:02 - 2019-08-09 00:46 - 000000000 ___RD C:\Users\Nicki\3D Objects
2020-07-16 07:02 - 2019-04-15 11:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-16 07:01 - 2019-04-15 11:38 - 000451728 _____ C:\windows\system32\FNTCACHE.DAT
2020-07-12 16:33 - 2020-07-12 16:33 - 000008616 _____ C:\windows\system32\Drivers\SYMEVENT64x86.CAT
2020-07-12 16:33 - 2020-07-12 16:33 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2020-07-12 16:32 - 2020-07-12 16:32 - 000000000 ____D C:\Program Files\Norton Security
2020-07-12 16:31 - 2020-07-12 16:31 - 000000000 ____D C:\Program Files (x86)\NortonInstaller
2020-07-12 16:30 - 2020-07-12 16:31 - 003667192 _____ (Symantec Corporation) C:\Users\Nicki\Downloads\NSBUDownloader(1).exe
2020-07-12 11:21 - 2020-07-12 11:21 - 000000600 _____ C:\Users\Nicki\Documents\Firefox - 2020-07-12.pcv
2020-07-12 11:20 - 2020-07-12 11:20 - 000001103 _____ C:\Users\Public\Desktop\MozBackup.lnk
2020-07-12 11:20 - 2020-07-12 11:20 - 000001103 _____ C:\ProgramData\Desktop\MozBackup.lnk
2020-07-12 11:20 - 2020-07-12 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2020-07-12 11:20 - 2020-07-12 11:20 - 000000000 ____D C:\Program Files (x86)\MozBackup
2020-07-12 11:19 - 2020-07-12 11:19 - 001035926 _____ C:\Users\Nicki\Downloads\MozBackup-1.5.1-EN.exe
2020-07-12 04:34 - 2020-07-12 04:34 - 000000000 ____D C:\Users\Nicki\AppData\Local\CrashDumps
2020-07-12 03:27 - 2020-07-12 03:27 - 040310320 _____ (Adlice Software ) C:\Users\Nicki\Documents\RogueKiller_setup_ref3.exe
2020-07-11 22:12 - 2020-08-07 16:10 - 000000000 ____D C:\FRST
2020-07-10 14:25 - 2020-07-12 23:48 - 000000000 ____D C:\Users\Nicki\Desktop\Nicole
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-08-07 16:09 - 2019-08-09 07:31 - 000000000 ____D C:\Users\Nicki\AppData\LocalLow\Mozilla
2020-08-07 15:28 - 2019-03-19 00:52 - 000000000 ___HD C:\windows\ELAMBKUP
2020-08-07 15:08 - 2019-04-15 11:38 - 000000000 ____D C:\windows\system32\SleepStudy
2020-08-07 13:18 - 2019-03-19 00:52 - 000000000 ____D C:\windows\AppReadiness
2020-08-07 13:16 - 2019-08-09 00:46 - 000000000 __SHD C:\Users\Nicki\IntelGraphicsProfiles
2020-08-07 13:16 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-07 13:15 - 2019-04-15 11:38 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-08-07 13:15 - 2019-03-18 23:34 - 000000000 ____D C:\Intel
2020-08-07 07:26 - 2019-03-19 00:37 - 000524288 _____ C:\windows\system32\config\BBI
2020-08-07 07:11 - 2019-03-18 23:59 - 000072393 _____ C:\windows\diagwrn.xml
2020-08-07 07:11 - 2019-03-18 23:59 - 000072393 _____ C:\windows\diagerr.xml
2020-08-07 06:39 - 2019-03-19 00:50 - 000000000 ____D C:\windows\INF
2020-08-07 06:36 - 2019-12-07 06:22 - 000000000 ___HD C:\$WINDOWS.~BT
2020-08-07 06:15 - 2019-04-15 12:31 - 000000000 ____D C:\windows\Panther
2020-08-06 20:34 - 2019-03-19 00:37 - 000000000 ____D C:\windows\CbsTemp
2020-08-06 19:59 - 2020-03-13 07:05 - 000008770 _____ C:\windows\system32\.crusader
2020-08-06 19:59 - 2019-05-03 12:29 - 000000000 ____D C:\ProgramData\HP
2020-08-06 19:03 - 2019-03-19 00:37 - 000032768 _____ C:\windows\system32\config\ELAM
2020-08-06 18:43 - 2019-03-19 00:52 - 000000000 ____D C:\windows\system32\oobe
2020-08-05 19:29 - 2019-12-20 15:05 - 000001235 _____ C:\Users\Nicki\Desktop\Cook'n.lnk
2020-08-05 19:29 - 2019-08-09 06:45 - 000001257 _____ C:\Users\Nicki\Desktop\Windows Updates.lnk
2020-08-04 19:32 - 2019-08-09 06:54 - 000000000 ____D C:\Users\Nicki\00Documents
2020-08-03 20:17 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-03 20:06 - 2019-08-10 11:20 - 000000000 ____D C:\Program Files\Common Files\AV
2020-08-03 19:41 - 2020-07-07 12:16 - 000000000 ____D C:\windows\system32\Drivers\NGCx64
2020-08-03 17:30 - 2019-10-24 06:56 - 000000000 ____D C:\Users\Nicki\00Photos
2020-08-03 06:07 - 2019-03-18 23:32 - 000000024 _____ C:\windows\system32\Drivers\RtkR0Log.dat
2020-08-02 07:25 - 2020-06-20 20:05 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-02 06:25 - 2019-08-09 07:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-08-01 10:27 - 2019-08-09 00:46 - 000000000 ____D C:\Users\Nicki\AppData\Local\VirtualStore
2020-07-31 13:35 - 2019-12-01 19:01 - 000000000 ____D C:\Users\Nicki\Desktop\Stuff
2020-07-30 18:40 - 2019-08-09 07:31 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-07-30 18:15 - 2019-08-09 07:38 - 000001285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-07-29 18:37 - 2019-08-09 07:29 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-25 20:15 - 2019-08-09 14:09 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\vlc
2020-07-16 07:05 - 2019-05-03 12:33 - 000848226 _____ C:\windows\system32\PerfStringBackup.INI
2020-07-16 07:02 - 2019-08-09 00:46 - 000000000 ___RD C:\Users\Nicki\3D Objects
2020-07-16 07:02 - 2019-04-15 11:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-16 07:01 - 2019-04-15 11:38 - 000451728 _____ C:\windows\system32\FNTCACHE.DAT
Nicki
Posts: 210 +0
2020-07-16 00:17 - 2019-03-19 00:52 - 000000000 ___SD C:\windows\system32\DiagSvcs
2020-07-16 00:17 - 2019-03-19 00:52 - 000000000 ____D C:\windows\SystemResources
2020-07-16 00:17 - 2019-03-19 00:52 - 000000000 ____D C:\windows\ShellExperiences
2020-07-16 00:17 - 2019-03-19 00:52 - 000000000 ____D C:\windows\bcastdvr
2020-07-16 00:17 - 2019-03-19 00:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-15 18:19 - 2020-06-20 20:05 - 000003478 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-15 18:19 - 2020-06-20 20:05 - 000003354 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-14 17:03 - 2019-10-30 22:01 - 000004526 _____ C:\windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-07-14 17:03 - 2019-03-19 00:52 - 000000000 ____D C:\windows\SysWOW64\Macromed
2020-07-14 17:03 - 2019-03-19 00:52 - 000000000 ____D C:\windows\system32\Macromed
2020-07-12 17:21 - 2019-08-09 00:44 - 000000000 ____D C:\Users\Nicki\AppData\Local\Packages
2020-07-12 17:19 - 2019-08-09 14:15 - 000000024 _____ C:\windows\pstudio.ini
2020-07-12 17:19 - 2019-08-09 14:15 - 000000011 _____ C:\windows\album.ini
2020-07-12 16:56 - 2019-08-09 08:45 - 000000000 ____D C:\swsetup
2020-07-12 16:55 - 2019-03-18 23:41 - 000000000 ____D C:\windows\HP
2020-07-12 16:54 - 2019-03-18 23:36 - 000000000 ____D C:\windows\system32\Tasks\HP
2020-07-12 16:42 - 2019-08-09 00:47 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\HP
2020-07-12 16:42 - 2019-05-03 12:29 - 000000000 ____D C:\Program Files (x86)\HP
2020-07-12 16:34 - 2019-08-10 10:43 - 000000000 ____D C:\ProgramData\Norton
2020-07-11 22:27 - 2019-08-09 05:58 - 000000000 ____D C:\Users\Nicki\Documents\Reflect
2020-07-11 10:15 - 2019-08-10 16:23 - 000000000 ____D C:\Users\Nicki\AppData\Local\ElevatedDiagnostics
2020-07-10 14:18 - 2020-06-25 06:51 - 000000000 ____D C:\Users\Nicki\Desktop\West Point
2020-07-09 08:06 - 2019-08-09 08:12 - 000004562 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task
2020-07-09 08:06 - 2019-08-09 08:11 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories ========
2019-11-29 13:06 - 2019-11-29 13:06 - 000004608 _____ () C:\Users\Nicki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
2020-07-16 00:17 - 2019-03-19 00:52 - 000000000 ____D C:\windows\SystemResources
2020-07-16 00:17 - 2019-03-19 00:52 - 000000000 ____D C:\windows\ShellExperiences
2020-07-16 00:17 - 2019-03-19 00:52 - 000000000 ____D C:\windows\bcastdvr
2020-07-16 00:17 - 2019-03-19 00:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-15 18:19 - 2020-06-20 20:05 - 000003478 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-15 18:19 - 2020-06-20 20:05 - 000003354 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-14 17:03 - 2019-10-30 22:01 - 000004526 _____ C:\windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-07-14 17:03 - 2019-03-19 00:52 - 000000000 ____D C:\windows\SysWOW64\Macromed
2020-07-14 17:03 - 2019-03-19 00:52 - 000000000 ____D C:\windows\system32\Macromed
2020-07-12 17:21 - 2019-08-09 00:44 - 000000000 ____D C:\Users\Nicki\AppData\Local\Packages
2020-07-12 17:19 - 2019-08-09 14:15 - 000000024 _____ C:\windows\pstudio.ini
2020-07-12 17:19 - 2019-08-09 14:15 - 000000011 _____ C:\windows\album.ini
2020-07-12 16:56 - 2019-08-09 08:45 - 000000000 ____D C:\swsetup
2020-07-12 16:55 - 2019-03-18 23:41 - 000000000 ____D C:\windows\HP
2020-07-12 16:54 - 2019-03-18 23:36 - 000000000 ____D C:\windows\system32\Tasks\HP
2020-07-12 16:42 - 2019-08-09 00:47 - 000000000 ____D C:\Users\Nicki\AppData\Roaming\HP
2020-07-12 16:42 - 2019-05-03 12:29 - 000000000 ____D C:\Program Files (x86)\HP
2020-07-12 16:34 - 2019-08-10 10:43 - 000000000 ____D C:\ProgramData\Norton
2020-07-11 22:27 - 2019-08-09 05:58 - 000000000 ____D C:\Users\Nicki\Documents\Reflect
2020-07-11 10:15 - 2019-08-10 16:23 - 000000000 ____D C:\Users\Nicki\AppData\Local\ElevatedDiagnostics
2020-07-10 14:18 - 2020-06-25 06:51 - 000000000 ____D C:\Users\Nicki\Desktop\West Point
2020-07-09 08:06 - 2019-08-09 08:12 - 000004562 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task
2020-07-09 08:06 - 2019-08-09 08:11 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories ========
2019-11-29 13:06 - 2019-11-29 13:06 - 000004608 _____ () C:\Users\Nicki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Nicki
Posts: 210 +0
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-08-2020
Ran by Nicki (07-08-2020 16:10:42)
Running from C:\Users\Nicki\Desktop
Windows 10 Home Version 1903 18362.959 (X64) (2019-08-09 04:38:22)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-282240636-1967671034-2412643917-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-282240636-1967671034-2412643917-503 - Limited - Disabled)
Guest (S-1-5-21-282240636-1967671034-2412643917-501 - Limited - Disabled)
Nicki (S-1-5-21-282240636-1967671034-2412643917-1001 - Administrator - Enabled) => C:\Users\Nicki
WDAGUtilityAccount (S-1-5-21-282240636-1967671034-2412643917-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Norton Security Online (Enabled - Up to date) {1122B19A-E671-38EC-8EAC-87048FD4528D}
AV: Norton Security Online (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security Online (Enabled - Up to date) {E3FDBD9F-8140-1400-F32B-8B58923F7C4D}
AV: Norton Security Online (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A}
FW: Norton Security Online (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}
FW: Norton Security Online (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1}
FW: Norton Security Online (Enabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6}
FW: Norton Security Online (Enabled) {DBC63CBA-CB2F-1558-D874-226D6CEC3B36}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.403 - Adobe)
Apple Application Support (32-bit) (HKLM-x32\...\{9738288C-21BC-4F54-AB4F-72F059339376}) (Version: 8.6 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{DEB339C1-2687-43AB-816A-8714F3E26846}) (Version: 8.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C788AE25-3D4E-4D18-811B-3219F778487E}) (Version: 13.5.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite MFC-J6710DW (HKLM-x32\...\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
Cook'n (HKLM-x32\...\Cook'n) (Version: - )
Dynamic Application Loader Host Interface Service (HKLM\...\{3252E69D-9075-40FD-A9EF-F6D96091B5BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EzTiltPen (HKLM\...\{359DAC8D-CE33-4729-84E9-22D3367A44A9}_is1) (Version: 1.0.0.25 - ELAN microelectronics Crop.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HL-2270DW (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.1.6.0 - Brother Industries, Ltd.)
HL-L2360D series (HKLM-x32\...\{46B58839-2405-48D6-A59D-F8246158A6ED}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
Intel(R) Chipset Device Software (HKLM-x32\...\{3d2240de-3c21-4e14-84b3-1c6cd02bfab4}) (Version: 10.1.17969.8134 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1914.12.0.1255 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.2.0.1009 - Intel Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{94979CD2-0904-47DE-A4AC-04F1C4524650}) (Version: 17.2.8.1029 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{1b3fcb8d-3d2b-4477-b722-0b3e2c1195ba}) (Version: 20.30.1 - Intel Corporation)
iTunes (HKLM\...\{EA1B93E5-47D8-4252-8441-DEC5F5274C60}) (Version: 12.10.8.5 - Apple Inc.)
Logitech Options (HKLM\...\LogiOptions) (Version: 8.10.84 - Logitech)
Macrium Reflect Free Edition (HKLM\...\{D59877C2-0B8F-4ACC-AD29-C710FA69DBD0}) (Version: 7.2.4325 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 7.2 - Paramount Software (UK) Ltd.)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.52 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 79.0 (x64 en-US) (HKLM\...\Mozilla Firefox 79.0 (x64 en-US)) (Version: 79.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.8.0 - Mozilla)
Mozilla Thunderbird 68.11.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 68.11.0 (x86 en-US)) (Version: 68.11.0 - Mozilla)
Norton Security Online (HKLM-x32\...\NGC) (Version: 22.20.5.39 - Symantec Corporation)
Old Calculator for Windows 10 (HKLM-x32\...\OldCalcForWin10) (Version: 1.1 - hxxp://winaero.com)
Quicken 2003 Basic (HKLM-x32\...\{88D0E768-CD6A-42A9-97F9-2B12CF740019}) (Version: 12.00.0000 - Intuit) Hidden
Quicken 2003 Basic (HKLM-x32\...\InstallShield_{88D0E768-CD6A-42A9-97F9-2B12CF740019}) (Version: 12.00.0000 - Intuit)
RogueKiller version 14.6.2.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.6.2.0 - Adlice Software)
RootsMagic 7.6.3.0 (HKLM-x32\...\{D6286873-A757-4A4D-A6EF-0081B3EE32CA}_is1) (Version: RootsMagic 7.6.3.0 - RootsMagic, Inc.)
Spotify (HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\Spotify) (Version: 1.1.22.633.g1bab253a - Spotify AB)
StatTrak Address Manager (HKLM-x32\...\StatTrak Address Manager) (Version: 5.1.25 - All-Pro Software)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Zoom (HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\ZoomUMX) (Version: 5.2.0 (42619.0804) - Zoom Video Communications, Inc.)
Ran by Nicki (07-08-2020 16:10:42)
Running from C:\Users\Nicki\Desktop
Windows 10 Home Version 1903 18362.959 (X64) (2019-08-09 04:38:22)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-282240636-1967671034-2412643917-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-282240636-1967671034-2412643917-503 - Limited - Disabled)
Guest (S-1-5-21-282240636-1967671034-2412643917-501 - Limited - Disabled)
Nicki (S-1-5-21-282240636-1967671034-2412643917-1001 - Administrator - Enabled) => C:\Users\Nicki
WDAGUtilityAccount (S-1-5-21-282240636-1967671034-2412643917-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Norton Security Online (Enabled - Up to date) {1122B19A-E671-38EC-8EAC-87048FD4528D}
AV: Norton Security Online (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security Online (Enabled - Up to date) {E3FDBD9F-8140-1400-F32B-8B58923F7C4D}
AV: Norton Security Online (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A}
FW: Norton Security Online (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}
FW: Norton Security Online (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1}
FW: Norton Security Online (Enabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6}
FW: Norton Security Online (Enabled) {DBC63CBA-CB2F-1558-D874-226D6CEC3B36}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.403 - Adobe)
Apple Application Support (32-bit) (HKLM-x32\...\{9738288C-21BC-4F54-AB4F-72F059339376}) (Version: 8.6 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{DEB339C1-2687-43AB-816A-8714F3E26846}) (Version: 8.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C788AE25-3D4E-4D18-811B-3219F778487E}) (Version: 13.5.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite MFC-J6710DW (HKLM-x32\...\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
Cook'n (HKLM-x32\...\Cook'n) (Version: - )
Dynamic Application Loader Host Interface Service (HKLM\...\{3252E69D-9075-40FD-A9EF-F6D96091B5BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EzTiltPen (HKLM\...\{359DAC8D-CE33-4729-84E9-22D3367A44A9}_is1) (Version: 1.0.0.25 - ELAN microelectronics Crop.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HL-2270DW (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.1.6.0 - Brother Industries, Ltd.)
HL-L2360D series (HKLM-x32\...\{46B58839-2405-48D6-A59D-F8246158A6ED}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
Intel(R) Chipset Device Software (HKLM-x32\...\{3d2240de-3c21-4e14-84b3-1c6cd02bfab4}) (Version: 10.1.17969.8134 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1914.12.0.1255 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.2.0.1009 - Intel Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{94979CD2-0904-47DE-A4AC-04F1C4524650}) (Version: 17.2.8.1029 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{1b3fcb8d-3d2b-4477-b722-0b3e2c1195ba}) (Version: 20.30.1 - Intel Corporation)
iTunes (HKLM\...\{EA1B93E5-47D8-4252-8441-DEC5F5274C60}) (Version: 12.10.8.5 - Apple Inc.)
Logitech Options (HKLM\...\LogiOptions) (Version: 8.10.84 - Logitech)
Macrium Reflect Free Edition (HKLM\...\{D59877C2-0B8F-4ACC-AD29-C710FA69DBD0}) (Version: 7.2.4325 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 7.2 - Paramount Software (UK) Ltd.)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.52 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 79.0 (x64 en-US) (HKLM\...\Mozilla Firefox 79.0 (x64 en-US)) (Version: 79.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.8.0 - Mozilla)
Mozilla Thunderbird 68.11.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 68.11.0 (x86 en-US)) (Version: 68.11.0 - Mozilla)
Norton Security Online (HKLM-x32\...\NGC) (Version: 22.20.5.39 - Symantec Corporation)
Old Calculator for Windows 10 (HKLM-x32\...\OldCalcForWin10) (Version: 1.1 - hxxp://winaero.com)
Quicken 2003 Basic (HKLM-x32\...\{88D0E768-CD6A-42A9-97F9-2B12CF740019}) (Version: 12.00.0000 - Intuit) Hidden
Quicken 2003 Basic (HKLM-x32\...\InstallShield_{88D0E768-CD6A-42A9-97F9-2B12CF740019}) (Version: 12.00.0000 - Intuit)
RogueKiller version 14.6.2.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.6.2.0 - Adlice Software)
RootsMagic 7.6.3.0 (HKLM-x32\...\{D6286873-A757-4A4D-A6EF-0081B3EE32CA}_is1) (Version: RootsMagic 7.6.3.0 - RootsMagic, Inc.)
Spotify (HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\Spotify) (Version: 1.1.22.633.g1bab253a - Spotify AB)
StatTrak Address Manager (HKLM-x32\...\StatTrak Address Manager) (Version: 5.1.25 - All-Pro Software)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Zoom (HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\ZoomUMX) (Version: 5.2.0 (42619.0804) - Zoom Video Communications, Inc.)
Nicki
Posts: 210 +0
Packages:
=========
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2019-03-18] (HP Inc.)
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.7.194.0_x64__dt26b99r8h8gj [2020-01-11] (Realtek Semiconductor Corp)
HP Command Center -> C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6 [2020-07-31] (HP Inc.)
HP Impreza Pen -> C:\Program Files\WindowsApps\9FDF1AF1.HPImprezaPen_1.1.12.0_x64__g70az3e2cx9m2 [2019-11-22] (ELAN MICROELECTRONICS CORP.) [Startup Task]
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.7.1464.0_x64__v10z8vjag6ke6 [2020-07-16] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.6.5.0_x64__v10z8vjag6ke6 [2020-07-07] (HP Inc.)
HP Pen Control -> C:\Program Files\WindowsApps\AD2F1837.HPPenControl_3.0.23.0_x64__v10z8vjag6ke6 [2020-04-25] (HP Inc.) [Startup Task]
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.38.0_x64__v10z8vjag6ke6 [2019-11-06] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.6.703.0_x64__v10z8vjag6ke6 [2020-07-28] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6 [2020-07-23] (HP Inc.)
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt [2020-06-10] (INTEL CORP) [Startup Task]
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-17] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-04] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-04] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.10713.5360.0_x64__8wekyb3d8bbwe [2020-08-03] (Microsoft Corporation)
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-14] (Microsoft Corporation)
Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-03-12] (Synaptics Incorporated)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-27] () [File not signed] [File is in use]
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.39\NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.39\NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-27] () [File not signed] [File is in use]
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.39\NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-08-10 11:41 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2020-05-13 17:06 - 2020-05-13 17:06 - 000138240 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\4ecda042e9dca02a70ac5d199921f788\Interop.IWshRuntimeLibrary.ni.dll
2020-04-27 14:07 - 2010-03-15 19:04 - 000143360 _____ () [File not signed] C:\windows\system32\BrSNMP64.dll
2019-08-10 11:41 - 2013-06-12 19:06 - 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2019-08-10 11:41 - 2010-09-29 17:07 - 000180224 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2019-08-10 11:41 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2019-08-10 11:41 - 2013-10-10 21:55 - 002040320 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2019-08-10 12:11 - 2012-09-06 21:02 - 000155648 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2019-08-10 12:11 - 2012-07-06 13:33 - 000098304 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2019-08-10 12:11 - 2012-07-06 13:33 - 017694720 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2019-08-10 12:11 - 2012-07-17 13:36 - 000090112 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLUsa.dll
2019-08-10 12:11 - 2012-07-05 07:32 - 000084480 _____ (Brother Industries, Ltd.) [File not signed] C:\windows\system32\BrNetSti.dll
2020-07-16 09:13 - 2020-07-16 09:13 - 000134656 _____ (hardcodet.net) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\2e4498f9f3d5933ab70e316788a218ed\Hardcodet.Wpf.TaskbarNotification.ni.dll
2020-06-20 21:38 - 2020-06-20 21:38 - 000014336 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2020-07-31 06:22 - 2020-07-31 06:22 - 023300096 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\HpSystemManagement.dll
2020-07-07 23:42 - 2020-07-07 23:42 - 000013312 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\NativeRpcClient.dll
2020-07-07 23:42 - 2020-07-07 23:42 - 000014848 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\Win32Process\NativeRpcClient.DLL
2019-03-27 18:29 - 2019-03-27 18:29 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2020-07-16 09:14 - 2020-07-16 09:14 - 001591808 _____ (Mark Heath) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\NAudio\b2e10de052bfbd5ff19c34138508e5c2\NAudio.ni.dll
2019-08-10 12:12 - 2019-08-10 12:12 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2020-07-16 09:14 - 2020-07-16 09:14 - 003127808 _____ (Newtonsoft) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\0b429a7afd78bd366ec7825f3e7cc8c9\Newtonsoft.Json.ni.dll
2020-07-16 09:13 - 2020-07-16 09:13 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\log4net\aaf8a8054b24dc9ca7d3da9831902178\log4net.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 00:49 - 2019-11-16 08:13 - 000000826 _____ C:\windows\system32\drivers\etc\hosts
2020-04-19 20:58 - 2020-04-19 20:58 - 000000375 _____ C:\windows\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 75.75.75.75 - 75.75.76.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
=========
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2019-03-18] (HP Inc.)
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.7.194.0_x64__dt26b99r8h8gj [2020-01-11] (Realtek Semiconductor Corp)
HP Command Center -> C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6 [2020-07-31] (HP Inc.)
HP Impreza Pen -> C:\Program Files\WindowsApps\9FDF1AF1.HPImprezaPen_1.1.12.0_x64__g70az3e2cx9m2 [2019-11-22] (ELAN MICROELECTRONICS CORP.) [Startup Task]
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.7.1464.0_x64__v10z8vjag6ke6 [2020-07-16] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.6.5.0_x64__v10z8vjag6ke6 [2020-07-07] (HP Inc.)
HP Pen Control -> C:\Program Files\WindowsApps\AD2F1837.HPPenControl_3.0.23.0_x64__v10z8vjag6ke6 [2020-04-25] (HP Inc.) [Startup Task]
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.38.0_x64__v10z8vjag6ke6 [2019-11-06] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.6.703.0_x64__v10z8vjag6ke6 [2020-07-28] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6 [2020-07-23] (HP Inc.)
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt [2020-06-10] (INTEL CORP) [Startup Task]
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-17] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-04] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-04] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.10713.5360.0_x64__8wekyb3d8bbwe [2020-08-03] (Microsoft Corporation)
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-14] (Microsoft Corporation)
Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-03-12] (Synaptics Incorporated)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-27] () [File not signed] [File is in use]
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.39\NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.39\NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-27] () [File not signed] [File is in use]
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.39\buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.39\NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-08-10 11:41 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2020-05-13 17:06 - 2020-05-13 17:06 - 000138240 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\4ecda042e9dca02a70ac5d199921f788\Interop.IWshRuntimeLibrary.ni.dll
2020-04-27 14:07 - 2010-03-15 19:04 - 000143360 _____ () [File not signed] C:\windows\system32\BrSNMP64.dll
2019-08-10 11:41 - 2013-06-12 19:06 - 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2019-08-10 11:41 - 2010-09-29 17:07 - 000180224 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2019-08-10 11:41 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2019-08-10 11:41 - 2013-10-10 21:55 - 002040320 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2019-08-10 12:11 - 2012-09-06 21:02 - 000155648 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2019-08-10 12:11 - 2012-07-06 13:33 - 000098304 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2019-08-10 12:11 - 2012-07-06 13:33 - 017694720 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2019-08-10 12:11 - 2012-07-17 13:36 - 000090112 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLUsa.dll
2019-08-10 12:11 - 2012-07-05 07:32 - 000084480 _____ (Brother Industries, Ltd.) [File not signed] C:\windows\system32\BrNetSti.dll
2020-07-16 09:13 - 2020-07-16 09:13 - 000134656 _____ (hardcodet.net) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\2e4498f9f3d5933ab70e316788a218ed\Hardcodet.Wpf.TaskbarNotification.ni.dll
2020-06-20 21:38 - 2020-06-20 21:38 - 000014336 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2020-07-31 06:22 - 2020-07-31 06:22 - 023300096 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\HpSystemManagement.dll
2020-07-07 23:42 - 2020-07-07 23:42 - 000013312 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\NativeRpcClient.dll
2020-07-07 23:42 - 2020-07-07 23:42 - 000014848 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.6.20.0_x64__v10z8vjag6ke6\Win32Process\NativeRpcClient.DLL
2019-03-27 18:29 - 2019-03-27 18:29 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2020-07-16 09:14 - 2020-07-16 09:14 - 001591808 _____ (Mark Heath) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\NAudio\b2e10de052bfbd5ff19c34138508e5c2\NAudio.ni.dll
2019-08-10 12:12 - 2019-08-10 12:12 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2020-07-16 09:14 - 2020-07-16 09:14 - 003127808 _____ (Newtonsoft) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\0b429a7afd78bd366ec7825f3e7cc8c9\Newtonsoft.Json.ni.dll
2020-07-16 09:13 - 2020-07-16 09:13 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\log4net\aaf8a8054b24dc9ca7d3da9831902178\log4net.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 00:49 - 2019-11-16 08:13 - 000000826 _____ C:\windows\system32\drivers\etc\hosts
2020-04-19 20:58 - 2020-04-19 20:58 - 000000375 _____ C:\windows\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 75.75.75.75 - 75.75.76.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
Nicki
Posts: 210 +0
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "Quicken Scheduled Updates.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Billminder.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Quicken Startup.lnk"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "Reflect UI"
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\StartupApproved\StartupFolder: => "OneNote 2007 Screen Clipper and Launcher.lnk"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{32F2A922-7239-418F-BB52-6632F0914D30}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7B505800-E917-4363-BA9C-084DAA8DC9B0}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{33F2DEB0-8A16-44F9-B118-ACFB58893F45}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{EAF4762A-FE55-4C58-9C82-A36CD8020CC7}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{2026F4A9-622B-47BA-8C5B-C173995E66EE}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel(R) Wireless Connectivity Solutions -> )
FirewallRules: [{875D6C6F-E41E-46B6-A227-6DF97F3F9257}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0F2E4598-77EE-4308-ADE5-DFAA1E505844}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1BAEF3B6-5695-4CC7-876B-E973F769ADC5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2088A705-1768-4313-8E53-248857705F56}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9B3D13B0-803E-441B-874A-5D2FF738A1C5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F27A9AC-2764-499E-A41B-B60075B80F64}] => (Allow) C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{93951AD3-20F2-488B-BF97-360CE5ED0E36}] => (Allow) C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{CBDA1D72-C17C-40AC-8A2B-22B848875F01}] => (Allow) LPort=54925
FirewallRules: [{DE6EBEB0-BDB9-44CD-8FDC-55A9248CBC7B}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{F7E1AB9F-7C18-4171-9F3F-C39ABE4BF6DF}] => (Allow) C:\windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{BD0A0DC3-B7B3-455E-9CAA-E2BF520B0E18}] => (Allow) C:\windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{80E3512A-0341-4522-BFFA-C43A376B97F6}] => (Allow) C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{7FC277EC-5C78-4006-9FBE-B7CFB0B3F4D4}] => (Allow) C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{4DAC619A-150F-4B5D-9453-14FDCA0D4C55}] => (Allow) LPort=54925
FirewallRules: [{4F0DFEAD-CD76-4ED6-8D5D-FC563AC3FBA7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B56A7545-37CF-430D-BCD2-AE96349B2492}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A4A9A9C5-75E1-4CCA-9A2F-91EDABD10290}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C835B8A6-6B4C-4303-89A5-6E13CAC1FA5B}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{5E69526C-1D16-4109-BC61-48E4526B345D}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\airhost.exe => No File
==================== Restore Points =========================
15-07-2020 13:23:34 Windows Update
24-07-2020 19:01:18 Scheduled Checkpoint
28-07-2020 17:05:36 Windows Update
06-08-2020 21:42:42 Scheduled Checkpoint
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/07/2020 04:00:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program firefox.exe version 79.0.0.7506 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 2a64
Start Time: 01d66cf43a27cfa9
Termination Time: 4294967295
Application Path: C:\Program Files\Mozilla Firefox\firefox.exe
Report Id: 6c93f193-ee38-445b-84e3-8d57f22e440e
Faulting package full name:
Faulting package-relative application ID:
Hang type: Top level window is idle
Error: (08/07/2020 01:16:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Henry.local already in use; will try Henry-2.local instead
Error: (08/07/2020 01:16:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister 4 Henry.local. Addr 192.168.0.226
Error: (08/07/2020 01:16:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.226:5353 16 Henry.local. AAAA 2601:019B:C701:5CB0:0000:0000:0000:65D9
Error: (08/07/2020 07:26:56 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (08/07/2020 07:26:56 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (08/07/2020 06:04:28 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Henry.local already in use; will try Henry-2.local instead
Error: (08/07/2020 06:04:28 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister 4 Henry.local. Addr 192.168.0.226
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "Quicken Scheduled Updates.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Billminder.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Quicken Startup.lnk"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "Reflect UI"
HKU\S-1-5-21-282240636-1967671034-2412643917-1001\...\StartupApproved\StartupFolder: => "OneNote 2007 Screen Clipper and Launcher.lnk"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{32F2A922-7239-418F-BB52-6632F0914D30}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7B505800-E917-4363-BA9C-084DAA8DC9B0}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{33F2DEB0-8A16-44F9-B118-ACFB58893F45}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{EAF4762A-FE55-4C58-9C82-A36CD8020CC7}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{2026F4A9-622B-47BA-8C5B-C173995E66EE}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel(R) Wireless Connectivity Solutions -> )
FirewallRules: [{875D6C6F-E41E-46B6-A227-6DF97F3F9257}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0F2E4598-77EE-4308-ADE5-DFAA1E505844}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1BAEF3B6-5695-4CC7-876B-E973F769ADC5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2088A705-1768-4313-8E53-248857705F56}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9B3D13B0-803E-441B-874A-5D2FF738A1C5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F27A9AC-2764-499E-A41B-B60075B80F64}] => (Allow) C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{93951AD3-20F2-488B-BF97-360CE5ED0E36}] => (Allow) C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{CBDA1D72-C17C-40AC-8A2B-22B848875F01}] => (Allow) LPort=54925
FirewallRules: [{DE6EBEB0-BDB9-44CD-8FDC-55A9248CBC7B}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{F7E1AB9F-7C18-4171-9F3F-C39ABE4BF6DF}] => (Allow) C:\windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{BD0A0DC3-B7B3-455E-9CAA-E2BF520B0E18}] => (Allow) C:\windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{80E3512A-0341-4522-BFFA-C43A376B97F6}] => (Allow) C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{7FC277EC-5C78-4006-9FBE-B7CFB0B3F4D4}] => (Allow) C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{4DAC619A-150F-4B5D-9453-14FDCA0D4C55}] => (Allow) LPort=54925
FirewallRules: [{4F0DFEAD-CD76-4ED6-8D5D-FC563AC3FBA7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B56A7545-37CF-430D-BCD2-AE96349B2492}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A4A9A9C5-75E1-4CCA-9A2F-91EDABD10290}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C835B8A6-6B4C-4303-89A5-6E13CAC1FA5B}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{5E69526C-1D16-4109-BC61-48E4526B345D}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\airhost.exe => No File
==================== Restore Points =========================
15-07-2020 13:23:34 Windows Update
24-07-2020 19:01:18 Scheduled Checkpoint
28-07-2020 17:05:36 Windows Update
06-08-2020 21:42:42 Scheduled Checkpoint
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/07/2020 04:00:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program firefox.exe version 79.0.0.7506 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 2a64
Start Time: 01d66cf43a27cfa9
Termination Time: 4294967295
Application Path: C:\Program Files\Mozilla Firefox\firefox.exe
Report Id: 6c93f193-ee38-445b-84e3-8d57f22e440e
Faulting package full name:
Faulting package-relative application ID:
Hang type: Top level window is idle
Error: (08/07/2020 01:16:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Henry.local already in use; will try Henry-2.local instead
Error: (08/07/2020 01:16:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister 4 Henry.local. Addr 192.168.0.226
Error: (08/07/2020 01:16:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.226:5353 16 Henry.local. AAAA 2601:019B:C701:5CB0:0000:0000:0000:65D9
Error: (08/07/2020 07:26:56 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (08/07/2020 07:26:56 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (08/07/2020 06:04:28 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Henry.local already in use; will try Henry-2.local instead
Error: (08/07/2020 06:04:28 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister 4 Henry.local. Addr 192.168.0.226
Nicki
Posts: 210 +0
System errors:
=============
Error: (08/07/2020 01:15:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The mrtRate service failed to start due to the following error:
The system cannot find the file specified.
Error: (08/07/2020 07:26:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0xc19001e1: Feature update to Windows 10, version 2004.
Error: (08/07/2020 07:21:44 AM) (Source: WinRM) (EventID: 10142) (User: )
Description: The WinRM service cannot migrate the listener with Address * and Transport HTTP. A listener that has the same Address and Transport configuration already exists.
Error: (08/07/2020 06:04:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The mrtRate service failed to start due to the following error:
The system cannot find the file specified.
Error: (08/06/2020 08:02:11 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The HitmanPro38CrusaderBoot service terminated with the following service-specific error:
The operation completed successfully.
Error: (08/06/2020 08:01:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The mrtRate service failed to start due to the following error:
The system cannot find the file specified.
Error: (08/06/2020 08:00:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0xc19001e1: Feature update to Windows 10, version 2004.
Error: (08/06/2020 07:59:58 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for DeleteFlag with the following error:
Access is denied.
CodeIntegrity:
===================================
Date: 2020-08-07 16:03:17.681
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-08-07 16:03:17.680
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-08-07 15:46:10.900
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-08-07 15:46:10.899
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-08-07 15:42:16.156
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-07 15:42:16.155
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-07 15:42:15.805
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-07 15:42:15.802
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
=============
Error: (08/07/2020 01:15:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The mrtRate service failed to start due to the following error:
The system cannot find the file specified.
Error: (08/07/2020 07:26:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0xc19001e1: Feature update to Windows 10, version 2004.
Error: (08/07/2020 07:21:44 AM) (Source: WinRM) (EventID: 10142) (User: )
Description: The WinRM service cannot migrate the listener with Address * and Transport HTTP. A listener that has the same Address and Transport configuration already exists.
Error: (08/07/2020 06:04:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The mrtRate service failed to start due to the following error:
The system cannot find the file specified.
Error: (08/06/2020 08:02:11 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The HitmanPro38CrusaderBoot service terminated with the following service-specific error:
The operation completed successfully.
Error: (08/06/2020 08:01:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The mrtRate service failed to start due to the following error:
The system cannot find the file specified.
Error: (08/06/2020 08:00:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0xc19001e1: Feature update to Windows 10, version 2004.
Error: (08/06/2020 07:59:58 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for DeleteFlag with the following error:
Access is denied.
CodeIntegrity:
===================================
Date: 2020-08-07 16:03:17.681
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-08-07 16:03:17.680
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-08-07 15:46:10.900
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-08-07 15:46:10.899
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-08-07 15:42:16.156
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-07 15:42:16.155
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-07 15:42:15.805
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-07 15:42:15.802
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Nicki
Posts: 210 +0
==================== Memory info ===========================
BIOS: Insyde F.22 11/26/2019
Motherboard: HP 850C
Processor: Intel(R) Core(TM) i7-8565U CPU @ 1.80GHz
Percentage of memory in use: 38%
Total physical RAM: 12077.74 MB
Available physical RAM: 7446.81 MB
Total Virtual: 30509.74 MB
Available Virtual: 26154.87 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:930.78 GB) (Free:783.09 GB) NTFS
Drive e: () (Removable) (Total:7.39 GB) (Free:0.01 GB) FAT32
\\?\Volume{17cccd7f-1d41-4416-8c4a-130699692678}\ (Windows RE tools) (Fixed) (Total:0.46 GB) (Free:0.06 GB) NTFS
\\?\Volume{c306a302-556e-4247-b7e7-ffc97f7d7d5e}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 7.4 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
BIOS: Insyde F.22 11/26/2019
Motherboard: HP 850C
Processor: Intel(R) Core(TM) i7-8565U CPU @ 1.80GHz
Percentage of memory in use: 38%
Total physical RAM: 12077.74 MB
Available physical RAM: 7446.81 MB
Total Virtual: 30509.74 MB
Available Virtual: 26154.87 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:930.78 GB) (Free:783.09 GB) NTFS
Drive e: () (Removable) (Total:7.39 GB) (Free:0.01 GB) FAT32
\\?\Volume{17cccd7f-1d41-4416-8c4a-130699692678}\ (Windows RE tools) (Fixed) (Total:0.46 GB) (Free:0.06 GB) NTFS
\\?\Volume{c306a302-556e-4247-b7e7-ffc97f7d7d5e}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 7.4 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Broni
Posts: 56,041 +516
" Curiously there were 7 instances of Firefox open...no idea why. "
This is normal Firefox behavior. As a matter of fact, most browsers operate this way.
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
This is normal Firefox behavior. As a matter of fact, most browsers operate this way.
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
Nicki
Posts: 210 +0
Fix result of Farbar Recovery Scan Tool (x64) Version: 05-08-2020
Ran by Nicki (07-08-2020 17:46:12) Run:2
Running from C:\Users\Nicki\Desktop
Loaded Profiles: Nicki
Boot Mode: Normal
==============================================
fixlist content:
*****************
2019-11-29 13:06 - 2019-11-29 13:06 - 000004608 _____ () C:\Users\Nicki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
FirewallRules: [{C835B8A6-6B4C-4303-89A5-6E13CAC1FA5B}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{5E69526C-1D16-4109-BC61-48E4526B345D}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\airhost.exe => No File
*****************
"C:\Users\Nicki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C835B8A6-6B4C-4303-89A5-6E13CAC1FA5B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5E69526C-1D16-4109-BC61-48E4526B345D}" => not found
==== End of Fixlog 17:46:16 ====
Ran by Nicki (07-08-2020 17:46:12) Run:2
Running from C:\Users\Nicki\Desktop
Loaded Profiles: Nicki
Boot Mode: Normal
==============================================
fixlist content:
*****************
2019-11-29 13:06 - 2019-11-29 13:06 - 000004608 _____ () C:\Users\Nicki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
FirewallRules: [{C835B8A6-6B4C-4303-89A5-6E13CAC1FA5B}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{5E69526C-1D16-4109-BC61-48E4526B345D}] => (Allow) C:\Users\Nicki\AppData\Roaming\Zoom\bin\airhost.exe => No File
*****************
"C:\Users\Nicki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C835B8A6-6B4C-4303-89A5-6E13CAC1FA5B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5E69526C-1D16-4109-BC61-48E4526B345D}" => not found
==== End of Fixlog 17:46:16 ====
Broni
Posts: 56,041 +516
Last scans...
Download Security Check from here or here and save it to your Desktop.
NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
Make sure the following options are checked:
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.
Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
Download Sophos Free Virus Removal Tool and save it to your desktop.
- Double-click SecurityCheck.exe
- Follow the onscreen instructions inside of the black box.
- A Notepad document should open automatically called checkup.txt; please post the contents of that document.
NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run
Make sure the following options are checked:
- Internet Services
- Windows Firewall
- System Restore
- Security Center
- Windows Update
- Windows Defender
- Other Services
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
- Double click on TFC.exe to run the program.
- Click on Start button to begin cleaning process.
- TFC will close all running programs, and it may ask you to restart computer.
- Double click the icon and select Run
- Click Next
- Select I accept the terms in this license agreement, then click Next twice
- Click Install
- Click Finish to launch the program
- Once the virus database has been updated click Start Scanning
- If any threats are found click Details, then View log file... (bottom left hand corner)
- Copy and paste the results in your reply
- Close the Notepad document, close the Threat Details screen, then click Start cleanup
- Click Exit to close the program
Similar threads
Latest posts
-
Nintendo emulator Delta lands on the Apple App Store, now the top free app- Shawn Knight replied
-
Samsung's 2024 TV lineup receives a new 98-inch model for $3,999- Squid Surprise replied
-
The Best 4K Gaming Monitors: OLED Wins- Lew Zealand replied
-
Repair shop reports receiving 200 melted RTX 4090s per month, up from last year- Bruno M. Villar replied
