Solved Please help I have a virus / malware
- Thread starter lac013
- Start date
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2020
Ran by Mike (administrator) on ORANGEMONSTER (29-05-2020 19:31:47)
Running from C:\Users\Mike\Downloads
Loaded Profiles: Mike
Platform: Windows 10 Home Version 1909 18363.836 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(GeoComply USA, Inc. -> GeoComply) C:\Program Files (x86)\GeoComply\PlayerLocationCheck\Application\service.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
(Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\Topping\USB Audio Device Driver\W10_x64\ToppingUsbAudioCpl.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2020-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2018-09-07] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2018-06-04] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409944 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48214752 2020-04-06] (Google LLC -> )
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5417008 2020-05-03] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Topping USB Audio Device Control Panel Autostart.lnk [2019-09-07]
ShortcutTarget: Topping USB Audio Device Control Panel Autostart.lnk -> C:\Program Files\Topping\USB Audio Device Driver\W10_x64\ToppingUsbAudioCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1011ECCF-B6AE-4184-BFEA-595A6D50489B} - System32\Tasks\GeoComply Service Check => "C:\Program Files (x86)\GeoComply/\PlayerLocationCheck\Application\PlayerLocationCheckTask.cmd"
Task: {1B90636D-342E-497D-9B84-20B7987C7275} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {2738BAD4-332C-4C15-9213-9A3257760978} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {31C89F9D-2CA3-4C86-A99F-E86ED87EF1F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {38DDF2D7-AFD3-4ED4-A1BB-01B9422271D3} - System32\Tasks\Uninstaller_SkipUac_Mike => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [6044432 2020-05-07] (IObit Information Technology -> IObit)
Task: {410824AB-145E-4D7C-8AAA-8F7933E55D3D} - System32\Tasks\Software Updater Scheduler => C:\Program Files (x86)\IObit\Software Updater\SUInit.exe [1788176 2019-10-08] (IObit Information Technology -> IObit Software updater) <==== ATTENTION
Task: {42DA51B2-DE75-4664-AE4B-E17F29F5C6C9} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3660232 2020-02-17] (Easeware Technology Limited -> Easeware)
Task: {49F3E40C-2472-4976-90F4-5C2ED464BB4A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {56EDD029-32CA-405C-AF18-4F58BC2DA466} - System32\Tasks\ASC_SkipUac_Mike => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {5AD32624-69B6-4385-9B9D-EAF1C1AC6A11} - System32\Tasks\SU_AutoUpdate => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4178192 2019-10-29] (IObit Information Technology -> IObit)
Task: {5B3F71E5-9A87-4108-A2DF-0384EA443396} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {61002199-A2D0-4331-965D-6EAB93F4F4E7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {63783787-9CDD-43E7-BA10-437C29CBBBF7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {7844188E-C038-4E56-95E9-6BBE619AD4C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8216DD64-8150-4EE2-86E6-6598BDEE522E} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {953021B0-51C2-4D11-B246-67FA1C02ED15} - System32\Tasks\GeoComply Update Task => C:\Program Files (x86)\GeoComply\\PlayerLocationCheck\Update\GeoComplyUpdate.exe [3191272 2020-05-06] (GeoComply USA, Inc. -> GeoComply)
Task: {9A63DD48-E9F4-44A4-9934-CC5F4B393E79} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-03] (Google Inc -> Google Inc.)
Task: {9B85D84F-048E-4D94-883B-E5E2150D6383} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB25E1AB-1CDE-4D4D-8E77-E3EF9FFF1C40} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B8C3AC93-6B06-45E4-B17F-0D00D44B5294} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-03] (Google Inc -> Google Inc.)
Task: {E4C660C6-BF87-40E8-A35B-6BDBC1022AB8} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {E79F4406-223A-47DB-9E1D-3A6B62B25925} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {F1D9FA83-4923-4EFB-B3B3-8FC9F8221A8A} - System32\Tasks\Software Updater SkipUAC(Mike) => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4178192 2019-10-29] (IObit Information Technology -> IObit) <==== ATTENTION
Task: {F6800BA3-2896-40A1-B082-9318BB8F8892} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.29.1
Tcpip\..\Interfaces\{1b62d657-b2e2-488b-840e-b466b1ecddc0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1b62d657-b2e2-488b-840e-b466b1ecddc0}: [DhcpNameServer] 192.168.29.1
Tcpip\..\Interfaces\{d42e0a8c-0701-4b15-8e9a-c6a06067906e}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Internet Explorer:
==================
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2018-09-07] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2018-09-07] (Logitech Inc -> Logitech, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2019-01-24] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default [2020-05-29]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://vev.io; hxxps://www.hotnewhiphop.com
CHR HomePage: Default -> hxxp://yahoo.com/
CHR DefaultSearchURL: Default -> hxxps://www.xfinity.com/stream/favicon.ico?v=1
CHR Extension: (Privacy Pass) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajhmfdgkijocedmfjonnpjfojldioehi [2020-04-25]
CHR Extension: (Live TV) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aoanbhbcmafiabhdaembhjcecpdonnnf [2018-09-15]
CHR Extension: (Docs) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-03]
CHR Extension: (Google Drive) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-21]
CHR Extension: (Xfinity) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\benldnjbfkmhelbenngebjgnkbpeneeb [2019-05-09]
CHR Extension: (YouTube) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-03]
CHR Extension: (Tampermonkey) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-05-24]
CHR Extension: (Adobe Acrobat) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-05-29]
CHR Extension: (Netflix) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppojlglocelodeimnohnlnionkobfln [2019-06-20]
CHR Extension: (Google Docs Offline) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-29]
CHR Extension: (Video Adblocker for Youtube™ Extension) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2020-05-05]
CHR Extension: (Grammarly for Chrome) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-05-29]
CHR Extension: (Fair AdBlocker) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2020-04-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-06-06]
CHR Extension: (Hotspot Shield Free VPN Proxy - Unlimited VPN) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbejmccbhkncgokjcmghpfloaajcffj [2020-05-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-05]
CHR Extension: (Chrome Media Router) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-29]
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-29]
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-29]
CHR HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACS; C:\WINDOWS\SysWOW64\acs.exe [499796 2010-06-01] (Atheros) [File not signed]
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3374160 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3103824 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [305168 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-09-19] (Advanced Micro Devices, Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806352 2019-03-10] (ICEpower a/s -> ICEpower)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2020-05-07] (IObit Information Technology -> IObit)
S3 jswpbapi; C:\Program Files (x86)\TP-LINK\QSS\jswpbapi.exe [265216 2009-09-21] (Wireless) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\TP-LINK\QSS\jswpsapi.exe [360529 2009-09-21] (wireless) [File not signed]
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6933272 2020-03-25] (Malwarebytes Inc -> Malwarebytes)
S3 Media Center 26 Service; C:\Program Files\J River\Media Center 26\JRService.exe [459664 2020-04-24] (JRiver, Inc. -> JRiver, Inc.)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\System32\MixedRealityRuntime.dll [139952 2020-05-13] (Microsoft Windows -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll [105840 2020-05-13] (Microsoft Windows -> Microsoft Corporation)
R2 Player Location Check; C:\Program Files (x86)\GeoComply\//PlayerLocationCheck///Application/service.exe [3141608 2020-05-06] (GeoComply USA, Inc. -> GeoComply)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Ran by Mike (administrator) on ORANGEMONSTER (29-05-2020 19:31:47)
Running from C:\Users\Mike\Downloads
Loaded Profiles: Mike
Platform: Windows 10 Home Version 1909 18363.836 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(GeoComply USA, Inc. -> GeoComply) C:\Program Files (x86)\GeoComply\PlayerLocationCheck\Application\service.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
(Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\Topping\USB Audio Device Driver\W10_x64\ToppingUsbAudioCpl.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2020-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2018-09-07] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2018-06-04] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409944 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48214752 2020-04-06] (Google LLC -> )
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5417008 2020-05-03] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Topping USB Audio Device Control Panel Autostart.lnk [2019-09-07]
ShortcutTarget: Topping USB Audio Device Control Panel Autostart.lnk -> C:\Program Files\Topping\USB Audio Device Driver\W10_x64\ToppingUsbAudioCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1011ECCF-B6AE-4184-BFEA-595A6D50489B} - System32\Tasks\GeoComply Service Check => "C:\Program Files (x86)\GeoComply/\PlayerLocationCheck\Application\PlayerLocationCheckTask.cmd"
Task: {1B90636D-342E-497D-9B84-20B7987C7275} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {2738BAD4-332C-4C15-9213-9A3257760978} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {31C89F9D-2CA3-4C86-A99F-E86ED87EF1F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {38DDF2D7-AFD3-4ED4-A1BB-01B9422271D3} - System32\Tasks\Uninstaller_SkipUac_Mike => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [6044432 2020-05-07] (IObit Information Technology -> IObit)
Task: {410824AB-145E-4D7C-8AAA-8F7933E55D3D} - System32\Tasks\Software Updater Scheduler => C:\Program Files (x86)\IObit\Software Updater\SUInit.exe [1788176 2019-10-08] (IObit Information Technology -> IObit Software updater) <==== ATTENTION
Task: {42DA51B2-DE75-4664-AE4B-E17F29F5C6C9} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3660232 2020-02-17] (Easeware Technology Limited -> Easeware)
Task: {49F3E40C-2472-4976-90F4-5C2ED464BB4A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {56EDD029-32CA-405C-AF18-4F58BC2DA466} - System32\Tasks\ASC_SkipUac_Mike => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {5AD32624-69B6-4385-9B9D-EAF1C1AC6A11} - System32\Tasks\SU_AutoUpdate => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4178192 2019-10-29] (IObit Information Technology -> IObit)
Task: {5B3F71E5-9A87-4108-A2DF-0384EA443396} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {61002199-A2D0-4331-965D-6EAB93F4F4E7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {63783787-9CDD-43E7-BA10-437C29CBBBF7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {7844188E-C038-4E56-95E9-6BBE619AD4C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8216DD64-8150-4EE2-86E6-6598BDEE522E} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {953021B0-51C2-4D11-B246-67FA1C02ED15} - System32\Tasks\GeoComply Update Task => C:\Program Files (x86)\GeoComply\\PlayerLocationCheck\Update\GeoComplyUpdate.exe [3191272 2020-05-06] (GeoComply USA, Inc. -> GeoComply)
Task: {9A63DD48-E9F4-44A4-9934-CC5F4B393E79} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-03] (Google Inc -> Google Inc.)
Task: {9B85D84F-048E-4D94-883B-E5E2150D6383} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB25E1AB-1CDE-4D4D-8E77-E3EF9FFF1C40} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B8C3AC93-6B06-45E4-B17F-0D00D44B5294} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-03] (Google Inc -> Google Inc.)
Task: {E4C660C6-BF87-40E8-A35B-6BDBC1022AB8} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {E79F4406-223A-47DB-9E1D-3A6B62B25925} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {F1D9FA83-4923-4EFB-B3B3-8FC9F8221A8A} - System32\Tasks\Software Updater SkipUAC(Mike) => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4178192 2019-10-29] (IObit Information Technology -> IObit) <==== ATTENTION
Task: {F6800BA3-2896-40A1-B082-9318BB8F8892} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.29.1
Tcpip\..\Interfaces\{1b62d657-b2e2-488b-840e-b466b1ecddc0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1b62d657-b2e2-488b-840e-b466b1ecddc0}: [DhcpNameServer] 192.168.29.1
Tcpip\..\Interfaces\{d42e0a8c-0701-4b15-8e9a-c6a06067906e}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Internet Explorer:
==================
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2018-09-07] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2018-09-07] (Logitech Inc -> Logitech, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2019-01-24] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default [2020-05-29]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://vev.io; hxxps://www.hotnewhiphop.com
CHR HomePage: Default -> hxxp://yahoo.com/
CHR DefaultSearchURL: Default -> hxxps://www.xfinity.com/stream/favicon.ico?v=1
CHR Extension: (Privacy Pass) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajhmfdgkijocedmfjonnpjfojldioehi [2020-04-25]
CHR Extension: (Live TV) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aoanbhbcmafiabhdaembhjcecpdonnnf [2018-09-15]
CHR Extension: (Docs) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-03]
CHR Extension: (Google Drive) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-21]
CHR Extension: (Xfinity) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\benldnjbfkmhelbenngebjgnkbpeneeb [2019-05-09]
CHR Extension: (YouTube) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-03]
CHR Extension: (Tampermonkey) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-05-24]
CHR Extension: (Adobe Acrobat) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-05-29]
CHR Extension: (Netflix) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppojlglocelodeimnohnlnionkobfln [2019-06-20]
CHR Extension: (Google Docs Offline) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-29]
CHR Extension: (Video Adblocker for Youtube™ Extension) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2020-05-05]
CHR Extension: (Grammarly for Chrome) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-05-29]
CHR Extension: (Fair AdBlocker) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2020-04-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-06-06]
CHR Extension: (Hotspot Shield Free VPN Proxy - Unlimited VPN) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbejmccbhkncgokjcmghpfloaajcffj [2020-05-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-05]
CHR Extension: (Chrome Media Router) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-29]
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-29]
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-29]
CHR HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACS; C:\WINDOWS\SysWOW64\acs.exe [499796 2010-06-01] (Atheros) [File not signed]
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3374160 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3103824 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [305168 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-09-19] (Advanced Micro Devices, Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806352 2019-03-10] (ICEpower a/s -> ICEpower)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2020-05-07] (IObit Information Technology -> IObit)
S3 jswpbapi; C:\Program Files (x86)\TP-LINK\QSS\jswpbapi.exe [265216 2009-09-21] (Wireless) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\TP-LINK\QSS\jswpsapi.exe [360529 2009-09-21] (wireless) [File not signed]
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6933272 2020-03-25] (Malwarebytes Inc -> Malwarebytes)
S3 Media Center 26 Service; C:\Program Files\J River\Media Center 26\JRService.exe [459664 2020-04-24] (JRiver, Inc. -> JRiver, Inc.)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\System32\MixedRealityRuntime.dll [139952 2020-05-13] (Microsoft Windows -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll [105840 2020-05-13] (Microsoft Windows -> Microsoft Corporation)
R2 Player Location Check; C:\Program Files (x86)\GeoComply\//PlayerLocationCheck///Application/service.exe [3141608 2020-05-06] (GeoComply USA, Inc. -> GeoComply)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdide64; C:\WINDOWS\System32\drivers\amdide64.sys [13848 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices Inc.)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21527568 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [493584 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [93240 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [33336 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [60104 2014-09-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-11-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-03-26] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-10] (Microsoft Corporation) [File not signed]
R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2020-05-29] (CPUID -> CPUID)
S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50136 2018-04-12] (ESET, spol. s r.o. -> ESET)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-06-04] (Martin Malik - REALiX -> REALiX(tm))
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [44104 2019-11-18] (IObit Information Technology -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37328 2019-07-30] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [49800 2020-05-07] (IObit Information Technology -> IObit)
S3 jrvad_service; C:\WINDOWS\system32\drivers\JRiverWDMDriver.sys [48112 2019-01-10] (JRiver, Inc. -> JRiver, Inc.)
S3 JSWSCIMD; C:\WINDOWS\system32\DRIVERS\jswscimdx.sys [75264 2009-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-05-29] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-05-29] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 ToppingUsbAudio; C:\WINDOWS\System32\drivers\ToppingUsbAudio.sys [374824 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 ToppingUsbAudioks; C:\WINDOWS\System32\drivers\ToppingUsbAudioks.sys [53800 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-05-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [394680 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-29 19:31 - 2020-05-29 19:32 - 000027903 _____ C:\Users\Mike\Downloads\FRST.txt
2020-05-29 19:30 - 2020-05-29 19:32 - 000000000 ____D C:\FRST
2020-05-29 19:30 - 2020-05-29 19:30 - 002289152 _____ (Farbar) C:\Users\Mike\Downloads\FRST64.exe
2020-05-29 19:11 - 2020-05-29 19:11 - 001295576 _____ (Google LLC) C:\Users\Mike\Downloads\ChromeSetup.exe
2020-05-29 19:11 - 2020-05-29 19:11 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-29 19:11 - 2020-05-29 19:11 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-29 19:11 - 2020-05-29 19:11 - 000002336 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-29 19:00 - 2020-05-29 19:00 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-05-29 19:00 - 2020-05-29 19:00 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-05-29 18:37 - 2020-05-29 18:37 - 000003326 _____ C:\WINDOWS\system32\Tasks\GeoComply Service Check
2020-05-29 17:44 - 2020-05-29 17:45 - 000000000 ____D C:\Users\Mike\Desktop\Defending Jacob
2020-05-29 17:03 - 2020-05-29 17:03 - 000000802 _____ C:\Users\Mike\Downloads\claims.csv
2020-05-23 17:00 - 2020-05-23 17:00 - 000002144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-21 17:46 - 2020-05-21 17:46 - 000018487 _____ C:\Users\Mike\Downloads\DEPOSIT FORM AUDI.pdf
2020-05-21 17:07 - 2020-05-21 17:07 - 000569874 _____ C:\Users\Mike\Downloads\Monroney_WAUB4AF40JA231325.pdf
2020-05-21 16:18 - 2020-05-21 16:18 - 000126499 _____ C:\Users\Mike\Downloads\399729.pdf
2020-05-19 08:05 - 2020-05-19 08:05 - 000525420 _____ C:\Users\Mike\Downloads\Monroney_WAUB4AF43JA025724.pdf
2020-05-15 17:54 - 2020-05-15 17:57 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\Mozilla
2020-05-15 17:53 - 2020-05-15 17:53 - 068222024 _____ C:\Users\Mike\Downloads\torbrowser-install-win64-9.0.10_en-US.exe
2020-05-14 18:03 - 2020-05-14 18:03 - 000003786 _____ C:\Users\Mike\Downloads\pastedImage2
2020-05-14 17:58 - 2020-05-14 17:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-05-14 17:57 - 2020-05-14 17:57 - 000296752 _____ C:\Users\Mike\Downloads\Inventory Control Sheet_Houston,TX-3L-USA.pdf
2020-05-13 07:14 - 2020-05-13 07:14 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 022638592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 019851264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 014819328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 009929528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007822888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007267840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007011840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006710272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006525936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006291456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006082808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005945856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005757872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005340568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005098352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 003822080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003747328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003513856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002769000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-05-13 07:14 - 2020-05-13 07:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-05-13 07:14 - 2020-05-13 07:14 - 002736640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002259664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002073176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001990576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001975808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001952872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001934824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001737216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001686016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001665720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001654952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001646552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001637376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001559040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001556200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001510912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001461760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001417760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001370112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001306424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001306112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001288648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001214264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001184256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001178608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001034752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001011712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000975360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000943640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000911872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000896000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000894016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000879064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000852992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000847872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000847168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000843576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000801832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000792808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000778552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000777840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000748544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000716800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000693672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000683848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000683288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000676072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000673296 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000672944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000655360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000602224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000594472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000592944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000581544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000568136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000543824 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000540200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000539184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000524208 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000501200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-05-13 07:14 - 2020-05-13 07:14 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000466344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000441584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000405424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000375520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000345016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000325432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000310928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000301064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000299064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TaskApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbroker.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000262848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000260328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchangeHost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000245336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdide64; C:\WINDOWS\System32\drivers\amdide64.sys [13848 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices Inc.)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21527568 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [493584 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [93240 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [33336 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [60104 2014-09-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-11-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-03-26] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-10] (Microsoft Corporation) [File not signed]
R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2020-05-29] (CPUID -> CPUID)
S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50136 2018-04-12] (ESET, spol. s r.o. -> ESET)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-06-04] (Martin Malik - REALiX -> REALiX(tm))
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [44104 2019-11-18] (IObit Information Technology -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37328 2019-07-30] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [49800 2020-05-07] (IObit Information Technology -> IObit)
S3 jrvad_service; C:\WINDOWS\system32\drivers\JRiverWDMDriver.sys [48112 2019-01-10] (JRiver, Inc. -> JRiver, Inc.)
S3 JSWSCIMD; C:\WINDOWS\system32\DRIVERS\jswscimdx.sys [75264 2009-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-05-29] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-05-29] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 ToppingUsbAudio; C:\WINDOWS\System32\drivers\ToppingUsbAudio.sys [374824 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 ToppingUsbAudioks; C:\WINDOWS\System32\drivers\ToppingUsbAudioks.sys [53800 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-05-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [394680 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-29 19:31 - 2020-05-29 19:32 - 000027903 _____ C:\Users\Mike\Downloads\FRST.txt
2020-05-29 19:30 - 2020-05-29 19:32 - 000000000 ____D C:\FRST
2020-05-29 19:30 - 2020-05-29 19:30 - 002289152 _____ (Farbar) C:\Users\Mike\Downloads\FRST64.exe
2020-05-29 19:11 - 2020-05-29 19:11 - 001295576 _____ (Google LLC) C:\Users\Mike\Downloads\ChromeSetup.exe
2020-05-29 19:11 - 2020-05-29 19:11 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-29 19:11 - 2020-05-29 19:11 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-29 19:11 - 2020-05-29 19:11 - 000002336 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-29 19:00 - 2020-05-29 19:00 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-05-29 19:00 - 2020-05-29 19:00 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-05-29 18:37 - 2020-05-29 18:37 - 000003326 _____ C:\WINDOWS\system32\Tasks\GeoComply Service Check
2020-05-29 17:44 - 2020-05-29 17:45 - 000000000 ____D C:\Users\Mike\Desktop\Defending Jacob
2020-05-29 17:03 - 2020-05-29 17:03 - 000000802 _____ C:\Users\Mike\Downloads\claims.csv
2020-05-23 17:00 - 2020-05-23 17:00 - 000002144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-21 17:46 - 2020-05-21 17:46 - 000018487 _____ C:\Users\Mike\Downloads\DEPOSIT FORM AUDI.pdf
2020-05-21 17:07 - 2020-05-21 17:07 - 000569874 _____ C:\Users\Mike\Downloads\Monroney_WAUB4AF40JA231325.pdf
2020-05-21 16:18 - 2020-05-21 16:18 - 000126499 _____ C:\Users\Mike\Downloads\399729.pdf
2020-05-19 08:05 - 2020-05-19 08:05 - 000525420 _____ C:\Users\Mike\Downloads\Monroney_WAUB4AF43JA025724.pdf
2020-05-15 17:54 - 2020-05-15 17:57 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\Mozilla
2020-05-15 17:53 - 2020-05-15 17:53 - 068222024 _____ C:\Users\Mike\Downloads\torbrowser-install-win64-9.0.10_en-US.exe
2020-05-14 18:03 - 2020-05-14 18:03 - 000003786 _____ C:\Users\Mike\Downloads\pastedImage2
2020-05-14 17:58 - 2020-05-14 17:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-05-14 17:57 - 2020-05-14 17:57 - 000296752 _____ C:\Users\Mike\Downloads\Inventory Control Sheet_Houston,TX-3L-USA.pdf
2020-05-13 07:14 - 2020-05-13 07:14 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 022638592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 019851264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 014819328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 009929528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007822888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007267840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007011840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006710272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006525936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006291456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006082808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005945856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005757872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005340568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005098352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 003822080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003747328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003513856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002769000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-05-13 07:14 - 2020-05-13 07:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-05-13 07:14 - 2020-05-13 07:14 - 002736640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002259664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002073176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001990576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001975808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001952872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001934824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001737216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001686016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001665720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001654952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001646552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001637376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001559040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001556200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001510912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001461760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001417760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001370112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001306424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001306112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001288648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001214264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001184256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001178608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001034752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001011712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000975360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000943640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000911872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000896000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000894016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000879064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000852992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000847872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000847168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000843576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000801832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000792808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000778552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000777840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000748544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000716800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000693672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000683848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000683288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000676072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000673296 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000672944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000655360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000602224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000594472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000592944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000581544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000568136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000543824 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000540200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000539184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000524208 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000501200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-05-13 07:14 - 2020-05-13 07:14 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000466344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000441584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000405424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000375520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000345016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000325432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000310928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000301064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000299064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TaskApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbroker.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000262848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000260328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchangeHost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000245336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000405424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000375520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000345016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000325432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000310928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000301064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000299064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TaskApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbroker.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000262848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000260328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchangeHost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000245336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-05-13 07:14 - 2020-05-13 07:14 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000197432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-05-13 07:14 - 2020-05-13 07:14 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsentUxClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Haptics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000132712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000124504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\socialapis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeopleAPIs.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSSessionUX.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbussdapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Printers.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coloradapterclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000058696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ffbroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSa.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSa.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSaProxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSaProxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\localui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\plasrv.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-05-13 07:13 - 2020-05-13 07:14 - 003807232 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 017791488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 009339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007257816 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006435328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006232568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006168576 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 005280192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 004624880 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 004565456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003655680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003581752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 003371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002854400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 002504440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002354688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002072576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001943040 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001766400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001745208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001505592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001385176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001373184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001336832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001333248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001270784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001263616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001150784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001085752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001053696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001027816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001007928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000999616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000979264 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000957056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000945192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000916768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000891544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000859944 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000819696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000768000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000752584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000742200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000706544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000685368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000637480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2020-05-13 07:13 - 2020-05-13 07:13 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000547992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000405424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000375520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000345016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000325432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000310928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000301064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000299064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TaskApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbroker.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000262848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000260328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchangeHost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000245336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-05-13 07:14 - 2020-05-13 07:14 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000197432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-05-13 07:14 - 2020-05-13 07:14 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsentUxClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Haptics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000132712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000124504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\socialapis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeopleAPIs.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSSessionUX.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbussdapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Printers.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coloradapterclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000058696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ffbroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSa.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSa.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSaProxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSaProxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\localui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\plasrv.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-05-13 07:13 - 2020-05-13 07:14 - 003807232 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 017791488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 009339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007257816 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006435328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006232568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006168576 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 005280192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 004624880 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 004565456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003655680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003581752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 003371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002854400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 002504440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002354688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002072576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001943040 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001766400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001745208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001505592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001385176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001373184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001336832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001333248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001270784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001263616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001150784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001085752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001053696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001027816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001007928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000999616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000979264 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000957056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000945192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000916768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000891544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000859944 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000819696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000768000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000752584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000742200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000706544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000685368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000637480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2020-05-13 07:13 - 2020-05-13 07:13 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000547992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000088280 _____ (Microsoft Corporation) C:\WINDOWS\system32\coloradapterclient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbussdapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000069704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000060432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelineprxy.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsUsbGDCoInstaller.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbGD.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveTask.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-05-11 19:23 - 2020-05-11 19:23 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-05-10 13:30 - 2020-05-10 13:30 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2020-05-10 13:28 - 2020-05-10 13:28 - 001596296 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPO64.dll
2020-05-10 13:28 - 2020-05-10 13:28 - 000487576 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPOUI64.dll
2020-05-10 13:27 - 2020-05-10 13:28 - 001287728 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2020-05-10 13:27 - 2020-05-10 13:27 - 001611064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2020-05-10 13:23 - 2020-05-10 13:24 - 000406560 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2020-05-10 13:23 - 2020-05-10 13:23 - 001544360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2020-05-10 13:23 - 2020-05-10 13:23 - 001259832 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2020-05-10 13:22 - 2020-05-10 13:23 - 001372496 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000416608 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000203944 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000191064 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000191032 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000179704 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000154464 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2020-05-10 13:17 - 2020-05-10 13:17 - 001159312 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2020-05-10 13:17 - 2020-05-10 13:17 - 000378488 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2020-05-10 13:15 - 2020-05-10 13:17 - 005347096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2020-05-10 13:15 - 2020-05-10 13:15 - 002444816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2020-05-10 13:14 - 2020-05-10 13:15 - 001078576 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-05-10 13:14 - 2020-05-10 13:14 - 001180792 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-05-10 13:14 - 2020-05-10 13:14 - 001061464 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-05-10 13:13 - 2020-05-10 13:14 - 001386680 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-05-10 13:13 - 2020-05-10 13:13 - 001396840 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-05-10 13:13 - 2020-05-10 13:13 - 001294192 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-05-10 13:12 - 2020-05-10 13:13 - 000604688 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2020-05-10 13:10 - 2020-05-10 13:12 - 006270296 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 001965264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 000367712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 000316080 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2020-05-10 13:09 - 2020-05-10 13:10 - 003277000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2020-05-10 13:09 - 2020-05-10 13:09 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-05-10 13:09 - 2020-05-10 13:09 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-05-10 13:08 - 2020-05-10 13:09 - 001435032 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-05-10 13:08 - 2020-05-10 13:08 - 000467048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-05-10 13:08 - 2020-05-10 13:08 - 000381304 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-05-10 13:06 - 2020-05-10 13:07 - 003306712 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2020-05-10 13:06 - 2020-05-10 13:06 - 002197872 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2020-05-10 13:04 - 2020-05-10 13:06 - 007101848 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2020-05-10 13:04 - 2020-05-10 13:04 - 000333112 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2020-05-10 13:03 - 2020-05-10 13:04 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000692056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000118696 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000105408 _____ C:\WINDOWS\system32\audioLibVc.dll
2020-05-10 13:02 - 2020-05-10 13:03 - 001337536 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000852032 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000447072 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000122424 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-05-10 12:59 - 2020-05-10 13:00 - 003168280 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-05-10 12:58 - 2020-05-10 12:59 - 003445640 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-05-10 12:58 - 2020-05-10 12:58 - 000266656 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-05-10 12:57 - 2020-05-10 12:58 - 001110072 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-05-10 12:46 - 2020-05-10 12:57 - 038636585 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-05-10 12:46 - 2020-05-10 12:46 - 000075432 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2020-05-10 12:45 - 2020-05-10 12:46 - 000873352 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2020-05-10 12:45 - 2020-05-10 12:45 - 001382128 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2020-05-10 12:45 - 2020-05-10 12:45 - 000158592 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2020-05-10 12:37 - 2020-05-10 12:37 - 000139648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2020-05-10 12:34 - 2020-05-10 12:37 - 007178576 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000964920 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000453168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000157240 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000090064 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2020-05-10 12:33 - 2020-05-10 12:34 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2020-05-10 12:33 - 2020-05-10 12:33 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2020-05-10 12:33 - 2020-05-10 12:33 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:33 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:32 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:32 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2020-05-10 12:31 - 2020-05-10 12:32 - 000511776 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000392768 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000261344 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000260320 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000220280 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000116432 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000093800 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000090808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000088216 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000083520 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 001353216 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 000192872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-05-10 12:28 - 2020-05-10 12:29 - 003353720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000541008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000230600 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000218168 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000174832 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-05-10 12:17 - 2020-05-10 12:18 - 002930256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-05-10 12:17 - 2020-05-10 12:17 - 000023800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2020-05-10 12:16 - 2020-05-10 12:17 - 003159880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-05-10 12:15 - 2020-05-10 12:16 - 003769296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-05-10 12:12 - 2020-05-10 12:12 - 002510856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2020-05-10 12:10 - 2020-05-10 12:10 - 093069312 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 008523776 _____ C:\WINDOWS\system32\config\drivers.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000933888 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000040960 _____ C:\WINDOWS\system32\config\SAM.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000002134 _____ C:\Users\Mike\Desktop\JRiver Media Center 26.lnk
2020-05-10 12:01 - 2020-05-10 12:01 - 001162840 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2020-05-10 11:58 - 2020-05-10 11:58 - 000000040 ____H C:\0858FA365174
2020-05-10 11:53 - 2020-04-24 14:37 - 000651664 ____N (JRiver, Inc.) C:\WINDOWS\SysWOW64\MC26.exe
2020-05-10 11:53 - 2020-04-24 14:37 - 000651664 ____N (JRiver, Inc.) C:\WINDOWS\system32\MC26.exe
2020-05-10 11:04 - 2020-05-10 11:04 - 000000000 ___HD C:\$SysReset
2020-05-10 10:42 - 2020-05-10 12:28 - 072520816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-05-10 10:31 - 2020-05-10 10:32 - 003677176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-05-10 10:30 - 2020-05-10 10:30 - 000003106 _____ C:\WINDOWS\system32\Tasks\ASC_PerformanceMonitor
2020-05-10 10:29 - 2020-05-10 10:29 - 000002894 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_Mike
2020-05-10 10:28 - 2020-05-10 10:30 - 007281960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-05-10 10:27 - 2020-05-10 10:28 - 050090832 _____ (IObit ) C:\Users\Mike\Downloads\advanced-systemcare-setup.exe
2020-05-10 10:15 - 2020-05-10 11:52 - 000000432 _____ C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job
2020-05-10 10:15 - 2020-05-10 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2020-05-10 10:15 - 2020-05-10 10:15 - 005084576 _____ (Easeware ) C:\Users\Mike\Downloads\DriverEasy_Setup.exe
2020-05-10 10:15 - 2020-05-10 10:15 - 000003904 _____ C:\WINDOWS\system32\Tasks\Driver Easy Scheduled Scan
2020-05-10 10:15 - 2020-05-10 10:15 - 000001016 _____ C:\Users\Public\Desktop\Driver Easy.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000001016 _____ C:\ProgramData\Desktop\Driver Easy.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000000745 _____ C:\Users\Mike\Documents\Downloads - Shortcut.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Easeware
2020-05-10 10:15 - 2020-05-10 10:15 - 000000000 ____D C:\Program Files\Easeware
2020-05-10 10:11 - 2020-05-10 10:11 - 000002946 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_Mike
2020-05-10 10:11 - 2020-05-10 10:11 - 000001434 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2020-05-10 10:11 - 2020-05-10 10:11 - 000001294 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2020-05-10 10:11 - 2020-05-10 10:11 - 000001294 _____ C:\ProgramData\Desktop\IObit Uninstaller.lnk
2020-05-10 10:09 - 2020-05-10 10:10 - 022303256 _____ (IObit ) C:\Users\Mike\Downloads\iobituninstaller.exe
2020-05-06 20:37 - 2020-05-06 20:37 - 000003794 _____ C:\WINDOWS\system32\Tasks\GeoComply Update Task
2020-05-06 15:37 - 2020-05-06 15:38 - 000000000 ____D C:\ProgramData\GeoComply
2020-05-06 15:37 - 2020-05-06 15:37 - 001292776 _____ (GeoComply) C:\Users\Mike\Downloads\Parx PA Player Location Check.exe
2020-05-06 15:37 - 2020-05-06 15:37 - 000000000 ____D C:\Program Files (x86)\GeoComply
2020-05-05 14:21 - 2020-05-05 14:21 - 000001992 _____ C:\Users\Mike\Desktop\TIDAL.lnk
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-29 21:58 - 2018-06-05 02:57 - 000000000 ____D C:\Users\Mike\AppData\Roaming\qBittorrent
2020-05-29 21:58 - 2018-06-03 19:42 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\IObit
2020-05-29 21:58 - 2018-06-03 19:42 - 000000000 ____D C:\ProgramData\ProductData
2020-05-29 21:58 - 2018-06-03 19:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2020-05-29 21:58 - 2018-06-03 19:41 - 000000000 ____D C:\Users\Mike\AppData\Roaming\IObit
2020-05-29 21:58 - 2018-06-03 19:41 - 000000000 ____D C:\ProgramData\IObit
2020-05-29 21:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\registration
2020-05-29 19:23 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-29 18:27 - 2019-06-21 08:14 - 000795992 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-05-29 18:27 - 2019-03-19 00:50 - 000000000 ____D C:\WINDOWS\INF
2020-05-29 18:23 - 2019-06-21 08:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-29 18:23 - 2019-03-19 00:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-05-29 18:23 - 2018-06-03 20:06 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-05-29 18:03 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-29 18:03 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-29 18:03 - 2018-06-03 00:52 - 000000000 ____D C:\Users\Mike\AppData\Local\D3DSCache
2020-05-29 18:01 - 2019-06-21 08:13 - 000004162 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6A2DFD75-AC50-44A4-83F4-5F8808EEB42D}
2020-05-29 18:01 - 2019-03-19 00:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-29 17:58 - 2019-06-21 08:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-29 17:58 - 2019-06-19 17:31 - 000000000 ____D C:\Users\Mike
2020-05-28 20:20 - 2019-06-19 04:09 - 000000000 ____D C:\Program Files\UNP
2020-05-27 17:00 - 2019-11-12 19:42 - 000003438 _____ C:\WINDOWS\system32\Tasks\SU_AutoUpdate
2020-05-26 07:34 - 2018-07-20 22:59 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Kodi
2020-05-17 14:37 - 2019-06-02 16:23 - 000000000 ____D C:\Users\Mike\AppData\Roaming\TIDAL
2020-05-17 08:50 - 2018-07-09 15:26 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-14 17:56 - 2018-06-03 00:14 - 000000000 ____D C:\Users\Mike\AppData\Local\Packages
2020-05-13 08:57 - 2018-06-03 00:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-05-13 08:57 - 2018-06-03 00:14 - 000000000 ___RD C:\Users\Mike\3D Objects
2020-05-13 08:56 - 2019-06-21 08:06 - 000434472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\TextInput
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\PerfLogs
2020-05-13 07:21 - 2018-06-03 17:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-05-13 07:18 - 2018-06-03 17:23 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-05-13 07:13 - 2019-06-21 08:10 - 002874880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-05-12 19:26 - 2019-10-01 22:54 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-05-12 19:26 - 2019-10-01 22:54 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\system32\DAX3
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-05-10 12:11 - 2020-02-27 23:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2020-05-10 11:59 - 2018-08-15 08:18 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\Adobe
2020-05-10 11:58 - 2018-08-20 09:33 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Adobe
2020-05-10 11:51 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-05-10 11:51 - 2018-07-14 21:02 - 000000000 ____D C:\Program Files (x86)\Steinberg
2020-05-10 11:32 - 2018-06-03 04:32 - 000000000 ____D C:\Program Files\J River
2020-05-10 10:36 - 2019-06-19 16:29 - 000000000 ___DC C:\WINDOWS\Panther
2020-05-10 10:29 - 2018-06-03 19:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\Program Files\WinRAR
2020-05-10 10:11 - 2019-11-12 19:41 - 000002199 _____ C:\Users\Public\Desktop\IObit Software Updater.lnk
2020-05-10 10:11 - 2019-11-12 19:41 - 000002199 _____ C:\ProgramData\Desktop\IObit Software Updater.lnk
2020-05-05 14:21 - 2019-06-02 16:23 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TIDAL
2020-05-04 16:35 - 2018-07-10 18:59 - 000000000 ____D C:\ProgramData\Packages
2020-05-01 09:30 - 2019-03-19 00:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-05-01 03:23 - 2018-06-03 00:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
==================== Files in the root of some directories ========
2018-08-20 10:05 - 2018-08-20 10:05 - 000000033 _____ () C:\Users\Mike\AppData\Roaming\AdobeWLCMCache.dat
2018-08-15 17:28 - 2018-08-15 17:28 - 000000028 _____ () C:\Users\Mike\AppData\Roaming\kulerdata.json
2018-09-27 01:46 - 2020-05-10 11:58 - 000001025 _____ () C:\Users\Mike\AppData\Local\oobelibMkey.log
2020-03-26 15:12 - 2020-03-26 15:14 - 000007604 _____ () C:\Users\Mike\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
2020-05-13 07:13 - 2020-05-13 07:13 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000088280 _____ (Microsoft Corporation) C:\WINDOWS\system32\coloradapterclient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbussdapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000069704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000060432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelineprxy.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsUsbGDCoInstaller.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbGD.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveTask.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-05-11 19:23 - 2020-05-11 19:23 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-05-10 13:30 - 2020-05-10 13:30 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2020-05-10 13:28 - 2020-05-10 13:28 - 001596296 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPO64.dll
2020-05-10 13:28 - 2020-05-10 13:28 - 000487576 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPOUI64.dll
2020-05-10 13:27 - 2020-05-10 13:28 - 001287728 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2020-05-10 13:27 - 2020-05-10 13:27 - 001611064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2020-05-10 13:23 - 2020-05-10 13:24 - 000406560 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2020-05-10 13:23 - 2020-05-10 13:23 - 001544360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2020-05-10 13:23 - 2020-05-10 13:23 - 001259832 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2020-05-10 13:22 - 2020-05-10 13:23 - 001372496 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000416608 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000203944 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000191064 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000191032 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000179704 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000154464 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2020-05-10 13:17 - 2020-05-10 13:17 - 001159312 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2020-05-10 13:17 - 2020-05-10 13:17 - 000378488 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2020-05-10 13:15 - 2020-05-10 13:17 - 005347096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2020-05-10 13:15 - 2020-05-10 13:15 - 002444816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2020-05-10 13:14 - 2020-05-10 13:15 - 001078576 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-05-10 13:14 - 2020-05-10 13:14 - 001180792 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-05-10 13:14 - 2020-05-10 13:14 - 001061464 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-05-10 13:13 - 2020-05-10 13:14 - 001386680 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-05-10 13:13 - 2020-05-10 13:13 - 001396840 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-05-10 13:13 - 2020-05-10 13:13 - 001294192 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-05-10 13:12 - 2020-05-10 13:13 - 000604688 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2020-05-10 13:10 - 2020-05-10 13:12 - 006270296 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 001965264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 000367712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 000316080 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2020-05-10 13:09 - 2020-05-10 13:10 - 003277000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2020-05-10 13:09 - 2020-05-10 13:09 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-05-10 13:09 - 2020-05-10 13:09 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-05-10 13:08 - 2020-05-10 13:09 - 001435032 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-05-10 13:08 - 2020-05-10 13:08 - 000467048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-05-10 13:08 - 2020-05-10 13:08 - 000381304 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-05-10 13:06 - 2020-05-10 13:07 - 003306712 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2020-05-10 13:06 - 2020-05-10 13:06 - 002197872 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2020-05-10 13:04 - 2020-05-10 13:06 - 007101848 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2020-05-10 13:04 - 2020-05-10 13:04 - 000333112 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2020-05-10 13:03 - 2020-05-10 13:04 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000692056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000118696 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000105408 _____ C:\WINDOWS\system32\audioLibVc.dll
2020-05-10 13:02 - 2020-05-10 13:03 - 001337536 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000852032 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000447072 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000122424 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-05-10 12:59 - 2020-05-10 13:00 - 003168280 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-05-10 12:58 - 2020-05-10 12:59 - 003445640 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-05-10 12:58 - 2020-05-10 12:58 - 000266656 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-05-10 12:57 - 2020-05-10 12:58 - 001110072 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-05-10 12:46 - 2020-05-10 12:57 - 038636585 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-05-10 12:46 - 2020-05-10 12:46 - 000075432 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2020-05-10 12:45 - 2020-05-10 12:46 - 000873352 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2020-05-10 12:45 - 2020-05-10 12:45 - 001382128 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2020-05-10 12:45 - 2020-05-10 12:45 - 000158592 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2020-05-10 12:37 - 2020-05-10 12:37 - 000139648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2020-05-10 12:34 - 2020-05-10 12:37 - 007178576 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000964920 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000453168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000157240 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000090064 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2020-05-10 12:33 - 2020-05-10 12:34 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2020-05-10 12:33 - 2020-05-10 12:33 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2020-05-10 12:33 - 2020-05-10 12:33 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:33 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:32 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:32 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2020-05-10 12:31 - 2020-05-10 12:32 - 000511776 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000392768 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000261344 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000260320 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000220280 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000116432 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000093800 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000090808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000088216 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000083520 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 001353216 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 000192872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-05-10 12:28 - 2020-05-10 12:29 - 003353720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000541008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000230600 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000218168 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000174832 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-05-10 12:17 - 2020-05-10 12:18 - 002930256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-05-10 12:17 - 2020-05-10 12:17 - 000023800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2020-05-10 12:16 - 2020-05-10 12:17 - 003159880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-05-10 12:15 - 2020-05-10 12:16 - 003769296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-05-10 12:12 - 2020-05-10 12:12 - 002510856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2020-05-10 12:10 - 2020-05-10 12:10 - 093069312 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 008523776 _____ C:\WINDOWS\system32\config\drivers.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000933888 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000040960 _____ C:\WINDOWS\system32\config\SAM.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000002134 _____ C:\Users\Mike\Desktop\JRiver Media Center 26.lnk
2020-05-10 12:01 - 2020-05-10 12:01 - 001162840 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2020-05-10 11:58 - 2020-05-10 11:58 - 000000040 ____H C:\0858FA365174
2020-05-10 11:53 - 2020-04-24 14:37 - 000651664 ____N (JRiver, Inc.) C:\WINDOWS\SysWOW64\MC26.exe
2020-05-10 11:53 - 2020-04-24 14:37 - 000651664 ____N (JRiver, Inc.) C:\WINDOWS\system32\MC26.exe
2020-05-10 11:04 - 2020-05-10 11:04 - 000000000 ___HD C:\$SysReset
2020-05-10 10:42 - 2020-05-10 12:28 - 072520816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-05-10 10:31 - 2020-05-10 10:32 - 003677176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-05-10 10:30 - 2020-05-10 10:30 - 000003106 _____ C:\WINDOWS\system32\Tasks\ASC_PerformanceMonitor
2020-05-10 10:29 - 2020-05-10 10:29 - 000002894 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_Mike
2020-05-10 10:28 - 2020-05-10 10:30 - 007281960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-05-10 10:27 - 2020-05-10 10:28 - 050090832 _____ (IObit ) C:\Users\Mike\Downloads\advanced-systemcare-setup.exe
2020-05-10 10:15 - 2020-05-10 11:52 - 000000432 _____ C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job
2020-05-10 10:15 - 2020-05-10 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2020-05-10 10:15 - 2020-05-10 10:15 - 005084576 _____ (Easeware ) C:\Users\Mike\Downloads\DriverEasy_Setup.exe
2020-05-10 10:15 - 2020-05-10 10:15 - 000003904 _____ C:\WINDOWS\system32\Tasks\Driver Easy Scheduled Scan
2020-05-10 10:15 - 2020-05-10 10:15 - 000001016 _____ C:\Users\Public\Desktop\Driver Easy.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000001016 _____ C:\ProgramData\Desktop\Driver Easy.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000000745 _____ C:\Users\Mike\Documents\Downloads - Shortcut.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Easeware
2020-05-10 10:15 - 2020-05-10 10:15 - 000000000 ____D C:\Program Files\Easeware
2020-05-10 10:11 - 2020-05-10 10:11 - 000002946 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_Mike
2020-05-10 10:11 - 2020-05-10 10:11 - 000001434 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2020-05-10 10:11 - 2020-05-10 10:11 - 000001294 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2020-05-10 10:11 - 2020-05-10 10:11 - 000001294 _____ C:\ProgramData\Desktop\IObit Uninstaller.lnk
2020-05-10 10:09 - 2020-05-10 10:10 - 022303256 _____ (IObit ) C:\Users\Mike\Downloads\iobituninstaller.exe
2020-05-06 20:37 - 2020-05-06 20:37 - 000003794 _____ C:\WINDOWS\system32\Tasks\GeoComply Update Task
2020-05-06 15:37 - 2020-05-06 15:38 - 000000000 ____D C:\ProgramData\GeoComply
2020-05-06 15:37 - 2020-05-06 15:37 - 001292776 _____ (GeoComply) C:\Users\Mike\Downloads\Parx PA Player Location Check.exe
2020-05-06 15:37 - 2020-05-06 15:37 - 000000000 ____D C:\Program Files (x86)\GeoComply
2020-05-05 14:21 - 2020-05-05 14:21 - 000001992 _____ C:\Users\Mike\Desktop\TIDAL.lnk
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-29 21:58 - 2018-06-05 02:57 - 000000000 ____D C:\Users\Mike\AppData\Roaming\qBittorrent
2020-05-29 21:58 - 2018-06-03 19:42 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\IObit
2020-05-29 21:58 - 2018-06-03 19:42 - 000000000 ____D C:\ProgramData\ProductData
2020-05-29 21:58 - 2018-06-03 19:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2020-05-29 21:58 - 2018-06-03 19:41 - 000000000 ____D C:\Users\Mike\AppData\Roaming\IObit
2020-05-29 21:58 - 2018-06-03 19:41 - 000000000 ____D C:\ProgramData\IObit
2020-05-29 21:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\registration
2020-05-29 19:23 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-29 18:27 - 2019-06-21 08:14 - 000795992 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-05-29 18:27 - 2019-03-19 00:50 - 000000000 ____D C:\WINDOWS\INF
2020-05-29 18:23 - 2019-06-21 08:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-29 18:23 - 2019-03-19 00:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-05-29 18:23 - 2018-06-03 20:06 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-05-29 18:03 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-29 18:03 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-29 18:03 - 2018-06-03 00:52 - 000000000 ____D C:\Users\Mike\AppData\Local\D3DSCache
2020-05-29 18:01 - 2019-06-21 08:13 - 000004162 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6A2DFD75-AC50-44A4-83F4-5F8808EEB42D}
2020-05-29 18:01 - 2019-03-19 00:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-29 17:58 - 2019-06-21 08:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-29 17:58 - 2019-06-19 17:31 - 000000000 ____D C:\Users\Mike
2020-05-28 20:20 - 2019-06-19 04:09 - 000000000 ____D C:\Program Files\UNP
2020-05-27 17:00 - 2019-11-12 19:42 - 000003438 _____ C:\WINDOWS\system32\Tasks\SU_AutoUpdate
2020-05-26 07:34 - 2018-07-20 22:59 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Kodi
2020-05-17 14:37 - 2019-06-02 16:23 - 000000000 ____D C:\Users\Mike\AppData\Roaming\TIDAL
2020-05-17 08:50 - 2018-07-09 15:26 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-14 17:56 - 2018-06-03 00:14 - 000000000 ____D C:\Users\Mike\AppData\Local\Packages
2020-05-13 08:57 - 2018-06-03 00:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-05-13 08:57 - 2018-06-03 00:14 - 000000000 ___RD C:\Users\Mike\3D Objects
2020-05-13 08:56 - 2019-06-21 08:06 - 000434472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\TextInput
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\PerfLogs
2020-05-13 07:21 - 2018-06-03 17:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-05-13 07:18 - 2018-06-03 17:23 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-05-13 07:13 - 2019-06-21 08:10 - 002874880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-05-12 19:26 - 2019-10-01 22:54 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-05-12 19:26 - 2019-10-01 22:54 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\system32\DAX3
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-05-10 12:11 - 2020-02-27 23:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2020-05-10 11:59 - 2018-08-15 08:18 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\Adobe
2020-05-10 11:58 - 2018-08-20 09:33 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Adobe
2020-05-10 11:51 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-05-10 11:51 - 2018-07-14 21:02 - 000000000 ____D C:\Program Files (x86)\Steinberg
2020-05-10 11:32 - 2018-06-03 04:32 - 000000000 ____D C:\Program Files\J River
2020-05-10 10:36 - 2019-06-19 16:29 - 000000000 ___DC C:\WINDOWS\Panther
2020-05-10 10:29 - 2018-06-03 19:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\Program Files\WinRAR
2020-05-10 10:11 - 2019-11-12 19:41 - 000002199 _____ C:\Users\Public\Desktop\IObit Software Updater.lnk
2020-05-10 10:11 - 2019-11-12 19:41 - 000002199 _____ C:\ProgramData\Desktop\IObit Software Updater.lnk
2020-05-05 14:21 - 2019-06-02 16:23 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TIDAL
2020-05-04 16:35 - 2018-07-10 18:59 - 000000000 ____D C:\ProgramData\Packages
2020-05-01 09:30 - 2019-03-19 00:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-05-01 03:23 - 2018-06-03 00:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
==================== Files in the root of some directories ========
2018-08-20 10:05 - 2018-08-20 10:05 - 000000033 _____ () C:\Users\Mike\AppData\Roaming\AdobeWLCMCache.dat
2018-08-15 17:28 - 2018-08-15 17:28 - 000000028 _____ () C:\Users\Mike\AppData\Roaming\kulerdata.json
2018-09-27 01:46 - 2020-05-10 11:58 - 000001025 _____ () C:\Users\Mike\AppData\Local\oobelibMkey.log
2020-03-26 15:12 - 2020-03-26 15:14 - 000007604 _____ () C:\Users\Mike\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2020
Ran by Mike (29-05-2020 19:34:02)
Running from C:\Users\Mike\Downloads
Windows 10 Home Version 1909 18363.836 (X64) (2019-06-21 12:14:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3731582141-3865585816-3021926908-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3731582141-3865585816-3021926908-503 - Limited - Disabled)
Guest (S-1-5-21-3731582141-3865585816-3021926908-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3731582141-3865585816-3021926908-1003 - Limited - Enabled)
Mike (S-1-5-21-3731582141-3865585816-3021926908-1001 - Administrator - Enabled) => C:\Users\Mike
WDAGUtilityAccount (S-1-5-21-3731582141-3865585816-3021926908-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.009.20065 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.6.0.384 - Adobe Systems Incorporated)
Adobe InDesign CC 2018 (HKLM-x32\...\IDSN_13_1) (Version: 13.1 - Adobe Systems Incorporated)
Adobe Photoshop CS6 version 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 13.5.0 - IObit)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD OverDrive (HKLM-x32\...\{EEB605FD-C5F5-4946-90F3-D65C604A9187}) (Version: 4.3.1.0698 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{FE296942-D2D3-4149-8895-60655FE4CFDE}) (Version: 3.49.9800.0000 - Google, Inc.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.190.0.5002 - BlueStack Systems, Inc.)
Driver Easy 5.6.14 (HKLM\...\DriverEasy_is1) (Version: 5.6.14 - Easeware)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.61 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
IObit Software Updater (HKLM-x32\...\IObit Software Updater_is1) (Version: 2.2.0.2729 - IObit)
IObit Uninstaller 9 (HKLM-x32\...\IObitUninstall) (Version: 9.5.0.10 - IObit)
JRiver Media Center 26 (64-bit) (HKLM\...\Media Center 26 (64-bit)) (Version: 26 - JRiver, Inc.)
Kodi (HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Kodi) (Version: - XBMC Foundation)
LG Bridge (HKLM-x32\...\LG Bridge) (Version: 1.2.46 - LG Electronics)
LG Mobile Drivers (HKLM-x32\...\{C3C008A7-D4A5-4E19-B0D6-72043D6EFE34}) (Version: 4.2.0 - LG Electronics)
Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.114 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Player Location Check (HKLM-x32\...\{F0753064-8D66-41A7-9F23-7691290387BF}) (Version: 3.1.1.3 - GeoComply)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8899.1 - Realtek Semiconductor Corp.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.2.1.1780 - Samsung Electronics)
TIDAL (HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\TIDAL) (Version: 2.17.0 - TIDAL Music AS)
Topping USB Audio Device Driver v4.67.0 (HKLM-x32\...\Software_Topping_Topping_UsbAudio_Driver_Setup) (Version: 4.67.0 - Topping)
TP-LINK TL-WN821N(C)_TL-WN822N_TL-WN823N Driver (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
Voxengo Tube Amp (HKLM\...\Voxengo Tube Amp_is1) (Version: 2.5 - Voxengo)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
XFINITY WiFi (HKLM-x32\...\{E8B0DF22-4FF2-4979-ABE1-D91E5066390E}) (Version: 1.2.59 - Comcast)
Packages:
=========
Adobe XD CC -> C:\Program Files\WindowsApps\Adobe.CC.XD_10.0.12.9_x64__adky2gkssdxte [2020-05-29] (Adobe Systems Incorporated)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2020-05-29] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.8.5.0_x86__kgqvnymyfvs32 [2020-05-29] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.168.200.0_x86__kgqvnymyfvs32 [2020-05-29] (king.com)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_5.0.0.8_x86__h6adky7gbf63m [2020-05-29] (Gameloft SE)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-05-29] (Dolby Laboratories)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.35.3500.0_x86__ytsefhwckbdv6 [2020-05-29] (G5 Entertainment AB)
Lyft -> C:\Program Files\WindowsApps\Lyft.Lyft_1.1.6.0_neutral__gfn3ervfxyf5e [2020-05-29] (Lyft)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.39.21431.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Studios) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-05-29] (Adobe Systems Incorporated)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0 [2020-05-29] (Spotify AB) [Startup Task]
TIDAL -> C:\Program Files\WindowsApps\WiMPMusic.27241E05630EA_2.17.0.0_x86__kn85bz84x7te4 [2020-05-29] (TIDAL Music AS)
Watch NFL Network -> C:\Program Files\WindowsApps\NFLEnterprisesLLC.WatchNFLNetwork_1.1.0.1_x86__fdrtsdpy8475t [2020-05-29] (NFL Enterprises LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
SSODL: EldosMountNotificator-cbfs6 - {18A70596-4754-4FA5-A475-D17960F43DB9} - C:\WINDOWS\system32\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {18A70596-4754-4FA5-A475-D17960F43DB9} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects: Virtual Storage Mount Notification -> {18A70596-4754-4FA5-A475-D17960F43DB9} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {18A70596-4754-4FA5-A475-D17960F43DB9} => C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] -> {7105DBEA-C1B0-4609-9A10-222D175F814F} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] -> {7105DBEA-C1B0-4609-9A10-222D175F814F} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-01-31] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-01-31] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-01-31] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Mike\Live TV.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=aoanbhbcmafiabhdaembhjcecpdonnnf
ShortcutWithArgument: C:\Users\Mike\Desktop\Xfinity.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=benldnjbfkmhelbenngebjgnkbpeneeb
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Live TV.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=aoanbhbcmafiabhdaembhjcecpdonnnf
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Netflix.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=eppojlglocelodeimnohnlnionkobfln
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Xfinity.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=benldnjbfkmhelbenngebjgnkbpeneeb
==================== Loaded Modules (Whitelisted) =============
2020-05-29 19:10 - 2020-05-29 19:10 - 000114176 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_ctypes.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000173056 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_elementtree.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 002133504 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_hashlib.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000032256 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_multiprocessing.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000046080 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_psutil_windows.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000047616 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_socket.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 002701824 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_ssl.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000026112 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_yappi.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000080896 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\bz2.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000016384 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\common.time34.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000007680 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\hashobjs_ext.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000301568 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\PIL._imaging.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000169472 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\pyexpat.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001084416 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\pysqlite2._sqlite.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000548864 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\pythoncom27.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000137728 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\pywintypes27.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000010752 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\select.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000020992 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\thumbnails_ext.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000689664 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\unicodedata.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000119808 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\usb_ext.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000128512 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32api.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000438784 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32com.shell.shell.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000011776 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32crypt.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000023040 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32event.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000149504 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32file.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000223232 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32gui.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000048128 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32inet.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000029696 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32pdh.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000027648 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32pipe.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000044032 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32process.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000020480 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32profile.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000136192 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32security.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000026624 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32ts.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000034816 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.conditional.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000038400 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.connectivity.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000071680 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.device_monitor.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000109056 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.volumes.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000020480 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.winwrap.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001325056 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._controls_.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001489408 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._core_.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001007104 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._gdi_.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000103424 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._html2.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000916992 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._misc_.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001039872 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._windows_.pyd
2015-11-04 17:40 - 2015-11-04 17:40 - 000004608 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamenu.dll
2018-06-03 17:41 - 2019-02-21 12:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 003042816 _____ (Python Software Foundation) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\python27.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxbase30u_net_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxbase30u_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxmsw30u_adv_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxmsw30u_core_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxmsw30u_html_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\bootTel.dat:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Mike\Desktop\desktop.ini:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-11 19:38 - 2018-04-11 19:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mike\Downloads\433003.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{FF5ACC65-0720-4E10-A013-A785D29E4FEC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE6152BB-64CA-434D-934E-882FA6EE022D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0A5A71C1-0F79-40B7-8D3F-38B4C4072C94}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE2E38EA-DCC0-4E93-8401-7CC162030E9C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{AA6E552B-C0CA-4DD2-8283-A6D053D6F669}C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe] => (Allow) C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe (LG Electronics Inc. -> LG Electronics)
FirewallRules: [UDP Query User{A31DE5D1-C245-46CC-92EE-F26E6AE34A19}C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe] => (Allow) C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe (LG Electronics Inc. -> LG Electronics)
FirewallRules: [TCP Query User{0AEBC198-B6EA-4D60-A3D5-84CDA6AAED74}C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe] => (Allow) C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe => No File
FirewallRules: [UDP Query User{340539CF-97FE-4A7A-8927-87765751EBA3}C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe] => (Allow) C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe => No File
FirewallRules: [TCP Query User{C491B4A1-F28E-46BA-8282-25E88F8AD9CD}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{991D968C-4566-4261-98A6-66E9815D98D1}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{FEFCE797-E08E-4446-A5F0-9BEF6BFE1791}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{39158852-9AFB-4AC1-B203-B4B1BF8C7A75}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{183DE1E9-476D-49D0-9692-EA8537668968}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{91CB2380-727F-4742-93CA-7B5D9932A321}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{CC6E4CC2-D364-4B7A-9B8D-05ACD75BA450}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5CE84578-157E-4D11-BFBA-680A3E7989C5}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{C474E45A-674C-4DE9-A976-AF3A9B52D1D5}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{71BEF298-58FE-4539-855E-4B6A0CB1A468}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{80A32BA3-91F9-49C1-BCFC-6B540CC89A3A}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [{DC6D0C93-A029-4BCE-9B68-86EE58C6CDE1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{290BD520-16C6-49B1-9443-2C363C8A40C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E60BDC1A-D0C8-46AB-BE97-B4DB9EA2D4CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ABD31511-10BB-4E5A-8EA8-59F833E66A3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FD757C68-C1F0-4C84-97CA-A5EE41B1B539}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CD0ECA3F-A4FF-4C23-9645-4902B00AAE20}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EDD5B4AE-1F12-4241-8FB4-7121C9DC0BC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B9C20D6E-B1E4-4E2D-95AF-63AE2C1EB503}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32AA0894-6F40-4604-A065-D46739CE5F96}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
29-05-2020 18:01:38 Windows Modules Installer
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/29/2020 07:31:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3244,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 07:16:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4040,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 07:00:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbamtray.exe, version: 4.0.0.607, time stamp: 0x5e76d351
Faulting module name: Qt5Core.dll, version: 5.14.1.0, time stamp: 0x5e4172be
Exception code: 0xc0000005
Fault offset: 0x0000000000219d05
Faulting process id: 0x1c4c
Faulting application start time: 0x01d6360ce46c3a92
Faulting application path: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Faulting module path: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
Report Id: f0264f22-5176-461d-9758-bedd94217737
Faulting package full name:
Faulting package-relative application ID:
Error: (05/29/2020 06:58:36 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5416,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 06:50:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9944,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 06:42:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1868,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 06:28:44 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (724,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 06:21:08 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4856,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (05/29/2020 06:23:12 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: The BITS service failed to start. Error 2147500053.
Error: (05/29/2020 06:02:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AdvancedSystemCareService13 service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/29/2020 06:02:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AdvancedSystemCareService13 service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/29/2020 05:58:39 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:58:15 AM on 5/27/2020 was unexpected.
Error: (05/29/2020 05:49:06 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 5:07:52 PM on 5/29/2020 was unexpected.
Error: (05/29/2020 12:46:01 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/28/2020 03:29:50 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/27/2020 11:35:04 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Windows Defender:
===================================
Date: 2020-05-24 19:13:21.811
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {08507B71-FC9E-40F2-BC6B-0134FF31E747}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-11 19:37:45.051
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {F7047E5C-FD21-498C-8B9F-71BECB15CA0A}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-29 18:33:40.315
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.317.220.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17100.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2020-05-29 18:23:04.018
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.317.220.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17100.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2020-05-29 17:58:43.152
Description:
Windows Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0
CodeIntegrity:
===================================
Date: 2019-07-18 08:28:02.238
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.231
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.222
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.214
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.208
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.196
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.180
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.174
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
==================== Memory info ===========================
BIOS: American Megatrends Inc. P1.40 03/26/2013
Motherboard: ASRock FM2A85X-ITX
Processor: AMD A10-6700 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 50%
Total physical RAM: 7628.13 MB
Available physical RAM: 3780.98 MB
Total Virtual: 8844.13 MB
Available Virtual: 4874.97 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:110.99 GB) (Free:57.62 GB) NTFS
Drive e: (Storage HD) (Fixed) (Total:476.92 GB) (Free:338.31 GB) NTFS
\\?\Volume{53408ae7-66ba-11e8-824c-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.34 GB) (Free:0.09 GB) NTFS
\\?\Volume{c7ad3052-0000-0000-0000-40d51b000000}\ () (Fixed) (Total:0.46 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: C7AD3052)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=467 MB) - (Type=27)
==================== End of Addition.txt =======================
Ran by Mike (29-05-2020 19:34:02)
Running from C:\Users\Mike\Downloads
Windows 10 Home Version 1909 18363.836 (X64) (2019-06-21 12:14:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3731582141-3865585816-3021926908-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3731582141-3865585816-3021926908-503 - Limited - Disabled)
Guest (S-1-5-21-3731582141-3865585816-3021926908-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3731582141-3865585816-3021926908-1003 - Limited - Enabled)
Mike (S-1-5-21-3731582141-3865585816-3021926908-1001 - Administrator - Enabled) => C:\Users\Mike
WDAGUtilityAccount (S-1-5-21-3731582141-3865585816-3021926908-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.009.20065 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.6.0.384 - Adobe Systems Incorporated)
Adobe InDesign CC 2018 (HKLM-x32\...\IDSN_13_1) (Version: 13.1 - Adobe Systems Incorporated)
Adobe Photoshop CS6 version 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 13.5.0 - IObit)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD OverDrive (HKLM-x32\...\{EEB605FD-C5F5-4946-90F3-D65C604A9187}) (Version: 4.3.1.0698 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{FE296942-D2D3-4149-8895-60655FE4CFDE}) (Version: 3.49.9800.0000 - Google, Inc.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.190.0.5002 - BlueStack Systems, Inc.)
Driver Easy 5.6.14 (HKLM\...\DriverEasy_is1) (Version: 5.6.14 - Easeware)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.61 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
IObit Software Updater (HKLM-x32\...\IObit Software Updater_is1) (Version: 2.2.0.2729 - IObit)
IObit Uninstaller 9 (HKLM-x32\...\IObitUninstall) (Version: 9.5.0.10 - IObit)
JRiver Media Center 26 (64-bit) (HKLM\...\Media Center 26 (64-bit)) (Version: 26 - JRiver, Inc.)
Kodi (HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Kodi) (Version: - XBMC Foundation)
LG Bridge (HKLM-x32\...\LG Bridge) (Version: 1.2.46 - LG Electronics)
LG Mobile Drivers (HKLM-x32\...\{C3C008A7-D4A5-4E19-B0D6-72043D6EFE34}) (Version: 4.2.0 - LG Electronics)
Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.114 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Player Location Check (HKLM-x32\...\{F0753064-8D66-41A7-9F23-7691290387BF}) (Version: 3.1.1.3 - GeoComply)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8899.1 - Realtek Semiconductor Corp.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.2.1.1780 - Samsung Electronics)
TIDAL (HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\TIDAL) (Version: 2.17.0 - TIDAL Music AS)
Topping USB Audio Device Driver v4.67.0 (HKLM-x32\...\Software_Topping_Topping_UsbAudio_Driver_Setup) (Version: 4.67.0 - Topping)
TP-LINK TL-WN821N(C)_TL-WN822N_TL-WN823N Driver (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
Voxengo Tube Amp (HKLM\...\Voxengo Tube Amp_is1) (Version: 2.5 - Voxengo)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
XFINITY WiFi (HKLM-x32\...\{E8B0DF22-4FF2-4979-ABE1-D91E5066390E}) (Version: 1.2.59 - Comcast)
Packages:
=========
Adobe XD CC -> C:\Program Files\WindowsApps\Adobe.CC.XD_10.0.12.9_x64__adky2gkssdxte [2020-05-29] (Adobe Systems Incorporated)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2020-05-29] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.8.5.0_x86__kgqvnymyfvs32 [2020-05-29] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.168.200.0_x86__kgqvnymyfvs32 [2020-05-29] (king.com)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_5.0.0.8_x86__h6adky7gbf63m [2020-05-29] (Gameloft SE)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-05-29] (Dolby Laboratories)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.35.3500.0_x86__ytsefhwckbdv6 [2020-05-29] (G5 Entertainment AB)
Lyft -> C:\Program Files\WindowsApps\Lyft.Lyft_1.1.6.0_neutral__gfn3ervfxyf5e [2020-05-29] (Lyft)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.39.21431.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Studios) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-05-29] (Adobe Systems Incorporated)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0 [2020-05-29] (Spotify AB) [Startup Task]
TIDAL -> C:\Program Files\WindowsApps\WiMPMusic.27241E05630EA_2.17.0.0_x86__kn85bz84x7te4 [2020-05-29] (TIDAL Music AS)
Watch NFL Network -> C:\Program Files\WindowsApps\NFLEnterprisesLLC.WatchNFLNetwork_1.1.0.1_x86__fdrtsdpy8475t [2020-05-29] (NFL Enterprises LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
SSODL: EldosMountNotificator-cbfs6 - {18A70596-4754-4FA5-A475-D17960F43DB9} - C:\WINDOWS\system32\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {18A70596-4754-4FA5-A475-D17960F43DB9} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects: Virtual Storage Mount Notification -> {18A70596-4754-4FA5-A475-D17960F43DB9} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {18A70596-4754-4FA5-A475-D17960F43DB9} => C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] -> {7105DBEA-C1B0-4609-9A10-222D175F814F} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] -> {7105DBEA-C1B0-4609-9A10-222D175F814F} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-01-31] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-01-31] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-01-31] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Mike\Live TV.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=aoanbhbcmafiabhdaembhjcecpdonnnf
ShortcutWithArgument: C:\Users\Mike\Desktop\Xfinity.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=benldnjbfkmhelbenngebjgnkbpeneeb
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Live TV.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=aoanbhbcmafiabhdaembhjcecpdonnnf
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Netflix.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=eppojlglocelodeimnohnlnionkobfln
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Xfinity.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=benldnjbfkmhelbenngebjgnkbpeneeb
==================== Loaded Modules (Whitelisted) =============
2020-05-29 19:10 - 2020-05-29 19:10 - 000114176 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_ctypes.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000173056 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_elementtree.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 002133504 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_hashlib.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000032256 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_multiprocessing.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000046080 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_psutil_windows.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000047616 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_socket.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 002701824 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_ssl.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000026112 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\_yappi.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000080896 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\bz2.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000016384 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\common.time34.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000007680 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\hashobjs_ext.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000301568 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\PIL._imaging.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000169472 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\pyexpat.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001084416 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\pysqlite2._sqlite.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000548864 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\pythoncom27.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000137728 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\pywintypes27.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000010752 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\select.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000020992 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\thumbnails_ext.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000689664 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\unicodedata.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000119808 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\usb_ext.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000128512 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32api.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000438784 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32com.shell.shell.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000011776 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32crypt.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000023040 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32event.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000149504 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32file.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000223232 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32gui.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000048128 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32inet.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000029696 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32pdh.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000027648 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32pipe.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000044032 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32process.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000020480 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32profile.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000136192 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32security.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000026624 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\win32ts.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000034816 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.conditional.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000038400 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.connectivity.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000071680 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.device_monitor.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000109056 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.volumes.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000020480 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\windows.winwrap.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001325056 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._controls_.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001489408 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._core_.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001007104 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._gdi_.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000103424 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._html2.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 000916992 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._misc_.pyd
2020-05-29 19:10 - 2020-05-29 19:10 - 001039872 _____ () [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wx._windows_.pyd
2015-11-04 17:40 - 2015-11-04 17:40 - 000004608 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamenu.dll
2018-06-03 17:41 - 2019-02-21 12:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 003042816 _____ (Python Software Foundation) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\python27.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxbase30u_net_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxbase30u_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxmsw30u_adv_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxmsw30u_core_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxmsw30u_html_vc90_x64.dll
2020-05-29 19:10 - 2020-05-29 19:10 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\Mike\AppData\Local\Temp\_MEI98402\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\bootTel.dat:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Mike\Desktop\desktop.ini:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-11 19:38 - 2018-04-11 19:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mike\Downloads\433003.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{FF5ACC65-0720-4E10-A013-A785D29E4FEC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE6152BB-64CA-434D-934E-882FA6EE022D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0A5A71C1-0F79-40B7-8D3F-38B4C4072C94}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE2E38EA-DCC0-4E93-8401-7CC162030E9C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{AA6E552B-C0CA-4DD2-8283-A6D053D6F669}C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe] => (Allow) C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe (LG Electronics Inc. -> LG Electronics)
FirewallRules: [UDP Query User{A31DE5D1-C245-46CC-92EE-F26E6AE34A19}C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe] => (Allow) C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe (LG Electronics Inc. -> LG Electronics)
FirewallRules: [TCP Query User{0AEBC198-B6EA-4D60-A3D5-84CDA6AAED74}C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe] => (Allow) C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe => No File
FirewallRules: [UDP Query User{340539CF-97FE-4A7A-8927-87765751EBA3}C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe] => (Allow) C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe => No File
FirewallRules: [TCP Query User{C491B4A1-F28E-46BA-8282-25E88F8AD9CD}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{991D968C-4566-4261-98A6-66E9815D98D1}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{FEFCE797-E08E-4446-A5F0-9BEF6BFE1791}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{39158852-9AFB-4AC1-B203-B4B1BF8C7A75}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{183DE1E9-476D-49D0-9692-EA8537668968}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{91CB2380-727F-4742-93CA-7B5D9932A321}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{CC6E4CC2-D364-4B7A-9B8D-05ACD75BA450}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5CE84578-157E-4D11-BFBA-680A3E7989C5}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{C474E45A-674C-4DE9-A976-AF3A9B52D1D5}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{71BEF298-58FE-4539-855E-4B6A0CB1A468}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{80A32BA3-91F9-49C1-BCFC-6B540CC89A3A}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [{DC6D0C93-A029-4BCE-9B68-86EE58C6CDE1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{290BD520-16C6-49B1-9443-2C363C8A40C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E60BDC1A-D0C8-46AB-BE97-B4DB9EA2D4CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ABD31511-10BB-4E5A-8EA8-59F833E66A3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FD757C68-C1F0-4C84-97CA-A5EE41B1B539}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CD0ECA3F-A4FF-4C23-9645-4902B00AAE20}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EDD5B4AE-1F12-4241-8FB4-7121C9DC0BC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B9C20D6E-B1E4-4E2D-95AF-63AE2C1EB503}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32AA0894-6F40-4604-A065-D46739CE5F96}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
29-05-2020 18:01:38 Windows Modules Installer
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/29/2020 07:31:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3244,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 07:16:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4040,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 07:00:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbamtray.exe, version: 4.0.0.607, time stamp: 0x5e76d351
Faulting module name: Qt5Core.dll, version: 5.14.1.0, time stamp: 0x5e4172be
Exception code: 0xc0000005
Fault offset: 0x0000000000219d05
Faulting process id: 0x1c4c
Faulting application start time: 0x01d6360ce46c3a92
Faulting application path: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Faulting module path: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
Report Id: f0264f22-5176-461d-9758-bedd94217737
Faulting package full name:
Faulting package-relative application ID:
Error: (05/29/2020 06:58:36 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5416,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 06:50:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9944,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 06:42:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1868,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 06:28:44 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (724,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/29/2020 06:21:08 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4856,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (05/29/2020 06:23:12 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: The BITS service failed to start. Error 2147500053.
Error: (05/29/2020 06:02:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AdvancedSystemCareService13 service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/29/2020 06:02:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AdvancedSystemCareService13 service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/29/2020 05:58:39 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:58:15 AM on 5/27/2020 was unexpected.
Error: (05/29/2020 05:49:06 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 5:07:52 PM on 5/29/2020 was unexpected.
Error: (05/29/2020 12:46:01 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/28/2020 03:29:50 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/27/2020 11:35:04 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Windows Defender:
===================================
Date: 2020-05-24 19:13:21.811
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {08507B71-FC9E-40F2-BC6B-0134FF31E747}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-11 19:37:45.051
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {F7047E5C-FD21-498C-8B9F-71BECB15CA0A}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-29 18:33:40.315
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.317.220.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17100.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2020-05-29 18:23:04.018
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.317.220.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17100.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2020-05-29 17:58:43.152
Description:
Windows Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0
CodeIntegrity:
===================================
Date: 2019-07-18 08:28:02.238
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.231
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.222
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.214
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.208
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.196
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.180
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.174
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
==================== Memory info ===========================
BIOS: American Megatrends Inc. P1.40 03/26/2013
Motherboard: ASRock FM2A85X-ITX
Processor: AMD A10-6700 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 50%
Total physical RAM: 7628.13 MB
Available physical RAM: 3780.98 MB
Total Virtual: 8844.13 MB
Available Virtual: 4874.97 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:110.99 GB) (Free:57.62 GB) NTFS
Drive e: (Storage HD) (Fixed) (Total:476.92 GB) (Free:338.31 GB) NTFS
\\?\Volume{53408ae7-66ba-11e8-824c-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.34 GB) (Free:0.09 GB) NTFS
\\?\Volume{c7ad3052-0000-0000-0000-40d51b000000}\ () (Fixed) (Total:0.46 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: C7AD3052)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=467 MB) - (Type=27)
==================== End of Addition.txt =======================
Broni
Posts: 56,041 +516
Please, observe following rules:
====================================
You're not saying what the issues are.
- Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
- If you're stuck, or you're not sure about certain step, always ask before doing anything else.
- Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
- Never run more than one scan at a time.
- Keep updating me regarding your computer behavior, good, or bad.
- The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
- If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
- I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.
====================================
You're not saying what the issues are.
Hello Broni
Thank you for your help. It seems someone changed a lot of security settings and privileges on my pc. There seems new tasks running that I cant stop because of admin privileges being switched. Also, I couldnt load chrome for a period of time until figuring out how to re download it. Cpu usage is spiking at times as well with processes in the background getting pretty large
Thank you for your help. It seems someone changed a lot of security settings and privileges on my pc. There seems new tasks running that I cant stop because of admin privileges being switched. Also, I couldnt load chrome for a period of time until figuring out how to re download it. Cpu usage is spiking at times as well with processes in the background getting pretty large
Broni
Posts: 56,041 +516
Link 1
Link 2
- Close all the running programs
- Double click on downloaded setup.exe file to install the program.
- Click on Start Scan button.
- Click on another Start Scan button.
- Wait until the Status box shows Scan Finished
- Click on Remove Selected.
- Wait until the Status box shows Deleting Finished.
- Click on Report and copy/paste the content of the Notepad into your next reply.
- RKreport.txt could also be found on your desktop.
- If more than one log is produced post all logs.
- Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
- Then click Finish.
- Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
- If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
- When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
- Restart your computer when prompted to do so.
- The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.
- Double click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8/10 users right-click and select Run As Administrator - The tool will start to update the database if one is required.
- Click on the Scan button.
- AdwCleaner will begin...be patient as the scan may take some time to complete.
- After the scan has finished, click on the Logfile button.
- A window will open which lists the logs of your scans.
- Click on the Scan tab.
- Double-click the most recent scan which will be at the top of the list....the log will appear.
- Review the results...see note below
- After reviewing the log, click on the Clean button.
- Press OK when asked to close all programs and follow the onscreen prompts.
- Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
- After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
- To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
- Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
- A copy of all logfiles are saved to C:\AdwCleaner.
RogueKiller Anti-Malware V14.5.0.0 (x64) [May 27 2020] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.18363) 64 bits
Started in : Normal mode
User : Mike [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20200529_094630, Driver : Loaded
Mode : Standard Scan, Delete -- Date : 2020/05/30 12:53:42 (Duration : 00:09:07)
Switches : -minimize
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Delete ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[PUP.Gen1 (Potentially Malicious)] HKEY_USERS\S-1-5-21-3731582141-3865585816-3021926908-1001\Software\csastats -- -> Deleted
[Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{0AEBC198-B6EA-4D60-A3D5-84CDA6AAED74}C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe -- [%localappdata%\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe] -> Deleted
[Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{340539CF-97FE-4A7A-8927-87765751EBA3}C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe -- [%localappdata%\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe] -> Deleted
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.18363) 64 bits
Started in : Normal mode
User : Mike [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20200529_094630, Driver : Loaded
Mode : Standard Scan, Delete -- Date : 2020/05/30 12:53:42 (Duration : 00:09:07)
Switches : -minimize
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Delete ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[PUP.Gen1 (Potentially Malicious)] HKEY_USERS\S-1-5-21-3731582141-3865585816-3021926908-1001\Software\csastats -- -> Deleted
[Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{0AEBC198-B6EA-4D60-A3D5-84CDA6AAED74}C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe -- [%localappdata%\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe] -> Deleted
[Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{340539CF-97FE-4A7A-8927-87765751EBA3}C:\users\mike\appdata\local\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe -- [%localappdata%\packages\xbmcfoundation.kodi_4n2hpmxwrvr6p\localcache\roaming\kodi\addons\plugin.audio.spotify\resources\lib\spotty\windows\spotty.exe] -> Deleted
Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 5/30/20
Scan Time: 12:56 PM
Log File: 83a54184-a296-11ea-afd8-bc5ff4ac7bbd.json
-Software Information-
Version: 4.1.0.56
Components Version: 1.0.931
Update Package Version: 1.0.24724
License: Trial
-System Information-
OS: Windows 10 (Build 18362.836)
CPU: x64
File System: NTFS
User: ORANGEMONSTER\Mike
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 320100
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 1 min, 49 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 0
(No malicious items detected)
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 0
(No malicious items detected)
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)
(end)
www.malwarebytes.com
-Log Details-
Scan Date: 5/30/20
Scan Time: 12:56 PM
Log File: 83a54184-a296-11ea-afd8-bc5ff4ac7bbd.json
-Software Information-
Version: 4.1.0.56
Components Version: 1.0.931
Update Package Version: 1.0.24724
License: Trial
-System Information-
OS: Windows 10 (Build 18362.836)
CPU: x64
File System: NTFS
User: ORANGEMONSTER\Mike
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 320100
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 1 min, 49 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 0
(No malicious items detected)
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 0
(No malicious items detected)
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)
(end)
# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-05-26.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-30-2020
# Duration: 00:00:02
# OS: Windows 10 Home
# Cleaned: 22
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
Deleted C:\Users\Mike\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\Mike\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\IObit\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Advanced SystemCare_is1
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3553 octets] - [30/05/2020 13:05:40]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-05-26.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-30-2020
# Duration: 00:00:02
# OS: Windows 10 Home
# Cleaned: 22
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
Deleted C:\Users\Mike\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\Mike\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\IObit\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Advanced SystemCare_is1
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3553 octets] - [30/05/2020 13:05:40]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-05-2020 01
Ran by Mike (administrator) on ORANGEMONSTER (30-05-2020 15:27:23)
Running from C:\Users\Mike\Desktop
Loaded Profiles: Mike
Platform: Windows 10 Home Version 1909 18363.836 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adlice -> ) C:\Program Files\RogueKiller\RogueKiller64.exe
(Adlice -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(GeoComply USA, Inc. -> GeoComply) C:\Program Files (x86)\GeoComply\PlayerLocationCheck\Application\service.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\Topping\USB Audio Device Driver\W10_x64\ToppingUsbAudioCpl.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2020-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2018-09-07] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2018-06-04] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409944 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48214752 2020-04-06] (Google LLC -> )
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5417008 2020-05-03] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Topping USB Audio Device Control Panel Autostart.lnk [2019-09-07]
ShortcutTarget: Topping USB Audio Device Control Panel Autostart.lnk -> C:\Program Files\Topping\USB Audio Device Driver\W10_x64\ToppingUsbAudioCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1B90636D-342E-497D-9B84-20B7987C7275} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {2738BAD4-332C-4C15-9213-9A3257760978} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {42DA51B2-DE75-4664-AE4B-E17F29F5C6C9} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3660232 2020-02-17] (Easeware Technology Limited -> Easeware)
Task: {49F3E40C-2472-4976-90F4-5C2ED464BB4A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {56EDD029-32CA-405C-AF18-4F58BC2DA466} - System32\Tasks\ASC_SkipUac_Mike => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {61002199-A2D0-4331-965D-6EAB93F4F4E7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {63783787-9CDD-43E7-BA10-437C29CBBBF7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {74DFF85B-0D87-426B-88AF-CA655A7C56FD} - System32\Tasks\GeoComply Service Check => "C:\Program Files (x86)\GeoComply/\PlayerLocationCheck\Application\PlayerLocationCheckTask.cmd"
Task: {8216DD64-8150-4EE2-86E6-6598BDEE522E} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {953021B0-51C2-4D11-B246-67FA1C02ED15} - System32\Tasks\GeoComply Update Task => C:\Program Files (x86)\GeoComply\\PlayerLocationCheck\Update\GeoComplyUpdate.exe [3191272 2020-05-06] (GeoComply USA, Inc. -> GeoComply)
Task: {9A63DD48-E9F4-44A4-9934-CC5F4B393E79} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-03] (Google Inc -> Google Inc.)
Task: {9B85D84F-048E-4D94-883B-E5E2150D6383} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {B8C3AC93-6B06-45E4-B17F-0D00D44B5294} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-03] (Google Inc -> Google Inc.)
Task: {E4C660C6-BF87-40E8-A35B-6BDBC1022AB8} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {E79F4406-223A-47DB-9E1D-3A6B62B25925} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6800BA3-2896-40A1-B082-9318BB8F8892} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.29.1
Tcpip\..\Interfaces\{1b62d657-b2e2-488b-840e-b466b1ecddc0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1b62d657-b2e2-488b-840e-b466b1ecddc0}: [DhcpNameServer] 192.168.29.1
Tcpip\..\Interfaces\{d42e0a8c-0701-4b15-8e9a-c6a06067906e}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Internet Explorer:
==================
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll => No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2018-09-07] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2018-09-07] (Logitech Inc -> Logitech, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2019-01-24] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default [2020-05-30]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://vev.io; hxxps://www.hotnewhiphop.com
CHR HomePage: Default -> hxxp://yahoo.com/
CHR DefaultSearchURL: Default -> hxxps://www.xfinity.com/stream/favicon.ico?v=1
CHR Extension: (Privacy Pass) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajhmfdgkijocedmfjonnpjfojldioehi [2020-04-25]
CHR Extension: (Live TV) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aoanbhbcmafiabhdaembhjcecpdonnnf [2018-09-15]
CHR Extension: (Docs) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-03]
CHR Extension: (Google Drive) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-21]
CHR Extension: (Xfinity) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\benldnjbfkmhelbenngebjgnkbpeneeb [2019-05-09]
CHR Extension: (YouTube) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-03]
CHR Extension: (Tampermonkey) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-05-24]
CHR Extension: (Adobe Acrobat) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-05-29]
CHR Extension: (Netflix) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppojlglocelodeimnohnlnionkobfln [2019-06-20]
CHR Extension: (Google Docs Offline) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-29]
CHR Extension: (Video Adblocker for Youtube™ Extension) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2020-05-05]
CHR Extension: (Grammarly for Chrome) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-05-29]
CHR Extension: (Fair AdBlocker) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2020-04-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-06-06]
CHR Extension: (Hotspot Shield Free VPN Proxy - Unlimited VPN) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbejmccbhkncgokjcmghpfloaajcffj [2020-05-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-05]
CHR Extension: (Chrome Media Router) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-29]
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-29]
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-29]
CHR HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACS; C:\WINDOWS\SysWOW64\acs.exe [499796 2010-06-01] (Atheros) [File not signed]
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3374160 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3103824 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [305168 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-09-19] (Advanced Micro Devices, Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806352 2019-03-10] (ICEpower a/s -> ICEpower)
S3 jswpbapi; C:\Program Files (x86)\TP-LINK\QSS\jswpbapi.exe [265216 2009-09-21] (Wireless) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\TP-LINK\QSS\jswpsapi.exe [360529 2009-09-21] (wireless) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
S3 Media Center 26 Service; C:\Program Files\J River\Media Center 26\JRService.exe [459664 2020-04-24] (JRiver, Inc. -> JRiver, Inc.)
R2 Player Location Check; C:\Program Files (x86)\GeoComply\//PlayerLocationCheck///Application/service.exe [3141608 2020-05-06] (GeoComply USA, Inc. -> GeoComply)
R2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13059640 2020-05-27] (Adlice -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdide64; C:\WINDOWS\System32\drivers\amdide64.sys [13848 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices Inc.)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21527568 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [493584 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [93240 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [33336 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [60104 2014-09-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-11-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-03-26] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-10] (Microsoft Corporation) [File not signed]
R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2020-05-29] (CPUID -> CPUID)
S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50136 2018-04-12] (ESET, spol. s r.o. -> ESET)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-05-30] (Malwarebytes Corporation -> Malwarebytes)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-06-04] (Martin Malik - REALiX -> REALiX(tm))
S3 jrvad_service; C:\WINDOWS\system32\drivers\JRiverWDMDriver.sys [48112 2019-01-10] (JRiver, Inc. -> JRiver, Inc.)
S3 JSWSCIMD; C:\WINDOWS\system32\DRIVERS\jswscimdx.sys [75264 2009-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-05-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [195432 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73368 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [131736 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 ToppingUsbAudio; C:\WINDOWS\System32\drivers\ToppingUsbAudio.sys [374824 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 ToppingUsbAudioks; C:\WINDOWS\System32\drivers\ToppingUsbAudioks.sys [53800 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> )
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [28272 2020-05-30] (Adlice -> )
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-05-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [394680 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-30 15:27 - 2020-05-30 15:28 - 000025202 _____ C:\Users\Mike\Desktop\FRST.txt
2020-05-30 15:27 - 2020-05-30 15:27 - 002289152 _____ (Farbar) C:\Users\Mike\Desktop\FRST64.exe
2020-05-30 15:27 - 2020-05-30 15:27 - 000000000 ____D C:\Users\Mike\Desktop\FRST-OlderVersion
2020-05-30 13:37 - 2020-05-30 13:37 - 000003326 _____ C:\WINDOWS\system32\Tasks\GeoComply Service Check
2020-05-30 13:16 - 2020-05-30 13:16 - 000073368 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-05-30 13:16 - 2020-05-30 13:16 - 000002041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-05-30 13:16 - 2020-05-30 13:16 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-05-30 13:16 - 2020-05-30 13:16 - 000002029 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-05-30 13:15 - 2020-05-30 13:15 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-05-30 13:15 - 2020-05-30 13:15 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-05-30 13:15 - 2020-05-30 13:15 - 000195432 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-05-30 13:15 - 2020-05-30 13:15 - 000131736 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-05-30 13:15 - 2020-05-30 13:15 - 000028272 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2020-05-30 13:13 - 2020-05-30 13:13 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-30 13:04 - 2020-05-30 13:09 - 000000000 ____D C:\AdwCleaner
2020-05-30 13:04 - 2020-05-30 13:04 - 008402608 _____ (Malwarebytes) C:\Users\Mike\Downloads\AdwCleaner.exe
2020-05-30 12:56 - 2020-05-30 13:15 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-05-30 12:56 - 2020-05-30 13:15 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-05-30 12:55 - 2020-05-30 12:55 - 001980016 _____ (Malwarebytes) C:\Users\Mike\Downloads\MBSetup (1).exe
2020-05-30 12:42 - 2020-05-30 12:48 - 000000000 ____D C:\ProgramData\RogueKiller
2020-05-30 12:42 - 2020-05-30 12:42 - 000000905 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2020-05-30 12:42 - 2020-05-30 12:42 - 000000905 _____ C:\ProgramData\Desktop\RogueKiller.lnk
2020-05-30 12:42 - 2020-05-30 12:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-05-30 12:42 - 2020-05-30 12:42 - 000000000 ____D C:\Program Files\RogueKiller
2020-05-30 12:41 - 2020-05-30 12:41 - 039917608 _____ (Adlice Software ) C:\Users\Mike\Downloads\RogueKiller_setup_ref3.exe
2020-05-29 19:45 - 2020-05-29 19:45 - 000148971 _____ C:\Users\Mike\Downloads\FRST (1).txt
2020-05-29 19:34 - 2020-05-29 19:35 - 000044774 _____ C:\Users\Mike\Downloads\Addition.txt
2020-05-29 19:33 - 2020-05-29 19:33 - 002289152 _____ (Farbar) C:\Users\Mike\Downloads\FRST64 (1).exe
2020-05-29 19:31 - 2020-05-29 19:35 - 000148971 _____ C:\Users\Mike\Downloads\FRST.txt
2020-05-29 19:30 - 2020-05-30 15:28 - 000000000 ____D C:\FRST
2020-05-29 19:11 - 2020-05-29 19:11 - 001295576 _____ (Google LLC) C:\Users\Mike\Downloads\ChromeSetup.exe
2020-05-29 19:11 - 2020-05-29 19:11 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-29 19:11 - 2020-05-29 19:11 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-29 19:11 - 2020-05-29 19:11 - 000002336 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-29 17:03 - 2020-05-29 17:03 - 000000802 _____ C:\Users\Mike\Downloads\claims.csv
2020-05-23 17:00 - 2020-05-23 17:00 - 000002144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-21 17:46 - 2020-05-21 17:46 - 000018487 _____ C:\Users\Mike\Downloads\DEPOSIT FORM AUDI.pdf
2020-05-21 17:07 - 2020-05-21 17:07 - 000569874 _____ C:\Users\Mike\Downloads\Monroney_WAUB4AF40JA231325.pdf
2020-05-21 16:18 - 2020-05-21 16:18 - 000126499 _____ C:\Users\Mike\Downloads\399729.pdf
2020-05-19 08:05 - 2020-05-19 08:05 - 000525420 _____ C:\Users\Mike\Downloads\Monroney_WAUB4AF43JA025724.pdf
2020-05-15 17:54 - 2020-05-15 17:57 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\Mozilla
2020-05-15 17:53 - 2020-05-15 17:53 - 068222024 _____ C:\Users\Mike\Downloads\torbrowser-install-win64-9.0.10_en-US.exe
2020-05-14 18:03 - 2020-05-14 18:03 - 000003786 _____ C:\Users\Mike\Downloads\pastedImage2
2020-05-14 17:58 - 2020-05-14 17:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-05-14 17:57 - 2020-05-14 17:57 - 000296752 _____ C:\Users\Mike\Downloads\Inventory Control Sheet_Houston,TX-3L-USA.pdf
2020-05-13 07:14 - 2020-05-13 07:14 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 022638592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 019851264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 014819328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 009929528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007822888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007267840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007011840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006710272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006525936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006291456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006082808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005945856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005757872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005340568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005098352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 003822080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003747328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003513856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002769000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-05-13 07:14 - 2020-05-13 07:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-05-13 07:14 - 2020-05-13 07:14 - 002736640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002259664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002073176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001990576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001975808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001952872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001934824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001737216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001686016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001665720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
Ran by Mike (administrator) on ORANGEMONSTER (30-05-2020 15:27:23)
Running from C:\Users\Mike\Desktop
Loaded Profiles: Mike
Platform: Windows 10 Home Version 1909 18363.836 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adlice -> ) C:\Program Files\RogueKiller\RogueKiller64.exe
(Adlice -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(GeoComply USA, Inc. -> GeoComply) C:\Program Files (x86)\GeoComply\PlayerLocationCheck\Application\service.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\Topping\USB Audio Device Driver\W10_x64\ToppingUsbAudioCpl.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2020-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2018-09-07] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2018-06-04] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409944 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48214752 2020-04-06] (Google LLC -> )
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5417008 2020-05-03] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Topping USB Audio Device Control Panel Autostart.lnk [2019-09-07]
ShortcutTarget: Topping USB Audio Device Control Panel Autostart.lnk -> C:\Program Files\Topping\USB Audio Device Driver\W10_x64\ToppingUsbAudioCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1B90636D-342E-497D-9B84-20B7987C7275} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {2738BAD4-332C-4C15-9213-9A3257760978} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {42DA51B2-DE75-4664-AE4B-E17F29F5C6C9} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3660232 2020-02-17] (Easeware Technology Limited -> Easeware)
Task: {49F3E40C-2472-4976-90F4-5C2ED464BB4A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {56EDD029-32CA-405C-AF18-4F58BC2DA466} - System32\Tasks\ASC_SkipUac_Mike => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {61002199-A2D0-4331-965D-6EAB93F4F4E7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {63783787-9CDD-43E7-BA10-437C29CBBBF7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {74DFF85B-0D87-426B-88AF-CA655A7C56FD} - System32\Tasks\GeoComply Service Check => "C:\Program Files (x86)\GeoComply/\PlayerLocationCheck\Application\PlayerLocationCheckTask.cmd"
Task: {8216DD64-8150-4EE2-86E6-6598BDEE522E} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {953021B0-51C2-4D11-B246-67FA1C02ED15} - System32\Tasks\GeoComply Update Task => C:\Program Files (x86)\GeoComply\\PlayerLocationCheck\Update\GeoComplyUpdate.exe [3191272 2020-05-06] (GeoComply USA, Inc. -> GeoComply)
Task: {9A63DD48-E9F4-44A4-9934-CC5F4B393E79} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-03] (Google Inc -> Google Inc.)
Task: {9B85D84F-048E-4D94-883B-E5E2150D6383} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {B8C3AC93-6B06-45E4-B17F-0D00D44B5294} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-03] (Google Inc -> Google Inc.)
Task: {E4C660C6-BF87-40E8-A35B-6BDBC1022AB8} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {E79F4406-223A-47DB-9E1D-3A6B62B25925} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6800BA3-2896-40A1-B082-9318BB8F8892} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.29.1
Tcpip\..\Interfaces\{1b62d657-b2e2-488b-840e-b466b1ecddc0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1b62d657-b2e2-488b-840e-b466b1ecddc0}: [DhcpNameServer] 192.168.29.1
Tcpip\..\Interfaces\{d42e0a8c-0701-4b15-8e9a-c6a06067906e}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Internet Explorer:
==================
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll => No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2018-09-07] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2018-09-07] (Logitech Inc -> Logitech, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2019-01-24] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default [2020-05-30]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://vev.io; hxxps://www.hotnewhiphop.com
CHR HomePage: Default -> hxxp://yahoo.com/
CHR DefaultSearchURL: Default -> hxxps://www.xfinity.com/stream/favicon.ico?v=1
CHR Extension: (Privacy Pass) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajhmfdgkijocedmfjonnpjfojldioehi [2020-04-25]
CHR Extension: (Live TV) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aoanbhbcmafiabhdaembhjcecpdonnnf [2018-09-15]
CHR Extension: (Docs) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-03]
CHR Extension: (Google Drive) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-21]
CHR Extension: (Xfinity) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\benldnjbfkmhelbenngebjgnkbpeneeb [2019-05-09]
CHR Extension: (YouTube) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-03]
CHR Extension: (Tampermonkey) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-05-24]
CHR Extension: (Adobe Acrobat) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-05-29]
CHR Extension: (Netflix) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppojlglocelodeimnohnlnionkobfln [2019-06-20]
CHR Extension: (Google Docs Offline) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-29]
CHR Extension: (Video Adblocker for Youtube™ Extension) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2020-05-05]
CHR Extension: (Grammarly for Chrome) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-05-29]
CHR Extension: (Fair AdBlocker) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2020-04-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-06-06]
CHR Extension: (Hotspot Shield Free VPN Proxy - Unlimited VPN) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbejmccbhkncgokjcmghpfloaajcffj [2020-05-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-05]
CHR Extension: (Chrome Media Router) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-29]
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-29]
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-29]
CHR HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACS; C:\WINDOWS\SysWOW64\acs.exe [499796 2010-06-01] (Atheros) [File not signed]
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3374160 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3103824 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [305168 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-09-19] (Advanced Micro Devices, Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806352 2019-03-10] (ICEpower a/s -> ICEpower)
S3 jswpbapi; C:\Program Files (x86)\TP-LINK\QSS\jswpbapi.exe [265216 2009-09-21] (Wireless) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\TP-LINK\QSS\jswpsapi.exe [360529 2009-09-21] (wireless) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
S3 Media Center 26 Service; C:\Program Files\J River\Media Center 26\JRService.exe [459664 2020-04-24] (JRiver, Inc. -> JRiver, Inc.)
R2 Player Location Check; C:\Program Files (x86)\GeoComply\//PlayerLocationCheck///Application/service.exe [3141608 2020-05-06] (GeoComply USA, Inc. -> GeoComply)
R2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13059640 2020-05-27] (Adlice -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdide64; C:\WINDOWS\System32\drivers\amdide64.sys [13848 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices Inc.)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21527568 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [493584 2018-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [93240 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [33336 2018-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [60104 2014-09-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-11-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-03-26] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-10] (Microsoft Corporation) [File not signed]
R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2020-05-29] (CPUID -> CPUID)
S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50136 2018-04-12] (ESET, spol. s r.o. -> ESET)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-05-30] (Malwarebytes Corporation -> Malwarebytes)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-06-04] (Martin Malik - REALiX -> REALiX(tm))
S3 jrvad_service; C:\WINDOWS\system32\drivers\JRiverWDMDriver.sys [48112 2019-01-10] (JRiver, Inc. -> JRiver, Inc.)
S3 JSWSCIMD; C:\WINDOWS\system32\DRIVERS\jswscimdx.sys [75264 2009-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-05-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [195432 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73368 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [131736 2020-05-30] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 ToppingUsbAudio; C:\WINDOWS\System32\drivers\ToppingUsbAudio.sys [374824 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 ToppingUsbAudioks; C:\WINDOWS\System32\drivers\ToppingUsbAudioks.sys [53800 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> )
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [28272 2020-05-30] (Adlice -> )
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-05-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [394680 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-30 15:27 - 2020-05-30 15:28 - 000025202 _____ C:\Users\Mike\Desktop\FRST.txt
2020-05-30 15:27 - 2020-05-30 15:27 - 002289152 _____ (Farbar) C:\Users\Mike\Desktop\FRST64.exe
2020-05-30 15:27 - 2020-05-30 15:27 - 000000000 ____D C:\Users\Mike\Desktop\FRST-OlderVersion
2020-05-30 13:37 - 2020-05-30 13:37 - 000003326 _____ C:\WINDOWS\system32\Tasks\GeoComply Service Check
2020-05-30 13:16 - 2020-05-30 13:16 - 000073368 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-05-30 13:16 - 2020-05-30 13:16 - 000002041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-05-30 13:16 - 2020-05-30 13:16 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-05-30 13:16 - 2020-05-30 13:16 - 000002029 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-05-30 13:15 - 2020-05-30 13:15 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-05-30 13:15 - 2020-05-30 13:15 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-05-30 13:15 - 2020-05-30 13:15 - 000195432 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-05-30 13:15 - 2020-05-30 13:15 - 000131736 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-05-30 13:15 - 2020-05-30 13:15 - 000028272 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2020-05-30 13:13 - 2020-05-30 13:13 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-30 13:04 - 2020-05-30 13:09 - 000000000 ____D C:\AdwCleaner
2020-05-30 13:04 - 2020-05-30 13:04 - 008402608 _____ (Malwarebytes) C:\Users\Mike\Downloads\AdwCleaner.exe
2020-05-30 12:56 - 2020-05-30 13:15 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-05-30 12:56 - 2020-05-30 13:15 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-05-30 12:55 - 2020-05-30 12:55 - 001980016 _____ (Malwarebytes) C:\Users\Mike\Downloads\MBSetup (1).exe
2020-05-30 12:42 - 2020-05-30 12:48 - 000000000 ____D C:\ProgramData\RogueKiller
2020-05-30 12:42 - 2020-05-30 12:42 - 000000905 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2020-05-30 12:42 - 2020-05-30 12:42 - 000000905 _____ C:\ProgramData\Desktop\RogueKiller.lnk
2020-05-30 12:42 - 2020-05-30 12:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-05-30 12:42 - 2020-05-30 12:42 - 000000000 ____D C:\Program Files\RogueKiller
2020-05-30 12:41 - 2020-05-30 12:41 - 039917608 _____ (Adlice Software ) C:\Users\Mike\Downloads\RogueKiller_setup_ref3.exe
2020-05-29 19:45 - 2020-05-29 19:45 - 000148971 _____ C:\Users\Mike\Downloads\FRST (1).txt
2020-05-29 19:34 - 2020-05-29 19:35 - 000044774 _____ C:\Users\Mike\Downloads\Addition.txt
2020-05-29 19:33 - 2020-05-29 19:33 - 002289152 _____ (Farbar) C:\Users\Mike\Downloads\FRST64 (1).exe
2020-05-29 19:31 - 2020-05-29 19:35 - 000148971 _____ C:\Users\Mike\Downloads\FRST.txt
2020-05-29 19:30 - 2020-05-30 15:28 - 000000000 ____D C:\FRST
2020-05-29 19:11 - 2020-05-29 19:11 - 001295576 _____ (Google LLC) C:\Users\Mike\Downloads\ChromeSetup.exe
2020-05-29 19:11 - 2020-05-29 19:11 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-29 19:11 - 2020-05-29 19:11 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-29 19:11 - 2020-05-29 19:11 - 000002336 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-29 17:03 - 2020-05-29 17:03 - 000000802 _____ C:\Users\Mike\Downloads\claims.csv
2020-05-23 17:00 - 2020-05-23 17:00 - 000002144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-21 17:46 - 2020-05-21 17:46 - 000018487 _____ C:\Users\Mike\Downloads\DEPOSIT FORM AUDI.pdf
2020-05-21 17:07 - 2020-05-21 17:07 - 000569874 _____ C:\Users\Mike\Downloads\Monroney_WAUB4AF40JA231325.pdf
2020-05-21 16:18 - 2020-05-21 16:18 - 000126499 _____ C:\Users\Mike\Downloads\399729.pdf
2020-05-19 08:05 - 2020-05-19 08:05 - 000525420 _____ C:\Users\Mike\Downloads\Monroney_WAUB4AF43JA025724.pdf
2020-05-15 17:54 - 2020-05-15 17:57 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\Mozilla
2020-05-15 17:53 - 2020-05-15 17:53 - 068222024 _____ C:\Users\Mike\Downloads\torbrowser-install-win64-9.0.10_en-US.exe
2020-05-14 18:03 - 2020-05-14 18:03 - 000003786 _____ C:\Users\Mike\Downloads\pastedImage2
2020-05-14 17:58 - 2020-05-14 17:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-05-14 17:57 - 2020-05-14 17:57 - 000296752 _____ C:\Users\Mike\Downloads\Inventory Control Sheet_Houston,TX-3L-USA.pdf
2020-05-13 07:14 - 2020-05-13 07:14 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 022638592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 019851264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 014819328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 009929528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007822888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007267840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 007011840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006710272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006525936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006291456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 006082808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005945856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005757872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005340568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 005098352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 003822080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003747328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 003513856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002769000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-05-13 07:14 - 2020-05-13 07:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-05-13 07:14 - 2020-05-13 07:14 - 002736640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002259664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 002073176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001990576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001975808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001952872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001934824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001737216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001686016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001665720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001654952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001646552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001637376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001559040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001556200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001510912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001461760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001417760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001370112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001306424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001306112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001288648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001214264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001184256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001178608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001034752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001011712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000975360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000943640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000911872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000896000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000894016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000879064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000852992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000847872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000847168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000843576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000801832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000792808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000778552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000777840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000748544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000716800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000693672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000683848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000683288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000676072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000673296 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000672944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000655360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000602224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000594472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000592944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000581544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000568136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000543824 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000540200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000539184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000524208 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000501200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-05-13 07:14 - 2020-05-13 07:14 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000466344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000441584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000405424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000375520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000345016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000325432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000310928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000301064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000299064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TaskApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbroker.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000262848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000260328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchangeHost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000245336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-05-13 07:14 - 2020-05-13 07:14 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000197432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-05-13 07:14 - 2020-05-13 07:14 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsentUxClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Haptics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000132712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000124504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\socialapis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001646552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001637376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001559040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001556200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001510912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001461760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001417760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001370112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001306424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001306112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001288648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001214264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001184256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001178608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001034752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 001011712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000975360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000943640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000911872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000896000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000894016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000879064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000852992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000847872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000847168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000843576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000801832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000792808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000778552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000777840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000748544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000716800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000693672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000683848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000683288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000676072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000673296 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000672944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000655360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000602224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000594472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000592944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000581544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000568136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000543824 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000540200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000539184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000524208 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000501200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-05-13 07:14 - 2020-05-13 07:14 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000466344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000441584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000405424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000386320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000375520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000345016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000325432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000310928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000301064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000299064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TaskApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbroker.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000262848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000260328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchangeHost.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000245336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-05-13 07:14 - 2020-05-13 07:14 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000197432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-05-13 07:14 - 2020-05-13 07:14 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsentUxClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Haptics.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000132712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000124504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\socialapis.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000099104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeopleAPIs.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSSessionUX.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbussdapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Printers.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coloradapterclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000058696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ffbroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSa.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSa.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSaProxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSaProxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\localui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\plasrv.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-05-13 07:13 - 2020-05-13 07:14 - 003807232 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 017791488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 009339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007257816 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006435328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006232568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006168576 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 005280192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 004624880 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 004565456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003655680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003581752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 003371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002854400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 002504440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002354688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002072576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001943040 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001766400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001745208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001505592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001385176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001373184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001336832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001333248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001270784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001263616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001150784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001085752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001053696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001027816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001007928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000999616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000979264 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000957056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000945192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000916768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000891544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000859944 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000819696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000768000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000752584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000742200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000706544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000685368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000637480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2020-05-13 07:13 - 2020-05-13 07:13 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000547992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000460200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneOm.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000410608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000390968 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000380632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000339824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000333128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000318680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000311096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposerFramework.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000273208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000250696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000238904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Devices.Sensors.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SwitcherDataModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Haptics.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Compression.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcui.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoipRT.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000147776 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000142760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\socialapis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleAPIs.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000107616 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.Preview.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000088280 _____ (Microsoft Corporation) C:\WINDOWS\system32\coloradapterclient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbussdapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000069704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000060432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelineprxy.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeopleAPIs.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRBroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSSessionUX.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbussdapi.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Printers.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coloradapterclient.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000058696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2020-05-13 07:14 - 2020-05-13 07:14 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ffbroker.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSa.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSa.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSaProxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSaProxy.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\localui.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\plasrv.exe
2020-05-13 07:14 - 2020-05-13 07:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-13 07:14 - 2020-05-13 07:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-05-13 07:13 - 2020-05-13 07:14 - 003807232 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 017791488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 009339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 007257816 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006435328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006232568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 006168576 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 005280192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 004624880 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 004565456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003655680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003581752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 003371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002854400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 002504440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002354688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002072576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 002060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001943040 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001766400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001745208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001505592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001385176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001373184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001336832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001333248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001270784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001263616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001150784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001085752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001053696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001027816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001007928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000999616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000979264 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000957056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000945192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000916768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000891544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000859944 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000819696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000768000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000752584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000742200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000706544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000685368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000637480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2020-05-13 07:13 - 2020-05-13 07:13 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000547992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000460200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneOm.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000410608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000390968 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000380632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000339824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000333128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000318680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000311096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposerFramework.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000273208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000250696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000238904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Devices.Sensors.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SwitcherDataModel.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Haptics.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Compression.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcui.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoipRT.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000147776 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000142760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\socialapis.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleAPIs.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000107616 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.Preview.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000088280 _____ (Microsoft Corporation) C:\WINDOWS\system32\coloradapterclient.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbussdapi.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000069704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000060432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelineprxy.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsUsbGDCoInstaller.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbGD.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveTask.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-05-11 19:23 - 2020-05-11 19:23 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-05-10 13:30 - 2020-05-10 13:30 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2020-05-10 13:28 - 2020-05-10 13:28 - 001596296 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPO64.dll
2020-05-10 13:28 - 2020-05-10 13:28 - 000487576 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPOUI64.dll
2020-05-10 13:27 - 2020-05-10 13:28 - 001287728 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2020-05-10 13:27 - 2020-05-10 13:27 - 001611064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2020-05-10 13:23 - 2020-05-10 13:24 - 000406560 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2020-05-10 13:23 - 2020-05-10 13:23 - 001544360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2020-05-10 13:23 - 2020-05-10 13:23 - 001259832 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2020-05-10 13:22 - 2020-05-10 13:23 - 001372496 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000416608 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000203944 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000191064 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000191032 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000179704 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000154464 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2020-05-10 13:17 - 2020-05-10 13:17 - 001159312 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2020-05-10 13:17 - 2020-05-10 13:17 - 000378488 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2020-05-10 13:15 - 2020-05-10 13:17 - 005347096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2020-05-10 13:15 - 2020-05-10 13:15 - 002444816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2020-05-10 13:14 - 2020-05-10 13:15 - 001078576 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-05-10 13:14 - 2020-05-10 13:14 - 001180792 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-05-10 13:14 - 2020-05-10 13:14 - 001061464 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-05-10 13:13 - 2020-05-10 13:14 - 001386680 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-05-10 13:13 - 2020-05-10 13:13 - 001396840 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-05-10 13:13 - 2020-05-10 13:13 - 001294192 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-05-10 13:12 - 2020-05-10 13:13 - 000604688 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2020-05-10 13:10 - 2020-05-10 13:12 - 006270296 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 001965264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 000367712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 000316080 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2020-05-10 13:09 - 2020-05-10 13:10 - 003277000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2020-05-10 13:09 - 2020-05-10 13:09 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-05-10 13:09 - 2020-05-10 13:09 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-05-10 13:08 - 2020-05-10 13:09 - 001435032 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-05-10 13:08 - 2020-05-10 13:08 - 000467048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-05-10 13:08 - 2020-05-10 13:08 - 000381304 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-05-10 13:06 - 2020-05-10 13:07 - 003306712 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2020-05-10 13:06 - 2020-05-10 13:06 - 002197872 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2020-05-10 13:04 - 2020-05-10 13:06 - 007101848 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2020-05-10 13:04 - 2020-05-10 13:04 - 000333112 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2020-05-10 13:03 - 2020-05-10 13:04 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000692056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000118696 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000105408 _____ C:\WINDOWS\system32\audioLibVc.dll
2020-05-10 13:02 - 2020-05-10 13:03 - 001337536 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000852032 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000447072 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000122424 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-05-10 12:59 - 2020-05-10 13:00 - 003168280 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-05-10 12:58 - 2020-05-10 12:59 - 003445640 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-05-10 12:58 - 2020-05-10 12:58 - 000266656 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-05-10 12:57 - 2020-05-10 12:58 - 001110072 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-05-10 12:46 - 2020-05-10 12:57 - 038636585 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-05-10 12:46 - 2020-05-10 12:46 - 000075432 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2020-05-10 12:45 - 2020-05-10 12:46 - 000873352 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2020-05-10 12:45 - 2020-05-10 12:45 - 001382128 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2020-05-10 12:45 - 2020-05-10 12:45 - 000158592 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2020-05-10 12:37 - 2020-05-10 12:37 - 000139648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2020-05-10 12:34 - 2020-05-10 12:37 - 007178576 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000964920 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000453168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000157240 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000090064 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2020-05-10 12:33 - 2020-05-10 12:34 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2020-05-10 12:33 - 2020-05-10 12:33 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2020-05-10 12:33 - 2020-05-10 12:33 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:33 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:32 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:32 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2020-05-10 12:31 - 2020-05-10 12:32 - 000511776 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000392768 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000261344 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000260320 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000220280 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000116432 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000093800 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000090808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000088216 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000083520 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 001353216 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 000192872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-05-10 12:28 - 2020-05-10 12:29 - 003353720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000541008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000230600 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000218168 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000174832 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-05-10 12:17 - 2020-05-10 12:18 - 002930256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-05-10 12:17 - 2020-05-10 12:17 - 000023800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2020-05-10 12:16 - 2020-05-10 12:17 - 003159880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-05-10 12:15 - 2020-05-10 12:16 - 003769296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-05-10 12:12 - 2020-05-10 12:12 - 002510856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2020-05-10 12:10 - 2020-05-10 12:10 - 093069312 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 008523776 _____ C:\WINDOWS\system32\config\drivers.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000933888 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000040960 _____ C:\WINDOWS\system32\config\SAM.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000002134 _____ C:\Users\Mike\Desktop\JRiver Media Center 26.lnk
2020-05-10 12:01 - 2020-05-10 12:01 - 001162840 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2020-05-10 11:58 - 2020-05-10 11:58 - 000000040 ____H C:\0858FA365174
2020-05-10 11:53 - 2020-04-24 14:37 - 000651664 ____N (JRiver, Inc.) C:\WINDOWS\SysWOW64\MC26.exe
2020-05-10 11:53 - 2020-04-24 14:37 - 000651664 ____N (JRiver, Inc.) C:\WINDOWS\system32\MC26.exe
2020-05-10 11:04 - 2020-05-10 11:04 - 000000000 ___HD C:\$SysReset
2020-05-10 10:42 - 2020-05-10 12:28 - 072520816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-05-10 10:31 - 2020-05-10 10:32 - 003677176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-05-10 10:30 - 2020-05-10 10:30 - 000003106 _____ C:\WINDOWS\system32\Tasks\ASC_PerformanceMonitor
2020-05-10 10:29 - 2020-05-10 10:29 - 000002894 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_Mike
2020-05-10 10:28 - 2020-05-10 10:30 - 007281960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-05-10 10:27 - 2020-05-10 10:28 - 050090832 _____ (IObit ) C:\Users\Mike\Downloads\advanced-systemcare-setup.exe
2020-05-10 10:15 - 2020-05-10 11:52 - 000000432 _____ C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job
2020-05-10 10:15 - 2020-05-10 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2020-05-10 10:15 - 2020-05-10 10:15 - 005084576 _____ (Easeware ) C:\Users\Mike\Downloads\DriverEasy_Setup.exe
2020-05-10 10:15 - 2020-05-10 10:15 - 000003904 _____ C:\WINDOWS\system32\Tasks\Driver Easy Scheduled Scan
2020-05-10 10:15 - 2020-05-10 10:15 - 000001016 _____ C:\Users\Public\Desktop\Driver Easy.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000001016 _____ C:\ProgramData\Desktop\Driver Easy.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000000745 _____ C:\Users\Mike\Documents\Downloads - Shortcut.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Easeware
2020-05-10 10:15 - 2020-05-10 10:15 - 000000000 ____D C:\Program Files\Easeware
2020-05-10 10:09 - 2020-05-10 10:10 - 022303256 _____ (IObit ) C:\Users\Mike\Downloads\iobituninstaller.exe
2020-05-06 20:37 - 2020-05-06 20:37 - 000003794 _____ C:\WINDOWS\system32\Tasks\GeoComply Update Task
2020-05-06 15:37 - 2020-05-06 15:38 - 000000000 ____D C:\ProgramData\GeoComply
2020-05-06 15:37 - 2020-05-06 15:37 - 001292776 _____ (GeoComply) C:\Users\Mike\Downloads\Parx PA Player Location Check.exe
2020-05-06 15:37 - 2020-05-06 15:37 - 000000000 ____D C:\Program Files (x86)\GeoComply
2020-05-05 14:21 - 2020-05-05 14:21 - 000001992 _____ C:\Users\Mike\Desktop\TIDAL.lnk
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-30 15:25 - 2019-06-21 08:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-30 14:00 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-30 13:19 - 2019-06-21 08:14 - 000795992 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-05-30 13:19 - 2019-03-19 00:50 - 000000000 ____D C:\WINDOWS\INF
2020-05-30 13:15 - 2019-06-21 08:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-30 13:14 - 2019-03-19 00:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-05-30 13:14 - 2018-06-03 20:06 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-05-30 13:09 - 2018-06-03 19:42 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\IObit
2020-05-30 13:09 - 2018-06-03 19:41 - 000000000 ____D C:\Users\Mike\AppData\Roaming\IObit
2020-05-30 13:09 - 2018-06-03 19:41 - 000000000 ____D C:\ProgramData\IObit
2020-05-30 13:09 - 2018-06-03 19:41 - 000000000 ____D C:\Program Files (x86)\IObit
2020-05-30 13:00 - 2019-06-19 17:31 - 000000000 ____D C:\Users\Mike
2020-05-30 12:56 - 2019-03-19 00:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-05-30 12:55 - 2018-07-09 13:56 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-30 09:49 - 2019-06-21 08:13 - 000004162 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6A2DFD75-AC50-44A4-83F4-5F8808EEB42D}
2020-05-29 23:02 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-29 23:02 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-29 21:58 - 2018-06-05 02:57 - 000000000 ____D C:\Users\Mike\AppData\Roaming\qBittorrent
2020-05-29 21:58 - 2018-06-03 19:42 - 000000000 ____D C:\ProgramData\ProductData
2020-05-29 21:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\registration
2020-05-29 18:03 - 2018-06-03 00:52 - 000000000 ____D C:\Users\Mike\AppData\Local\D3DSCache
2020-05-29 18:01 - 2019-03-19 00:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-28 20:20 - 2019-06-19 04:09 - 000000000 ____D C:\Program Files\UNP
2020-05-26 07:34 - 2018-07-20 22:59 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Kodi
2020-05-17 14:37 - 2019-06-02 16:23 - 000000000 ____D C:\Users\Mike\AppData\Roaming\TIDAL
2020-05-17 08:50 - 2018-07-09 15:26 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-14 17:56 - 2018-06-03 00:14 - 000000000 ____D C:\Users\Mike\AppData\Local\Packages
2020-05-13 08:57 - 2018-06-03 00:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-05-13 08:57 - 2018-06-03 00:14 - 000000000 ___RD C:\Users\Mike\3D Objects
2020-05-13 08:56 - 2019-06-21 08:06 - 000434472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\TextInput
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\PerfLogs
2020-05-13 07:21 - 2018-06-03 17:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-05-13 07:18 - 2018-06-03 17:23 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-05-13 07:13 - 2019-06-21 08:10 - 002874880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-05-12 19:26 - 2019-10-01 22:54 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-05-12 19:26 - 2019-10-01 22:54 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\system32\DAX3
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-05-10 12:11 - 2020-02-27 23:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2020-05-10 11:59 - 2018-08-15 08:18 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\Adobe
2020-05-10 11:58 - 2018-08-20 09:33 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Adobe
2020-05-10 11:51 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-05-10 11:51 - 2018-07-14 21:02 - 000000000 ____D C:\Program Files (x86)\Steinberg
2020-05-10 11:32 - 2018-06-03 04:32 - 000000000 ____D C:\Program Files\J River
2020-05-10 10:36 - 2019-06-19 16:29 - 000000000 ___DC C:\WINDOWS\Panther
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\Program Files\WinRAR
2020-05-05 14:21 - 2019-06-02 16:23 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TIDAL
2020-05-04 16:35 - 2018-07-10 18:59 - 000000000 ____D C:\ProgramData\Packages
2020-05-01 09:30 - 2019-03-19 00:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-05-01 03:23 - 2018-06-03 00:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
==================== Files in the root of some directories ========
2018-08-20 10:05 - 2018-08-20 10:05 - 000000033 _____ () C:\Users\Mike\AppData\Roaming\AdobeWLCMCache.dat
2018-08-15 17:28 - 2018-08-15 17:28 - 000000028 _____ () C:\Users\Mike\AppData\Roaming\kulerdata.json
2018-09-27 01:46 - 2020-05-10 11:58 - 000001025 _____ () C:\Users\Mike\AppData\Local\oobelibMkey.log
2020-03-26 15:12 - 2020-03-26 15:14 - 000007604 _____ () C:\Users\Mike\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
2020-05-13 07:13 - 2020-05-13 07:13 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsUsbGDCoInstaller.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbGD.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveTask.exe
2020-05-13 07:13 - 2020-05-13 07:13 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-05-13 07:13 - 2020-05-13 07:13 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-05-13 07:13 - 2020-05-13 07:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-05-11 19:23 - 2020-05-11 19:23 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-05-10 13:30 - 2020-05-10 13:30 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2020-05-10 13:28 - 2020-05-10 13:28 - 001596296 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPO64.dll
2020-05-10 13:28 - 2020-05-10 13:28 - 000487576 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPOUI64.dll
2020-05-10 13:27 - 2020-05-10 13:28 - 001287728 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2020-05-10 13:27 - 2020-05-10 13:27 - 001611064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2020-05-10 13:23 - 2020-05-10 13:24 - 000406560 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2020-05-10 13:23 - 2020-05-10 13:23 - 001544360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2020-05-10 13:23 - 2020-05-10 13:23 - 001259832 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2020-05-10 13:22 - 2020-05-10 13:23 - 001372496 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000416608 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000203944 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000191064 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000191032 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000179704 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2020-05-10 13:22 - 2020-05-10 13:22 - 000154464 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2020-05-10 13:17 - 2020-05-10 13:17 - 001159312 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2020-05-10 13:17 - 2020-05-10 13:17 - 000378488 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2020-05-10 13:15 - 2020-05-10 13:17 - 005347096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2020-05-10 13:15 - 2020-05-10 13:15 - 002444816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2020-05-10 13:14 - 2020-05-10 13:15 - 001078576 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-05-10 13:14 - 2020-05-10 13:14 - 001180792 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-05-10 13:14 - 2020-05-10 13:14 - 001061464 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-05-10 13:13 - 2020-05-10 13:14 - 001386680 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-05-10 13:13 - 2020-05-10 13:13 - 001396840 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-05-10 13:13 - 2020-05-10 13:13 - 001294192 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-05-10 13:12 - 2020-05-10 13:13 - 000604688 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2020-05-10 13:10 - 2020-05-10 13:12 - 006270296 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 001965264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 000367712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2020-05-10 13:10 - 2020-05-10 13:10 - 000316080 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2020-05-10 13:09 - 2020-05-10 13:10 - 003277000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2020-05-10 13:09 - 2020-05-10 13:09 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-05-10 13:09 - 2020-05-10 13:09 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-05-10 13:08 - 2020-05-10 13:09 - 001435032 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-05-10 13:08 - 2020-05-10 13:08 - 000467048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-05-10 13:08 - 2020-05-10 13:08 - 000381304 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-05-10 13:06 - 2020-05-10 13:07 - 003306712 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2020-05-10 13:06 - 2020-05-10 13:06 - 002197872 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2020-05-10 13:04 - 2020-05-10 13:06 - 007101848 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2020-05-10 13:04 - 2020-05-10 13:04 - 000333112 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2020-05-10 13:03 - 2020-05-10 13:04 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000692056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000118696 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2020-05-10 13:03 - 2020-05-10 13:03 - 000105408 _____ C:\WINDOWS\system32\audioLibVc.dll
2020-05-10 13:02 - 2020-05-10 13:03 - 001337536 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000852032 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000447072 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2020-05-10 13:02 - 2020-05-10 13:02 - 000122424 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-05-10 12:59 - 2020-05-10 13:00 - 003168280 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-05-10 12:58 - 2020-05-10 12:59 - 003445640 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-05-10 12:58 - 2020-05-10 12:58 - 000266656 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-05-10 12:57 - 2020-05-10 12:58 - 001110072 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-05-10 12:46 - 2020-05-10 12:57 - 038636585 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-05-10 12:46 - 2020-05-10 12:46 - 000075432 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2020-05-10 12:45 - 2020-05-10 12:46 - 000873352 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2020-05-10 12:45 - 2020-05-10 12:45 - 001382128 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2020-05-10 12:45 - 2020-05-10 12:45 - 000158592 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2020-05-10 12:37 - 2020-05-10 12:37 - 000139648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2020-05-10 12:34 - 2020-05-10 12:37 - 007178576 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000964920 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000453168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000157240 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2020-05-10 12:34 - 2020-05-10 12:34 - 000090064 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2020-05-10 12:33 - 2020-05-10 12:34 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2020-05-10 12:33 - 2020-05-10 12:33 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2020-05-10 12:33 - 2020-05-10 12:33 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:33 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:32 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2020-05-10 12:32 - 2020-05-10 12:32 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2020-05-10 12:31 - 2020-05-10 12:32 - 000511776 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000392768 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000261344 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000260320 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000220280 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000116432 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-05-10 12:31 - 2020-05-10 12:31 - 000093800 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000090808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000088216 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2020-05-10 12:30 - 2020-05-10 12:30 - 000083520 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 001353216 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-05-10 12:29 - 2020-05-10 12:29 - 000192872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-05-10 12:28 - 2020-05-10 12:29 - 003353720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000541008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000230600 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000218168 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2020-05-10 12:28 - 2020-05-10 12:28 - 000174832 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-05-10 12:17 - 2020-05-10 12:18 - 002930256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-05-10 12:17 - 2020-05-10 12:17 - 000023800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2020-05-10 12:16 - 2020-05-10 12:17 - 003159880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-05-10 12:15 - 2020-05-10 12:16 - 003769296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-05-10 12:12 - 2020-05-10 12:12 - 002510856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2020-05-10 12:10 - 2020-05-10 12:10 - 093069312 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 008523776 _____ C:\WINDOWS\system32\config\drivers.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000933888 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000040960 _____ C:\WINDOWS\system32\config\SAM.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2020-05-10 12:10 - 2020-05-10 12:10 - 000002134 _____ C:\Users\Mike\Desktop\JRiver Media Center 26.lnk
2020-05-10 12:01 - 2020-05-10 12:01 - 001162840 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2020-05-10 11:58 - 2020-05-10 11:58 - 000000040 ____H C:\0858FA365174
2020-05-10 11:53 - 2020-04-24 14:37 - 000651664 ____N (JRiver, Inc.) C:\WINDOWS\SysWOW64\MC26.exe
2020-05-10 11:53 - 2020-04-24 14:37 - 000651664 ____N (JRiver, Inc.) C:\WINDOWS\system32\MC26.exe
2020-05-10 11:04 - 2020-05-10 11:04 - 000000000 ___HD C:\$SysReset
2020-05-10 10:42 - 2020-05-10 12:28 - 072520816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-05-10 10:31 - 2020-05-10 10:32 - 003677176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-05-10 10:30 - 2020-05-10 10:30 - 000003106 _____ C:\WINDOWS\system32\Tasks\ASC_PerformanceMonitor
2020-05-10 10:29 - 2020-05-10 10:29 - 000002894 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_Mike
2020-05-10 10:28 - 2020-05-10 10:30 - 007281960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-05-10 10:27 - 2020-05-10 10:28 - 050090832 _____ (IObit ) C:\Users\Mike\Downloads\advanced-systemcare-setup.exe
2020-05-10 10:15 - 2020-05-10 11:52 - 000000432 _____ C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job
2020-05-10 10:15 - 2020-05-10 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2020-05-10 10:15 - 2020-05-10 10:15 - 005084576 _____ (Easeware ) C:\Users\Mike\Downloads\DriverEasy_Setup.exe
2020-05-10 10:15 - 2020-05-10 10:15 - 000003904 _____ C:\WINDOWS\system32\Tasks\Driver Easy Scheduled Scan
2020-05-10 10:15 - 2020-05-10 10:15 - 000001016 _____ C:\Users\Public\Desktop\Driver Easy.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000001016 _____ C:\ProgramData\Desktop\Driver Easy.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000000745 _____ C:\Users\Mike\Documents\Downloads - Shortcut.lnk
2020-05-10 10:15 - 2020-05-10 10:15 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Easeware
2020-05-10 10:15 - 2020-05-10 10:15 - 000000000 ____D C:\Program Files\Easeware
2020-05-10 10:09 - 2020-05-10 10:10 - 022303256 _____ (IObit ) C:\Users\Mike\Downloads\iobituninstaller.exe
2020-05-06 20:37 - 2020-05-06 20:37 - 000003794 _____ C:\WINDOWS\system32\Tasks\GeoComply Update Task
2020-05-06 15:37 - 2020-05-06 15:38 - 000000000 ____D C:\ProgramData\GeoComply
2020-05-06 15:37 - 2020-05-06 15:37 - 001292776 _____ (GeoComply) C:\Users\Mike\Downloads\Parx PA Player Location Check.exe
2020-05-06 15:37 - 2020-05-06 15:37 - 000000000 ____D C:\Program Files (x86)\GeoComply
2020-05-05 14:21 - 2020-05-05 14:21 - 000001992 _____ C:\Users\Mike\Desktop\TIDAL.lnk
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-30 15:25 - 2019-06-21 08:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-30 14:00 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-30 13:19 - 2019-06-21 08:14 - 000795992 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-05-30 13:19 - 2019-03-19 00:50 - 000000000 ____D C:\WINDOWS\INF
2020-05-30 13:15 - 2019-06-21 08:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-30 13:14 - 2019-03-19 00:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-05-30 13:14 - 2018-06-03 20:06 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-05-30 13:09 - 2018-06-03 19:42 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\IObit
2020-05-30 13:09 - 2018-06-03 19:41 - 000000000 ____D C:\Users\Mike\AppData\Roaming\IObit
2020-05-30 13:09 - 2018-06-03 19:41 - 000000000 ____D C:\ProgramData\IObit
2020-05-30 13:09 - 2018-06-03 19:41 - 000000000 ____D C:\Program Files (x86)\IObit
2020-05-30 13:00 - 2019-06-19 17:31 - 000000000 ____D C:\Users\Mike
2020-05-30 12:56 - 2019-03-19 00:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-05-30 12:55 - 2018-07-09 13:56 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-30 09:49 - 2019-06-21 08:13 - 000004162 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6A2DFD75-AC50-44A4-83F4-5F8808EEB42D}
2020-05-29 23:02 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-29 23:02 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-29 21:58 - 2018-06-05 02:57 - 000000000 ____D C:\Users\Mike\AppData\Roaming\qBittorrent
2020-05-29 21:58 - 2018-06-03 19:42 - 000000000 ____D C:\ProgramData\ProductData
2020-05-29 21:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\registration
2020-05-29 18:03 - 2018-06-03 00:52 - 000000000 ____D C:\Users\Mike\AppData\Local\D3DSCache
2020-05-29 18:01 - 2019-03-19 00:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-28 20:20 - 2019-06-19 04:09 - 000000000 ____D C:\Program Files\UNP
2020-05-26 07:34 - 2018-07-20 22:59 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Kodi
2020-05-17 14:37 - 2019-06-02 16:23 - 000000000 ____D C:\Users\Mike\AppData\Roaming\TIDAL
2020-05-17 08:50 - 2018-07-09 15:26 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-14 17:56 - 2018-06-03 00:14 - 000000000 ____D C:\Users\Mike\AppData\Local\Packages
2020-05-13 08:57 - 2018-06-03 00:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-05-13 08:57 - 2018-06-03 00:14 - 000000000 ___RD C:\Users\Mike\3D Objects
2020-05-13 08:56 - 2019-06-21 08:06 - 000434472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\TextInput
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-05-13 08:56 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-05-13 08:55 - 2019-03-19 00:52 - 000000000 ____D C:\PerfLogs
2020-05-13 07:21 - 2018-06-03 17:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-05-13 07:18 - 2018-06-03 17:23 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-05-13 07:13 - 2019-06-21 08:10 - 002874880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-05-12 19:26 - 2019-10-01 22:54 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-05-12 19:26 - 2019-10-01 22:54 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\system32\DAX3
2020-05-10 13:29 - 2018-12-20 20:26 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-05-10 12:11 - 2020-02-27 23:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2020-05-10 11:59 - 2018-08-15 08:18 - 000000000 ____D C:\Users\Mike\AppData\LocalLow\Adobe
2020-05-10 11:58 - 2018-08-20 09:33 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Adobe
2020-05-10 11:51 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-05-10 11:51 - 2018-07-14 21:02 - 000000000 ____D C:\Program Files (x86)\Steinberg
2020-05-10 11:32 - 2018-06-03 04:32 - 000000000 ____D C:\Program Files\J River
2020-05-10 10:36 - 2019-06-19 16:29 - 000000000 ___DC C:\WINDOWS\Panther
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-10 10:17 - 2019-03-10 20:35 - 000000000 ____D C:\Program Files\WinRAR
2020-05-05 14:21 - 2019-06-02 16:23 - 000000000 ____D C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TIDAL
2020-05-04 16:35 - 2018-07-10 18:59 - 000000000 ____D C:\ProgramData\Packages
2020-05-01 09:30 - 2019-03-19 00:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-05-01 03:23 - 2018-06-03 00:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
==================== Files in the root of some directories ========
2018-08-20 10:05 - 2018-08-20 10:05 - 000000033 _____ () C:\Users\Mike\AppData\Roaming\AdobeWLCMCache.dat
2018-08-15 17:28 - 2018-08-15 17:28 - 000000028 _____ () C:\Users\Mike\AppData\Roaming\kulerdata.json
2018-09-27 01:46 - 2020-05-10 11:58 - 000001025 _____ () C:\Users\Mike\AppData\Local\oobelibMkey.log
2020-03-26 15:12 - 2020-03-26 15:14 - 000007604 _____ () C:\Users\Mike\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
Dditional scan result of Farbar Recovery Scan Tool (x64) Version: 30-05-2020 01
Ran by Mike (30-05-2020 15:29:06)
Running from C:\Users\Mike\Desktop
Windows 10 Home Version 1909 18363.836 (X64) (2019-06-21 12:14:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3731582141-3865585816-3021926908-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3731582141-3865585816-3021926908-503 - Limited - Disabled)
Guest (S-1-5-21-3731582141-3865585816-3021926908-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3731582141-3865585816-3021926908-1003 - Limited - Enabled)
Mike (S-1-5-21-3731582141-3865585816-3021926908-1001 - Administrator - Enabled) => C:\Users\Mike
WDAGUtilityAccount (S-1-5-21-3731582141-3865585816-3021926908-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.009.20065 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.6.0.384 - Adobe Systems Incorporated)
Adobe InDesign CC 2018 (HKLM-x32\...\IDSN_13_1) (Version: 13.1 - Adobe Systems Incorporated)
Adobe Photoshop CS6 version 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD OverDrive (HKLM-x32\...\{EEB605FD-C5F5-4946-90F3-D65C604A9187}) (Version: 4.3.1.0698 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{FE296942-D2D3-4149-8895-60655FE4CFDE}) (Version: 3.49.9800.0000 - Google, Inc.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.190.0.5002 - BlueStack Systems, Inc.)
Driver Easy 5.6.14 (HKLM\...\DriverEasy_is1) (Version: 5.6.14 - Easeware)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.61 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
JRiver Media Center 26 (64-bit) (HKLM\...\Media Center 26 (64-bit)) (Version: 26 - JRiver, Inc.)
Kodi (HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Kodi) (Version: - XBMC Foundation)
LG Bridge (HKLM-x32\...\LG Bridge) (Version: 1.2.46 - LG Electronics)
LG Mobile Drivers (HKLM-x32\...\{C3C008A7-D4A5-4E19-B0D6-72043D6EFE34}) (Version: 4.2.0 - LG Electronics)
Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.114 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Player Location Check (HKLM-x32\...\{F0753064-8D66-41A7-9F23-7691290387BF}) (Version: 3.1.1.3 - GeoComply)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8899.1 - Realtek Semiconductor Corp.)
RogueKiller version 14.5.0.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.5.0.0 - Adlice Software)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.2.1.1780 - Samsung Electronics)
TIDAL (HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\TIDAL) (Version: 2.17.0 - TIDAL Music AS)
Topping USB Audio Device Driver v4.67.0 (HKLM-x32\...\Software_Topping_Topping_UsbAudio_Driver_Setup) (Version: 4.67.0 - Topping)
TP-LINK TL-WN821N(C)_TL-WN822N_TL-WN823N Driver (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
Voxengo Tube Amp (HKLM\...\Voxengo Tube Amp_is1) (Version: 2.5 - Voxengo)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
XFINITY WiFi (HKLM-x32\...\{E8B0DF22-4FF2-4979-ABE1-D91E5066390E}) (Version: 1.2.59 - Comcast)
Packages:
=========
Adobe XD CC -> C:\Program Files\WindowsApps\Adobe.CC.XD_10.0.12.9_x64__adky2gkssdxte [2020-05-29] (Adobe Systems Incorporated)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2020-05-29] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.8.5.0_x86__kgqvnymyfvs32 [2020-05-29] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.168.200.0_x86__kgqvnymyfvs32 [2020-05-29] (king.com)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_5.0.0.8_x86__h6adky7gbf63m [2020-05-29] (Gameloft SE)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-05-29] (Dolby Laboratories)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.35.3501.0_x86__ytsefhwckbdv6 [2020-05-29] (G5 Entertainment AB)
Lyft -> C:\Program Files\WindowsApps\Lyft.Lyft_1.1.6.0_neutral__gfn3ervfxyf5e [2020-05-29] (L/yft)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.39.21431.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Studios) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-05-29] (Adobe Systems Incorporated)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0 [2020-05-29] (Spotify AB) [Startup Task]
TIDAL -> C:\Program Files\WindowsApps\WiMPMusic.27241E05630EA_2.17.0.0_x86__kn85bz84x7te4 [2020-05-29] (TIDAL Music AS)
Watch NFL Network -> C:\Program Files\WindowsApps\NFLEnterprisesLLC.WatchNFLNetwork_1.1.0.1_x86__fdrtsdpy8475t [2020-05-29] (NFL Enterprises LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
SSODL: EldosMountNotificator-cbfs6 - {18A70596-4754-4FA5-A475-D17960F43DB9} - C:\WINDOWS\system32\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {18A70596-4754-4FA5-A475-D17960F43DB9} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects: Virtual Storage Mount Notification -> {18A70596-4754-4FA5-A475-D17960F43DB9} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {18A70596-4754-4FA5-A475-D17960F43DB9} => C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] -> {7105DBEA-C1B0-4609-9A10-222D175F814F} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] -> {7105DBEA-C1B0-4609-9A10-222D175F814F} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-30] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-30] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Mike\Live TV.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=aoanbhbcmafiabhdaembhjcecpdonnnf
ShortcutWithArgument: C:\Users\Mike\Desktop\Xfinity.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=benldnjbfkmhelbenngebjgnkbpeneeb
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Live TV.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=aoanbhbcmafiabhdaembhjcecpdonnnf
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Netflix.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=eppojlglocelodeimnohnlnionkobfln
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Xfinity.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=benldnjbfkmhelbenngebjgnkbpeneeb
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\bootTel.dat:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Mike\Desktop\desktop.ini:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-11 19:38 - 2018-04-11 19:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mike\Downloads\433003.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{FF5ACC65-0720-4E10-A013-A785D29E4FEC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE6152BB-64CA-434D-934E-882FA6EE022D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0A5A71C1-0F79-40B7-8D3F-38B4C4072C94}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE2E38EA-DCC0-4E93-8401-7CC162030E9C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{AA6E552B-C0CA-4DD2-8283-A6D053D6F669}C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe] => (Allow) C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe (LG Electronics Inc. -> LG Electronics)
FirewallRules: [UDP Query User{A31DE5D1-C245-46CC-92EE-F26E6AE34A19}C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe] => (Allow) C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe (LG Electronics Inc. -> LG Electronics)
FirewallRules: [TCP Query User{C491B4A1-F28E-46BA-8282-25E88F8AD9CD}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{991D968C-4566-4261-98A6-66E9815D98D1}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{FEFCE797-E08E-4446-A5F0-9BEF6BFE1791}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{39158852-9AFB-4AC1-B203-B4B1BF8C7A75}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{183DE1E9-476D-49D0-9692-EA8537668968}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{91CB2380-727F-4742-93CA-7B5D9932A321}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{CC6E4CC2-D364-4B7A-9B8D-05ACD75BA450}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5CE84578-157E-4D11-BFBA-680A3E7989C5}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{C474E45A-674C-4DE9-A976-AF3A9B52D1D5}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{71BEF298-58FE-4539-855E-4B6A0CB1A468}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{80A32BA3-91F9-49C1-BCFC-6B540CC89A3A}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [{DC6D0C93-A029-4BCE-9B68-86EE58C6CDE1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{290BD520-16C6-49B1-9443-2C363C8A40C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E60BDC1A-D0C8-46AB-BE97-B4DB9EA2D4CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ABD31511-10BB-4E5A-8EA8-59F833E66A3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FD757C68-C1F0-4C84-97CA-A5EE41B1B539}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CD0ECA3F-A4FF-4C23-9645-4902B00AAE20}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EDD5B4AE-1F12-4241-8FB4-7121C9DC0BC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B9C20D6E-B1E4-4E2D-95AF-63AE2C1EB503}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32AA0894-6F40-4604-A065-D46739CE5F96}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
30-05-2020 13:01:17 IObit Software Updater restore point
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/30/2020 01:30:39 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6584,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 01:22:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5064,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 01:02:40 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (05/30/2020 12:55:49 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4100,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 12:46:44 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1836,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 12:08:06 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7892,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 11:08:06 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7248,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 10:07:12 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5432,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (05/30/2020 02:02:06 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/30/2020 01:15:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:15:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:15:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:15:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:15:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:13:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Malwarebytes Service service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:10:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMService service failed to start due to the following error:
The system cannot find the file specified.
Windows Defender:
===================================
Date: 2020-05-30 08:24:00.213
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {71DAE96B-19D2-412F-846B-FB5DE0401549}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-24 19:13:21.811
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {08507B71-FC9E-40F2-BC6B-0134FF31E747}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-11 19:37:45.051
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {F7047E5C-FD21-498C-8B9F-71BECB15CA0A}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-29 18:33:40.315
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.317.220.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17100.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2020-05-29 18:23:04.018
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.317.220.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17100.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2020-05-29 17:58:43.152
Description:
Windows Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0
CodeIntegrity:
===================================
Date: 2019-07-18 08:28:02.238
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.231
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.222
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.214
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.208
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.196
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.180
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.174
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
==================== Memory info ===========================
BIOS: American Megatrends Inc. P1.40 03/26/2013
Motherboard: ASRock FM2A85X-ITX
Processor: AMD A10-6700 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 42%
Total physical RAM: 7628.13 MB
Available physical RAM: 4350.65 MB
Total Virtual: 8844.13 MB
Available Virtual: 5464.3 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:110.99 GB) (Free:59.65 GB) NTFS
Drive e: (Storage HD) (Fixed) (Total:476.92 GB) (Free:338.31 GB) NTFS
\\?\Volume{53408ae7-66ba-11e8-824c-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.34 GB) (Free:0.09 GB) NTFS
\\?\Volume{c7ad3052-0000-0000-0000-40d51b000000}\ () (Fixed) (Total:0.46 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: C7AD3052)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=467 MB) - (Type=27)
==================== End of Addition.txt =======================
Ran by Mike (30-05-2020 15:29:06)
Running from C:\Users\Mike\Desktop
Windows 10 Home Version 1909 18363.836 (X64) (2019-06-21 12:14:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3731582141-3865585816-3021926908-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3731582141-3865585816-3021926908-503 - Limited - Disabled)
Guest (S-1-5-21-3731582141-3865585816-3021926908-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3731582141-3865585816-3021926908-1003 - Limited - Enabled)
Mike (S-1-5-21-3731582141-3865585816-3021926908-1001 - Administrator - Enabled) => C:\Users\Mike
WDAGUtilityAccount (S-1-5-21-3731582141-3865585816-3021926908-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.009.20065 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.6.0.384 - Adobe Systems Incorporated)
Adobe InDesign CC 2018 (HKLM-x32\...\IDSN_13_1) (Version: 13.1 - Adobe Systems Incorporated)
Adobe Photoshop CS6 version 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD OverDrive (HKLM-x32\...\{EEB605FD-C5F5-4946-90F3-D65C604A9187}) (Version: 4.3.1.0698 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{FE296942-D2D3-4149-8895-60655FE4CFDE}) (Version: 3.49.9800.0000 - Google, Inc.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.190.0.5002 - BlueStack Systems, Inc.)
Driver Easy 5.6.14 (HKLM\...\DriverEasy_is1) (Version: 5.6.14 - Easeware)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.61 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
JRiver Media Center 26 (64-bit) (HKLM\...\Media Center 26 (64-bit)) (Version: 26 - JRiver, Inc.)
Kodi (HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\Kodi) (Version: - XBMC Foundation)
LG Bridge (HKLM-x32\...\LG Bridge) (Version: 1.2.46 - LG Electronics)
LG Mobile Drivers (HKLM-x32\...\{C3C008A7-D4A5-4E19-B0D6-72043D6EFE34}) (Version: 4.2.0 - LG Electronics)
Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.114 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Player Location Check (HKLM-x32\...\{F0753064-8D66-41A7-9F23-7691290387BF}) (Version: 3.1.1.3 - GeoComply)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8899.1 - Realtek Semiconductor Corp.)
RogueKiller version 14.5.0.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.5.0.0 - Adlice Software)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.2.1.1780 - Samsung Electronics)
TIDAL (HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\TIDAL) (Version: 2.17.0 - TIDAL Music AS)
Topping USB Audio Device Driver v4.67.0 (HKLM-x32\...\Software_Topping_Topping_UsbAudio_Driver_Setup) (Version: 4.67.0 - Topping)
TP-LINK TL-WN821N(C)_TL-WN822N_TL-WN823N Driver (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
Voxengo Tube Amp (HKLM\...\Voxengo Tube Amp_is1) (Version: 2.5 - Voxengo)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
XFINITY WiFi (HKLM-x32\...\{E8B0DF22-4FF2-4979-ABE1-D91E5066390E}) (Version: 1.2.59 - Comcast)
Packages:
=========
Adobe XD CC -> C:\Program Files\WindowsApps\Adobe.CC.XD_10.0.12.9_x64__adky2gkssdxte [2020-05-29] (Adobe Systems Incorporated)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2020-05-29] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.8.5.0_x86__kgqvnymyfvs32 [2020-05-29] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.168.200.0_x86__kgqvnymyfvs32 [2020-05-29] (king.com)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_5.0.0.8_x86__h6adky7gbf63m [2020-05-29] (Gameloft SE)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-05-29] (Dolby Laboratories)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.35.3501.0_x86__ytsefhwckbdv6 [2020-05-29] (G5 Entertainment AB)
Lyft -> C:\Program Files\WindowsApps\Lyft.Lyft_1.1.6.0_neutral__gfn3ervfxyf5e [2020-05-29] (L/yft)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.39.21431.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Studios) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-05-29] (Microsoft Corporation) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-05-29] (Adobe Systems Incorporated)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0 [2020-05-29] (Spotify AB) [Startup Task]
TIDAL -> C:\Program Files\WindowsApps\WiMPMusic.27241E05630EA_2.17.0.0_x86__kn85bz84x7te4 [2020-05-29] (TIDAL Music AS)
Watch NFL Network -> C:\Program Files\WindowsApps\NFLEnterprisesLLC.WatchNFLNetwork_1.1.0.1_x86__fdrtsdpy8475t [2020-05-29] (NFL Enterprises LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
SSODL: EldosMountNotificator-cbfs6 - {18A70596-4754-4FA5-A475-D17960F43DB9} - C:\WINDOWS\system32\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {18A70596-4754-4FA5-A475-D17960F43DB9} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects: Virtual Storage Mount Notification -> {18A70596-4754-4FA5-A475-D17960F43DB9} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {18A70596-4754-4FA5-A475-D17960F43DB9} => C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] -> {7105DBEA-C1B0-4609-9A10-222D175F814F} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] -> {7105DBEA-C1B0-4609-9A10-222D175F814F} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-30] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-30] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Mike\Live TV.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=aoanbhbcmafiabhdaembhjcecpdonnnf
ShortcutWithArgument: C:\Users\Mike\Desktop\Xfinity.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=benldnjbfkmhelbenngebjgnkbpeneeb
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Live TV.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=aoanbhbcmafiabhdaembhjcecpdonnnf
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Netflix.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=eppojlglocelodeimnohnlnionkobfln
ShortcutWithArgument: C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Xfinity.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=benldnjbfkmhelbenngebjgnkbpeneeb
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\bootTel.dat:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Mike\Desktop\desktop.ini:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-11 19:38 - 2018-04-11 19:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mike\Downloads\433003.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-3731582141-3865585816-3021926908-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{FF5ACC65-0720-4E10-A013-A785D29E4FEC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE6152BB-64CA-434D-934E-882FA6EE022D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0A5A71C1-0F79-40B7-8D3F-38B4C4072C94}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE2E38EA-DCC0-4E93-8401-7CC162030E9C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{AA6E552B-C0CA-4DD2-8283-A6D053D6F669}C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe] => (Allow) C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe (LG Electronics Inc. -> LG Electronics)
FirewallRules: [UDP Query User{A31DE5D1-C245-46CC-92EE-F26E6AE34A19}C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe] => (Allow) C:\program files (x86)\lg electronics\lg bridge\lgbridge.exe (LG Electronics Inc. -> LG Electronics)
FirewallRules: [TCP Query User{C491B4A1-F28E-46BA-8282-25E88F8AD9CD}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{991D968C-4566-4261-98A6-66E9815D98D1}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{FEFCE797-E08E-4446-A5F0-9BEF6BFE1791}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{39158852-9AFB-4AC1-B203-B4B1BF8C7A75}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{183DE1E9-476D-49D0-9692-EA8537668968}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{91CB2380-727F-4742-93CA-7B5D9932A321}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{CC6E4CC2-D364-4B7A-9B8D-05ACD75BA450}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5CE84578-157E-4D11-BFBA-680A3E7989C5}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{C474E45A-674C-4DE9-A976-AF3A9B52D1D5}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{71BEF298-58FE-4539-855E-4B6A0CB1A468}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{80A32BA3-91F9-49C1-BCFC-6B540CC89A3A}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [{DC6D0C93-A029-4BCE-9B68-86EE58C6CDE1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{290BD520-16C6-49B1-9443-2C363C8A40C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E60BDC1A-D0C8-46AB-BE97-B4DB9EA2D4CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ABD31511-10BB-4E5A-8EA8-59F833E66A3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FD757C68-C1F0-4C84-97CA-A5EE41B1B539}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CD0ECA3F-A4FF-4C23-9645-4902B00AAE20}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EDD5B4AE-1F12-4241-8FB4-7121C9DC0BC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B9C20D6E-B1E4-4E2D-95AF-63AE2C1EB503}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32AA0894-6F40-4604-A065-D46739CE5F96}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
30-05-2020 13:01:17 IObit Software Updater restore point
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/30/2020 01:30:39 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6584,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 01:22:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5064,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 01:02:40 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (05/30/2020 12:55:49 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4100,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 12:46:44 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1836,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 12:08:06 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7892,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 11:08:06 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7248,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/30/2020 10:07:12 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5432,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (05/30/2020 02:02:06 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/30/2020 01:15:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:15:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:15:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:15:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:15:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMChameleon service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:13:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Malwarebytes Service service failed to start due to the following error:
The system cannot find the file specified.
Error: (05/30/2020 01:10:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMService service failed to start due to the following error:
The system cannot find the file specified.
Windows Defender:
===================================
Date: 2020-05-30 08:24:00.213
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {71DAE96B-19D2-412F-846B-FB5DE0401549}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-24 19:13:21.811
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {08507B71-FC9E-40F2-BC6B-0134FF31E747}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-11 19:37:45.051
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {F7047E5C-FD21-498C-8B9F-71BECB15CA0A}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-05-29 18:33:40.315
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.317.220.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17100.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2020-05-29 18:23:04.018
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.317.220.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17100.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2020-05-29 17:58:43.152
Description:
Windows Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0
CodeIntegrity:
===================================
Date: 2019-07-18 08:28:02.238
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.231
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.222
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.214
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.208
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.196
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.180
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
Date: 2019-07-18 08:28:02.174
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.
==================== Memory info ===========================
BIOS: American Megatrends Inc. P1.40 03/26/2013
Motherboard: ASRock FM2A85X-ITX
Processor: AMD A10-6700 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 42%
Total physical RAM: 7628.13 MB
Available physical RAM: 4350.65 MB
Total Virtual: 8844.13 MB
Available Virtual: 5464.3 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:110.99 GB) (Free:59.65 GB) NTFS
Drive e: (Storage HD) (Fixed) (Total:476.92 GB) (Free:338.31 GB) NTFS
\\?\Volume{53408ae7-66ba-11e8-824c-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.34 GB) (Free:0.09 GB) NTFS
\\?\Volume{c7ad3052-0000-0000-0000-40d51b000000}\ () (Fixed) (Total:0.46 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: C7AD3052)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=467 MB) - (Type=27)
==================== End of Addition.txt =======================
Broni
Posts: 56,041 +516
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
Fix result of Farbar Recovery Scan Tool (x64) Version: 30-05-2020 01
Ran by Mike (30-05-2020 17:28:34) Run:1
Running from C:\Users\Mike\Desktop
Loaded Profiles: Mike
Boot Mode: Normal
==============================================
fixlist content:
*****************
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
2018-08-20 10:05 - 2018-08-20 10:05 - 000000033 _____ () C:\Users\Mike\AppData\Roaming\AdobeWLCMCache.dat
2018-08-15 17:28 - 2018-08-15 17:28 - 000000028 _____ () C:\Users\Mike\AppData\Roaming\kulerdata.json
2018-09-27 01:46 - 2020-05-10 11:58 - 000001025 _____ () C:\Users\Mike\AppData\Local\oobelibMkey.log
2020-03-26 15:12 - 2020-03-26 15:14 - 000007604 _____ () C:\Users\Mike\AppData\Local\resmon.resmoncfg
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
AlternateDataStreams: C:\bootTel.dat:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Mike\Desktop\desktop.ini:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
*****************
HKLM\System\CurrentControlSet\Services\AscFileFilter => removed successfully
AscFileFilter => service removed successfully
HKLM\System\CurrentControlSet\Services\AscRegistryFilter => removed successfully
AscRegistryFilter => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz148 => removed successfully
cpuz148 => service removed successfully
C:\Users\Mike\AppData\Roaming\AdobeWLCMCache.dat => moved successfully
C:\Users\Mike\AppData\Roaming\kulerdata.json => moved successfully
C:\Users\Mike\AppData\Local\oobelibMkey.log => moved successfully
C:\Users\Mike\AppData\Local\resmon.resmoncfg => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\IObitUnstaler => removed successfully
HKLM\Software\Classes\CLSID\{836AB26C-2DE4-41D3-AC24-4C6C2699B960} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\IObitUnstaler => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\IObitUnstaler => removed successfully
C:\bootTel.dat => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\Mike\Desktop\desktop.ini => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
==== End of Fixlog 17:28:34 ====
Ran by Mike (30-05-2020 17:28:34) Run:1
Running from C:\Users\Mike\Desktop
Loaded Profiles: Mike
Boot Mode: Normal
==============================================
fixlist content:
*****************
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
2018-08-20 10:05 - 2018-08-20 10:05 - 000000033 _____ () C:\Users\Mike\AppData\Roaming\AdobeWLCMCache.dat
2018-08-15 17:28 - 2018-08-15 17:28 - 000000028 _____ () C:\Users\Mike\AppData\Roaming\kulerdata.json
2018-09-27 01:46 - 2020-05-10 11:58 - 000001025 _____ () C:\Users\Mike\AppData\Local\oobelibMkey.log
2020-03-26 15:12 - 2020-03-26 15:14 - 000007604 _____ () C:\Users\Mike\AppData\Local\resmon.resmoncfg
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
AlternateDataStreams: C:\bootTel.dat:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Mike\Desktop\desktop.ini:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
*****************
HKLM\System\CurrentControlSet\Services\AscFileFilter => removed successfully
AscFileFilter => service removed successfully
HKLM\System\CurrentControlSet\Services\AscRegistryFilter => removed successfully
AscRegistryFilter => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz148 => removed successfully
cpuz148 => service removed successfully
C:\Users\Mike\AppData\Roaming\AdobeWLCMCache.dat => moved successfully
C:\Users\Mike\AppData\Roaming\kulerdata.json => moved successfully
C:\Users\Mike\AppData\Local\oobelibMkey.log => moved successfully
C:\Users\Mike\AppData\Local\resmon.resmoncfg => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\IObitUnstaler => removed successfully
HKLM\Software\Classes\CLSID\{836AB26C-2DE4-41D3-AC24-4C6C2699B960} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\IObitUnstaler => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\IObitUnstaler => removed successfully
C:\bootTel.dat => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\Mike\Desktop\desktop.ini => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
==== End of Fixlog 17:28:34 ====
Broni
Posts: 56,041 +516
Last scans...
Download Security Check from here or here and save it to your Desktop.
NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
Make sure the following options are checked:
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.
Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
Download Sophos Free Virus Removal Tool and save it to your desktop.
- Double-click SecurityCheck.exe
- Follow the onscreen instructions inside of the black box.
- A Notepad document should open automatically called checkup.txt; please post the contents of that document.
NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run
Make sure the following options are checked:
- Internet Services
- Windows Firewall
- System Restore
- Security Center
- Windows Update
- Windows Defender
- Other Services
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
- Double click on TFC.exe to run the program.
- Click on Start button to begin cleaning process.
- TFC will close all running programs, and it may ask you to restart computer.
- Double click the icon and select Run
- Click Next
- Select I accept the terms in this license agreement, then click Next twice
- Click Install
- Click Finish to launch the program
- Once the virus database has been updated click Start Scanning
- If any threats are found click Details, then View log file... (bottom left hand corner)
- Copy and paste the results in your reply
- Close the Notepad document, close the Threat Details screen, then click Start cleanup
- Click Exit to close the program
Results of screen317's Security Check version 1.014 --- 12/23/15
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Defender
Malwarebytes
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Google Chrome (83.0.4103.61)
Google Chrome (SetupMetrics...)
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamtray.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Defender
Malwarebytes
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Google Chrome (83.0.4103.61)
Google Chrome (SetupMetrics...)
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamtray.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
Farbar Service Scanner Version: 14-12-2019
Ran by Mike (administrator) on 30-05-2020 at 22:15:35
Running from "C:\Users\Mike\Downloads"
Microsoft Windows 10 Home (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Policy:
========================
Security Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe"".
Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****
Ran by Mike (administrator) on 30-05-2020 at 22:15:35
Running from "C:\Users\Mike\Downloads"
Microsoft Windows 10 Home (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Policy:
========================
Security Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe"".
Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****
Broni
Posts: 56,041 +516
Your computer is clean
1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
[COLOR=#ff0000][B]This is a very crucial step so make sure you don't skip it.[/B][/COLOR]
Download [IMG]http://www.imgdumper.nl/uploads6/51a5ce45267c1/51a5ce45263de-delfix.pngDelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.
Double-click Delfix.exe to start the tool.
Make sure the following items are checked:
Once finished a logfile will be created. You don't have to attach it to your next reply.
2. Make sure Windows Updates are current.
3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!
4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Scan without installing plugin" and then on "Scan now")
5. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.
6. Run Temporary File Cleaner (TFC) and AdwCleaner weekly (you need to redownload these tools since they were removed by DelFix).
7. (optional) If you want to keep all your programs up to date, download and install FileHippo App Manager.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.
8. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.
9. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/for...curity-questions-best-practices/#entry3187642
10. Please, let me know, how your computer is doing.
1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
[COLOR=#ff0000][B]This is a very crucial step so make sure you don't skip it.[/B][/COLOR]
Download [IMG]http://www.imgdumper.nl/uploads6/51a5ce45267c1/51a5ce45263de-delfix.pngDelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.
Double-click Delfix.exe to start the tool.
Make sure the following items are checked:
- Activate UAC (optional; some users prefer to keep it off)
- Remove disinfection tools
- Create registry backup
- Purge System Restore
- Reset system settings
Once finished a logfile will be created. You don't have to attach it to your next reply.
2. Make sure Windows Updates are current.
3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!
4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Scan without installing plugin" and then on "Scan now")
5. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.
6. Run Temporary File Cleaner (TFC) and AdwCleaner weekly (you need to redownload these tools since they were removed by DelFix).
7. (optional) If you want to keep all your programs up to date, download and install FileHippo App Manager.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.
8. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.
9. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/for...curity-questions-best-practices/#entry3187642
10. Please, let me know, how your computer is doing.
