Inactive The specified service does not exist as an installed service

J

justech

Posts: 11   +0
Background scenario:
My laptop was previously affected by ALKA ransomware. Removed the malware and virus using Spyhunter Free. Check my computer again using Malwarebytes and 360 antivirus just to be sure. The laptop now is functioning like normal.

Problem encountered:
I wanted to update the windows 7. Previously my win7 home premium is only Version 6.1 (Build 7600) but the windows update doesn't work (...service is not running) so I did option 2 following instructions from this site --> https://www.sevenforums.com/tutorials/91738-windows-update-reset.html.

Update still did't work.

Just installed SP1 following instructions from this site --> https://www.howtogeek.com/255435/ho...l-at-once-with-microsofts-convenience-rollup/
While at step 3, I downloaded the Servicing Stack Update for 32-bit. But the preparation for installation stopped with this error:
"Installer encountered an error: 0x80070424
The specified service does not exist as an installed service."

I also tried updating Internet Explorer 8 to IE11 but encountered the same error.

Please help. Is it because of a hidden virus?
 
Last edited:
Brand: LENOVO 20042
Platform: Microsoft Windows 7 Home Premium (X86)

Use: This laptop is for doing research and reports for school, occasional browsing, for watching videos, and storage of pictures/files (can't be opened anymore because it was encrypted with an online key). I don't remember if we have used this for online banking and other important stuff.

I just uninstalled 360 antivirus cause it kept me from updating Malwarebytes (currently using just the free version, updated today).

Will paste the logs after this, FRST is currently scanning. Thank you.
 
FRST result (1st part)
----------------------------------------------------------------------------------------------------------------------------------------
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-03-2020
Ran by User (administrator) on USER-PC (LENOVO 20042) (02-04-2020 14:44:55)
Running from C:\Users\User\Desktop
Loaded Profiles: User (Available Profiles: User)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Ginger Software) [File not signed] C:\Program Files\Ginger\GingerServices\GingerServices.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.599\SSScheduler.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Microsoft Windows Hardware Compatibility Publisher -> Silicon Motion) C:\Windows\SMIKsSTI.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RP7.EXE
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_TATIN2E.EXE

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2685768 2014-04-02] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [SMI_SSE_V5] => C:\Windows\SMIKsSTI.EXE [217088 2009-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Motion)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TATIN2E.EXE [262208 2014-03-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\MountPoints2: {02cea171-8865-11e7-9c5c-c0f8dac856e8} - F:\autorun.exe
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\MountPoints2: {02cea172-8865-11e7-9c5c-c0f8dac856e8} - G:\autorun.exe
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\MountPoints2: {0692e978-3d87-11e7-b228-c0f8dac856e8} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\MountPoints2: {1c265dcf-d8c7-11e8-9765-c0f8dac856e8} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\MountPoints2: {70e66c5a-d0b2-11e9-a024-c0f8dac856e8} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\MountPoints2: {e9c62d40-453e-11e8-b9ed-c0f8dac856e8} - F:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-02-03] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ginger.lnk [2017-09-17]
ShortcutTarget: Ginger.lnk -> C:\Windows\Installer\{1EBF9A59-F4E3-4EA7-BA97-76703C1432F6}\GingerClientStartu_E7648186C0BE4AE6AF2E431C614DBB20.exe (Flexera Software LLC) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-09-03]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.599\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00871873-38A7-49E0-A66E-78E7116E6A27} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => by user disabled [Argument = /DoRegisterSearch $(Arg0)]
Task: {05919A81-10CE-4ECD-93C5-42F8356A33B2} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => by user disabled [Argument = $(Arg0)]
Task: {0AF91F7A-DF70-4C84-B08D-73413AF46EAB} - System32\Tasks\Adobe Acrobat Update Task => by user disabled
Task: {0BEA125C-B8DA-48C6-B8D7-B093E21C0870} - System32\Tasks\{9FAD4E0F-2FB1-4309-A07A-F96569A319C7} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Downloads\wlsetup-web (2).exe" -d C:\Users\User\Downloads
Task: {18E6D428-D26C-4169-BEDF-3B5BDDC952F6} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => by user disabled [Argument = aepdu.dll,AePduRunUpdate]
Task: {1C490A50-D857-4F7E-9D03-14C100114D41} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => by user disabled [Argument = -MediaCenterRecoveryTask]
Task: {1DBAAD5B-CFE2-45B2-87C6-B13449C36744} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => by user disabled [Argument = /DoConfigureInternetTimeService]
Task: {1E69D47B-53EA-4808-B968-9A39781FC35B} - System32\Tasks\GoogleUpdateTaskMachineCore => by user disabled [Argument = /c] <==== ATTENTION
Task: {1EC9510D-A439-4950-9399-B6399EDF9EA7} - System32\Tasks\Microsoft\Windows\Autochk\Proxy => by user disabled [Argument = /d acproxy.dll,PerformAutochkOperations]
Task: {213B70EC-089D-410C-A4EA-F13778B4896F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => by user disabled [Argument = /wait:7 /PBDADiscovery]
Task: {2375F586-1009-41FB-B54E-30D8AF2B781D} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => by user disabled
Task: {279FF71A-509A-4ED0-A3C8-D1F109125164} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => by user disabled [Argument = /DoActivateWindowsSearch]
Task: {2E79B2D1-C17E-4B78-92B1-888C1B45D06B} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => by user disabled [Argument = -PvrRecoveryTask]
Task: {2E841CEF-29FF-47FC-9CF5-2C6760910424} - System32\Tasks\{86A89961-3049-4B08-8D8D-65A1CB22F6B9} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Downloads\wlsetup-web.exe -d C:\Users\User\Downloads
Task: {53FB192D-F997-45DE-82F2-4768A417275E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => by user disabled [Argument = -ObjectStoreRecoveryTask]
Task: {5B184694-64C3-4633-94C5-945B3FA561D6} - System32\Tasks\Microsoft\Windows\WindowsBackup\ConfigNotification => by user disabled [Argument = /CONFIGNOTIFICATION]
Task: {5C2C622F-70E9-4194-A7DA-033E827365AD} - System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange => by user disabled [Argument = bfe.dll,BfeOnServiceStartTypeChange]
Task: {5C4CA40F-8CA1-4576-9AE9-08202936FF19} - System32\Tasks\AdobeGCInvoker-1.0 => by user disabled [Argument = -mode=scheduled]
Task: {6B7AC694-8D6D-481B-9DD8-2A3A741ADA6D} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => by user disabled [Argument = -energy -auto]
Task: {72DAA7D6-547D-4D8C-8BD5-27B6465379EC} - System32\Tasks\Google Pinyin Daemon => by user disabled <==== ATTENTION
Task: {731E9C62-95B5-4C8C-AB64-4CC591C9FF5B} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => by user disabled [Argument = /offerraupdate]
Task: {7EEDD240-6C1D-425D-92E5-49BB86F88BB3} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => by user disabled [Argument = /DRMInit]
Task: {9334C323-F100-4656-9BA0-E4AA69C0F9C2} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => by user disabled [Argument = /d srrstr.dll,ExecuteScheduledSPPCreation]
Task: {93BCC7C7-8DBF-487F-AFDF-3A933B98C0BB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => by user disabled [Argument = /OCURActivate]
Task: {A6394592-54CE-4E93-8D64-1A068F462632} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => by user disabled
Task: {AFC0FD45-D757-487C-B39E-D934151936C3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => by user disabled [Argument = /PBDADiscovery]
Task: {B299B0C0-05D0-4D59-B745-ECF5685AEF81} - System32\Tasks\EPSON L220 Series Update {89E7B459-9851-4042-88E4-8013E2C9AA24} => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSN2E.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {B55B8C47-955A-4FE7-B1A8-309B17536C2A} - System32\Tasks\GoogleUpdateTaskMachineUA => by user disabled [Argument = /ua /installsource scheduler] <==== ATTENTION
Task: {B9BEE219-C29E-4310-819C-147A5A0E045E} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => by user disabled [Argument = -c]
Task: {BD5A275F-261C-476E-AFCB-3EC9658A6537} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => by user disabled [Argument = /InstallPlayReady $(Arg0)]
Task: {C36D0D11-0F04-4B88-8205-46A013446245} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => by user disabled [Argument = /StartRecording]
Task: {CA4E0476-1CBD-4E22-A415-0B3B839844AF} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => by user disabled [Argument = /OCURDiscovery $(Arg0)]
Task: {CAC24F11-BFF8-4117-B10F-B5C9CF265BC7} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => by user disabled [Argument = -SqlLiteRecoveryTask]
Task: {D21F6024-191F-4454-BBBC-09A650DA2549} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => by user disabled
Task: {D56AB449-3901-45E4-9B9E-985376841095} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => by user disabled [Argument = /DoRecoveryTasks $(Arg0)]
Task: {DEE98378-1FD1-403C-9F11-D9ED7523C3AA} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => by user disabled [Argument = -PvrSchedule]
Task: {E4ADC632-697B-4E16-A06B-36D2CC904F74} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => by user disabled [Argument = /DoUpdateRecordPath $(Arg0)]
Task: {E8164C0D-216C-4B6B-9EB8-31BF958B8014} - System32\Tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo => by user disabled
Task: {EE6F3F77-2329-4ADC-802E-59B97A4AFA18} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => by user disabled [Argument = /DoReindexSearchRoot]
Task: {EF19871A-7F63-4983-A45F-BBF9B836F8E5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => by user disabled [Argument = /wait:90 /PBDADiscovery]
Task: {F0BE324F-6D1E-4565-9707-AC625A33F50C} - System32\Tasks\{CDB680DF-698D-489D-AFD6-92DAE991D1E9} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Common Files\YearSailhome\uninstall.exe" -c shuz -f "C:\Program Files\Common Files\YearSailhome\uninstall.dat" -a uninstallme 8F46A269-D8EF-490C-8F50-25C505029603 DeviceId=303f5452-e507-7e12-d4b2-bf0e0fcdcc49 BarcodeId=51198003 ChannelId=003 DistributerName=APSFWakeNet
Task: {F93C7104-998A-4A38-B935-775A3138B3C3} - System32\Tasks\Microsoft\Windows\Location\Notifications => by user disabled

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\EPSON L220 Series Update {89E7B459-9851-4042-88E4-8013E2C9AA24}.job => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSN2E.EXE:/EXE:{89E7B459-9851-4042-88E4-8013E2C9AA24} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
 
FRST result (2nd part)
---------------------------------------------------------------------------------------------------------------------------------------
==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6A5E1601-F08A-475E-B98E-5517B1BC501C}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://hao.360.cn/?a1004
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-ph/?ocid=iehp
SearchScopes: HKLM -> DefaultScope value is missing
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation)
DPF: {CAFEEFAC-0018-0000-00191-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_191-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default [2020-04-01]
FF Homepage: Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxps://www.google.com/
FF NewTabOverride: Mozilla\Firefox\Profiles\nahd6ha2.default -> Enabled: vb@yandex.ru
FF Extension: (Yandex.Market Adviser) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\sovetnik-yandex@yandex.ru.xpi [2018-06-26] [UpdateUrl:hxxps://static.sovetnik.yandex.net/sovetnik/extension/firefox-webextension-yandex-update.json]
FF HKLM\...\Firefox\Extensions: [adapter@gingersoftware.com] - C:\Program Files\Ginger\Mozilla\adapter@gingersoftware.com
FF Extension: (Ginger) - C:\Program Files\Ginger\Mozilla\adapter@gingersoftware.com [2017-09-17] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [firefox@gingersoftware.2.0.0.74.com] - C:\Program Files\Ginger\Mozilla\firefox@gingersoftware.2.0.0.74.com => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll [2013-07-09] (Adobe Systems Incorporated -> )
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll [2017-05-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2020-01-22] (Google LLC -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2020-01-22] (Google LLC -> Google LLC)
FF Plugin: @Tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [No File]
FF Plugin: @Tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Users\User\Desktop\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [No File]
FF Plugin HKU\.DEFAULT: gingersoftware.com/gingerPlugin -> C:\Program Files\Ginger\GingerServices\GingerServicesProxy.dll [2015-08-31] (Ginger Software) [File not signed]
FF Plugin HKU\S-1-5-21-3480955168-191862549-1513062737-1000: @Tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [No File]
FF Plugin HKU\S-1-5-21-3480955168-191862549-1513062737-1000: @Tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [No File]
FF Plugin HKU\S-1-5-21-3480955168-191862549-1513062737-1000: @Tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [No File]
FF Plugin HKU\S-1-5-21-3480955168-191862549-1513062737-1000: gingersoftware.com/gingerPlugin -> C:\Program Files\Ginger\GingerServices\GingerServicesProxy.dll [2015-08-31] (Ginger Software) [File not signed]

Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2020-04-02]
CHR Extension: (Slides) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-03]
CHR Extension: (Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-03]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-03]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-02-03]
CHR Extension: (Adobe Acrobat) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-04-01]
CHR Extension: (Sheets) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-03]
CHR Extension: (Google Docs Offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-01]
CHR Extension: (Chrome Web Store Payments) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-03]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-02-03]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-03]
CHR HKU\S-1-5-21-3480955168-191862549-1513062737-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-09-10] (Adobe Inc. -> Adobe Systems)
S3 AdobeUpdateService; C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)
R2 AGMService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe [3374160 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [3103824 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [126128 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RP7.EXE [143424 2013-04-15] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
S3 GingerUpdateService; C:\Program Files\Ginger\GingerUpdateService\GingerUpdateService.exe [527360 2015-08-31] (Ginger Software) [File not signed]
R2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe [206528 2017-07-12] (McAfee, Inc. -> McAfee, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5547464 2020-04-01] (Malwarebytes Inc -> Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 SuperKillerSrv; C:\Program Files\360\360Safe\firstaid\fix\Dsmain.exe /srv [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [27896 2014-04-28] (Lenovo (Beijing) Limited -> Lenovo Corporation)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [3376128 2016-11-28] (Qualcomm Atheros -> Qualcomm Atheros Communications, Inc.)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [176856 2016-01-26] (Broadcom Corporation -> Broadcom Corporation.)
S3 BstkDrv; C:\Program Files\BlueStacks\BstkDrv.sys [220216 2017-11-06] (Bluestack Systems, Inc. -> Bluestack System Inc. )
R3 btwampfl; C:\Windows\System32\DRIVERS\btwampfl.sys [510168 2016-01-26] (Broadcom Corporation -> Broadcom Corporation.)
R3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [71208 2010-11-15] (Broadcom Corporation -> Broadcom Corporation.)
R3 cykbfltrService; C:\Windows\System32\DRIVERS\cykbfltr.sys [11776 2012-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Cypress Semiconductor, Inc.)
S1 epp; C:\Users\User\Desktop\bin32\epp.sys [118248 2020-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Emsisoft Ltd)
R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [351048 2014-04-02] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [503048 2015-05-29] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [27376 2015-05-29] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16880 2013-07-18] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [178952 2020-04-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [213912 2020-04-02] (Malwarebytes Inc -> Malwarebytes)
S3 RHeBd1; D:\2c5012bf\RHeBd1.sys [888880 2020-02-05] (Beijing Qihu Technology Co., Ltd. -> )
R3 usbsmi; C:\Windows\System32\DRIVERS\SMIksdrv.sys [174464 2010-04-21] (Microsoft Windows Hardware Compatibility Publisher -> SMI)
S3 FsWriteBack; \??\C:\Windows\system32\drivers\FsWriteBack.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-02 14:44 - 2020-04-02 14:48 - 000026648 _____ C:\Users\User\Desktop\FRST.txt
2020-04-02 14:43 - 2020-04-02 14:47 - 000000000 ____D C:\FRST
2020-04-02 14:22 - 2020-04-02 14:25 - 002008064 _____ (Farbar) C:\Users\User\Desktop\FRST (1).exe
2020-04-02 13:19 - 2020-04-02 13:21 - 035919018 _____ C:\Users\User\Downloads\windows6.1-kb4474419-v3-x86_0f687d50402790f340087c576886501b3223bec6.msu
2020-04-02 13:18 - 2020-04-02 13:19 - 004217422 _____ C:\Users\User\Downloads\windows6.1-kb4490628-x86_3cdb3df55b9cd7ef7fcb24fc4e237ea287ad0992.msu
2020-04-02 11:42 - 2020-04-02 11:43 - 000319839 _____ C:\Users\User\Downloads\IE11-Windows6.1-KB3025390-x86.msu
2020-04-02 11:37 - 2020-04-02 11:50 - 331377414 _____ C:\Users\User\Downloads\windows6.1-kb3125574-v4-x86_ba1ff5537312561795cc04db0b02fbb0a74b2cbd.msu
2020-04-02 11:05 - 2020-04-02 11:05 - 000213912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-04-02 11:05 - 2020-04-02 11:05 - 000178952 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-04-02 10:48 - 2020-04-02 10:48 - 000000000 ____D C:\Windows\system32\SPReview
2020-04-02 09:59 - 2010-11-20 04:36 - 001077248 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2020-04-02 09:59 - 2010-11-20 04:36 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\NAPHLPR.DLL
2020-04-02 09:59 - 2010-11-20 04:32 - 005066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2020-04-02 09:59 - 2010-11-20 04:30 - 003966848 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2020-04-02 09:59 - 2010-11-20 04:30 - 003911040 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-04-02 09:59 - 2010-11-20 04:30 - 001290112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 001211264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000712576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000520064 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2020-04-02 09:59 - 2010-11-20 04:30 - 000245632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000240000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000173440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000148864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000130432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000085376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000078208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000067456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000056192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2020-04-02 09:59 - 2010-11-20 04:30 - 000028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys
2020-04-02 09:59 - 2010-11-20 04:29 - 002217856 _____ (Microsoft Corporation) C:\Windows\system32\bootres.dll
2020-04-02 09:59 - 2010-11-20 04:29 - 000274304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2020-04-02 09:59 - 2010-11-20 04:29 - 000194432 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2020-04-02 09:59 - 2010-11-20 04:29 - 000194432 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-04-02 09:59 - 2010-11-20 04:29 - 000187776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-04-02 09:59 - 2010-11-20 04:29 - 000137088 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2020-04-02 09:59 - 2010-11-20 04:29 - 000132992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2020-04-02 09:59 - 2010-11-20 04:29 - 000101760 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2020-04-02 09:59 - 2010-11-20 04:24 - 001288488 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-04-02 09:59 - 2010-11-20 04:24 - 000271664 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2020-04-02 09:59 - 2010-11-20 04:23 - 000144768 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 002755072 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 002157568 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 002146304 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 001667584 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 001619456 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2020-04-02 09:59 - 2010-11-20 04:21 - 001328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 001229824 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 001227776 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 001159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 001128448 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 001115136 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 001063936 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000974336 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000933376 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll
 
FRST result (3rd part)
---------------------------------------------------------------------------------------------------------------------------------------
2020-04-02 09:59 - 2010-11-20 04:21 - 000902656 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2020-04-02 09:59 - 2010-11-20 04:21 - 000850432 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000826368 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000755200 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000750592 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000646144 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000638976 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000626176 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000616960 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000600064 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000585728 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000567808 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000551424 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000505856 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000473600 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000416768 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000412160 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000411648 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000410624 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000376832 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000372224 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000351232 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000351232 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000350720 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000346624 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000318976 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000318464 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese30.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000270848 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000269824 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000247808 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000242176 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000242176 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000202240 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000181760 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000172544 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2020-04-02 09:59 - 2010-11-20 04:21 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000162304 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\sppinst.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2020-04-02 09:59 - 2010-11-20 04:21 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000051200 _____ (Twain Working Group) C:\Windows\twain_32.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\wtsapi32.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\utildll.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
2020-04-02 09:59 - 2010-11-20 04:21 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 002130944 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 001661440 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 001508864 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 001111552 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000988160 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000932352 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000859648 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000600576 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000573440 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000441856 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000427520 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000395264 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000346112 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000330240 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2020-04-02 09:59 - 2010-11-20 04:20 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000297472 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000283136 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000236544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000218112 _____ (Microsoft Corporation) C:\Windows\system32\OnLineIDCpl.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000199168 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\qcap.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000183296 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000174592 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\QAGENT.DLL
2020-04-02 09:59 - 2010-11-20 04:20 - 000166400 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000153088 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000121344 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000116736 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL
2020-04-02 09:59 - 2010-11-20 04:20 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll
2020-04-02 09:59 - 2010-11-20 04:20 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 005977600 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 002576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 002341376 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 002151936 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 002064384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 001698816 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 001493504 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 001236992 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 001066496 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 001038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000857600 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000828928 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000804864 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000768512 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000716800 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000566272 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000541696 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000488448 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000429056 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000389120 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2020-04-02 09:59 - 2010-11-20 04:19 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000320512 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL
2020-04-02 09:59 - 2010-11-20 04:19 - 000213504 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000202752 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000196608 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000195072 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000118272 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2020-04-02 09:59 - 2010-11-20 04:19 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000093696 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\fms.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL
2020-04-02 09:59 - 2010-11-20 04:19 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000021504 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2020-04-02 09:59 - 2010-11-20 04:19 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 003727872 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 001828352 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 001792000 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 001334272 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 001171456 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 001154048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 001040384 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 001003520 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000743424 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
 
FRST result (4th part)
---------------------------------------------------------------------------------------------------------------------------------------
2020-04-02 09:59 - 2010-11-20 04:18 - 000665600 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000508416 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000485888 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\biocpl.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000333824 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000254976 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2020-04-02 09:59 - 2010-11-20 04:18 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000252928 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\defaultlocationcpl.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000202752 _____ (Microsoft Corporation) C:\Windows\system32\activeds.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000196608 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2020-04-02 09:59 - 2010-11-20 04:18 - 000186880 _____ (Microsoft Corporation) C:\Windows\system32\adsldp.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000133632 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000080384 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2020-04-02 09:59 - 2010-11-20 04:18 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll
2020-04-02 09:59 - 2010-11-20 04:18 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2020-04-02 09:59 - 2010-11-20 04:17 - 003367424 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 002616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000941568 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000802304 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000523264 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000453632 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000334336 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000327680 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000280576 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000267776 _____ (Microsoft Corporation) C:\Windows\system32\lsm.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000233984 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000219648 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000133632 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000098816 _____ (Microsoft) C:\Windows\system32\Robocopy.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\MuiUnattend.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2020-04-02 09:59 - 2010-11-20 04:17 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
2020-04-02 09:59 - 2010-11-20 04:16 - 000878592 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr
2020-04-02 09:59 - 2010-11-20 04:16 - 000692736 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2020-04-02 09:59 - 2010-11-20 04:16 - 000389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2020-04-02 09:59 - 2010-11-20 04:16 - 000345088 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2020-04-02 09:59 - 2010-11-20 04:16 - 000320000 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2020-04-02 09:59 - 2010-11-20 04:16 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2020-04-02 09:59 - 2010-11-20 04:16 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr
2020-04-02 09:59 - 2010-11-20 04:16 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr
2020-04-02 09:59 - 2010-11-20 04:16 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2020-04-02 09:59 - 2010-11-20 04:16 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe
2020-04-02 09:59 - 2010-11-20 04:16 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2020-04-02 09:59 - 2010-11-20 04:16 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2020-04-02 09:59 - 2010-11-20 04:16 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax
2020-04-02 09:59 - 2010-11-20 04:16 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax
2020-04-02 09:59 - 2010-11-20 04:16 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax
2020-04-02 09:59 - 2010-11-20 04:07 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll
2020-04-02 09:59 - 2010-11-20 04:07 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2020-04-02 09:59 - 2010-11-20 04:06 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2020-04-02 09:59 - 2010-11-20 04:05 - 000121856 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll
2020-04-02 09:59 - 2010-11-20 04:05 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll
2020-04-02 09:59 - 2010-11-20 04:00 - 001027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2020-04-02 09:59 - 2010-11-20 04:00 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL
2020-04-02 09:59 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2020-04-02 09:59 - 2010-11-20 02:52 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys
2020-04-02 09:59 - 2010-11-20 02:49 - 000386048 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2020-04-02 09:59 - 2010-11-20 02:24 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2020-04-02 09:59 - 2010-11-20 02:22 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2020-04-02 09:59 - 2010-11-20 02:22 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys
2020-04-02 09:59 - 2010-11-20 02:07 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2020-04-02 09:59 - 2010-11-20 02:07 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2020-04-02 09:59 - 2010-11-20 02:07 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2020-04-02 09:59 - 2010-11-20 02:07 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2020-04-02 09:59 - 2010-11-20 02:01 - 000164864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys
2020-04-02 09:59 - 2010-11-20 02:00 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2020-04-02 09:59 - 2010-11-20 02:00 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2020-04-02 09:59 - 2010-11-20 02:00 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2020-04-02 09:59 - 2010-11-20 02:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2020-04-02 09:59 - 2010-11-20 02:00 - 000025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2020-04-02 09:59 - 2010-11-20 02:00 - 000025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2020-04-02 09:59 - 2010-11-20 01:59 - 000132224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2020-04-02 09:59 - 2010-11-20 01:59 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2020-04-02 09:59 - 2010-11-20 01:50 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2020-04-02 09:59 - 2010-11-20 01:50 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2020-04-02 09:59 - 2010-11-20 01:50 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2020-04-02 09:59 - 2010-11-20 01:24 - 000026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
2020-04-02 09:59 - 2010-11-20 01:19 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2020-04-02 09:59 - 2010-11-20 01:09 - 002329088 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-04-02 09:59 - 2010-11-20 00:44 - 000309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2020-04-02 09:59 - 2010-11-20 00:44 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2020-04-02 09:59 - 2010-11-20 00:44 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2020-04-02 09:59 - 2010-11-20 00:44 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2020-04-02 09:59 - 2010-11-20 00:42 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2020-04-02 09:59 - 2010-11-19 21:23 - 000053600 _____ C:\Windows\system32\dosx.exe
2020-04-02 09:59 - 2010-11-19 19:52 - 000419880 _____ C:\Windows\system32\locale.nls
2020-04-02 09:59 - 2010-11-04 18:20 - 000146852 _____ C:\Windows\system32\systemsf.ebd
2020-04-02 09:59 - 2010-11-04 17:58 - 001130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2020-04-02 09:59 - 2010-11-04 17:58 - 000297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2020-04-02 09:59 - 2010-11-04 17:58 - 000080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2020-04-02 09:59 - 2010-11-04 17:53 - 000295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2020-04-02 09:59 - 2010-11-04 17:53 - 000099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2020-04-02 09:58 - 2010-11-20 04:36 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\NAPCRYPT.DLL
2020-04-02 09:58 - 2010-11-20 04:30 - 000233344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2020-04-02 09:58 - 2010-11-20 04:30 - 000160128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2020-04-02 09:58 - 2010-11-20 04:30 - 000153984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2020-04-02 09:58 - 2010-11-20 04:30 - 000140160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys
2020-04-02 09:58 - 2010-11-20 04:30 - 000116096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys
2020-04-02 09:58 - 2010-11-20 04:30 - 000053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2020-04-02 09:58 - 2010-11-20 04:30 - 000053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2020-04-02 09:58 - 2010-11-20 04:29 - 000728448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-04-02 09:58 - 2010-11-20 04:29 - 000332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2020-04-02 09:58 - 2010-11-20 04:29 - 000080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2020-04-02 09:58 - 2010-11-20 04:29 - 000027008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2020-04-02 09:58 - 2010-11-20 04:29 - 000022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2020-04-02 09:58 - 2010-11-20 04:29 - 000014208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
2020-04-02 09:58 - 2010-11-20 04:24 - 000690680 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-04-02 09:58 - 2010-11-20 04:24 - 000508904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-04-02 09:58 - 2010-11-20 04:24 - 000442720 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-04-02 09:58 - 2010-11-20 04:24 - 000194800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2020-04-02 09:58 - 2010-11-20 04:21 - 012872192 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 011410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 002983424 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 002414080 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 002311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 002202624 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001914368 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001712640 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001624064 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001548288 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001363456 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001326592 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001175040 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001086976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 001003008 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000980992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000907776 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000870912 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000782336 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000766464 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\sdcpl.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2020-04-02 09:58 - 2010-11-20 04:21 - 000738816 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000697344 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000653312 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000597504 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2020-04-02 09:58 - 2010-11-20 04:21 - 000521216 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000436736 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000428544 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000427520 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000410112 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000363008 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000335872 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000327680 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000307712 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000299520 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000286208 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000283648 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000276992 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
 
FRST result (5th part)
---------------------------------------------------------------------------------------------------------------------------------------
2020-04-02 09:58 - 2010-11-20 04:21 - 000224256 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000222208 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000220160 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000196608 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000196096 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000189952 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000189952 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000159232 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000139264 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000134656 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000109056 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL
2020-04-02 09:58 - 2010-11-20 04:21 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000065024 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\sppuinotify.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\rdpd3d.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000021504 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000021504 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
2020-04-02 09:58 - 2010-11-20 04:21 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2020-04-02 09:58 - 2010-11-20 04:21 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 002504192 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2020-04-02 09:58 - 2010-11-20 04:20 - 002494464 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 001750528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 001644032 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 001414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 001160192 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000801280 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000641536 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000563712 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\netdiagfx.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\olethk32.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll
2020-04-02 09:58 - 2010-11-20 04:20 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 010990080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 003215872 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 003207680 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 002291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 001401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 001390080 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000856576 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000830464 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2020-04-02 09:58 - 2010-11-20 04:19 - 000674304 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2020-04-02 09:58 - 2010-11-20 04:19 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000606208 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000593408 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000592384 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000481792 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000430080 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000414208 _____ (Microsoft Corporation) C:\Windows\system32\mspbda.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000320512 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000304640 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000219648 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2020-04-02 09:58 - 2010-11-20 04:19 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000082944 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\HotStartUserAgent.dll
2020-04-02 09:58 - 2010-11-20 04:19 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 002522624 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 001555456 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 001400320 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 001371136 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 001188864 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 001076736 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000863744 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000854016 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000762880 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000744448 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000740864 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000685056 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000630784 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000537600 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000494592 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2020-04-02 09:58 - 2010-11-20 04:18 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000473600 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000399872 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000323072 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000314880 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2020-04-02 09:58 - 2010-11-20 04:18 - 000314368 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\audiodev.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000242176 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000230912 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000222208 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000214016 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000211456 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000109056 _____ (Microsoft Corporation) C:\Windows\system32\dnscmmc.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000065024 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-04-02 09:58 - 2010-11-20 04:18 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2020-04-02 09:58 - 2010-11-20 04:18 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2020-04-02 09:58 - 2010-11-20 04:17 - 003179520 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 001203200 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 001131008 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 001049600 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 001025536 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000586752 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000314368 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000303104 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000302592 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000292864 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000286720 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000280064 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000276480 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000270336 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000257536 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgrade.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\taskmgr.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000192000 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000074240 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000026624 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\netcfg.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2020-04-02 09:58 - 2010-11-20 04:17 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2020-04-02 09:58 - 2010-11-20 04:16 - 001466368 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-04-02 09:58 - 2010-11-20 04:16 - 000905216 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2020-04-02 09:58 - 2010-11-20 04:16 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2020-04-02 09:58 - 2010-11-20 04:16 - 000679424 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2020-04-02 09:58 - 2010-11-20 04:16 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2020-04-02 09:58 - 2010-11-20 04:16 - 000658944 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2020-04-02 09:58 - 2010-11-20 04:16 - 000649216 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2020-04-02 09:58 - 2010-11-20 04:16 - 000600576 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2020-04-02 09:58 - 2010-11-20 04:16 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2020-04-02 09:58 - 2010-11-20 04:16 - 000478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2020-04-02 09:58 - 2010-11-20 04:16 - 000413696 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2020-04-02 09:58 - 2010-11-20 04:16 - 000326656 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2020-04-02 09:58 - 2010-11-20 04:16 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2020-04-02 09:58 - 2010-11-20 04:16 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr
2020-04-02 09:58 - 2010-11-20 04:16 - 000204288 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2020-04-02 09:58 - 2010-11-20 04:16 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2020-04-02 09:58 - 2010-11-20 04:16 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2020-04-02 09:58 - 2010-11-20 04:16 - 000153600 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2020-04-02 09:58 - 2010-11-20 04:16 - 000128000 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl
2020-04-02 09:58 - 2010-11-20 04:16 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2020-04-02 09:58 - 2010-11-20 04:16 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2020-04-02 09:58 - 2010-11-20 04:16 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-04-02 09:58 - 2010-11-20 04:16 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2020-04-02 09:58 - 2010-11-20 04:16 - 000072704 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2020-04-02 09:58 - 2010-11-20 04:16 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax
2020-04-02 09:58 - 2010-11-20 04:16 - 000065024 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe
2020-04-02 09:58 - 2010-11-20 04:16 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2020-04-02 09:58 - 2010-11-20 04:16 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax
2020-04-02 09:58 - 2010-11-20 04:08 - 012625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2020-04-02 09:58 - 2010-11-20 04:07 - 001164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2020-04-02 09:58 - 2010-11-20 04:00 - 000430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2020-04-02 09:58 - 2010-11-20 04:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll
2020-04-02 09:58 - 2010-11-20 04:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL
2020-04-02 09:58 - 2010-11-20 04:00 - 000005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL
2020-04-02 09:58 - 2010-11-20 03:57 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2020-04-02 09:58 - 2010-11-20 03:56 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-04-02 09:58 - 2010-11-20 03:56 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll
2020-04-02 09:58 - 2010-11-20 03:54 - 000302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2020-04-02 09:58 - 2010-11-20 02:22 - 000213504 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll
2020-04-02 09:58 - 2010-11-20 02:22 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2020-04-02 09:58 - 2010-11-20 02:22 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2020-04-02 09:58 - 2010-11-20 02:21 - 000026624 _____ (Microsoft Corporation) C:\Windows\system32\RDPREFDD.dll
2020-04-02 09:58 - 2010-11-20 02:21 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2020-04-02 09:58 - 2010-11-20 02:21 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys
2020-04-02 09:58 - 2010-11-20 02:06 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2020-04-02 09:58 - 2010-11-20 02:06 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2020-04-02 09:58 - 2010-11-20 02:06 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys
2020-04-02 09:58 - 2010-11-20 02:01 - 000258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2020-04-02 09:58 - 2010-11-20 02:00 - 000304128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2020-04-02 09:58 - 2010-11-20 02:00 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2020-04-02 09:58 - 2010-11-20 02:00 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2020-04-02 09:58 - 2010-11-20 02:00 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys
2020-04-02 09:58 - 2010-11-20 01:59 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2020-04-02 09:58 - 2010-11-20 01:59 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2020-04-02 09:58 - 2010-11-20 01:59 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2020-04-02 09:58 - 2010-11-20 01:59 - 000035968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys
2020-04-02 09:58 - 2010-11-20 01:59 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2020-04-02 09:58 - 2010-11-20 01:50 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys
2020-04-02 09:58 - 2010-11-20 01:29 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2020-04-02 09:58 - 2010-11-20 01:07 - 000294400 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2020-04-02 09:58 - 2010-11-20 01:07 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-04-02 09:58 - 2010-11-20 00:47 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys
2020-04-02 09:58 - 2010-11-20 00:45 - 000311296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2020-04-02 09:58 - 2010-11-20 00:44 - 000114176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2020-04-02 09:58 - 2010-11-20 00:42 - 000246784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2020-04-02 09:58 - 2010-11-20 00:42 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-04-02 09:58 - 2010-11-20 00:42 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2020-04-02 09:58 - 2010-11-20 00:40 - 000513536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2020-04-02 09:58 - 2010-11-20 00:40 - 000338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-04-02 09:58 - 2010-11-20 00:39 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2020-04-02 09:58 - 2010-11-20 00:39 - 000074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2020-04-02 09:58 - 2010-11-20 00:39 - 000021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys
2020-04-02 09:58 - 2010-11-20 00:38 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2020-04-02 09:58 - 2010-11-09 17:45 - 000010429 _____ C:\Windows\system32\ScavengeSpace.xml
2020-04-02 09:58 - 2010-11-04 18:20 - 000105559 _____ C:\Windows\system32\RacRules.xml
2020-04-02 09:58 - 2010-11-04 18:11 - 000312168 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2020-04-02 09:58 - 2010-11-04 17:58 - 000155472 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2020-04-02 09:58 - 2010-11-04 17:58 - 000049488 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2020-04-02 09:54 - 2020-04-02 09:54 - 000000000 ____D C:\Windows\system32\EventProviders
2020-04-02 09:27 - 2020-04-02 09:54 - 563934504 _____ (Microsoft Corporation) C:\Users\User\Downloads\windows6.1-KB976932-X86 (1).exe
2020-04-01 20:21 - 2020-04-01 20:28 - 005504824 _____ (ESET) C:\Users\User\Downloads\eset_nod32_antivirus_live_installer.exe
2020-04-01 20:01 - 2020-04-01 20:01 - 000026296 _____ C:\ProgramData\agent.1585742432.bdinstall.v2.bin
2020-04-01 17:29 - 2020-04-01 17:29 - 000319920 _____ C:\active_protection.txt
2020-04-01 17:25 - 2020-04-01 17:25 - 000037552 _____ C:\url_setting_definitions.txt
2020-04-01 16:28 - 2020-04-01 16:29 - 022267744 _____ (Piriform Software Ltd) C:\Users\User\Downloads\cctrialsetup.exe
2020-04-01 16:25 - 2020-04-01 16:27 - 022267336 _____ (Piriform Software Ltd) C:\Users\User\Downloads\ccsetup565.exe
2020-04-01 16:24 - 2020-04-01 16:24 - 005042792 _____ C:\Users\User\Downloads\ccleaner_browser_setup.exe
2020-04-01 15:38 - 2020-04-01 17:25 - 000000000 ____D C:\rei
2020-04-01 15:05 - 2020-04-01 17:36 - 000000000 ____D C:\Program Files\Reimage
2020-04-01 14:30 - 2020-04-01 14:30 - 001162528 _____ (Emsisoft Ltd.) C:\Users\User\Downloads\decrypt_STOPDjvu (1).exe
2020-04-01 14:20 - 2020-04-01 14:20 - 000114200 _____ C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
 
FRST result (6th part)
---------------------------------------------------------------------------------------------------------------------------------------
==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-02 14:27 - 2017-10-20 12:27 - 000000917 _____ C:\Windows\Tasks\EPSON L220 Series Update {89E7B459-9851-4042-88E4-8013E2C9AA24}.job
2020-04-02 11:30 - 2009-07-14 12:34 - 000014592 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-04-02 11:30 - 2009-07-14 12:34 - 000014592 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-04-02 11:27 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\system32\NDF
2020-04-02 11:09 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\inf
2020-04-02 11:08 - 2017-05-15 02:27 - 000910484 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-02 11:05 - 2017-05-15 03:15 - 000000000 ____D C:\Windows\Panther
2020-04-02 11:03 - 2009-07-14 12:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-04-02 11:03 - 2009-07-14 12:33 - 000431072 _____ C:\Windows\system32\FNTCACHE.DAT
2020-04-02 10:57 - 2009-07-14 15:49 - 000000000 ____D C:\Program Files\Windows Journal
2020-04-02 10:57 - 2009-07-14 12:52 - 000000000 ____D C:\Program Files\Windows Sidebar
2020-04-02 10:57 - 2009-07-14 12:52 - 000000000 ____D C:\Program Files\Windows Portable Devices
2020-04-02 10:57 - 2009-07-14 12:52 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-04-02 10:57 - 2009-07-14 12:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-04-02 10:57 - 2009-07-14 12:52 - 000000000 ____D C:\Program Files\DVD Maker
2020-04-02 10:57 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\servicing
2020-04-02 10:56 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\system32\sysprep
2020-04-02 10:56 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\system32\Setup
2020-04-02 10:56 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\system32\oobe
2020-04-02 10:56 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\system32\migwiz
2020-04-02 10:56 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\system32\manifeststore
2020-04-02 10:56 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\system32\Dism
2020-04-02 10:56 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2020-04-02 10:56 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-04-02 10:40 - 2009-07-14 10:05 - 000152576 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2020-04-01 19:45 - 2019-04-25 16:11 - 000000000 ____D C:\Users\User\Desktop\el shop
2020-04-01 19:45 - 2017-11-09 17:21 - 000000000 ____D C:\Users\User\Desktop\Julian
2020-04-01 19:45 - 2017-11-09 17:21 - 000000000 ____D C:\Users\User\Desktop\Janneth
2020-04-01 19:45 - 2017-06-21 12:48 - 000000000 ____D C:\Users\User\Desktop\lilybelle
2020-04-01 19:44 - 2019-07-21 19:03 - 000000000 ____D C:\Users\User\Desktop\appleland
2020-04-01 17:36 - 2009-07-14 12:53 - 000032606 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-04-01 17:08 - 2020-02-08 21:53 - 000001908 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-04-01 17:08 - 2020-02-08 21:53 - 000001908 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-04-01 17:04 - 2020-02-02 19:45 - 000129056 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2020-04-01 15:00 - 2020-02-05 18:43 - 000000000 ____D C:\ProgramData\deepscan
2020-04-01 14:59 - 2020-02-05 18:45 - 000000000 __SHD C:\$360Section
2020-04-01 14:59 - 2020-02-05 18:43 - 000000000 __SHD C:\Users\User\AppData\Roaming\360Quarant
2020-04-01 13:58 - 2019-10-09 07:20 - 000003324 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2020-04-01 13:58 - 2017-08-06 16:34 - 000004384 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-04-01 13:58 - 2017-05-18 05:15 - 000002978 _____ C:\Windows\system32\Tasks\Google Pinyin Daemon
2020-04-01 13:58 - 2017-05-17 05:31 - 000004214 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-01 13:58 - 2017-05-17 05:31 - 000003978 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-30 09:30 - 2019-10-09 07:20 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-03-30 09:30 - 2019-10-09 07:20 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData

==================== Files in the root of some directories ========

2013-02-07 20:22 - 2013-02-07 20:22 - 000050330 _____ () C:\Program Files\AntiDust.exe
2020-02-02 18:02 - 2020-02-02 18:02 - 000000563 _____ () C:\Users\User\AppData\Local\bowsakkdestx.txt
2018-10-17 17:26 - 2018-10-17 17:26 - 000000000 _____ () C:\Users\User\AppData\Local\{C48B1139-62A6-45F5-AB2E-8B31654A38E6}
2019-01-06 13:42 - 2019-01-06 13:42 - 000000000 _____ () C:\Users\User\AppData\Local\{ECCA01E3-ECE5-49A8-8979-8D4CFB0B46A4}
2018-11-05 14:50 - 2018-11-05 14:50 - 000000000 _____ () C:\Users\User\AppData\Local\{F347CBDB-DF9D-4F48-A804-4B05FB9DE44B}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-02-03 09:18
==================== End of FRST.txt ========================
 
Addition file (1st part)
----------------------------------------
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-03-2020
Ran by User (02-04-2020 14:50:10)
Running from C:\Users\User\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2017-05-14 18:25:04)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3480955168-191862549-1513062737-500 - Administrator - Disabled)
Guest (S-1-5-21-3480955168-191862549-1513062737-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3480955168-191862549-1513062737-1002 - Limited - Enabled)
User (S-1-5-21-3480955168-191862549-1513062737-1000 - Administrator - Enabled) => C:\Users\User

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 18.011.20063 - Adobe Systems Incorporated)
Backup and Sync from Google (HKLM\...\{FFBF7E6D-BD1B-4ABD-B6AF-403A7A6B5FE3}) (Version: 3.48.8668.1933 - Google, Inc.)
BlueStacks 3 (HKLM\...\BlueStacks) (Version: 3.50.63.2536 - BlueStack Systems, Inc.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.44.0 - Conexant)
Epson Event Manager (HKLM\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
EPSON L220 Series Printer Uninstall (HKLM\...\EPSON L220 Series) (Version: - SEIKO EPSON Corporation)
EPSON Manuals (HKLM\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.54.0.0 - Seiko Epson Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION)
Ginger (HKLM\...\{1EBF9A59-F4E3-4EA7-BA97-76703C1432F6}) (Version: 3.7.40 - Ginger Software) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Java 8 Update 191 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Lenovo EasyCamera (HKLM\...\Lenovo EasyCamera) (Version: 5.38.3.3 - Silicon Motion)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.599.3 - McAfee, Inc.)
Microsoft .NET Framework 4.7 (HKLM\...\{2A842F3F-CE6D-3DFD-9ECB-9CC3C5150A67}) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
NVIDIA Graphics Driver 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Update 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation)
Pokémon Trading Card Game Online (HKLM\...\{551D04B6-CE8E-4280-81A2-C70EE967BF1A}) (Version: 2.52.0 - The Pokémon Company International)
Roblox Player for User (HKU\S-1-5-21-3480955168-191862549-1513062737-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VideoProc (HKLM\...\VideoProc) (Version: 3.1 - Digiarty, Inc.)
Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 5.40 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
谷歌拼音输入法 2.7 (HKLM\...\GooglePinyin2) (Version: - Google Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3480955168-191862549-1513062737-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll => No File
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers1: [ANotepad++] -> {00F3C2EC-A6EE-11DE-A03A-EF8F55D89593} => C:\Users\User\Desktop\Notepad++\NppShell_06.dll -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-08] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-08] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]
HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\system32\xvidvfw.dll [139264 2004-07-03] () [File not signed]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\system32\lagarith.dll [216064 2011-12-07] ( ) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b42be1c9c51179ef\John L - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 7"
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Shady - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\48499db33039e897\Janneth - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 4"
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\John Lorens - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"

==================== Loaded Modules (Whitelisted) =============

2018-09-25 17:00 - 2018-09-25 17:00 - 000096256 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL
2015-12-17 11:11 - 2015-12-17 11:11 - 000132096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files\EPSON Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files\EPSON Software\Event Manager\LcMgr.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\system32\config\systemprofile:.repos [6042704]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 
Addition file (2nd part)
----------------------------------------
==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 10:04 - 2020-02-05 21:15 - 000000800 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\7-Zip
HKU\S-1-5-21-3480955168-191862549-1513062737-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{BFC641E2-34BD-495A-9400-B60656A0681C}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9A520639-42EF-438C-8259-9CC49A017E2C}] => (Allow) C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{AEB881AC-5320-4F6F-91C4-08C38FA070C7}] => (Allow) C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{1D12149F-6EF4-45E9-B2DD-C1DA1F991094}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{612EFDF2-0D7B-41AE-96B0-408250C176E0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{8E2CDCCC-6885-46D5-88D6-76186191A5E6}] => (Allow) C:\Program Files\360\360Safe\safemon\360Tray.exe No File
FirewallRules: [{9CDF828D-6E83-465C-A0F8-8E7DFB9B63F3}] => (Allow) C:\Program Files\360\360Safe\safemon\360Tray.exe No File
FirewallRules: [{96DC9D79-6CA1-49B7-B1C5-06237B924241}] => (Allow) C:\Program Files\360\360Safe\LiveUpdate360.exe No File
FirewallRules: [{05CE19DE-B771-4E05-95CC-A93B19FEC092}] => (Allow) C:\Program Files\360\360Safe\LiveUpdate360.exe No File
FirewallRules: [{7C5DBD51-9A6D-4644-AE85-268132F019DC}] => (Allow) C:\Program Files\360\360Safe\Utils\ModuleUpdate.exe No File
FirewallRules: [{114D9367-9A7B-45BD-9521-43D2B4A15F94}] => (Allow) C:\Program Files\360\360Safe\Utils\ModuleUpdate.exe No File
FirewallRules: [{0B1E0B69-6277-4547-A060-347D9663A12E}] => (Allow) C:\Program Files\360\360Safe\360leakfixer.exe No File
FirewallRules: [{68A877B2-DCE0-4184-9838-D8DEFBAAD979}] => (Allow) C:\Program Files\360\360Safe\360leakfixer.exe No File
FirewallRules: [{C231EB17-E968-47C8-9957-6D1E9D379DAD}] => (Allow) C:\Program Files\360\360Safe\SoftMgr\SoftMgr.exe No File
FirewallRules: [{A75ABF13-9F74-48B9-8133-14F41CAEC3EA}] => (Allow) C:\Program Files\360\360Safe\SoftMgr\SoftMgr.exe No File
FirewallRules: [{12C4AA1F-6DA2-4B33-8539-EC7E95FD6461}] => (Allow) C:\Program Files\360\360Safe\360Safe.exe No File
FirewallRules: [{69591443-D50A-4EAE-A024-0828B4850B85}] => (Allow) C:\Program Files\360\360Safe\360Safe.exe No File

==================== Restore Points =========================

02-04-2020 09:55:59 Windows 7 Service Pack 1

==================== Faulty Device Manager Devices ============

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (04/02/2020 02:33:50 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Users\User\Desktop\bin64\a2cmd.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/02/2020 02:27:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
.

Error: (04/02/2020 02:26:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
.

Error: (04/02/2020 02:26:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
.

Error: (04/02/2020 02:26:55 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
.

Error: (04/02/2020 02:26:52 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
.

Error: (04/02/2020 02:26:52 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
.

Error: (04/02/2020 02:26:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
.


System errors:
=============
Error: (04/02/2020 11:06:42 AM) (Source: WMPNetworkSvc) (EventID: 14349) (User: )
Description: A new media server was not initialized because the Windows Media Delivery Engine did not initialize due to error '0x80070005'. Restart your computer, and then restart the WMPNetworkSvc service. If the problem persists, reinstall Windows Media Player if possible.

Error: (04/02/2020 11:06:42 AM) (Source: WMPNetworkSvc) (EventID: 14353) (User: )
Description: A media delivery engine with ID '0' was not initialized due to error '0x80070005' when adding the URL 'http://+:10243/WMPNSSv4/2913756119/!S!'. Restart your computer, and then restart the WMPNetworkSvc service. If the problem persists, reinstall Windows Media Player if possible.

Error: (04/02/2020 11:06:42 AM) (Source: WMPNetworkSvc) (EventID: 14349) (User: )
Description: A new media server was not initialized because the Windows Media Delivery Engine did not initialize due to error '0x80070005'. Restart your computer, and then restart the WMPNetworkSvc service. If the problem persists, reinstall Windows Media Player if possible.

Error: (04/02/2020 11:06:42 AM) (Source: WMPNetworkSvc) (EventID: 14353) (User: )
Description: A media delivery engine with ID '0' was not initialized due to error '0x80070005' when adding the URL 'http://+:10243/WMPNSSv4/2913756119/!S!'. Restart your computer, and then restart the WMPNetworkSvc service. If the problem persists, reinstall Windows Media Player if possible.

Error: (04/02/2020 11:04:02 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
epp

Error: (04/02/2020 11:01:16 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: The Malwarebytes Service service did not shut down properly after receiving a preshutdown control.

Error: (04/02/2020 09:03:45 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
epp

Error: (04/01/2020 10:06:01 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.


CodeIntegrity:
===================================

Date: 2020-04-02 14:47:47.180
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\User\Desktop\bin32\epp.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-04-02 14:47:47.167
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\User\Desktop\bin32\epp.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-04-02 11:02:42.992
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\User\Desktop\bin32\epp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-04-02 11:02:42.992
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\User\Desktop\bin32\epp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-04-02 09:55:38.313
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\User\Desktop\bin32\epp.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-04-02 09:55:38.299
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\User\Desktop\bin32\epp.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-04-02 09:55:38.249
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\User\Desktop\bin32\epp.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-04-02 09:03:11.102
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\User\Desktop\bin32\epp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: LENOVO 29CN40WW(V2.17) 04/13/2011
Motherboard: LENOVO Base Board Product Name
Processor: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz
Percentage of memory in use: 92%
Total physical RAM: 1974.85 MB
Available physical RAM: 138.91 MB
Total Virtual: 3949.7 MB
Available Virtual: 456.11 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:300 GB) (Free:207.29 GB) NTFS
Drive d: () (Fixed) (Total:164.98 GB) (Free:164.84 GB) NTFS

\\?\Volume{e174d4d1-38d1-11e7-bd60-806e6f6e6963}\ () (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS
\\?\Volume{e174d4d3-38d1-11e7-bd60-806e6f6e6963}\ () (Fixed) (Total:0.44 GB) (Free:0.41 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: CC9001A8)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=300 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=165 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================
 
You must log in or register to reply here.

Similar threads

J
The specified service does not exist as an installed service
Replies
0
Views
2K
justech
J
Hai Ha
The specified service does not exist as an installed service
Replies
0
Views
1K
Hai Ha
Hai Ha
N
  • Locked
Inactive The specified service does not exist as an installed service
Replies
9
Views
3K
Broni
Broni

Latest posts

Back