Featured Post

News Scan for Jun 29, 2020 | CIDRAP - CIDRAP

Image
News Scan for Jun 29, 2020 | CIDRAP - CIDRAPNews Scan for Jun 29, 2020 | CIDRAP - CIDRAPViruses: Breaking new grounds in research | Results Pack | CORDIS | European Commission - Cordis NewsHelping Others Make Healthy Choices - Texas A&M Today - Texas A&M University Today"How Contagion Works" author Paolo Giordano on the environmental, social and political factors impacting coronavirus and future threats - Sydney Morning HeraldPandemic Outbreaks in the Past Decade: A Research Overview - ResearchAndMarkets.com - Business WireNews Scan for Jun 29, 2020 | CIDRAP - CIDRAPPosted: 29 Jun 2020 12:00 AM PDT Ebola infects 4 more in DRC's Equateur province outbreakOfficials have reported 4 more confirmed cases in the Democratic Republic of the Congo (DRC) Equateur province Ebola outbreak, raising the total to 28, the World Health Organization (WHO) African regional office said today on Twitter.So far, no details on the latest cases in the DRC's 11th Ebola outbreak are no…

Opened suspisious PDF file. - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

Opened suspisious PDF file. - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer


Opened suspisious PDF file. - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

Posted: 08 May 2020 08:31 AM PDT

Hello,   I stupidly opened a PDF file that came from a suspect email.  I am running WIndows 10.     I am using Adobe Acrobat Plus 2015.006.30518.   Updates have been current.   The allow Javasscript checkbox was checked.
 
I sent the file into VICheck.  I am uploading the file to your site also.  Should I take more drastic remedial action,  ie hard reset of machine.
 
I ran a rootkit scan with Malwarebytes and Norton and rootkit remover, and have been doing scans daily.  I also changed all my critical passwords from another PC and set up 2FA where possible.
Any ideas on what to do or how to proceed.   I am concerned about a Keylogger attack and a windows update attack as indicated in the report.
 
Thanks so much.  I am sick about this.
 
Bob Mirenzi
 
This file is marked suspicious and has score of 102 risk .
completed: 2020-05-05T21:55:33.042335Z
is_malware: 1
rating: suspicious
state: completed
submitted: 2020-05-05T21:52:46.938085Z
 
Name: Statement.pdf
MD5: 70a3e105bbb2bc746cfc0f7ac047397c
SHA256: 5b12048e758556bfd883bc771383586e661c9165c3d33a32a78fcb05a1bb2fbf
Result: suspicious
   View Detailed Report

 

Here it is
 
Statement.pdf
md5: 70a3e105bbb2bc746cfc0f7ac047397c
sha1: 502d7e7b66baa34dccb0b2297da8dcb992fa1ed7
sha256: 5b12048e758556bfd883bc771383586e661c9165c3d33a32a78fcb05a1bb2fbf
sha512: 258a83cc52f395937d8f8ba84395c23b82937c78a38100503713d1bdf223842a9aec1ca310031ca2b4989476d9ac6d977e5be4fd379ce99fbc10d2ff56934fdd
header: 255044462d312e36
filesize: 159147
filetype: pdf
mimetype: application/pdf

ViCheck Analysis Details
DYNAMIC_DROP_PATH C:\Users\auser1\AppData\Local\Temp\FAPF6EB.tmp
C:\Users\auser1\AppData\Local\Temp\A9R36C.tmp
\\?\pipe\32B6B37A-4A7D-4e00-95F2-6F0BF3DE3E00056943743thsnYaVieBoda
C:\Users\auser1\AppData\Local\Temp\ArmUI.ini
C:\Users\auser1\AppData\Local\Temp\A9R36B.tmp
C:\Users\auser1\AppData\Local\Temp\AdobeARM.log
C:\Users\auser1\AppData\LocalLow\Adobe\Acrobat\11.0\ReaderMessages-journal
C:\Users\auser1\AppData\LocalLow\Adobe\Acrobat\11.0\ReaderMessages
C:\ProgramData\Adobe\ARM\Reader_11.0.08\Reader11Manifest2.msi
C:\Users\auser1\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
C:\Users\auser1\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
C:\Users\auser1\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
C:\Users\auser1\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
C:\ProgramData\Adobe\ARM\ArmReport.ini
C:\Users\auser1\AppData\Local\Temp\Cab3256.tmp DYNAMIC_SIGNATURE_NAME checks_debugger
antivm_memory_available
protection_rx
antivm_network_adapters
memdump_urls
infostealer_keylogger
process_martian
injection_resumethread EXIFTOOL_XMP_CREATOR_TOOL Adobe Acrobat Pro DC 20.6.20042 EXIFTOOL_XMP_DOCUMENT_ID uuid:680b9b9b-05ea-468e-8052-2bb38411fe84 EXIFTOOL_XMP_INSTANCE_ID uuid:ab658423-33ba-43e4-b80f-5fca9cd64b80 EXIFTOOL_XMP_TOOLKIT Adobe XMP Core 5.6-c016 91.163616, 2018/10/29-16:58:49 FILE_STRING ObjStm
XObject
URI FILE_YARA_RULE DIE_lzari_StartModel_LE
DIE_classical_random_incrementer_0x343FD_0x269EC3_LE
RIPEMD160_Constants
SHA1_Constants
dbgdetect_funcs
MD5_Constants
DIE_DES_BE
DIE_RIPEMD_128_InitState_LE
DIE_CRC_32_IEEE_802_3_poly_0x04C11DB7_LE
DIE_Boucher_randgen5_LE
DIE_unlzx_table_three_LE_2
DIE_DES_LE
DIE_Generic_bitmask_table_LE
DIE_Boucher_randgen1_LE
DIE_bitmask_LE IMAGE_MEGAPIXELS 1.3 NET_DOMAIN_NAME shatiefly-stahoe.icu NET_FULL_URI https://shatiefly-stahoe.icu/a59852a3-66ff-4904-a702-079a570ca86b PE_APIVECTOR 0:0:A171
2:29:A81QA87IA PE_IMPORT_FUZZY 3:: PE_IMPORT_SORTED_FUZZY 3:: SORTED_METADATA_HASH XMP:5d432b5e527a36707c21d8d95f7f73fdb5d83e29
FILE:b4e6f98bb8246fcc092cbcc32f19053976281214
APP14:9922fbe2feae9e853db0f028852c149a7781aa4a STATIC_STRING_NET_DOMAIN_NAME www.adobe.com
armmf.adobe.com
get.adobe.com
ctldl.windowsupdate.com
acroipm.adobe.com
acrobat.adobe.com
www.acrobat.com
createpdf.acrobat.com
ns.adobe.com
shatiefly-stahoe.icu
www.w3.org STATIC_STRING_NET_FULL_URI http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows
http://armmf.adobe.com/arm-manifests/win/
https://get.adobe.com/reader/
http://www.adobe.com/go/ARMUpgradeFailedHelp
http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows
https://armmf.adobe.com/arm-manifests/win/
http://www.adobe.com/go/update_error_win
http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab
http://www.adobe.com/go/ipmreaderepdf15_11_0_7View
http://acroipm.adobe.com/assets/109.zipimage2015-03-05
http://acroipm.adobe.com/assets/72.zip
http://www.adobe.com/go/ipmreaderepdf12_11_0_7Sign
http://acroipm.adobe.com/assets/105.zipimage2018-06-20
http://www.adobe.com/go/ipmreaderepdf14_11_0_7Sign
http://www.adobe.com/go/ipmreaderepdf11_11_0_7Sign
https://acrobat.adobe.com/us/en/landing/mobile-link-eol.html?trackingid=55KD8X1VTurn
http://acroipm.adobe.com/assets/108.zipimage2015-03-05
https://get.adobe.com/reader/?trackingid=9DJJ4NCK&mv=in-productUpgrade
http://acroipm.adobe.com/assets/102.zipimage2018-06-20
http://www.adobe.com/go/ipmreadercpdf1_11_0_7View
http://www.adobe.com/go/ipmreader11_11_0_6Sign
http://www.adobe.com/go/ipmreaderepdf3_11_0_6Sign
https://www.acrobat.com/createpdf/en/pricing.html?trackingid=KIBRDStart
https://acrobat.adobe.com/us/en/landing/mobile-link-eol.html?trackingid=51TC91RWTurn
http://www.adobe.com/go/ipmreaderepdf9_11_0_7Sign
https://acrobat.adobe.com/us/en/landing/exportpdf-pricing-b.html?trackingid=KIBRC&ttid=exprtpdf1Start
https://acrobat.adobe.com/us/en/acrobat/mobile-app/scan-documents.html?trackingid=DHWC1K6L&mv=in-productGet
http://acroipm.adobe.com/assets/103.zipimage2018-06-20
http://acroipm.adobe.com/assets/47.zip
http://www.adobe.com/go/ipmreader52_11_0Learn
http://www.adobe.com/go/ipmreaderepdf6_11_0_6Subscribe
http://acroipm.adobe.com/assets/1012.zip
http://acroipm.adobe.com/assets/1084.zip
http://www.adobe.com/go/ipmreader13_11_0_6Upgrade
https://acrobat.adobe.com/us/en/landing/mobile-link-eol.html?trackingid=4X3B95HXTurn
http://www.adobe.com/go/ipmreader3_11_0_07Subscribe
http://acroipm.adobe.com/assets/1084.zipimage
http://www.adobe.com/go/ipmreader20_11_0Learn
http://www.adobe.com/go/ipmreader7_11_0_7Subscribe
http://www.adobe.com/go/ipmreaderepdf4_11_0_6Sign
http://www.adobe.com/go/ipmreader22_11_0Learn
http://acroipm.adobe.com/assets/1012.zipimageA
http://www.adobe.com/go/ipmreader24_11_0Learn
http://www.adobe.com/go/ipmreader6_11_0_7Learn
http://acroipm.adobe.com/assets/21.zip
http://www.adobe.com/go/ipmreader2_11_0_07Subscribe
http://acroipm.adobe.com/assets/101.zipimage2015-03-05
http://www.adobe.com/go/ipmreader18_11_0_6Go
http://acroipm.adobe.com/assets/104.zipimage2018-06-20
http://www.adobe.com/go/ipmreaderepdf8_11_0_6Go
http://www.adobe.com/go/ipmreader14_11_0_6Subscribe
http://www.adobe.com/go/ipmreader17_11_0_6Learn
https://acrobat.adobe.com/us/en/landing/edit-pricing.html?trackingid=KJGHXStart
http://www.adobe.com/go/ipmreader23_11_0Learn
http://www.adobe.com/go/ipmreaderepdf10_11_0_7Sign
http://acroipm.adobe.com/assets/21.zipimageA
http://acroipm.adobe.com/assets/110.zipimage2015-03-05
http://www.adobe.com/go/ipmreader12_11_0_6Sign
https://acrobat.adobe.com/us/en/landing/mobile-link-eol.html?trackingid=4SC9997YTurn
http://www.adobe.com/go/ipmreader15_11_0_7Learn
http://www.adobe.com/go/ipmreaderepdf7_11_0_6Learn
https://createpdf.acrobat.com/app.html?trackingid=KJBUSGo
http://www.adobe.com/go/ipmreader53_11_0Learn
http://acroipm.adobe.com/assets/100.zipimage2018-06-20
http://acroipm.adobe.com/assets/107.zipimage2018-06-20
http://acroipm.adobe.com/assets/111.zipimage2015-03-05
http://www.adobe.com/go/ipmreaderepdf13_11_0_7Sign
http://acroipm.adobe.com/assets/105.zipimage2015-03-05
http://acroipm.adobe.com/assets/106.zipimage2015-03-05
http://acroipm.adobe.com/assets/107.zipimage2015-03-05
http://www.adobe.com/go/ipmreaderepdf5_11_0_6Upgrade
http://acroipm.adobe.com/assets/106.zipimage2018-06-20
https://www.acrobat.com/createpdf/en/features.html?trackingid=KJBURLearn
http://www.adobe.com/go/acrobat_sendnow_11_0_071970-01-01
http://ns.adobe.com/xap/1.0/mm/
https://shatiefly-stahoe.icu/a59852a3-66ff-4904-a702-079a570ca86b
http://ns.adobe.com/pdf/1.3/
http://www.w3.org/1999/02/22-rdf-syntax-ns#
http://purl.org/dc/elements/1.1/
http://ns.adobe.com/xap/1.0/ STATIC_STRING_NET_IP 1.3.6.1
1.3.133.16
1.3.14.7
1.3.14.3
101.3.4.2
1.9.15.1
1.9.16.3
101.3.4.1
1.3.132.1
2.5.8.2
11.0.0.012
11.0.7.011
11.0.1.012
completed: 2020-05-05T21:55:33.042335Z
is_malware: 1
rating: suspicious
state: completed
submitted: 2020-05-05T21:52:46.938085Z
 
 
Score: 102
Status: suspicious

Edited by RecursiveNerd, Today, 10:34 AM.
Edited to remove dangerous attachment

Possible infection with w32.Randex worm - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

Posted: 07 May 2020 05:07 AM PDT

My company domain server is reporting numerous security errors coming from my workstation IP address. The error code is on an old Windows 2003 server. The code  is 12294 and says The SAM database was unable to lockout the account of Administrator due to a resource error, such as a hard disk write failure (the specific error code is in the error data) . Accounts are locked after a certain number of bad passwords are provided so please consider resetting the password of the account mentioned above. . The research I have done suggests that it could be a virus from my computer (w32.Randex.worm). I have run eset online scan and malwarebytes scan, but nothing was found. I would really appreciate any help. this is driving me crazy. Thanks

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-05-2020
Ran by dbishop (administrator) on DAVE-PC3 (Dell Inc. Precision WorkStation T3400) (07-05-2020 07:36:22)
Running from C:\Users\dbishop\Desktop
Loaded Profiles: dbishop (Available Profiles: dbishop & Dave)
Platform: Microsoft Windows 7 Professional  Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\System32\TSSchBkpService.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Creative Technology Ltd) [File not signed] C:\Program Files\Creative\Shared Files\CTAudSvc.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14>
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\System32\Ctxfihlp.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\System32\CTxfispi.exe
(NVIDIA Corporation -> ) C:\Windows\System32\nvwmi.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(South Bay Software) [File not signed] C:\Program Files\AutoSizer\AutoSizer.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [CTxfiHlp] => C:\Windows\system32\CTXFIHLP.EXE* [25600 2010-05-05] () [File not signed]
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2593056 2014-07-02] (NVIDIA Corporation -> )
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Policies\Explorer: [NoWelcomeScreen] 1
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-1071505559-3928209948-484184340-1137\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\Software\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\81.0.4044.138\Installer\chrmstp.exe [2020-05-05] (Google LLC -> Google LLC)
Startup: C:\Users\dbishop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutoSizer - Shortcut.lnk [2020-05-01]
ShortcutTarget: AutoSizer - Shortcut.lnk -> C:\Program Files\AutoSizer\AutoSizer.exe (South Bay Software) [File not signed]
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {70162188-66C3-48A4-962C-CDF50E56E60F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [156104 2020-05-01] (Google LLC -> Google LLC)
Task: {CD2C472B-0BA6-46D1-B6ED-C14BDCFDD9C0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [156104 2020-05-01] (Google LLC -> Google LLC)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.5
Tcpip\..\Interfaces\{6F59B22A-51DE-49A2-98C2-80E63FC3C0B3}: [DhcpNameServer] 192.168.1.5
Internet Explorer:
==================
HKU\S-1-5-21-1071505559-3928209948-484184340-1137\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-03] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-03] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll [2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1071505559-3928209948-484184340-1137: tdameritrade.com/thinkorswim -> C:\Program Files\thinkorswim\npthinkorswim.dll [2020-05-06] (TD Ameritrade -> TD Ameritrade)
FF Plugin HKU\S-1-5-21-1071505559-3928209948-484184340-1137: tdameritrade.com/tossc -> C:\Program Files\thinkorswim\nptossc.dll [2020-05-06] (TD Ameritrade -> TD Ameritrade)
CHR Profile: C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default [2020-05-07]
CHR Extension: (Slides) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-05-01]
CHR Extension: (Docs) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-05-01]
CHR Extension: (Google Drive) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-05-01]
CHR Extension: (YouTube) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-05-01]
CHR Extension: (Pandora Listener) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\danjmbbdjabpapehlajpomcignjnoidp [2020-05-01]
CHR Extension: (Sheets) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-05-01]
CHR Extension: (Google Docs Offline) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-01]
CHR Extension: (AOA Specialty Certifying Boards and C...) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbbbdfbignllgeemcbpikiedlmgknhle [2020-05-01]
CHR Extension: (ABMS - Specialty and Subspecialty Certificates) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\kphbmkffeodpmkccpcgoaapfkjilpgnl [2020-05-01]
CHR Extension: (Chrome Web Store Payments) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-01]
CHR Extension: (Certification Matters) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\pekaackamkkomaegdnbchckgndbngpac [2020-05-07]
CHR Extension: (Gmail) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\dbishop\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-01]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2020-05-01] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2020-05-01] (Macrovision Corporation -> Macrovision Europe Ltd.) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5547464 2020-05-01] (Malwarebytes Inc -> Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 NVWMI; C:\Windows\system32\nvwmi.exe [2208400 2015-02-20] (NVIDIA Corporation -> )
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
R2 TSScheduleBackup; C:\Windows\system32\TSSchBkpService.exe [705024 2006-11-09] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [129056 2020-05-01] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [178952 2020-05-06] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [158592 2020-05-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [64080 2020-05-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [213912 2020-05-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [96880 2020-05-07] (Malwarebytes Inc -> Malwarebytes)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam_prewin8.sys [28984 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-07 07:36 - 2020-05-07 07:37 - 000012151 _____ C:\Users\dbishop\Desktop\FRST.txt
2020-05-07 07:36 - 2020-05-07 07:36 - 000000000 ____D C:\FRST
2020-05-07 07:35 - 2020-05-07 07:35 - 002011136 _____ (Farbar) C:\Users\dbishop\Desktop\FRST.exe
2020-05-07 07:22 - 2020-05-07 07:22 - 000213912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-05-07 07:22 - 2020-05-07 07:22 - 000158592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2020-05-07 07:22 - 2020-05-07 07:22 - 000096880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2020-05-07 07:22 - 2020-05-07 07:22 - 000064080 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2020-05-06 15:43 - 2020-05-06 15:43 - 000178952 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-05-06 13:29 - 2020-05-06 13:29 - 008196784 _____ (Malwarebytes) C:\Users\dbishop\Desktop\adwcleaner.exe
2020-05-06 11:53 - 2020-05-06 11:53 - 000000000 ____D C:\ProgramData\Copernic
2020-05-06 11:52 - 2020-05-06 11:52 - 000002091 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Copernic Desktop Search.lnk
2020-05-06 11:52 - 2020-05-06 11:52 - 000002079 _____ C:\Users\Public\Desktop\Copernic.lnk
2020-05-06 11:52 - 2020-05-06 11:52 - 000002079 _____ C:\ProgramData\Desktop\Copernic.lnk
2020-05-06 11:52 - 2020-05-06 11:52 - 000000000 ____D C:\Program Files\Copernic
2020-05-06 11:31 - 2020-05-06 11:31 - 000002264 _____ C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-06 11:31 - 2020-05-06 11:31 - 000000000 ____D C:\Users\Dave\AppData\Roaming\Adobe
2020-05-06 11:31 - 2020-05-06 11:31 - 000000000 ____D C:\Users\Dave\AppData\Local\mbamtray
2020-05-06 11:31 - 2020-05-06 11:31 - 000000000 ____D C:\Users\Dave\AppData\Local\Adobe
2020-05-05 16:45 - 2020-05-05 16:45 - 000000000 ____D C:\AdwCleaner
2020-05-05 16:08 - 2020-05-05 16:59 - 000000000 ____D C:\ProgramData\Roxio
2020-05-05 16:04 - 2020-05-05 17:21 - 000000000 ____D C:\ProgramData\Uninstall
2020-05-05 16:03 - 2020-05-05 16:03 - 000000234 _____ C:\Windows\wininit.ini
2020-05-05 16:03 - 2020-05-05 16:03 - 000000000 ____D C:\ProgramData\Sonic
2020-05-05 15:46 - 2020-05-05 15:46 - 000000000 ____D C:\Users\dbishop\Downloads\Macrium
2020-05-05 14:52 - 2020-05-05 14:52 - 000000000 ____D C:\ProgramData\Medical Connections Ltd
2020-05-05 14:21 - 2020-05-05 14:21 - 000000000 ____D C:\Users\dbishop\AppData\Roaming\Nero
2020-05-05 14:05 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2020-05-05 14:04 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2020-05-05 13:45 - 2020-05-05 13:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2020-05-05 13:45 - 2020-05-05 13:45 - 000000000 ____D C:\Program Files\VS Revo Group
2020-05-05 13:34 - 2020-05-05 13:34 - 000025956 _____ C:\Users\dbishop\.pdfbox.cache
2020-05-05 13:30 - 2020-05-05 14:31 - 000000000 ____D C:\Users\dbishop\AppData\Roaming\Sun
2020-05-05 13:30 - 2020-05-05 14:31 - 000000000 ____D C:\Users\dbishop\AppData\LocalLow\Sun
2020-05-05 13:29 - 2020-05-05 14:31 - 000000000 ____D C:\ProgramData\Oracle
2020-05-05 10:54 - 2020-05-05 10:54 - 015207099 _____ C:\Users\dbishop\Desktop\Barrel Stand.pdf
2020-05-05 10:28 - 2020-05-05 10:28 - 000001228 _____ C:\Users\dbishop\Desktop\Windows Explorer.lnk
2020-05-05 08:48 - 2020-05-05 08:48 - 000000517 _____ C:\Users\dbishop\Desktop\ESET Scanner.lnk
2020-05-05 08:48 - 2020-05-05 08:48 - 000000000 ____D C:\Users\dbishop\AppData\Local\ESET
2020-05-04 17:48 - 2020-05-06 11:51 - 000000000 ____D C:\Users\dbishop\AppData\Local\Copernic
2020-05-04 17:48 - 2020-05-04 17:48 - 000000000 ____D C:\Users\dbishop\AppData\Roaming\Copernic
2020-05-04 16:55 - 2020-05-04 16:55 - 000000000 ____D C:\Users\dbishop\AppData\Local\Apps\2.0
2020-05-04 16:37 - 2020-05-04 16:38 - 000000000 ____D C:\Program Files\UWT
2020-05-04 13:34 - 2009-08-19 23:50 - 000022872 ____R (Adobe Systems Inc.) C:\Windows\system32\AdobePDFUI.dll
2020-05-04 13:32 - 2020-05-04 13:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat
2020-05-04 13:32 - 2020-05-04 13:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disks Utilities
2020-05-04 13:31 - 2020-05-06 09:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DJB Accessories
2020-05-04 13:26 - 2020-05-04 13:26 - 000000000 ____D C:\Users\dbishop\AppData\Roaming\EverMap
2020-05-04 12:10 - 2009-08-19 23:50 - 000046928 _____ (Adobe Systems Inc) C:\Windows\system32\AdobePDF.dll
2020-05-04 11:49 - 2020-05-06 09:55 - 000002238 ____H C:\Users\dbishop\Documents\Default.rdp
2020-05-04 11:49 - 2020-05-04 11:49 - 000013417 _____ C:\Users\dbishop\Desktop\mstsc.lnk
2020-05-04 11:45 - 2020-05-06 15:53 - 000000000 ____D C:\Users\dbishop\Desktop\New folder
2020-05-04 10:19 - 2020-05-06 13:11 - 000000000 ____D C:\Users\dbishop\AppData\Local\7.1c
2020-05-04 10:19 - 2020-05-04 10:19 - 000000000 ____D C:\Users\dbishop\AppData\Local\Chromium
2020-05-04 10:17 - 2020-05-04 10:19 - 000000812 _____ C:\Users\dbishop\Desktop\DJB Scans.lnk
2020-05-04 10:15 - 2020-05-06 13:15 - 000000000 ____D C:\Users\dbishop\.thinkorswim
2020-05-04 10:15 - 2020-05-04 10:15 - 000001891 _____ C:\Users\Public\Desktop\thinkorswim.lnk
2020-05-04 10:15 - 2020-05-04 10:15 - 000001891 _____ C:\ProgramData\Desktop\thinkorswim.lnk
2020-05-04 10:15 - 2020-05-04 10:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\thinkorswim
2020-05-04 10:14 - 2020-05-06 13:15 - 000000000 ____D C:\Program Files\thinkorswim
2020-05-04 10:02 - 2020-05-04 10:02 - 000002693 _____ C:\Users\dbishop\Desktop\Word 2007.lnk
2020-05-04 10:02 - 2020-05-04 10:02 - 000000376 _____ C:\Windows\ODBC.INI
2020-05-04 10:02 - 2020-05-04 10:02 - 000000000 ____D C:\Program Files\Microsoft ActiveSync
2020-05-04 09:58 - 2020-05-04 09:58 - 000001304 _____ C:\Users\dbishop\Desktop\Hours.lnk
2020-05-04 09:53 - 2020-05-04 10:02 - 000000000 ____D C:\Windows\SHELLNEW
2020-05-03 17:02 - 2020-05-03 17:02 - 000001486 _____ C:\Users\dbishop\Desktop\AOM.lnk
2020-05-03 17:00 - 2020-05-03 17:00 - 000001035 _____ C:\Users\dbishop\Desktop\!Medical Records.lnk
2020-05-03 17:00 - 2020-05-03 17:00 - 000000715 _____ C:\Users\dbishop\Desktop\Cases - Closed.lnk
2020-05-03 17:00 - 2020-05-03 17:00 - 000000701 _____ C:\Users\dbishop\Desktop\Cases - Open.lnk
2020-05-03 12:09 - 2015-07-16 11:14 - 000355840 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2020-05-03 12:09 - 2014-12-11 13:47 - 000074240 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2020-05-02 17:09 - 2019-12-10 04:17 - 006136320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-05-02 17:09 - 2019-11-14 22:13 - 002752000 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-05-02 17:09 - 2019-11-14 22:13 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2020-05-02 17:09 - 2019-11-14 22:13 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2020-05-02 16:54 - 2012-08-23 10:44 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2020-05-02 16:54 - 2012-08-23 07:12 - 000192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2020-05-02 16:52 - 2013-10-01 20:42 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2020-05-02 16:52 - 2013-10-01 20:32 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2020-05-02 16:52 - 2013-10-01 20:30 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2020-05-02 16:52 - 2013-10-01 20:14 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2020-05-02 16:52 - 2013-10-01 20:14 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2020-05-02 16:52 - 2013-10-01 19:58 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-05-02 16:52 - 2013-10-01 19:45 - 000032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2020-05-02 16:52 - 2013-10-01 19:08 - 000855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2020-05-02 16:52 - 2013-10-01 18:34 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2020-05-02 16:49 - 2015-12-16 14:43 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2020-05-02 16:49 - 2015-12-16 14:43 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2020-05-02 16:49 - 2015-12-16 14:43 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2020-05-02 16:27 - 2020-01-02 23:42 - 004061624 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2020-05-02 16:27 - 2020-01-02 23:42 - 003967416 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-05-02 16:27 - 2020-01-02 23:42 - 000191416 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2020-05-02 16:27 - 2020-01-02 23:42 - 000191416 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-05-02 16:27 - 2020-01-02 23:42 - 000138168 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2020-05-02 16:27 - 2020-01-02 23:42 - 000137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2020-05-02 16:27 - 2020-01-02 23:42 - 000069048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2020-05-02 16:27 - 2020-01-02 23:41 - 001316120 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000812544 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000555520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2020-05-02 16:27 - 2020-01-02 23:38 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:10 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2020-05-02 16:27 - 2020-01-02 23:10 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2020-05-02 16:27 - 2020-01-02 23:10 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2020-05-02 16:27 - 2020-01-02 23:10 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2020-05-02 16:27 - 2020-01-02 23:10 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2020-05-02 16:27 - 2020-01-02 23:09 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2020-05-02 16:27 - 2020-01-02 23:07 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2020-05-02 16:27 - 2020-01-02 23:07 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2020-05-02 16:27 - 2020-01-02 23:06 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2020-05-02 16:27 - 2020-01-02 23:04 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2020-05-02 16:27 - 2020-01-02 23:03 - 000314880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2020-05-02 16:27 - 2020-01-02 23:03 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2020-05-02 16:27 - 2020-01-02 23:03 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-05-02 16:27 - 2020-01-02 23:03 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2020-05-02 16:27 - 2020-01-02 23:03 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2020-05-02 16:27 - 2020-01-02 23:02 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2020-05-02 16:27 - 2020-01-02 23:02 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2020-05-02 16:27 - 2020-01-02 23:02 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2020-05-02 16:27 - 2020-01-02 23:02 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2020-05-02 16:27 - 2020-01-02 23:02 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2020-05-02 16:27 - 2020-01-02 23:02 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2020-05-02 16:27 - 2020-01-02 23:02 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2020-05-02 16:27 - 2020-01-02 23:02 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2020-05-02 16:27 - 2020-01-02 23:02 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2020-05-02 16:27 - 2020-01-02 23:02 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2020-05-02 16:27 - 2020-01-02 23:02 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:02 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:02 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2020-05-02 16:27 - 2020-01-02 23:02 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2020-05-02 16:27 - 2019-12-30 23:06 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe
2020-05-02 16:27 - 2019-12-18 12:48 - 000341896 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2020-05-02 16:27 - 2019-12-16 20:52 - 020290048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-05-02 16:27 - 2019-12-16 20:49 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-05-02 16:27 - 2019-12-16 20:49 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2020-05-02 16:27 - 2019-12-16 20:37 - 000496640 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-05-02 16:27 - 2019-12-16 20:37 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2020-05-02 16:27 - 2019-12-16 20:36 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2020-05-02 16:27 - 2019-12-16 20:36 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2020-05-02 16:27 - 2019-12-16 20:35 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2020-05-02 16:27 - 2019-12-16 20:33 - 002304000 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-05-02 16:27 - 2019-12-16 20:30 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2020-05-02 16:27 - 2019-12-16 20:30 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2020-05-02 16:27 - 2019-12-16 20:28 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2020-05-02 16:27 - 2019-12-16 20:27 - 000662528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-05-02 16:27 - 2019-12-16 20:27 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2020-05-02 16:27 - 2019-12-16 20:27 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2020-05-02 16:27 - 2019-12-16 20:26 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-05-02 16:27 - 2019-12-16 20:21 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2020-05-02 16:27 - 2019-12-16 20:18 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2020-05-02 16:27 - 2019-12-16 20:14 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2020-05-02 16:27 - 2019-12-16 20:14 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2020-05-02 16:27 - 2019-12-16 20:13 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2020-05-02 16:27 - 2019-12-16 20:11 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2020-05-02 16:27 - 2019-12-16 20:10 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2020-05-02 16:27 - 2019-12-16 20:09 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2020-05-02 16:27 - 2019-12-16 20:08 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2020-05-02 16:27 - 2019-12-16 20:03 - 004112384 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-05-02 16:27 - 2019-12-16 20:02 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2020-05-02 16:27 - 2019-12-16 20:01 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-05-02 16:27 - 2019-12-16 20:01 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-05-02 16:27 - 2019-12-16 20:01 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2020-05-02 16:27 - 2019-12-16 20:00 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2020-05-02 16:27 - 2019-12-16 19:56 - 013838336 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-05-02 16:27 - 2019-12-16 19:43 - 004387840 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-05-02 16:27 - 2019-12-16 19:39 - 001331712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-05-02 16:27 - 2019-12-16 19:38 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2020-05-02 16:27 - 2019-12-11 23:35 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-05-02 16:27 - 2019-12-11 23:34 - 000253952 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2020-05-02 16:27 - 2019-12-10 05:43 - 000253880 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2020-05-02 16:27 - 2019-12-10 04:38 - 002952704 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 001549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 001400320 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 001177088 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000544768 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000364544 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000328704 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-05-02 16:27 - 2019-12-10 04:38 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-05-02 16:27 - 2019-12-10 04:23 - 002091520 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-05-02 16:27 - 2019-12-10 04:23 - 000573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2020-05-02 16:27 - 2019-12-10 04:22 - 000428544 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-05-02 16:27 - 2019-12-10 04:22 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-05-02 16:27 - 2019-12-10 04:22 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-05-02 16:27 - 2019-12-10 04:22 - 000093184 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2020-05-02 16:27 - 2019-12-10 04:22 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-05-02 16:27 - 2019-12-10 04:22 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-05-02 16:27 - 2019-12-10 04:22 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2020-05-02 16:27 - 2019-12-10 04:22 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\wiatrace.dll
2020-05-02 16:27 - 2019-12-10 04:22 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2020-05-02 16:27 - 2019-12-10 04:09 - 002407936 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-05-02 16:27 - 2019-12-10 04:06 - 000515072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2020-05-02 16:27 - 2019-11-27 23:29 - 000307200 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2020-05-02 16:27 - 2019-11-26 17:13 - 000407776 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-05-02 16:27 - 2019-11-26 16:22 - 000532192 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-05-02 16:27 - 2019-11-14 22:32 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 001425920 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 001330176 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 000583680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 000479232 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 000380928 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 000111616 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2020-05-02 16:27 - 2019-11-14 22:29 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2020-05-02 16:27 - 2019-11-14 22:13 - 000448000 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2020-05-02 16:27 - 2019-11-14 22:13 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2020-05-02 16:27 - 2019-11-14 22:04 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2020-05-02 16:27 - 2019-11-14 21:59 - 000034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2020-05-02 16:27 - 2019-11-14 21:59 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2020-05-02 16:27 - 2019-11-14 21:55 - 000258048 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2020-05-02 16:27 - 2019-11-05 17:29 - 000164064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2020-05-02 16:27 - 2019-11-05 17:29 - 000106936 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2020-05-02 16:27 - 2019-11-05 17:27 - 000137144 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2020-05-02 16:27 - 2019-11-05 17:25 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000628224 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000573440 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000502784 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-05-02 16:27 - 2019-11-05 17:25 - 000004608 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2020-05-02 16:27 - 2019-11-05 17:24 - 001806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2020-05-02 16:27 - 2019-11-05 17:24 - 001005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2020-05-02 16:27 - 2019-11-05 17:24 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2020-05-02 16:27 - 2019-11-05 17:24 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2020-05-02 16:27 - 2019-11-05 17:12 - 001312256 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2020-05-02 16:27 - 2019-11-05 17:03 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2020-05-02 16:27 - 2019-11-05 17:03 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2020-05-02 16:27 - 2019-11-05 16:57 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2020-05-02 16:27 - 2019-11-05 16:57 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2020-05-02 16:27 - 2019-11-05 15:43 - 001251840 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-05-02 16:27 - 2019-11-05 15:43 - 000910336 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-05-02 16:27 - 2019-10-25 20:17 - 001465344 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2020-05-02 16:27 - 2019-09-19 00:30 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2020-05-02 16:27 - 2019-09-16 22:29 - 000599040 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2020-05-02 16:27 - 2019-09-11 23:53 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-05-02 16:27 - 2019-09-11 23:53 - 000276480 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2020-05-02 16:27 - 2019-09-11 23:52 - 000474624 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-05-02 16:27 - 2019-09-11 23:52 - 000373248 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-05-02 16:27 - 2019-09-11 23:52 - 000195072 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-05-02 16:27 - 2019-09-11 23:32 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-05-02 16:27 - 2019-09-11 00:56 - 000353792 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2020-05-02 16:27 - 2019-09-11 00:56 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\msltus40.dll
2020-05-02 16:27 - 2019-09-09 22:27 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-05-02 16:27 - 2019-09-09 22:27 - 000383488 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-05-02 16:27 - 2019-09-09 22:27 - 000320512 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-05-02 16:27 - 2019-09-09 22:27 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-05-02 16:27 - 2019-09-09 22:27 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2020-05-02 16:27 - 2019-09-09 22:00 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-05-02 16:27 - 2019-09-09 22:00 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-05-02 16:27 - 2019-09-09 22:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-05-02 16:27 - 2019-09-09 22:00 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-05-02 16:27 - 2019-09-09 22:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2020-05-02 16:27 - 2019-09-09 22:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-05-02 16:27 - 2019-09-09 21:59 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2020-05-02 16:27 - 2019-09-09 21:56 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2020-05-02 16:27 - 2019-09-09 20:10 - 002703360 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2020-05-02 16:27 - 2019-09-09 20:10 - 000618496 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2020-05-02 16:27 - 2019-09-09 20:10 - 000535040 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2020-05-02 16:27 - 2019-09-09 20:10 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2020-05-02 16:27 - 2019-09-09 20:10 - 000366080 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2020-05-02 16:27 - 2019-09-09 20:10 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2020-05-02 16:27 - 2019-09-09 20:10 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2020-05-02 16:25 - 2014-07-08 21:29 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2020-05-02 16:25 - 2014-07-08 21:29 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2020-05-02 16:25 - 2014-07-08 21:29 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2020-05-02 16:25 - 2014-07-08 21:29 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2020-05-02 16:25 - 2014-07-08 21:29 - 000005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2020-05-02 16:25 - 2013-11-26 04:16 - 003419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2020-05-02 16:25 - 2011-03-11 01:39 - 000143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2020-05-02 16:25 - 2011-03-11 01:39 - 000117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2020-05-02 16:25 - 2011-03-11 01:38 - 000332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2020-05-02 16:25 - 2011-03-11 01:38 - 000080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2020-05-02 16:25 - 2011-03-11 01:38 - 000022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2020-05-02 16:25 - 2011-03-11 01:33 - 001699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2020-05-02 16:25 - 2011-03-11 01:31 - 000074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2020-05-02 16:15 - 2019-12-30 22:40 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-05-02 16:05 - 2020-05-02 16:36 - 000000000 ___SD C:\Windows\system32\CompatTel
2020-05-02 16:05 - 2020-05-02 16:36 - 000000000 ____D C:\Windows\system32\appraiser
2020-05-02 15:59 - 2020-04-01 19:49 - 000609128 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-05-02 15:47 - 2017-04-27 18:50 - 003550208 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2020-05-02 15:45 - 2019-08-12 22:58 - 000376320 _____ (Microsoft Corporation) C:\Windows\system32\mspbde40.dll
2020-05-02 15:45 - 2019-08-12 22:58 - 000313344 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2020-05-02 15:45 - 2019-07-13 04:34 - 001391616 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-05-02 15:45 - 2019-07-13 04:34 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2020-05-02 15:45 - 2019-07-13 04:34 - 000180736 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2020-05-02 15:45 - 2019-07-13 04:34 - 000162816 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2020-05-02 15:45 - 2019-07-13 04:34 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2020-05-02 15:45 - 2019-07-13 04:33 - 000256512 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2020-05-02 15:45 - 2019-07-13 04:33 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2020-05-02 15:45 - 2019-07-13 04:33 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2020-05-02 15:45 - 2019-07-13 04:33 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2020-05-02 15:45 - 2019-07-13 04:33 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2020-05-02 15:45 - 2019-07-13 04:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2020-05-02 15:45 - 2019-06-12 11:23 - 000078568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2020-05-02 15:45 - 2019-06-12 11:21 - 000617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2020-05-02 15:45 - 2019-06-12 11:20 - 000988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2020-05-02 15:45 - 2019-06-12 11:20 - 000519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2020-05-02 15:45 - 2019-06-12 11:20 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2020-05-02 15:45 - 2019-06-12 11:20 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2020-05-02 15:45 - 2019-06-12 11:20 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2020-05-02 15:45 - 2019-06-12 11:20 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2020-05-02 15:45 - 2019-06-12 11:20 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2020-05-02 15:45 - 2019-06-12 11:20 - 000103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2020-05-02 15:45 - 2019-06-12 11:20 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2020-05-02 15:45 - 2019-06-12 11:19 - 000744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2020-05-02 15:45 - 2019-06-12 11:16 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2020-05-02 15:45 - 2019-06-12 11:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2020-05-02 15:45 - 2019-06-12 11:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2020-05-02 15:45 - 2019-06-12 11:05 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2020-05-02 15:45 - 2019-06-12 11:04 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2020-05-02 15:45 - 2019-06-12 10:58 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2020-05-02 15:45 - 2019-06-12 10:50 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2020-05-02 15:45 - 2019-06-12 10:50 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2020-05-02 15:45 - 2019-06-12 10:50 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2020-05-02 15:45 - 2019-06-03 19:10 - 000751104 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2020-05-02 15:45 - 2019-06-03 19:10 - 000304640 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2020-05-02 15:45 - 2019-06-02 00:07 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-05-02 15:45 - 2019-05-13 10:44 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\msexch40.dll
2020-05-02 15:45 - 2019-04-18 22:55 - 000053992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2020-05-02 15:45 - 2019-04-18 22:54 - 000154344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2020-05-02 15:45 - 2019-04-18 22:54 - 000052968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2020-05-02 15:45 - 2019-04-18 22:54 - 000046312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys
2020-05-02 15:45 - 2019-04-18 22:54 - 000032488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys
2020-05-02 15:45 - 2019-04-18 22:54 - 000027880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys
2020-05-02 15:45 - 2019-04-18 22:54 - 000021736 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll
2020-05-02 15:45 - 2019-04-18 22:54 - 000013544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys
2020-05-02 15:45 - 2019-04-12 09:04 - 000021752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000018680 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000017352 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000017144 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000015608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000015096 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000013560 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000013560 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000013048 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000011728 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2020-05-02 15:45 - 2019-04-12 09:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2020-05-02 15:45 - 2019-04-09 11:17 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2020-05-02 15:45 - 2019-04-09 11:05 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2020-05-02 15:45 - 2019-04-04 20:23 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\cryptdll.dll
2020-05-02 15:45 - 2019-03-11 17:33 - 001241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2020-05-02 15:45 - 2019-03-11 17:33 - 000527872 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2020-05-02 15:45 - 2019-03-11 17:33 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2020-05-02 15:45 - 2019-03-04 22:40 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2020-05-02 15:45 - 2019-03-04 22:40 - 000026368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2020-05-02 15:45 - 2019-03-04 22:40 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2020-05-02 15:45 - 2019-02-21 11:43 - 000026624 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2020-05-02 15:45 - 2019-02-21 11:36 - 000188928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2020-05-02 15:45 - 2019-02-16 01:50 - 000781824 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-05-02 15:45 - 2019-02-16 01:50 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2020-05-02 15:45 - 2019-02-10 12:18 - 000247296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2020-05-02 15:45 - 2019-02-10 12:18 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2020-05-02 15:45 - 2019-02-10 12:18 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2020-05-02 15:45 - 2019-02-10 12:18 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2020-05-02 15:45 - 2019-02-07 11:42 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\brdgcfg.dll
2020-05-02 15:45 - 2019-02-07 11:42 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\bridgeunattend.exe
2020-05-02 15:45 - 2019-02-03 11:34 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys
2020-05-02 15:45 - 2018-12-07 22:56 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2020-05-02 15:45 - 2018-12-07 22:56 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2020-05-02 15:45 - 2018-12-07 22:41 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2020-05-02 15:45 - 2018-12-07 22:41 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2020-05-02 15:45 - 2018-12-07 22:41 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2020-05-02 15:45 - 2018-12-07 22:41 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2020-05-02 15:45 - 2018-12-07 22:41 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2020-05-02 15:45 - 2018-12-07 22:41 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2020-05-02 15:45 - 2018-12-04 11:55 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2020-05-02 15:45 - 2018-12-04 11:55 - 000142848 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2020-05-02 15:45 - 2018-10-26 23:27 - 000173568 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2020-05-02 15:45 - 2018-10-26 23:27 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2020-05-02 15:45 - 2018-10-26 23:04 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2020-05-02 15:45 - 2018-10-26 23:04 - 000126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2020-05-02 15:45 - 2018-10-26 23:04 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2020-05-02 15:45 - 2018-10-26 23:04 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\dispex.dll
2020-05-02 15:45 - 2018-08-12 16:14 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2020-05-02 15:45 - 2018-08-10 11:41 - 000564736 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2020-05-02 15:45 - 2018-08-10 11:40 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2020-05-02 15:45 - 2018-08-10 11:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2020-05-02 15:45 - 2018-08-10 11:20 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2020-05-02 15:45 - 2018-06-29 11:40 - 000549376 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
2020-05-02 15:45 - 2018-06-29 11:40 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll
2020-05-02 15:45 - 2018-06-29 11:40 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2020-05-02 15:45 - 2018-06-29 11:09 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2020-05-02 15:45 - 2018-06-08 11:54 - 000269824 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2020-05-02 15:45 - 2018-06-08 11:54 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2020-05-02 15:45 - 2018-06-08 11:28 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2020-05-02 15:45 - 2018-05-10 20:40 - 000741888 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2020-05-02 15:45 - 2018-05-02 11:30 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2020-05-02 15:45 - 2018-05-02 11:30 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2020-05-02 15:45 - 2018-05-02 11:30 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2020-05-02 15:45 - 2018-04-25 11:54 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2020-05-02 15:45 - 2018-04-18 11:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2020-05-02 15:45 - 2018-04-18 11:35 - 000015360 _____ (Microsoft Corporation) C:\Windows\hh.exe
2020-05-02 15:45 - 2018-04-10 12:33 - 001241600 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2020-05-02 15:45 - 2018-04-10 12:32 - 000487936 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2020-05-02 15:45 - 2018-03-06 14:13 - 000148160 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2020-05-02 15:45 - 2018-03-06 14:11 - 000184320 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2020-05-02 15:45 - 2018-03-06 14:11 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2020-05-02 15:45 - 2018-02-21 23:06 - 000134656 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2020-05-02 15:45 - 2018-02-10 14:48 - 000274624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2020-05-02 15:45 - 2018-02-10 13:36 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys
2020-05-02 15:45 - 2018-02-10 13:36 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\MsraLegacy.tlb
2020-05-02 15:45 - 2018-02-10 13:36 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys
2020-05-02 15:45 - 2018-01-12 12:26 - 000308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2020-05-02 15:45 - 2017-12-31 22:00 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2020-05-02 15:45 - 2017-12-31 22:00 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\traffic.dll
2020-05-02 15:45 - 2017-12-31 22:00 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\wshnetbs.dll
2020-05-02 15:45 - 2017-12-31 21:54 - 000173288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2020-05-02 15:45 - 2017-12-31 21:50 - 000317952 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2020-05-02 15:45 - 2017-12-31 21:43 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys
2020-05-02 15:45 - 2017-12-31 21:38 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll
2020-05-02 15:45 - 2017-12-05 13:08 - 000072704 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2020-05-02 15:45 - 2017-11-02 11:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2020-05-02 15:45 - 2017-10-11 20:37 - 001363968 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2020-05-02 15:45 - 2017-09-13 10:53 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2020-05-02 15:45 - 2017-09-08 10:20 - 000640512 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2020-05-02 15:45 - 2017-09-08 10:20 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2020-05-02 15:45 - 2017-08-14 13:35 - 002150912 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2020-05-02 15:45 - 2017-08-14 13:35 - 000172544 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2020-05-02 15:45 - 2017-08-14 13:35 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mmcshext.dll
2020-05-02 15:45 - 2017-08-14 13:35 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2020-05-02 15:45 - 2017-08-13 17:35 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2020-05-02 15:45 - 2017-08-13 17:30 - 001401344 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2020-05-02 15:45 - 2017-08-11 02:19 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2020-05-02 15:45 - 2017-08-11 02:19 - 000299008 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2020-05-02 15:45 - 2017-08-11 02:19 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2020-05-02 15:45 - 2017-08-11 02:19 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2020-05-02 15:45 - 2017-08-11 02:19 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\nsisvc.dll
2020-05-02 15:45 - 2017-08-11 02:19 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\winnsi.dll
2020-05-02 15:45 - 2017-08-11 02:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\nsi.dll
2020-05-02 15:45 - 2017-08-11 02:09 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2020-05-02 15:45 - 2017-08-11 02:09 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2020-05-02 15:45 - 2017-08-11 01:55 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2020-05-02 15:45 - 2017-07-21 10:26 - 000518144 _____ C:\Windows\system32\msjetoledb40.dll
2020-05-02 15:45 - 2017-07-21 10:26 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\msjtes40.dll
2020-05-02 15:45 - 2017-07-21 10:26 - 000282624 _____ (Microsoft Corporation) C:\Windows\system32\mstext40.dll
2020-05-02 15:45 - 2017-07-07 11:15 - 000296680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2020-05-02 15:45 - 2017-07-01 09:05 - 000616448 _____ (Microsoft Corporation) C:\Windows\system32\msrepl40.dll
2020-05-02 15:45 - 2017-07-01 09:05 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\msjter40.dll
2020-05-02 15:45 - 2017-06-02 03:57 - 000497152 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2020-05-02 15:45 - 2017-05-10 11:16 - 000091368 _____ (Microsoft Corporation) C:\Windows\system32\MigAutoPlay.exe
2020-05-02 15:45 - 2017-03-10 12:20 - 001508352 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2020-05-02 15:45 - 2017-03-10 11:52 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2020-05-02 15:45 - 2017-03-07 12:17 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2020-05-02 15:45 - 2017-03-03 21:14 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2020-05-02 15:45 - 2017-02-09 12:14 - 000575488 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2020-05-02 15:45 - 2017-02-09 12:14 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2020-05-02 15:45 - 2016-10-11 09:33 - 000187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2020-05-02 15:45 - 2016-10-07 11:12 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2020-05-02 15:45 - 2016-09-08 16:34 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2020-05-02 15:45 - 2016-09-08 10:49 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2020-05-02 15:45 - 2016-08-06 11:15 - 000249344 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2020-05-02 15:45 - 2016-08-06 10:53 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2020-05-02 15:45 - 2016-08-06 10:53 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2020-05-02 15:44 - 2019-08-28 22:52 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-05-02 15:44 - 2019-08-26 22:38 - 000304128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2020-05-02 15:44 - 2019-08-20 19:26 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2020-05-02 15:44 - 2019-08-14 00:57 - 000304640 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2020-05-02 15:44 - 2019-08-13 18:17 - 000732600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-05-02 15:44 - 2019-08-13 18:17 - 000221624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-05-02 15:44 - 2019-08-13 18:12 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-05-02 15:44 - 2019-08-12 22:58 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\msxbde40.dll
2020-05-02 15:44 - 2019-07-13 04:38 - 000242400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2020-05-02 15:44 - 2019-07-13 04:37 - 001312992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-05-02 15:44 - 2019-07-13 04:37 - 000189152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-05-02 15:44 - 2019-07-13 04:34 - 000335360 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2020-05-02 15:44 - 2019-07-13 04:34 - 000269824 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2020-05-02 15:44 - 2019-07-13 04:13 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2020-05-02 15:44 - 2019-06-28 01:23 - 000829440 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2020-05-02 15:44 - 2019-06-28 01:23 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2020-05-02 15:44 - 2019-06-28 01:23 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2020-05-02 15:44 - 2019-06-28 01:23 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2020-05-02 15:44 - 2019-06-28 01:23 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2020-05-02 15:44 - 2019-06-12 11:21 - 012574208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2020-05-02 15:44 - 2019-06-12 11:21 - 011411968 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-05-02 15:44 - 2019-06-12 11:20 - 003207168 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-05-02 15:44 - 2019-06-12 11:20 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2020-05-02 15:44 - 2019-06-12 11:20 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2020-05-02 15:44 - 2019-06-12 11:19 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2020-05-02 15:44 - 2019-06-12 11:06 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2020-05-02 15:44 - 2019-06-12 10:49 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Dism.exe
2020-05-02 15:44 - 2019-05-24 19:59 - 012880384 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-05-02 15:44 - 2019-05-24 19:58 - 001499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2020-05-02 15:44 - 2019-05-22 20:31 - 001988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2020-05-02 15:44 - 2019-05-09 11:17 - 000805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2020-05-02 15:44 - 2019-04-18 22:54 - 000104680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS
2020-05-02 15:44 - 2019-04-18 22:54 - 000057064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS
2020-05-02 15:44 - 2019-04-18 22:54 - 000052968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VIAAGP.SYS
2020-05-02 15:44 - 2019-04-18 22:54 - 000052968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys
2020-05-02 15:44 - 2019-04-18 22:54 - 000051944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\SISAGP.SYS
2020-05-02 15:44 - 2019-04-18 22:54 - 000011880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2020-05-02 15:44 - 2019-04-18 22:53 - 000052968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AMDAGP.SYS
2020-05-02 15:44 - 2019-04-16 09:15 - 000419648 _____ C:\Windows\system32\locale.nls
2020-05-02 15:44 - 2019-04-12 09:04 - 000914584 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2020-05-02 15:44 - 2019-04-12 09:04 - 000065784 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2020-05-02 15:44 - 2019-04-12 09:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2020-05-02 15:44 - 2019-04-09 11:14 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2020-05-02 15:44 - 2019-04-09 11:05 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2020-05-02 15:44 - 2019-04-07 10:52 - 000335872 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2020-05-02 15:44 - 2019-03-28 21:35 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2020-05-02 15:44 - 2019-03-20 21:36 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2020-05-02 15:44 - 2019-03-11 17:33 - 000827904 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-05-02 15:44 - 2019-02-10 12:43 - 001214176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2020-05-02 15:44 - 2019-02-07 11:53 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2020-05-02 15:44 - 2018-12-07 22:56 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2020-05-02 15:44 - 2018-10-26 23:27 - 000121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2020-05-02 15:44 - 2018-09-08 20:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2020-05-02 15:44 - 2018-08-29 21:47 - 001230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-05-02 15:44 - 2018-08-28 01:41 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2020-05-02 15:44 - 2018-08-15 22:14 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2020-05-02 15:44 - 2018-08-13 17:48 - 000940784 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-05-02 15:44 - 2018-08-10 11:40 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2020-05-02 15:44 - 2018-08-03 11:39 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2020-05-02 15:44 - 2018-07-18 11:14 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2020-05-02 15:44 - 2018-07-06 11:54 - 000713408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2020-05-02 15:44 - 2018-06-29 11:10 - 000389632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2020-05-02 15:44 - 2018-06-08 11:55 - 000330240 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2020-05-02 15:44 - 2018-05-14 23:13 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2020-05-02 15:44 - 2018-05-10 20:40 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2020-05-02 15:44 - 2018-05-02 11:30 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2020-05-02 15:44 - 2018-05-02 11:30 - 000259584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2020-05-02 15:44 - 2018-05-02 11:30 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2020-05-02 15:44 - 2018-05-02 11:29 - 000006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2020-05-02 15:44 - 2018-04-25 11:17 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2020-05-02 15:44 - 2018-04-18 11:51 - 000523776 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2020-05-02 15:44 - 2018-02-10 14:23 - 002292224 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2020-05-02 15:44 - 2018-02-10 14:23 - 000111616 _____ (Microsoft Corporation) C:\Windows\system32\racpldlg.dll
2020-05-02 15:44 - 2018-02-10 14:23 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\msrahc.dll
2020-05-02 15:44 - 2018-02-10 13:36 - 000537600 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2020-05-02 15:44 - 2018-02-10 13:36 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\sdchange.exe
2020-05-02 15:44 - 2018-01-12 12:16 - 003405824 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2020-05-02 15:44 - 2017-12-31 22:00 - 001155584 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2020-05-02 15:44 - 2017-12-31 22:00 - 001004032 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll
2020-05-02 15:44 - 2017-12-31 22:00 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\PeerDist.dll
2020-05-02 15:44 - 2017-12-31 22:00 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistWSDDiscoProv.dll
2020-05-02 15:44 - 2017-12-31 21:54 - 000201960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2020-05-02 15:44 - 2017-12-31 21:44 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistHttpTrans.dll
2020-05-02 15:44 - 2017-12-31 21:43 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2020-05-02 15:44 - 2017-12-31 21:43 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\wshqos.dll
2020-05-02 15:44 - 2017-12-31 21:38 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\vmicsvc.exe
2020-05-02 15:44 - 2017-12-05 11:54 - 000334848 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2020-05-02 15:44 - 2017-11-02 11:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2020-05-02 15:44 - 2017-11-02 11:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2020-05-02 15:44 - 2017-11-02 10:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2020-05-02 15:44 - 2017-10-16 18:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2020-05-02 15:44 - 2017-08-19 11:10 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2020-05-02 15:44 - 2017-08-14 13:35 - 000303104 _____ (Microsoft Corporation) C:\Windows\system32\mmcbase.dll
2020-05-02 15:44 - 2017-08-11 02:10 - 000066048 _____ C:\Windows\system32\PrintBrmUi.exe
2020-05-02 15:44 - 2017-08-11 02:09 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2020-05-02 15:44 - 2017-07-29 10:50 - 000074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2020-05-02 15:44 - 2017-07-07 11:10 - 000973312 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2020-05-02 15:44 - 2017-07-01 09:05 - 000866816 _____ (Microsoft Corporation) C:\Windows\system32\mswdat10.dll
2020-05-02 15:44 - 2017-06-12 18:29 - 001227264 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2020-05-02 15:44 - 2017-06-12 18:29 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2020-05-02 15:44 - 2017-06-12 18:29 - 000390144 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2020-05-02 15:44 - 2017-06-12 18:28 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2020-05-02 15:44 - 2017-06-12 18:06 - 000303616 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2020-05-02 15:44 - 2017-06-12 18:06 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2020-05-02 15:44 - 2017-06-12 18:06 - 000103424 _____ (Microsoft Corporation) C:\Windows\system32\resmon.exe
2020-05-02 15:44 - 2017-04-04 10:52 - 000338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-05-02 15:44 - 2017-03-30 10:58 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\rundll32.exe
2020-05-02 15:44 - 2017-03-10 12:20 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2020-05-02 15:44 - 2016-10-11 11:18 - 001027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2020-05-02 15:44 - 2016-10-11 11:18 - 000701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2020-05-02 15:44 - 2016-10-11 11:18 - 000430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2020-05-02 15:44 - 2016-10-11 11:18 - 000202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2020-05-02 15:44 - 2016-10-11 11:18 - 000126976 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2020-05-02 15:44 - 2016-10-11 11:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2020-05-02 15:44 - 2016-10-11 11:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2020-05-02 15:44 - 2016-10-11 11:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2020-05-02 15:44 - 2016-10-11 11:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2020-05-02 15:44 - 2016-10-11 11:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2020-05-02 15:44 - 2016-10-11 11:18 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2020-05-02 15:44 - 2016-10-11 10:51 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2020-05-02 15:44 - 2016-09-12 16:49 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2020-05-02 15:44 - 2016-09-08 16:34 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2020-05-02 15:44 - 2016-08-12 12:21 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2020-05-02 15:44 - 2016-08-06 11:15 - 001178112 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2020-05-02 15:44 - 2016-08-06 11:15 - 000214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2020-05-02 15:44 - 2016-08-06 11:15 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2020-05-02 15:44 - 2016-08-06 11:15 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2020-05-02 15:44 - 2016-08-06 10:53 - 000199168 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2020-05-02 15:43 - 2019-07-13 04:34 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2020-05-02 15:43 - 2019-06-12 11:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2020-05-02 15:43 - 2019-03-11 17:33 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2020-05-02 15:43 - 2019-02-07 11:57 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\bridgeres.dll
2020-05-02 15:43 - 2017-12-31 22:00 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\vmicres.dll
2020-05-02 15:43 - 2016-10-11 11:18 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2020-05-02 15:37 - 2019-10-10 22:22 - 000292352 _____ (Microsoft Corporation) C:\Windows\system32\sipnotify.exe
2020-05-02 14:53 - 2012-07-25 23:21 - 000196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2020-05-02 14:53 - 2012-07-25 23:20 - 000613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2020-05-02 14:53 - 2012-07-25 23:20 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2020-05-02 14:53 - 2012-07-25 23:20 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2020-05-02 14:53 - 2012-07-25 23:20 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2020-05-02 14:53 - 2012-07-25 22:33 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2020-05-02 14:53 - 2012-07-25 22:32 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2020-05-02 14:53 - 2012-06-02 10:57 - 000000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2020-05-02 14:51 - 2014-06-30 18:14 - 000008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2020-05-02 14:51 - 2014-06-06 02:16 - 000035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2020-05-02 14:51 - 2014-03-09 17:47 - 000619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2020-05-02 14:51 - 2014-03-09 17:47 - 000099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2020-05-02 14:51 - 2012-03-01 01:46 - 000019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2020-05-02 14:51 - 2012-03-01 01:29 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2020-05-02 13:49 - 2016-04-14 09:49 - 000603648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2020-05-02 13:25 - 2015-12-08 17:54 - 002285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-05-02 13:24 - 2015-02-03 22:54 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2020-05-02 11:40 - 2020-05-02 11:46 - 000000000 ____D C:\icons
2020-05-02 11:34 - 2020-05-02 11:34 - 000645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2020-05-02 11:34 - 2020-05-02 11:34 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2020-05-02 11:34 - 2020-05-02 11:34 - 000139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2020-05-02 11:34 - 2020-05-02 11:34 - 000116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2020-05-02 11:34 - 2020-05-02 11:34 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2020-05-02 11:34 - 2020-05-02 11:34 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2020-05-02 11:34 - 2020-05-02 11:34 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2020-05-02 11:34 - 2020-05-02 11:34 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2020-05-02 11:33 - 2020-05-02 11:33 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2020-05-02 11:30 - 2020-05-02 11:30 - 001158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 001080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2020-05-02 11:30 - 2020-05-02 11:30 - 000002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2020-05-02 11:27 - 2020-05-02 11:27 - 001505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2020-05-02 11:25 - 2015-07-30 09:13 - 000103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2020-05-02 11:13 - 2016-01-22 02:04 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2020-05-02 11:13 - 2016-01-22 02:04 - 000535040 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2020-05-02 11:13 - 2015-01-08 22:48 - 000635904 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2020-05-02 11:13 - 2015-01-08 22:48 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2020-05-02 11:13 - 2015-01-08 22:48 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2020-05-02 11:12 - 2016-03-16 14:28 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2020-05-02 11:12 - 2016-03-16 14:28 - 000111616 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2020-05-02 11:12 - 2015-10-29 13:50 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2020-05-02 11:12 - 2015-10-29 13:49 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2020-05-02 11:12 - 2015-10-29 13:49 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2020-05-02 11:12 - 2015-10-29 13:49 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2020-05-02 11:12 - 2015-07-22 13:53 - 000635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2020-05-02 11:09 - 2011-08-17 00:24 - 000465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2020-05-02 11:09 - 2011-08-17 00:19 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2020-05-02 11:08 - 2014-11-10 22:44 - 000186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2020-05-02 11:06 - 2016-08-29 10:55 - 002972672 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-05-02 11:06 - 2014-06-17 21:51 - 000646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2020-05-02 11:06 - 2014-02-03 22:07 - 000234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2020-05-02 11:06 - 2014-02-03 22:07 - 000149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-05-02 11:06 - 2014-02-03 22:07 - 000027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2020-05-02 11:06 - 2014-02-03 22:00 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2020-05-02 11:06 - 2013-10-03 21:58 - 000152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2020-05-02 11:06 - 2013-10-03 21:56 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2020-05-02 11:05 - 2015-03-04 00:10 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2020-05-02 11:05 - 2013-05-12 23:08 - 000903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2020-05-02 11:05 - 2013-05-12 23:08 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2020-05-02 11:04 - 2013-05-09 23:20 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2020-05-02 11:04 - 2012-07-04 15:45 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2020-05-02 11:03 - 2016-05-12 11:18 - 000606720 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2020-05-02 11:03 - 2016-05-12 11:18 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2020-05-02 11:03 - 2016-05-12 11:18 - 000351744 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2020-05-02 11:03 - 2016-05-12 11:18 - 000274944 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2020-05-02 11:03 - 2016-05-12 11:18 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2020-05-02 11:03 - 2016-05-12 11:18 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2020-05-02 11:03 - 2016-05-12 11:18 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2020-05-02 11:03 - 2016-05-12 10:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2020-05-02 11:03 - 2016-05-12 10:57 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2020-05-02 11:03 - 2016-03-09 14:34 - 000216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2020-05-02 11:03 - 2016-02-03 13:59 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2020-05-02 11:03 - 2015-11-03 14:55 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2020-05-02 11:03 - 2015-07-09 13:42 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2020-05-02 11:03 - 2015-07-09 13:42 - 000179712 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2020-05-02 11:03 - 2013-02-11 23:32 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2020-05-02 11:03 - 2013-01-24 00:47 - 000196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2020-05-02 11:03 - 2012-08-21 16:12 - 000245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2020-05-02 11:03 - 2011-08-27 00:26 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2020-05-02 11:03 - 2011-02-12 01:35 - 000191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2020-05-02 11:02 - 2015-11-05 15:02 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2020-05-02 11:02 - 2015-11-05 05:48 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2020-05-02 11:02 - 2015-02-02 23:12 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2020-05-02 11:02 - 2014-10-29 21:45 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2020-05-02 11:02 - 2014-06-18 18:23 - 001131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2020-05-02 11:02 - 2014-06-18 18:23 - 000156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2020-05-02 11:02 - 2014-06-18 18:23 - 000081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2020-05-02 11:02 - 2014-03-04 05:17 - 000538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2020-05-02 11:02 - 2014-03-04 05:17 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2020-05-02 11:02 - 2014-03-04 05:17 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2020-05-02 11:02 - 2014-03-04 05:17 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2020-05-02 11:02 - 2014-03-04 05:17 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2020-05-02 11:02 - 2014-03-04 05:17 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2020-05-02 11:02 - 2014-03-04 05:17 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2020-05-02 11:02 - 2012-09-25 18:47 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2020-05-02 11:02 - 2011-06-15 04:55 - 000319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2020-05-02 11:02 - 2011-06-15 04:55 - 000163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2020-05-02 11:02 - 2011-06-15 04:55 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2020-05-02 11:02 - 2011-06-15 04:55 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2020-05-02 11:02 - 2011-06-15 04:55 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2020-05-02 11:01 - 2016-05-11 11:19 - 000351744 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2020-05-02 11:01 - 2016-05-11 11:19 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2020-05-02 11:01 - 2016-05-11 11:19 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2020-05-02 11:01 - 2016-03-09 14:40 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2020-05-02 11:01 - 2016-02-05 14:44 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2020-05-02 11:01 - 2016-02-05 13:33 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2020-05-02 11:01 - 2015-07-09 13:42 - 001372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2020-05-02 11:01 - 2015-07-09 13:42 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2020-05-02 11:01 - 2015-06-03 16:22 - 000355456 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2020-05-02 11:01 - 2015-04-10 23:07 - 000054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2020-05-02 11:01 - 2014-12-18 22:43 - 000164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-05-02 11:01 - 2014-09-04 01:04 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2020-05-02 11:01 - 2014-08-01 07:35 - 000793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2020-05-02 11:01 - 2013-10-18 21:36 - 000159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2020-05-02 11:01 - 2013-10-11 22:03 - 000656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2020-05-02 11:01 - 2013-10-11 22:01 - 000679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2020-05-02 11:01 - 2013-10-11 22:01 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2020-05-02 11:01 - 2013-08-04 21:56 - 000133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2020-05-02 11:01 - 2013-07-12 06:07 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2020-05-02 11:01 - 2012-11-02 01:11 - 000376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2020-05-02 11:01 - 2011-12-30 01:27 - 000478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2020-05-02 11:01 - 2011-12-16 03:52 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2020-05-02 11:01 - 2011-03-11 01:33 - 001164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2020-05-02 11:01 - 2011-03-11 01:33 - 001137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2020-05-02 11:01 - 2011-02-18 01:39 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2020-05-02 11:00 - 2018-11-17 22:44 - 000470704 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-05-02 11:00 - 2018-11-17 22:43 - 000374872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2020-05-02 11:00 - 2018-11-17 22:43 - 000249352 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2020-05-02 10:58 - 2015-05-25 14:01 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2020-05-02 10:58 - 2015-05-25 14:00 - 000364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2020-05-02 10:58 - 2015-05-25 14:00 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2020-05-02 10:58 - 2015-05-25 14:00 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2020-05-02 10:58 - 2015-05-25 14:00 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2020-05-02 10:58 - 2015-05-25 14:00 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2020-05-02 10:58 - 2014-07-16 21:40 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2020-05-02 10:58 - 2014-07-16 21:39 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2020-05-02 10:58 - 2014-07-16 21:03 - 000184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2020-05-02 10:58 - 2012-04-26 00:45 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2020-05-02 10:58 - 2012-04-26 00:41 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2020-05-02 10:57 - 2015-07-14 22:55 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2020-05-02 10:54 - 2015-01-06 22:49 - 000089528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys
2020-05-02 10:54 - 2014-12-05 23:50 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2020-05-02 10:54 - 2012-12-07 08:26 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2020-05-02 10:54 - 2012-12-07 08:20 - 002576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2020-05-02 10:54 - 2012-12-07 06:46 - 000055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2020-05-02 10:54 - 2012-12-07 06:46 - 000015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
Cutoff here because of length. There was more to file that I can send in reply.

Infected with Chromium and Santivirus - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

Posted: 07 May 2020 12:13 PM PDT

I have been infected with the virus, I followed several possible solutions, and I managed to eliminate it but it was reinstalled to run several programs, but after I deleted the registries and the Santivirus dll, when I restarted my PC I could no longer connect to any network and my PC stayed in airplane mode, I saw the solution of a previous post, but I have not been able to make my pc work, in addition to that I cannot execute several commands and there are several stopped services that I cannot execute and some that I cannot find, practically I cannot connect to any network, neither cable or wifi.

please help

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-04-2020

Ran by alistim (administrator) on DESKTOP-7C9ELA1 (LENOVO 90FB0001US) (07-05-2020 13:39:59)
Running from C:\Users\alistim\Downloads\hk
Loaded Profiles: alistim (Available Profiles: alistim)
Platform: Windows 10 Home Version 1903 18362.778 (X64) Language: Inglés (Estados Unidos)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\jmesoft\ServiceLoader.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo) [File not signed] C:\Windows\jmesoft\hotkey.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\alistim\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Support.com Inc -> SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-11-15] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-04] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [jmekey] => C:\Windows\jmesoft\hotkey.exe [118784 2013-07-24] (Lenovo) [File not signed]
HKLM-x32\...\Run: [jmesoft] => C:\Windows\jmesoft\ServiceLoader.exe [28672 2011-08-16] () [File not signed]
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [706392 2017-11-20] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [Akamai NetSession Interface] => "C:\Users\alistim\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2007576 2017-02-03] (Autodesk, Inc -> Autodesk, Inc.)
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [68408 2019-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [GoogleChromeAutoLaunch_4702778777596D844F3E133EAE788B06] => "C:\Users\alistim\AppData\Local\chromium\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [Chromium] => "c:\users\alistim\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [9230256 2020-03-13] (Support.com Inc -> SUPERAntiSpyware)
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\Policies\Explorer: [] 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.138\Installer\chrmstp.exe [2020-05-06] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> C:\Program Files (x86)\Microsoft\Edge\Application\81.0.416.68\Installer\setup.exe [2020-04-29] (Microsoft Corporation -> Microsoft Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0249D57C-52ED-42B6-A264-149D9648BD36} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321608 2016-12-07] (LENOVO -> Lenovo)
Task: {12FC65AB-212E-4E79-AB04-5F9E5F0109EC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1401278D-D1A5-4391-B85D-ECBAD7F97D1B} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f83587f0-2b39-48ae-b98e-cafd48acb1f3 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {18A56127-C774-4757-8F0B-0F7465513F5F} - System32\Tasks\Lenovo\SHUpdate => C:\Program Files (x86)\Lenovo\SHAREit\ShareitUpdater.exe [808352 2015-07-12] (LENOVO -> )
Task: {18EA8D9A-6C16-4BAF-AE0E-7434075A5DC5} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-07-06] (LENOVO -> Lenovo)
Task: {1E5A39E8-AC93-47E4-AC87-952B9F96F714} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {2F048B13-19AB-4073-8613-5CBE84546E53} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {2F274139-3B08-4573-98F8-01D64A38A86B} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo)
Task: {34D8A259-2459-40AE-A7BA-9A14848F578D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {351CC407-EAE4-4B42-B8B1-994B5040807E} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {36572317-ABF9-43D8-8CAC-8C110867E267} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {367F85B2-4411-4CD7-8485-65478500979A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3A3639B9-417F-47EF-8880-DCD8B694D7D5} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3AB64D9E-7FCF-44CB-93BF-6040DA9BFEE7} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\df6bc71a-d971-4142-938e-150f17534562 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {45853C0A-2C6E-4923-9818-EDC26A4B8063} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe [768896 2014-09-26] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
Task: {4D2AAE68-C3BF-412E-9102-DA998DA4ED4D} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1825906009-2319708657-2520030077-1001 => C:\Users\alistim\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {54B1AEE4-AD00-42F9-96B3-6D1587DAFF8A} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57726BE0-BFFC-439F-8A39-E26ABF5B3C8A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {59DE3754-39F1-462C-8247-E825943B7A03} - System32\Tasks\SUPERAntiSpyware Scheduled Task d6c27b61-a61e-421e-b6fd-34adaaf67476 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944 2013-11-07] (SUPERAntiSpyware.com -> SUPERAdBlocker.com)
Task: {5A799923-D020-46B6-9139-8FE0CAB9A5DA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {5B12D622-E1C8-4090-BEBC-8C2C2E3D44A2} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2019-10-01] (Apple Inc. -> Apple Inc.)
Task: {61E0E5BE-AFEE-4077-81EC-A336C468432D} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {6856D04F-65FD-47F0-9FB7-53498F285359} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223120 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {69245F77-E15E-40DE-8704-F6297B54B434} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [121542864 2020-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {6A608543-5F91-4FAE-9D1D-F3127F7F76B5} - System32\Tasks\Lenovo\SHPrompt => C:\Program Files (x86)\Lenovo\SHAREit\ShareitPrompt.exe [829344 2015-07-12] (LENOVO -> )
Task: {6BB28460-C103-4153-BD83-E5FBB33FB589} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {77A43550-EF33-4494-9D54-7DC7DDE295BF} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8177349D-C911-4985-AC07-C5483D5DCBF4} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {940D9F7A-6547-42E3-8702-80933A8E9B9C} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [158648 2020-03-31] (Lenovo -> Lenovo Group Ltd.)
Task: {99F12463-9BE4-462B-B9F8-E364DD9636BB} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223120 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {B578E215-D61D-4022-945A-A4071C14E1A8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {C0490623-22FC-4EF1-A536-114795FE3AB0} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo)
Task: {C91A35BC-B96A-4397-A7D5-39265524CF2A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-10] (Google Inc -> Google Inc.)
Task: {CD1A54D1-DCF3-40E1-A614-A3A8A401005B} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\37d60d91-7989-4e47-ba4a-63c0568296af => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {D13BD17C-5A98-40AC-A8D3-999BDE9C8A11} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D2970B77-A486-4096-A1BC-3833B1E360D3} - System32\Tasks\Uninstaller_SkipUac_alistim => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5292304 2019-02-26] (IObit Information Technology -> IObit)
Task: {D6D5E7EF-E2A4-46CF-92D0-D51A2924DB19} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-10] (Google Inc -> Google Inc.)
Task: {D79786AB-56F5-42A5-8C69-8D20FB7D0826} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264328 2016-12-07] (LENOVO -> )
Task: {D8C06ABF-5AAB-488A-BC64-497465320A7B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {D8C84AE3-F8A3-4F4B-8CDE-5BEEA3A3CBBD} - System32\Tasks\ASC12_SkipUac_alistim => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {DAAE3DC0-A95F-41DE-8635-A13223B01CBE} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [54424 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {E4ED503D-BC68-47EF-A69B-964D0BA88268} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E8066992-98AB-4303-B1EA-45311E4950CD} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {EE060650-D23B-477E-B744-D332631CD433} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {F0CEA24E-0605-4692-BE46-38420C916EC7} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {F5E60344-F811-49A9-8D17-76BFC0EF0AC0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\34a1ad8c-f667-4976-a89c-1e0769c73d62 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {F88B7DA1-AAD2-4B34-99EF-B4A24BFDB5E9} - System32\Tasks\SUPERAntiSpyware Scheduled Task 18a47c68-0d9b-4ae1-aac4-15c666075716 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944 2013-11-07] (SUPERAntiSpyware.com -> SUPERAdBlocker.com)
Task: {F97639BB-BB26-4418-8B86-B15066B7C111} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {FF57A5CA-6E4D-4AC9-B3D1-D834011C9AB0} - System32\Tasks\Opera scheduled Autoupdate 1587583841 => C:\Users\alistim\AppData\Local\Programs\Opera\launcher.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 18a47c68-0d9b-4ae1-aac4-15c666075716.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task d6c27b61-a61e-421e-b6fd-34adaaf67476.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{4b2d60d2-f0ad-4140-b9a1-8ab6dc575411}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{57fc844f-dfcf-452e-bebd-ac680cfa9823}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{e7fe56ce-b21b-4d22-9d86-13c19cdad905}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{e7fe56ce-b21b-4d22-9d86-13c19cdad905}: [DhcpNameServer] 192.168.100.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://mx.search.yahoo.com/yhs/web?hspart=shnl&hsimp=yhs-001&type=c11079aa1984936bfebc90d1f45&param1=IE&param2=1&param3=campaignID%3D847%26UserID%3D1629212939&param4=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
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mx.search.yahoo.com/yhs/web?hspart=shnl&hsimp=yhs-001&type=c11079aa1984936bfebc90d1f45&param1=IE&param2=1&param3=campaignID%3D847%26UserID%3D1629212939&param4=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
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKLM -> DefaultScope {99C8B851-AA6F-4CFF-8478-302EFF177559} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {99C8B851-AA6F-4CFF-8478-302EFF177559} URL = 
SearchScopes: HKU\S-1-5-21-1825906009-2319708657-2520030077-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://mx.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87fptpeylhk2y2aegikmoq9fx001720&param1=y6bdVFVIsvuYsgEClQfz8OwmhzNKyrgL6nqJxNEJ6iob62Pj4wyNbYNAUgCBISqlxJQ3wXCTkcJPhmZzaBd0TNw3Z%2FH5K00aUq0oEZIt9XNP45EpIkeRYbMw9cXlXfk5P71pXWUmo4QztnEO8cWEiB3tJki6LsTbauBrhDigPbQwMfVVCZ0TXJB1iYLCabtsLMMIGNZMfI1aG0jAOGC3VzpbtWBTuakGu49puNJy2Kof2fs2kGJB8bo7hoNWtRJJFNAyaq4Wajstd6IOr2CDkHIXNYsl5LMhcD9IvH%2BTbFzqtHIfdWk1%2FdBrVvCqecjba%2FmvM8mt6x4mXL2Me8rADfcWT9KOanYeI7XVflGUMwzAyWHIZ%2BUv2Z%2BwpYKuYAniIdScFCGkTXUlsOU9VjtvYg%3D%3D&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1825906009-2319708657-2520030077-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-1825906009-2319708657-2520030077-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = 
SearchScopes: HKU\S-1-5-21-1825906009-2319708657-2520030077-1001 -> {2A23ab71-4ac6-41f2-a955-ea576e553146} URL = 
SearchScopes: HKU\S-1-5-21-1825906009-2319708657-2520030077-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://mx.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87fptpeylhk2y2aegikmoq9fx001720&param1=y6bdVFVIsvuYsgEClQfz8OwmhzNKyrgL6nqJxNEJ6iob62Pj4wyNbYNAUgCBISqlxJQ3wXCTkcJPhmZzaBd0TNw3Z%2FH5K00aUq0oEZIt9XNP45EpIkeRYbMw9cXlXfk5P71pXWUmo4QztnEO8cWEiB3tJki6LsTbauBrhDigPbQwMfVVCZ0TXJB1iYLCabtsLMMIGNZMfI1aG0jAOGC3VzpbtWBTuakGu49puNJy2Kof2fs2kGJB8bo7hoNWtRJJFNAyaq4Wajstd6IOr2CDkHIXNYsl5LMhcD9IvH%2BTbFzqtHIfdWk1%2FdBrVvCqecjba%2FmvM8mt6x4mXL2Me8rADfcWT9KOanYeI7XVflGUMwzAyWHIZ%2BUv2Z%2BwpYKuYAniIdScFCGkTXUlsOU9VjtvYg%3D%3D&p={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2018-07-19] (IObit Information Technology -> IObit)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-02-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-02-03] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
Edge HomeButtonPage: HKU\S-1-5-21-1825906009-2319708657-2520030077-1001 -> hxxps://mx.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87fptpeylhk2y2aegikmoq9fx001720&param1=y6bdVFVIsvuYsgEClQfz8OwmhzNKyrgL6nqJxNEJ6iob62Pj4wyNbYNAUgCBISqlxJQ3wXCTkcJPhmZzaBd0TOswEFPIkm7e85xxN8bHdBG6CEZ7mt46VqobAd97rnXVRk8IQ95FcCvdesCQzwLIavxnQL5HwQuCMISREajN4HPRjgUeKyTyosZLq7U3k6MtdX34M8Yqdyb8Mbc0M5vKy1S5Lr%2FAD8%2BGUzICZYlsgjmhpeXcgRvzBCKd3ptv5jE62ZrfjyyYts6xI39xrFb6xrBj1nI5DtLfwF%2FnInG%2FuvyZobsTHAeSx%2FhxXP%2BHonVDxNoQi8CAIeztgHhBWYcgN9pkyxff5oFNEYeKZbQokukmpHHxDjEjYfyTSsoNdNMcGU5x4bMC1kP1nH9HxIq2bg%3D%3D
Edge DefaultProfile: Default
Edge Profile: C:\Users\alistim\AppData\Local\Microsoft\Edge\User Data\Default [2020-04-28]
FF DefaultProfile: 5pgn0atg.default
FF ProfilePath: C:\Users\alistim\AppData\Roaming\Mozilla\Firefox\Profiles\5pgn0atg.default [2020-05-05]
FF SearchPlugin: C:\Users\alistim\AppData\Roaming\Mozilla\Firefox\Profiles\5pgn0atg.default\searchplugins\sifoloret.xml [2020-05-05]
FF ProfilePath: C:\Users\alistim\AppData\Roaming\Mozilla\Firefox\Profiles\zmcmdu62.default-release [2020-05-07]
FF Homepage: Mozilla\Firefox\Profiles\zmcmdu62.default-release -> hxxps://mx.search.yahoo.com/yhs/web?hspart=shnl&hsimp=yhs-001&type=c11079aa1984936bfebc90d1f45&param1=Firefox&param2=1&param3=campaignID%3D847%26UserID%3D1629212939&param4=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
FF NewTab: Mozilla\Firefox\Profiles\zmcmdu62.default-release -> hxxps://mx.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87fptpeylhk2y2aegikmoq9fx001720&param1=y6bdVFVIsvuYsgEClQfz8OwmhzNKyrgL6nqJxNEJ6iob62Pj4wyNbYNAUgCBISqlxJQ3wXCTkcJPhmZzaBd0TJuMKeMe%2FNT1VjYxAwA%2Fhfsr47QGpbF7nFbxEpacJzF8o6299PALQ4BKbQCKygxKTGl9KHd5nlCQStuGNgNnsYbnvF2r%2B2sRB57TkeMMLg7Oqd5liJMGd2Me%2FKkX0j4NGvCUCOOX2cz8muDKM6n9IQpns0Yo4sRImL0VLa3I3tEF4gnb4wt%2Bi4ENeL1%2FLOkJSc4IZTt9ICQxS2PMQQGcQFMX6awzPu4eI%2FUsGOUBppvEgKTUk3qK7YdYoaqa4QSkZWvyM95K8KkadwKFNzgxEBvnaVkKr%2B%2FZC5KXgoSqppdnwhMliRn1Pz1FwiTpGvdUQmamJoC61yMSGfd2eGPl5M0%3D
FF SearchPlugin: C:\Users\alistim\AppData\Roaming\Mozilla\Firefox\Profiles\zmcmdu62.default-release\searchplugins\sifoloret.xml [2020-05-05]
FF SearchPlugin: C:\Users\alistim\AppData\Roaming\Mozilla\Firefox\Profiles\zmcmdu62.default-release\searchplugins\Yahoo powered search.xml [2020-05-01]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-04-01] ( Microsoft Corporation) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
CHR DefaultProfile: Default
CHR Profile: C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default [2020-05-06]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://web.whatsapp.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxps://www.google.com.mx/
CHR StartupUrls: Default -> "hxxps://www.google.com.mx/"
CHR Extension: (Docs) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-10]
CHR Extension: (Java OpenJDK Search) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhlahpneecapmldiinlhminmdobaifdi [2017-05-17]
CHR Extension: (Java API Search) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\dphfngjamcomlehblpblaacingmaojnm [2017-05-17]
CHR Extension: (Google Docs Offline) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-20]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-22]
CHR Profile: C:\Users\alistim\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-05]
CHR Profile: C:\Users\alistim\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-05]
CHR HKLM\...\Chrome\Extension: [bhdinjalofclbacjijgifpahcnjapclb]
CHR HKLM\...\Chrome\Extension: [bkfajajhmehapdgmgjejilcbjmhmebkl]
CHR HKLM\...\Chrome\Extension: [ilnidodcffjfecahcfiihlhiohnaobic]
CHR HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bhdinjalofclbacjijgifpahcnjapclb]
CHR HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bkfajajhmehapdgmgjejilcbjmhmebkl]
CHR HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ilnidodcffjfecahcfiihlhiohnaobic]
CHR HKLM-x32\...\Chrome\Extension: [bhdinjalofclbacjijgifpahcnjapclb]
CHR HKLM-x32\...\Chrome\Extension: [bkfajajhmehapdgmgjejilcbjmhmebkl]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ilnidodcffjfecahcfiihlhiohnaobic]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-30] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
S4 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904 2017-11-21] (Autodesk, Inc. -> Autodesk Inc.)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.)
S4 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team)
S4 AxVirtualAHCISrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe [99712 2015-12-04] (Alcohol Soft -> Alcohol Soft Development Team)
S4 COMSysApp; C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [21304 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
S4 COMSysApp; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [19256 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [526888 2017-10-05] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S4 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223120 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
S4 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223120 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
S4 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [530208 2019-04-23] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
S4 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
S4 Intel® Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\Intel\iCLS Client\lib\SocketHeciServer.exe [780600 2018-10-02] (Intel® Trust Services -> Intel® Corporation)
S4 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S4 Intel® TPM Provisioning Service; C:\WINDOWS\System32\Intel\iCLS Client\lib\TPMProvisioningService.exe [718656 2018-10-02] (Intel® Trust Services -> Intel® Corporation)
S4 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [153360 2018-09-25] (IObit Information Technology -> IObit)
S4 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
S4 jhi_service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_0a3294d3216a4a83\jhi_service.exe [578752 2018-11-13] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S4 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-08-16] () [File not signed]
S2 KMService; C:\WINDOWS\SysWOW64\srvany.exe [8192 2017-12-14] () [File not signed]
S4 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273544 2016-12-07] (LENOVO -> Lenovo)
S4 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\81.0.416.68\elevation_service.exe [1125264 2020-04-29] (Microsoft Corporation -> Microsoft Corporation)
S4 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S4 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S4 PIEServiceNew; C:\WINDOWS\System32\DriverStore\FileRepository\piecomponent.inf_amd64_16c0b30f7916739a\Intel_PIE_Service.exe [482080 2020-02-06] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13048888 2020-04-30] (Adlice -> )
S4 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\NisSrv.exe [2455544 2019-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MsMpEng.exe [110104 2019-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 AdvancedSystemCareService12; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [X]
S3 MyWiFiDHCPDNS; "C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe" [X]
S4 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
S2 SAntivirusIC; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe -service [X] <==== ATTENTION
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-20] (Microsoft Corporation) [File not signed]
S3 cpuz143; C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [48960 2020-05-07] (CPUID -> CPUID)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [732448 2019-04-23] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
S3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37184 2018-10-16] (IObit Information Technology -> IObit)
S3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [43392 2018-10-16] (IObit Information Technology -> IObit)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2019-04-18] (Malwarebytes Corporation -> Malwarebytes)
R3 Netwtw06; C:\WINDOWS\System32\drivers\Netwtw06.sys [8841600 2020-02-07] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvle.inf_amd64_ec8cef1361b0a004\nvlddmkm.sys [22354064 2019-11-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-08-22] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RkFlt; C:\Windows\System32\drivers\rkflt.sys [41616 2020-05-07] (Adlice -> )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [411712 2015-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Realsil Semiconductor Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [203296 2017-09-15] (Disc Soft Ltd -> Duplex Secure Ltd)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [28272 2020-05-07] (Adlice -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [47704 2019-07-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [367032 2019-07-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-07-08] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]
S1 SANTIVIRUSKD; \??\C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusKD.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-07 12:53 - 2020-05-07 13:40 - 000000000 ____D C:\FRST
2020-05-07 11:50 - 2020-05-07 11:50 - 000041616 _____ C:\WINDOWS\system32\Drivers\rkflt.sys
2020-05-07 11:50 - 2020-05-07 11:50 - 000028272 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2020-05-07 11:50 - 2020-05-07 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-05-07 11:50 - 2020-05-07 11:50 - 000000000 ____D C:\Program Files\RogueKiller
2020-05-07 11:49 - 2020-05-07 12:00 - 000000000 ____D C:\ProgramData\RogueKiller
2020-05-07 11:46 - 2020-05-07 13:08 - 000000546 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task d6c27b61-a61e-421e-b6fd-34adaaf67476.job
2020-05-07 11:46 - 2020-05-07 13:08 - 000000546 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 18a47c68-0d9b-4ae1-aac4-15c666075716.job
2020-05-07 11:46 - 2020-05-07 11:46 - 000003790 _____ C:\WINDOWS\system32\Tasks\SUPERAntiSpyware Scheduled Task d6c27b61-a61e-421e-b6fd-34adaaf67476
2020-05-07 11:46 - 2020-05-07 11:46 - 000003708 _____ C:\WINDOWS\system32\Tasks\SUPERAntiSpyware Scheduled Task 18a47c68-0d9b-4ae1-aac4-15c666075716
2020-05-07 11:46 - 2020-05-07 11:46 - 000000000 ____D C:\Users\alistim\AppData\Roaming\SUPERAntiSpyware.com
2020-05-07 11:45 - 2020-05-07 11:46 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2020-05-07 11:45 - 2020-05-07 11:45 - 000001856 _____ C:\Users\alistim\Desktop\SUPERAntiSpyware Professional.lnk
2020-05-07 11:45 - 2020-05-07 11:45 - 000000000 ____D C:\Users\alistim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2020-05-07 11:45 - 2020-05-07 11:45 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2020-05-07 11:40 - 2020-05-07 11:42 - 000000000 ____D C:\AdwCleaner
2020-05-07 11:39 - 2020-05-07 13:04 - 000000000 ____D C:\Users\alistim\Downloads\hk
2020-05-07 09:30 - 2020-05-07 09:47 - 000164986 _____ C:\WINDOWS\ntbtlog.txt
2020-05-06 20:57 - 2020-05-07 09:30 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-05-06 20:54 - 2020-05-06 20:54 - 000000000 ____D C:\WINDOWS\pss
2020-05-05 23:30 - 2020-05-07 12:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\gadimogaku
2020-05-05 23:30 - 2020-05-05 23:31 - 000000000 ____D C:\Users\alistim\AppData\Local\{8BF4BDA8-AF5C-D110-C2C4-F4F8E6AC0860}
2020-05-05 23:30 - 2020-05-05 23:30 - 000001773 _____ C:\Users\alistim\Desktop\Internet Explorer.lnk
2020-05-05 23:30 - 2020-05-05 23:30 - 000001372 _____ C:\Users\alistim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HowToRemove.lnk
2020-05-05 23:30 - 2020-05-05 23:30 - 000000000 ____D C:\Users\alistim\AppData\Roaming\Bebomigano
2020-05-05 23:30 - 2020-05-05 23:30 - 000000000 ____D C:\ProgramData\{8DD4B1E8-A5FC-C990-FDA4-E1B8154C3960}
2020-05-05 23:29 - 2020-05-05 23:29 - 000355975 _____ C:\Users\alistim\AppData\Roaming\Kisafanacaf
2020-04-30 11:43 - 2020-04-30 11:43 - 000723882 _____ C:\Users\alistim\Desktop\amparo.pdf
2020-04-28 15:36 - 2020-04-28 15:36 - 000011452 _____ C:\Users\alistim\Downloads\Calificaciones_Ordinario_-_Civil_II_Bienes_y_Sucesiones_sabatino..xlsx
2020-04-27 16:10 - 2020-04-27 16:10 - 000275901 _____ C:\Users\alistim\Downloads\LINEAMIENTOS_DE_EVALUACION_MEDICINA_FORENSE (1).pdf
2020-04-25 21:11 - 2020-04-25 21:11 - 011007589 _____ C:\Users\alistim\Downloads\20200425_2100391.mp4
2020-04-25 20:42 - 2020-04-25 20:42 - 010646976 _____ C:\Users\alistim\Downloads\20200425_2024592.mp4
2020-04-25 20:39 - 2020-04-25 20:39 - 004327558 _____ C:\Users\alistim\Downloads\20200425_2024592_2.mp4
2020-04-25 11:30 - 2020-04-25 11:30 - 000275901 _____ C:\Users\alistim\Downloads\LINEAMIENTOS_DE_EVALUACION_MEDICINA_FORENSE.pdf
2020-04-22 14:33 - 2020-04-22 14:33 - 000000000 ____D C:\Users\alistim\Documents\FormatFactory
2020-04-22 14:33 - 2020-04-22 14:33 - 000000000 ____D C:\Users\alistim\AppData\Local\FTMod
2020-04-22 14:33 - 2020-04-22 14:33 - 000000000 ____D C:\FFOutput
2020-04-22 14:31 - 2020-04-22 14:31 - 000000000 ____D C:\Users\alistim\AppData\Local\Opera Software
2020-04-22 14:30 - 2020-04-22 14:30 - 000004234 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1587583841
2020-04-22 14:30 - 2020-04-22 14:30 - 000000000 ____D C:\Users\alistim\AppData\Roaming\Opera Software
2020-04-22 14:29 - 2020-05-06 21:32 - 000000000 ____D C:\Program Files (x86)\Digital Communications
2020-04-22 14:29 - 2020-05-05 23:30 - 000002355 _____ C:\Users\alistim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2020-04-22 14:29 - 2020-04-22 14:29 - 000000000 ____D C:\Users\alistim\AppData\Local\4400af67db710370f59a3687d26e4137
2020-04-22 14:29 - 2020-04-22 14:29 - 000000000 ____D C:\ProgramData\{3E6F0253-1647-7A2B-4E1F-5203A6F78ADB}
2020-04-22 14:28 - 2020-04-22 14:28 - 003285344 _____ ( ) C:\Users\alistim\Downloads\FFSetupLite.exe
2020-04-22 14:25 - 2020-04-22 14:25 - 042030736 _____ C:\Users\alistim\Downloads\vlc-3.0.8-win64.exe
2020-04-17 22:07 - 2020-04-17 22:07 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 002951832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 001870408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 001013000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-04-17 22:07 - 2020-04-17 22:07 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2020-04-17 22:07 - 2020-04-17 22:07 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2020-04-17 22:06 - 2020-04-17 22:07 - 004129624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 022636544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 018027520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 006523048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 005910016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 004611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 003512320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-04-17 22:06 - 2020-04-17 22:06 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001665216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 001310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001077064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 000775696 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000673704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000673464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-04-17 22:06 - 2020-04-17 22:06 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-04-17 22:06 - 2020-04-17 22:06 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-04-17 22:06 - 2020-04-17 22:06 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000123952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-04-17 22:06 - 2020-04-17 22:06 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-04-17 22:06 - 2020-04-17 22:06 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumapi.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumapi.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-04-17 22:06 - 2020-04-17 22:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-04-17 22:05 - 2020-04-17 22:06 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 014818816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 004563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 003802624 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 003753472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-04-17 22:05 - 2020-04-17 22:05 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-04-17 22:05 - 2020-04-17 22:05 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 002767928 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 002086656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-04-17 22:05 - 2020-04-17 22:05 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001646048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-04-17 22:05 - 2020-04-17 22:05 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-04-17 22:05 - 2020-04-17 22:05 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-04-17 22:05 - 2020-04-17 22:05 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-04-17 22:05 - 2020-04-17 22:05 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-04-17 22:05 - 2020-04-17 22:05 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-04-17 22:05 - 2020-04-17 22:05 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2020-04-17 22:05 - 2020-04-17 22:05 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000127280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000066624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000050544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-04-17 22:05 - 2020-04-17 22:05 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-04-17 22:05 - 2020-04-17 22:05 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-04-17 22:05 - 2020-04-17 22:05 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 017790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 003587384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 002131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 002126144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-04-17 22:04 - 2020-04-17 22:04 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-04-17 22:04 - 2020-04-17 22:04 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000339304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-04-17 22:04 - 2020-04-17 22:04 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-04-17 22:04 - 2020-04-17 22:04 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-04-17 22:04 - 2020-04-17 22:04 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-04-17 22:04 - 2020-04-17 22:04 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-04-17 22:04 - 2020-04-17 22:04 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-04-17 22:04 - 2020-04-17 22:04 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2020-04-17 22:04 - 2020-04-17 22:04 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2020-04-17 22:04 - 2020-04-17 22:04 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2020-04-17 21:39 - 2020-04-17 21:39 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-04-17 21:39 - 2020-04-17 21:39 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-04-11 19:27 - 2020-04-11 19:27 - 000002165 _____ C:\Users\Public\Desktop\Lenovo Solution Center.lnk
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-05-07 13:29 - 2017-09-03 14:14 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-07 13:28 - 2019-10-18 20:24 - 000000000 ___RD C:\Users\alistim\iCloudDrive
2020-05-07 13:28 - 2017-05-13 04:07 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-05-07 13:27 - 2019-09-20 19:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-07 13:26 - 2019-03-18 23:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-05-07 12:54 - 2017-09-12 03:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2020-05-07 12:26 - 2017-05-17 02:59 - 000000000 ____D C:\Users\alistim\AppData\Local\NVIDIA Corporation
2020-05-07 11:46 - 2017-05-11 00:02 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-05-07 11:42 - 2018-03-11 20:23 - 000000000 ____D C:\Users\alistim\AppData\LocalLow\IObit
2020-05-07 11:42 - 2018-03-11 20:22 - 000000000 ____D C:\Users\alistim\AppData\Roaming\IObit
2020-05-07 11:42 - 2018-03-11 20:22 - 000000000 ____D C:\ProgramData\IObit
2020-05-07 11:42 - 2018-03-11 20:22 - 000000000 ____D C:\Program Files (x86)\IObit
2020-05-07 11:42 - 2017-12-15 01:46 - 000000000 ____D C:\Users\alistim\AppData\Local\CrashDumps
2020-05-06 23:27 - 2019-09-20 19:12 - 000000000 ____D C:\Users\alistim
2020-05-06 22:41 - 2019-09-20 19:36 - 000004172 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{263396F2-C65D-416B-8C18-7EC68827E87C}
2020-05-06 22:38 - 2019-03-18 23:50 - 000000000 ____D C:\WINDOWS\INF
2020-05-06 22:30 - 2017-05-11 00:43 - 000000000 ____D C:\Users\alistim\AppData\Local\ElevatedDiagnostics
2020-05-06 20:49 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-06 19:52 - 2019-09-20 19:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-06 15:56 - 2017-05-10 15:45 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-06 15:49 - 2017-03-06 00:29 - 000000000 ___RD C:\Users\alistim\OneDrive
2020-05-05 23:50 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-05 23:50 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-05 23:29 - 2017-10-18 11:54 - 000000461 _____ C:\Users\alistim\AppData\Roaming\WB.CFG
2020-05-05 23:05 - 2020-03-17 21:48 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-05-05 23:05 - 2020-03-17 21:48 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-05-03 15:11 - 2018-03-11 20:23 - 000000000 ____D C:\ProgramData\ProductData
2020-05-01 17:49 - 2016-05-11 17:54 - 000000000 ____D C:\ProgramData\McAfee
2020-04-29 20:06 - 2017-12-01 12:31 - 000000000 ____D C:\Users\alistim\AppData\Local\Packages
2020-04-29 13:24 - 2020-03-17 21:49 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-04-29 13:24 - 2020-03-17 21:49 - 000002283 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-04-27 23:30 - 2020-01-03 21:15 - 000000000 ____D C:\Users\alistim\Desktop\utvt
2020-04-27 00:24 - 2017-09-10 16:46 - 000022337 _____ C:\Users\alistim\Desktop\New Text Document.txt
2020-04-22 14:33 - 2017-09-01 14:50 - 000000000 ____D C:\Users\alistim\AppData\Roaming\NVIDIA
2020-04-18 19:53 - 2019-09-20 21:08 - 000786662 _____ C:\WINDOWS\system32\perfh00A.dat
2020-04-18 19:53 - 2019-09-20 21:08 - 000154454 _____ C:\WINDOWS\system32\perfc00A.dat
2020-04-18 19:53 - 2019-09-20 19:22 - 001772872 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-04-18 19:48 - 2019-09-20 19:04 - 000542544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-04-18 01:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2020-04-18 01:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-04-18 01:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-04-18 01:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-04-18 01:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-04-18 01:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-04-18 01:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-04-18 01:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-04-17 22:13 - 2019-03-18 23:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-04-11 19:27 - 2019-09-20 19:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-04-11 19:27 - 2017-09-01 14:50 - 000000000 ____D C:\Users\alistim\AppData\Local\LSC
2020-04-11 19:27 - 2016-05-11 17:53 - 000000000 ____D C:\ProgramData\Lenovo
2020-04-11 19:24 - 2016-05-11 17:57 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2020-04-10 17:43 - 2019-09-20 19:36 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1825906009-2319708657-2520030077-1001
2020-04-10 17:43 - 2019-09-20 19:12 - 000002380 _____ C:\Users\alistim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== Files in the root of some directories ========
2017-09-14 02:13 - 2008-09-02 14:18 - 001781760 _____ (reFX) C:\Program Files (x86)\Vanguard.dll
2020-05-05 23:29 - 2020-05-05 23:29 - 000355975 _____ () C:\Users\alistim\AppData\Roaming\Kisafanacaf
2017-10-18 11:54 - 2020-05-05 23:29 - 000000461 _____ () C:\Users\alistim\AppData\Roaming\WB.CFG
2017-12-12 15:38 - 2017-12-13 22:38 - 000000052 _____ () C:\Users\alistim\AppData\Local\BjXFnbPxlZ
2017-11-02 22:59 - 2017-11-02 22:59 - 049979264 _____ (Sony) C:\Users\alistim\AppData\Local\pcc.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-04-2020
Ran by alistim (07-05-2020 13:41:54)
Running from C:\Users\alistim\Downloads\hk
Windows 10 Home Version 1903 18362.778 (X64) (2019-09-21 00:38:41)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1825906009-2319708657-2520030077-500 - Administrator - Disabled)
alistim (S-1-5-21-1825906009-2319708657-2520030077-1001 - Administrator - Enabled) => C:\Users\alistim
DefaultAccount (S-1-5-21-1825906009-2319708657-2520030077-503 - Limited - Disabled)
Guest (S-1-5-21-1825906009-2319708657-2520030077-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1825906009-2319708657-2520030077-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 17.01 beta (HKLM-x32\...\7-Zip) (Version: 17.01 beta - Igor Pavlov)
A360 Desktop (HKLM\...\{B65CD59E-A771-4354-AA4B-C3E01B496BCD}) (Version: 8.2.3.1800 - Autodesk)
ABL3 (HKLM\...\ABL3_is1) (Version:  - AudioRealism)
ACA & MEP 2018 Object Enabler (HKLM\...\{28B89EEF-1004-0000-5102-CF3F3A09B77D}) (Version: 8.0.40.0 - Autodesk) Hidden
ACAD Private (HKLM\...\{28B89EEF-1001-0000-3102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden
Actualización de NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{FD52A2FF-4D16-49C4-A2CD-DAC752C18BA2}) (Version: 8.0 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9B061D60-4E2C-4987-BFFD-423E3D477660}) (Version: 8.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
AutoCAD 2018 - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-2102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden
AutoCAD 2018  Language Pack - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-1102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden
AutoCAD 2018 (HKLM\...\{28B89EEF-1001-0000-0102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk)
Autodesk App Manager 2016-2018 (HKLM-x32\...\{20EC0CA2-346E-4660-9903-51B278DF15F6}) (Version: 2.4.0 - Autodesk)
Autodesk AutoCAD 2018 - Español (Spanish) (HKLM\...\AutoCAD 2018 - Español (Spanish)) (Version: 22.0.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.8 (HKLM-x32\...\{214D3370-746E-4886-8EAA-5769EB87D044}) (Version: 1.2.8.0 - Autodesk)
Autodesk Desktop App (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.7.230 - Autodesk)
Autodesk Featured Apps 2016-2018 (HKLM-x32\...\{384C4B74-B749-4AB6-9367-4D51A6AA9CB8}) (Version: 2.4.0 - Autodesk)
Autodesk License Service (x64) - 5.1.4 (HKLM\...\{3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556}) (Version: 5.1.4.0 - Autodesk)
Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk)
Autodesk ReCap (HKLM\...\{6ED27C84-0000-1033-0102-D4DAEFFC23C2}) (Version: 4.0.0.28 - Autodesk) Hidden
Autodesk ReCap (HKLM\...\Autodesk ReCap 360) (Version: 4.0.0.28 - Autodesk)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Chromium (HKLM-x32\...\{6A908250-3A10-53D0-8B90-23505B10F0D0}) (Version:  - )
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Driver and Application Installation (HKLM-x32\...\{6EC299C6-074C-4529-8D5F-2798584BB27B}) (Version: 2.02.1125 - Lenovo)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version:  - Steinberg Media Technologies GmbH)
En Masse Launcher (HKLM-x32\...\{5d5e6f2b-6c03-4f96-8cd7-c16318764bc8}_is1) (Version: 1.0 - En Masse Entertainment)
FARO LS 1.1.600.6 (64bit) (HKLM-x32\...\{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 - FARO Scanner Production)
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
FL Studio Patch 20.1.1 (HKLM-x32\...\FL Studio Patch 20.1.1) (Version: 20.1.1 - FL Studio Patch)
foobar2000 v1.4.5 (HKLM-x32\...\foobar2000) (Version: 1.4.5 - Peter Pawlowski)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.37.5299 - GOM & Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.138 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 6.0.1.2 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
iCloud (HKLM\...\{E3597C85-5970-4166-BE96-ED1D18CD1088}) (Version: 7.14.0.29 - Apple Inc.)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel® Chipset Device Software (HKLM-x32\...\{c6cff78a-cccb-49d5-be68-ae0ec5f0d48a}) (Version: 10.1.1.8 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1829.12.0.1154 - Intel Corporation)
Intel® Network Connections Drivers (HKLM\...\PROSet) (Version: 21.1 - Intel)
Intel® Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.369.0 - Intel Corporation) Hidden
Intel® Trusted Connect Services Client (HKLM-x32\...\{aa81bdf2-96a6-4400-a596-c7d1916ce9f7}) (Version: 1.50.369.0 - Intel Corporation) Hidden
Intel® Wireless Bluetooth® (HKLM-x32\...\{588DA478-D4FF-48E3-8290-49F8C4B21283}) (Version: 18.1.1527.1551 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{795ee3a0-97fa-489a-9543-7564ccc43be4}) (Version: 18.12.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
IObit Uninstaller 8 (HKLM-x32\...\IObitUninstall) (Version: 8.4.0.7 - IObit)
iTunes (HKLM\...\{A9921EE9-86E5-402C-A934-4A8DBAD99E24}) (Version: 12.9.2.6 - Apple Inc.)
iZotope VocalSynth (HKLM-x32\...\VocalSynth 1.0) (Version: 1.0 - iZotope, Inc.)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
League of Legends (HKLM-x32\...\{525E2F2D-F698-4567-825F-8177C2702494}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
Lenovo Blacksilk USB Keyboard Driver (HKLM-x32\...\{B266E062-D6C5-485B-B426-51B152B041A6}) (Version: V1.6.13.0724 - Lenovo)
Lenovo Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.8231 - CyberLink Corp.) Hidden
Lenovo Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.8231 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5320.55 - CyberLink Corp.) Hidden
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5320.55 - CyberLink Corp.)
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.019.00 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.7 - Lenovo)
Lenovo Solution Center (HKLM\...\{AFDE512F-7BCD-46B6-91C0-230812139EEF}) (Version: 3.4.002.006 - Lenovo)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manual (HKLM-x32\...\{693F92E5-37D1-46B7-A0D6-19A74A2FD0EC}) (Version: 1.00.0701 - Lenovo)
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 81.0.416.68 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.127.21 - )
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{db012557-340e-4a46-adae-81a6b0f6a1e9}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{e6edaf4d-f9a1-4023-be00-d6189343feb9}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 73.0.1 (x64 es-MX) (HKLM\...\Mozilla Firefox 73.0.1 (x64 es-MX)) (Version: 73.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 73.0.1 - Mozilla)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version:  - Native Instruments)
Native Instruments Pro-53 (HKLM-x32\...\Native Instruments Pro-53) (Version:  - )
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version:  - Native Instruments)
Noise Makers Binauralizer (HKLM\...\Binauralizer_is1) (Version: 1.4.0 - Noise Makers)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Graphics Driver 436.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.50 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
PACE License Support Win64 (HKLM\...\{233E2172-6B0E-4444-8BBA-C0D2BB9D7C37}) (Version: 3.1.7.1901 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{233E2172-6B0E-4444-8BBA-C0D2BB9D7C37}) (Version: 3.1.7.1901 - PACE Anti-Piracy, Inc.)
Paladins (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF402}) (Version: 1.4.2795.0 - Hi-Rez Studios)
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.1.0.11 - Lenovo)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.31213 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7525 - Realtek Semiconductor Corp.)
reFX Vanguard VSTi RTAS v1.8.0 (HKLM-x32\...\reFX Vanguard_is1) (Version:  - )
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
rgcAudio z3ta Plus v1.40 (HKLM-x32\...\rgcAudio z3ta Plus v1.40) (Version:  - )
Rob Papen SubBoomBass 1.0.3c 64Bits (HKLM-x32\...\SubBoomBass_is1) (Version:  - RPCX)
RogueKiller versión 14.4.2.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.4.2.0 - Adlice Software)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.5.5.0 - Lenovo)
Sonic Academy KICK 2 (HKLM-x32\...\Sonic Academy KICK 2) (Version: 1.0.2 - Sonic Academy)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1052 - SUPERAntiSpyware.com)
SyncerSoft LizardMorph VST 1.0 (HKLM-x32\...\{065C9CFA-D8B6-494E-AC8F-326E982AA1DE}_is1) (Version:  - )
TAL-NoiseMaker (64bit) (HKLM\...\{A7F29BB6-BFCA-4A4D-B059-57A2B2A865F4}) (Version: 1.3.7 - TAL - Togu Audio Line)
TERA (HKLM-x32\...\{0FCDA0F8-F3E5-402E-B9B6-13CB2B01182B}) (Version: 42.06.03 - En Masse Entertainment)
Update for Skype for Business 2016 (KB3141501) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D7445990-15D2-466D-BA6D-588F28226F27}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB3141501) 64-Bit Edition (HKLM\...\{90160000-012B-0C0A-1000-0000000FF1CE}_Office16.PROPLUS_{D7445990-15D2-466D-BA6D-588F28226F27}) (Version:  - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM-x32\...\{4E67FF7F-C24E-4279-9AB2-C26D57B53742}) (Version: 1.3.0.0 - Microsoft Corporation) Hidden
VirtualDJ 8 (HKLM-x32\...\{2C94FDBF-BA6D-48A3-913E-E7C5A4A4AA07}) (Version: 8.0.1957.0 - Atomix Productions)
VirtualDJ Home FREE (HKLM-x32\...\{95575578-5158-4AAE-856E-3FF9DB46A316}) (Version: 7.4.7 - Atomix Productions)
V-Station 2.4 (HKLM\...\{842C6AFC-7856-4fd9-99AF-8900554ACAA2}_is1) (Version: 2.4 - Novation)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17376 - Microsoft Corporation)
Xfer Serum 1.07b4 (HKLM\...\Xfer Serum_is1) (Version:  - )
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.167.200.0_x86__kgqvnymyfvs32 [2020-05-05] (king.com)
Dungeon Hunter 5 -> C:\Program Files\WindowsApps\A278AB0D.DungeonHunter5_4.8.0.0_x86__h6adky7gbf63m [2020-01-24] (Gameloft.)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-09-12] (Facebook Inc)
God of War -> C:\Program Files\WindowsApps\8840.GodofWar_6.1.2.0_x64__a6dzgxw94gtq8 [2017-09-01] (MoreFun Games LLC)
iHeartRadio -> C:\Program Files\WindowsApps\ClearChannelRadioDigital.iHeartRadio_6.0.47.0_x64__a76a11dkgb644 [2020-02-26] (iHeartMedia.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-04] (Instagram)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2003.10.0_x64__k1h2ywk1493x8 [2020-03-24] (LENOVO INC.)
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1809.1.0_x64__8wekyb3d8bbwe [2018-10-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1809.1.0_x86__8wekyb3d8bbwe [2018-10-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.96.725.0_x64__mcm4njqhnhss8 [2020-04-10] (Netflix, Inc.)
Turn Off the Lights -> C:\Program Files\WindowsApps\28944Stefanvd.TurnOfftheLights_3.2.20.0_x64__pe3vc7q6mjj3e [2017-12-16] (Stefan vd) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2018-01-31] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1825906009-2319708657-2520030077-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1825906009-2319708657-2520030077-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1825906009-2319708657-2520030077-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\es-ES\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2017-02-02] (Autodesk, Inc -> Autodesk, Inc.)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-08-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2017-02-02] (Autodesk, Inc -> Autodesk)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2018-07-21] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-10-01] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.dll [2015-07-12] (LENOVO -> Lenovo)
ContextMenuHandlers2-x32: [AlcoholShellEx] -> {32020A01-506E-484D-A2A8-BE3CF17601C3} => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxShlex.dll [2014-09-06] (Alcohol Soft -> Alcohol Soft Development Team)
ContextMenuHandlers2: [AlcoholShellEx64] -> {AF67B665-D752-424E-9A03-C7C218F2844F} => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxShlEx64.dll [2014-09-06] (Alcohol Soft -> Alcohol Soft Development Team)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-08-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2018-07-21] (IObit Information Technology -> IObit)
ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.dll [2015-07-12] (LENOVO -> Lenovo)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-08-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2018-07-21] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\system32\vorbis.acm [1562432 2016-11-02] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1456448 2016-11-02] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\alistim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\alistim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
ShortcutWithArgument: C:\Users\alistim\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\Software\Classes\.scr: AutoCADScriptFile => 
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-10-30 02:24 - 2020-05-07 12:55 - 000001364 _____ C:\WINDOWS\system32\drivers\etc\hosts
107.178.255.88 s ssl.goo.88 partner.googleadservices.com
107.178.255.88 s ssl.goo.88 partner.googleadservices.com
127.0.0.1                   activate.adobe.com
127.0.0.1                   practivate.adobe.com
127.0.0.1                   lmlicenses.wip4.adobe.com
127.0.0.1                   lm.licenses.adobe.com
127.0.0.1                   na1r.services.adobe.com
127.0.0.1                   hlrcv.stage.adobe.com
127.0.0.1                   bandicam.com
127.0.0.1                   ssl.bandisoft.com
0.0.0.0 keystone.mwbsys.com
2019-03-09 17:25 - 2019-03-09 17:25 - 000000443 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\iCLS\;C:\Program Files\Intel\Intel® Management Engine Components\iCLS\;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL;C:\Program Files\Intel\Intel® Management Engine Components\DAL;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1825906009-2319708657-2520030077-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
MpsSvc => Firewall Service is not running.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: AdAppMgrSvc => 2
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdvancedSystemCareService12 => 2
MSCONFIG\Services: AJRouter => 3
MSCONFIG\Services: ALG => 3
MSCONFIG\Services: Apple Mobile Device Service => 2
MSCONFIG\Services: AppReadiness => 3
MSCONFIG\Services: AudioEndpointBuilder => 2
MSCONFIG\Services: Audiosrv => 2
MSCONFIG\Services: autotimesvc => 3
MSCONFIG\Services: AxAutoMntSrv => 3
MSCONFIG\Services: AxInstSV => 3
MSCONFIG\Services: AxVirtualAHCISrv => 2
MSCONFIG\Services: BDESVC => 3
MSCONFIG\Services: BITS => 3
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: Browser => 3
MSCONFIG\Services: BTAGService => 3
MSCONFIG\Services: BthAvctpSvc => 3
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: camsvc => 3
MSCONFIG\Services: CDPSvc => 2
MSCONFIG\Services: COMSysApp => 3
MSCONFIG\Services: CryptSvc => 2
MSCONFIG\Services: defragsvc => 3
MSCONFIG\Services: DeviceAssociationService => 2
MSCONFIG\Services: DeviceInstall => 3
MSCONFIG\Services: DevQueryBroker => 3
MSCONFIG\Services: Dhcp => 2
MSCONFIG\Services: diagnosticshub.standardcollector.service => 3
MSCONFIG\Services: diagsvc => 3
MSCONFIG\Services: DiagTrack => 2
MSCONFIG\Services: DispBrokerDesktopSvc => 2
MSCONFIG\Services: DisplayEnhancementService => 3
MSCONFIG\Services: DmEnrollmentSvc => 3
MSCONFIG\Services: dmwappushservice => 3
MSCONFIG\Services: dot3svc => 3
MSCONFIG\Services: DPS => 2
MSCONFIG\Services: DsmSvc => 3
MSCONFIG\Services: DsSvc => 3
MSCONFIG\Services: DusmSvc => 2
MSCONFIG\Services: Eaphost => 3
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: edgeupdate => 2
MSCONFIG\Services: edgeupdatem => 3
MSCONFIG\Services: EFS => 3
MSCONFIG\Services: EventLog => 2
MSCONFIG\Services: EventSystem => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: fdPHost => 3
MSCONFIG\Services: FDResPub => 3
MSCONFIG\Services: fhsvc => 3
MSCONFIG\Services: FlexNet Licensing Service 64 => 3
MSCONFIG\Services: FontCache => 2
MSCONFIG\Services: FontCache3.0.0.0 => 3
MSCONFIG\Services: FrameServer => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: GraphicsPerfSvc => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: hidserv => 3
MSCONFIG\Services: HvHost => 3
MSCONFIG\Services: ibtsiva => 2
MSCONFIG\Services: icssvc => 3
MSCONFIG\Services: IKEEXT => 3
MSCONFIG\Services: ImControllerService => 2
MSCONFIG\Services: InstallService => 3
MSCONFIG\Services: Intel® Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel® Security Assist => 3
MSCONFIG\Services: Intel® TPM Provisioning Service => 2
MSCONFIG\Services: IObitUnSvr => 2
MSCONFIG\Services: iphlpsvc => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: IpxlatCfgSvc => 3
MSCONFIG\Services: isaHelperSvc => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: JME Keyboard => 2
MSCONFIG\Services: KeyIso => 3
MSCONFIG\Services: KtmRm => 3
MSCONFIG\Services: LanmanServer => 2
MSCONFIG\Services: LanmanWorkstation => 2
MSCONFIG\Services: lfsvc => 3
MSCONFIG\Services: LicenseManager => 3
MSCONFIG\Services: lltdsvc => 3
MSCONFIG\Services: lmhosts => 3
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: LSC.Services.SystemService => 3
MSCONFIG\Services: LxpSvc => 3
MSCONFIG\Services: MapsBroker => 2
MSCONFIG\Services: MicrosoftEdgeElevationService => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: MSDTC => 3
MSCONFIG\Services: NaturalAuthentication => 3
MSCONFIG\Services: NcaSvc => 3
MSCONFIG\Services: NcbService => 3
MSCONFIG\Services: NcdAutoSetup => 3
MSCONFIG\Services: Netlogon => 3
MSCONFIG\Services: Netman => 3
MSCONFIG\Services: netprofm => 3
MSCONFIG\Services: NetSetupSvc => 3
MSCONFIG\Services: NlaSvc => 2
MSCONFIG\Services: nsi => 2
MSCONFIG\Services: NvContainerLocalSystem => 2
MSCONFIG\Services: NvContainerNetworkService => 3
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: ose64 => 3
MSCONFIG\Services: p2pimsvc => 3
MSCONFIG\Services: p2psvc => 3
MSCONFIG\Services: PaceLicenseDServices => 2
MSCONFIG\Services: PcaSvc => 3
MSCONFIG\Services: perceptionsimulation => 3
MSCONFIG\Services: PerfHost => 3
MSCONFIG\Services: PhoneSvc => 3
MSCONFIG\Services: PIEServiceNew => 3
MSCONFIG\Services: pla => 3
MSCONFIG\Services: PlugPlay => 3
MSCONFIG\Services: PNRPAutoReg => 3
MSCONFIG\Services: PNRPsvc => 3
MSCONFIG\Services: PolicyAgent => 3
MSCONFIG\Services: Power => 2
MSCONFIG\Services: PrintNotify => 3
MSCONFIG\Services: PushToInstall => 3
MSCONFIG\Services: QWAVE => 3
MSCONFIG\Services: RasAuto => 3
MSCONFIG\Services: RasMan => 2
MSCONFIG\Services: RetailDemo => 3
MSCONFIG\Services: RmSvc => 3
MSCONFIG\Services: RpcLocator => 3
MSCONFIG\Services: SamSs => 2
MSCONFIG\Services: SCardSvr => 3
MSCONFIG\Services: ScDeviceEnum => 3
MSCONFIG\Services: SDRSVC => 3
MSCONFIG\Services: seclogon => 3
MSCONFIG\Services: SEMgrSvc => 3
MSCONFIG\Services: SENS => 2
MSCONFIG\Services: SensorDataService => 3
MSCONFIG\Services: SensorService => 3
MSCONFIG\Services: SensrSvc => 3
MSCONFIG\Services: SessionEnv => 3
MSCONFIG\Services: SharedAccess => 3
MSCONFIG\Services: SharedRealitySvc => 3
MSCONFIG\Services: ShellHWDetection => 2
MSCONFIG\Services: smphost => 3
MSCONFIG\Services: SmsRouter => 3
MSCONFIG\Services: SNMPTRAP => 3
MSCONFIG\Services: spectrum => 3
MSCONFIG\Services: Spooler => 2
MSCONFIG\Services: SSDPSRV => 3
MSCONFIG\Services: SstpSvc => 3
MSCONFIG\Services: StarWindServiceAE => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: stisvc => 2
MSCONFIG\Services: StorSvc => 3
MSCONFIG\Services: svsvc => 3
MSCONFIG\Services: swprv => 3
MSCONFIG\Services: SysMain => 2
MSCONFIG\Services: TabletInputService => 3
MSCONFIG\Services: TapiSrv => 3
MSCONFIG\Services: TermService => 3
MSCONFIG\Services: Themes => 2
MSCONFIG\Services: TieringEngineService => 3
MSCONFIG\Services: TokenBroker => 3
MSCONFIG\Services: TrkWks => 2
MSCONFIG\Services: TroubleshootingSvc => 3
MSCONFIG\Services: TrustedInstaller => 3
MSCONFIG\Services: tzautoupdate => 3
MSCONFIG\Services: UmRdpService => 3
MSCONFIG\Services: upnphost => 3
MSCONFIG\Services: UsoSvc => 2
MSCONFIG\Services: VacSvc => 3
MSCONFIG\Services: VaultSvc => 3
MSCONFIG\Services: vds => 3
MSCONFIG\Services: vmicguestinterface => 3
MSCONFIG\Services: vmicheartbeat => 3
MSCONFIG\Services: vmickvpexchange => 3
MSCONFIG\Services: vmicrdv => 3
MSCONFIG\Services: vmicshutdown => 3
MSCONFIG\Services: vmictimesync => 3
MSCONFIG\Services: vmicvmsession => 3
MSCONFIG\Services: vmicvss => 3
MSCONFIG\Services: VSS => 3
MSCONFIG\Services: W32Time => 3
MSCONFIG\Services: WalletService => 3
MSCONFIG\Services: WarpJITSvc => 3
MSCONFIG\Services: wbengine => 3
MSCONFIG\Services: WbioSrvc => 3
MSCONFIG\Services: Wcmsvc => 2
MSCONFIG\Services: wcncsvc => 3
MSCONFIG\Services: WdiServiceHost => 3
MSCONFIG\Services: WdiSystemHost => 3
MSCONFIG\Services: WebClient => 3
MSCONFIG\Services: Wecsvc => 3
MSCONFIG\Services: WEPHOSTSVC => 3
MSCONFIG\Services: wercplsupport => 3
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: WFDSConMgrSvc => 3
MSCONFIG\Services: WiaRpc => 3
MSCONFIG\Services: Winmgmt => 2
MSCONFIG\Services: WinRM => 3
MSCONFIG\Services: wisvc => 3
MSCONFIG\Services: WlanSvc => 2
MSCONFIG\Services: wlidsvc => 3
MSCONFIG\Services: wlpasvc => 3
MSCONFIG\Services: WManSvc => 3
MSCONFIG\Services: wmiApSrv => 3
MSCONFIG\Services: WMPNetworkSvc => 3
MSCONFIG\Services: workfolderssvc => 3
MSCONFIG\Services: WpcMonSvc => 3
MSCONFIG\Services: WPDBusEnum => 3
MSCONFIG\Services: WpnService => 2
MSCONFIG\Services: WSearch => 2
MSCONFIG\Services: wuauserv => 3
MSCONFIG\Services: WwanSvc => 3
MSCONFIG\Services: XblAuthManager => 3
MSCONFIG\Services: XblGameSave => 3
MSCONFIG\Services: XboxGipSvc => 3
MSCONFIG\Services: XboxNetApiSvc => 3
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E226159C-DDCC-432F-B63D-6B3C907E24F6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{952B2B92-03B7-4871-83F4-C6911D61454D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{05A7AE5E-081C-4FEF-A672-D1FFDCCE2B39}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{F62AAB92-77E8-4D05-A692-13279914B3FC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{1633A793-7F09-46A2-9793-8FDDF80F993F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{11B750A0-A2BB-4135-BCF8-9CB544E7E144}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{03856F0A-C331-43D0-9D89-4EBEC9E1B74B}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{63F3915D-7B73-4E48-808E-C241863D2950}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{70CE974E-FA0F-45D9-A961-037DA299DB80}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{19242A41-68CA-4074-B7B9-2FFD8BEA41E6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C81D247E-476E-4620-9FE2-F22E8D670167}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7C5441D0-F583-4F72-989E-6A1773BBC466}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8061D19F-9940-4B63-82E6-FF18E75AF73C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DAA75F56-8CF8-4243-A4FA-1758E225C98A}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{72878831-35FC-470D-A23A-7B719DB504F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{572B6016-8E4C-4E49-93E9-BCAEBF3B061D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{72AF09B3-7345-46A4-A498-04153999B3A4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{23CF834E-D7CC-41CC-8C52-9310C4E30948}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B43DF6EC-A7EA-44E3-80AC-261EB11C567B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3E5CBBE3-BBCC-455C-B7D9-627421DCCB6C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F95690A2-68D0-4696-B080-D24435E8E27A}] => (Allow) C:\Users\Public\Games\En Masse Entertainment\TERA\Client\TL.exe (En Masse Entertainment -> )
FirewallRules: [{9C5360C3-34ED-4946-91F1-DDFF885B3FA5}] => (Allow) C:\Users\Public\Games\En Masse Entertainment\TERA\Client\TL.exe (En Masse Entertainment -> )
FirewallRules: [{AB62EF47-4440-4B64-9141-9D4252D3FD7F}] => (Allow) C:\Users\Public\Games\En Masse Entertainment\TERA\Client\TL.exe (En Masse Entertainment -> )
FirewallRules: [{36B897F4-5B69-4A60-9CF2-31F8CDCDCCA1}] => (Allow) C:\Users\Public\Games\En Masse Entertainment\TERA\Client\TL.exe (En Masse Entertainment -> )
FirewallRules: [{E759E14B-E137-45D4-B3F9-6500DA1F27A4}] => (Allow) C:\Users\Public\Games\En Masse Entertainment\TERA\TERA-Launcher.exe (En Masse Entertainment -> En Masse Entertainment)
FirewallRules: [{9FB095B4-27B2-45E2-807B-FD582AA2D14B}] => (Allow) C:\Users\Public\Games\En Masse Entertainment\TERA\TERA-Launcher.exe (En Masse Entertainment -> En Masse Entertainment)
FirewallRules: [{E0ADDA6B-5169-473E-B0AB-C67D307F7EF6}] => (Allow) C:\Users\Public\Games\En Masse Entertainment\TERA\TERA-Launcher.exe (En Masse Entertainment -> En Masse Entertainment)
FirewallRules: [{7285530C-ABA4-4DB9-AD00-41BBE94DCBCD}] => (Allow) C:\Users\Public\Games\En Masse Entertainment\TERA\TERA-Launcher.exe (En Masse Entertainment -> En Masse Entertainment)
FirewallRules: [{D4DE484F-B564-466D-A5D9-A1D4BE80DE7E}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe No File
FirewallRules: [{A05F683C-2A79-4771-AB9E-A8BAAB73D91B}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe (LENOVO -> Lenovo)
FirewallRules: [{5672FB11-B33D-4BA1-A73A-CFAFEA7D3C82}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe (LENOVO -> Lenovo)
FirewallRules: [{5AEA3028-19FA-4BB7-B512-2DC7BDD944ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DE5C0913-BC90-48B6-A5FC-8C28CB2642C6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E02ECDB0-B136-40D2-A04E-43D4F2995E1D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9C17CD2E-F305-4B63-9101-5428B0597D15}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{D413B286-AD1C-4B61-A31F-7D7A72B501D1}C:\users\alistim\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alistim\appdata\local\akamai\netsession_win.exe No File
FirewallRules: [UDP Query User{3BC123AA-021A-4B85-941C-E5ECF723698B}C:\users\alistim\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alistim\appdata\local\akamai\netsession_win.exe No File
FirewallRules: [{006F18AD-C1E3-462E-94F2-391F963DE628}] => (Block) C:\users\alistim\appdata\local\akamai\netsession_win.exe No File
FirewallRules: [{147BD3BF-A89C-4000-BE1C-4E2145385161}] => (Block) C:\users\alistim\appdata\local\akamai\netsession_win.exe No File
FirewallRules: [{CB1C087C-9AFA-4C76-BBD5-19A040529C38}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A090CB89-23EA-464D-8039-A257B6FC8C5F}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FAFA3398-7FF0-4527-8243-05422B29D77C}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0C79CE12-7954-431E-95B5-C27120D61C33}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{62B6BCD8-2CC9-45C5-ABEC-55DB7D7F647E}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe (Hi-Rez Studios, Inc. -> Hirez Studios, Inc.)
FirewallRules: [UDP Query User{C5E1DF00-9207-4B99-BFD1-877F4A3CF72A}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe (Hi-Rez Studios, Inc. -> Hirez Studios, Inc.)
FirewallRules: [TCP Query User{0463CF20-6B3D-4791-85FC-14B7AA829EAC}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [File not signed]
FirewallRules: [UDP Query User{366AEFE0-C407-4FA8-9400-67F1A30DF811}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [File not signed]
FirewallRules: [{E4EE9CEE-5C31-4FD6-899D-FE42637571C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{75CA9B63-DA65-4D22-89BA-298634A5F24B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{24A23730-0B38-41BC-AB9F-0DE978A6319B}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [File not signed]
FirewallRules: [UDP Query User{099E5728-EA5A-4E8B-8BC6-F5346A9E6CF5}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [File not signed]
FirewallRules: [{3022485F-423C-481D-BFB8-11339C1FC2AB}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{B490A41D-7AC1-44BA-94E7-331679C6083E}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{02B1F576-A304-47C4-9C90-16C48A031B7B}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{97F11E28-F599-4DC5-9C4F-93E41A1743FA}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{1EEC56C4-678C-4206-B208-1F515F87DAFC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe (IMC Games Co., LTD -> imcGAMES)
FirewallRules: [{D40EA9D4-AB4A-4891-9A0B-94CD624F8AE8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe (IMC Games Co., LTD -> imcGAMES)
FirewallRules: [{0D929349-AD74-4EED-8CD1-5EC737EDF139}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AC1ED27F-108A-4220-8F68-264A6461E29A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{ECEC8DFF-7BF6-46BE-A232-D6F4088E686F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{16F21562-EAD1-47BD-BA91-5A58415F234D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0AB4044D-87D1-42AC-A8B2-74457B0B41C6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{299F0856-9EE7-4176-B070-704D3DC7153F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7FFEDBB2-443A-4F3F-9876-45B9556A7E1F}] => (Allow) C:\Program Files\FormatFactory\FormatFactory.exe No File
FirewallRules: [{F9AC7155-54EC-43B2-AB21-33D1D1CC4A64}] => (Allow) C:\Users\alistim\AppData\Local\Programs\Opera\67.0.3575.53\opera.exe No File
FirewallRules: [{A8B0ED4C-DDD9-49A3-A95E-595FED528274}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1D6ED8B4-AFC6-4714-8F57-FEB651EA7FD6}] => (Allow) C:\Users\alistim\AppData\Local\Chromium\Application\chrome.exe No File
FirewallRules: [{FD9B7349-E39F-48F3-8E05-E688AC3472B6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
Check "VSS" service
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/07/2020 01:43:29 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
Operación:
   Creando instancia del servidor de VSS
Error: (05/07/2020 01:43:29 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {e579ab5f-1cc4-44b4-bed9-de0991ff0623} y el nombre IVssCoordinatorEx2 no puede iniciarse. [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
Operación:
   Creando instancia del servidor de VSS
Error: (05/07/2020 01:33:23 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2336,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/07/2020 01:14:54 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1100,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/07/2020 01:07:10 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2002) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del redirector. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (05/07/2020 01:07:10 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (05/07/2020 01:07:10 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Error al intentar obtener el estado del nodo de clúster: . Código de error devuelto: 0x8007085A
Error: (05/07/2020 12:19:10 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (900,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (05/07/2020 01:43:25 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio DNS Client depende del servicio Network Store Interface Service, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
Error: (05/07/2020 01:43:25 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio DNS Client depende del servicio Network Store Interface Service, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
Error: (05/07/2020 01:43:25 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio DNS Client depende del servicio Network Store Interface Service, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
Error: (05/07/2020 01:42:08 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio DNS Client depende del servicio Network Store Interface Service, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
Error: (05/07/2020 01:42:08 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio DNS Client depende del servicio Network Store Interface Service, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
Error: (05/07/2020 01:42:08 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio DNS Client depende del servicio Network Store Interface Service, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
Error: (05/07/2020 01:39:55 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio DNS Client depende del servicio Network Store Interface Service, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
Error: (05/07/2020 01:39:55 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio DNS Client depende del servicio Network Store Interface Service, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
CodeIntegrity:
===================================
Date: 2020-05-06 20:48:20.008
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Digital Communications\SAntivirus\SInspector.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-06 20:42:22.117
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Digital Communications\SAntivirus\SInspector.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-06 20:36:14.774
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Digital Communications\SAntivirus\SInspector.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-06 20:30:15.895
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Digital Communications\SAntivirus\SInspector.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-06 20:24:02.461
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Digital Communications\SAntivirus\SInspector.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-06 20:18:04.149
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Digital Communications\SAntivirus\SInspector.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-06 20:12:25.889
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Digital Communications\SAntivirus\SInspector.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-06 20:06:49.283
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Digital Communications\SAntivirus\SInspector.dll that did not meet the Microsoft signing level requirements.
==================== Memory info =========================== 
BIOS: LENOVO FWKT42A 03/18/2016
Motherboard: LENOVO SKYBAY
Processor: Intel® Core™ i5-6400 CPU @ 2.70GHz
Percentage of memory in use: 29%
Total physical RAM: 8130.62 MB
Available physical RAM: 5712.72 MB
Total Virtual: 11842.62 MB
Available Virtual: 9211.78 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:899.67 GB) (Free:585.05 GB) NTFS
\\?\Volume{a07a1948-0d7d-4a61-9172-a5515bc50f45}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.55 GB) NTFS
\\?\Volume{37f36209-8cd4-407f-b4bd-ba95d5b982c9}\ (LENOVO_PART) (Fixed) (Total:30 GB) (Free:13.07 GB) NTFS
\\?\Volume{9dfd0d38-d8db-4ecc-a1bf-c457c26db3ef}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 6048D18E)
Partition: GPT.
==================== End of Addition.txt =======================

Comments

Popular Posts

System detected an overrun of a stack-based buffer in this application [FIX] - Windows Report

Valorant anti-cheat lead answers many questions on Reddit - Millenium US