Jump to content

JDOGG

Members
  • Posts

    4
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2020 Ran by Felicia (02-07-2020 18:46:09) Running from C:\Users\Felicia\Downloads Windows 10 Home Version 1909 18363.900 (X64) (2020-03-07 23:43:47) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2845908156-3370841151-2670215384-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2845908156-3370841151-2670215384-503 - Limited - Disabled) Felicia (S-1-5-21-2845908156-3370841151-2670215384-1001 - Administrator - Enabled) => C:\Users\Felicia Guest (S-1-5-21-2845908156-3370841151-2670215384-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2845908156-3370841151-2670215384-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: McAfee VirusScan (Enabled - Up to date) {9D4501E6-72F6-2877-C789-89AF6F535B2C} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: McAfee VirusScan (Enabled - Up to date) {4DE344F8-6897-65B4-CED0-82B3AF2591B4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: McAfee Firewall (Enabled) {A57E80C3-3899-292F-ECD6-209A91801C57} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Dell Digital Delivery Services (HKLM-x32\...\{2F67D318-DCDC-4D94-9048-37789F3C065B}) (Version: 4.0.51.0 - Dell Inc.) Dell Mobile Connect Drivers (HKLM\...\{04DF02C6-E3D7-4D26-A44C-6F8A2E218D2C}) (Version: 1.3.6844 - Screenovate Technologies Ltd.) Dell SupportAssist (HKLM\...\{6D2933E3-DC42-44E5-B80E-DACDD64ADFF5}) (Version: 3.5.0.448 - Dell Inc.) Dell SupportAssist Remediation (HKLM-x32\...\{f4ee83d8-d901-4c1a-b5a2-288427598fe2}) (Version: 4.1.0.6830 - Dell Inc.) Dell Update - SupportAssist Update Plugin (HKLM-x32\...\{286db51f-336c-4d5e-b1e2-3fbc3becd693}) (Version: 4.1.0.6830 - Dell Inc.) Doxillion Document Converter (HKLM-x32\...\Doxillion) (Version: 4.17 - NCH Software) EasyXplore (HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\...\39172f46-efff-5c8a-adac-e0b649712aee) (Version: 1.3.26 - Tresdox Corporation) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Express Zip File Compression (HKLM-x32\...\ExpressZip) (Version: 7.11 - NCH Software) FlightGear v2018.3.5 (HKLM\...\FlightGear_is1) (Version: - The FlightGear Team) Goodix Fingerprint Driver (HKLM\...\{60FAB781-18F2-4D2B-A8E7-B3AADD327955}_is1) (Version: 3.1.34.200 - Goodix, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{70281077-96c3-4f75-938c-dc4746110c00}) (Version: 10.1.17903.8106 - Intel(R) Corporation) Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.5.10103.7263 - Intel Corporation) Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.375 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1910.12.0.1239 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6577 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.2.4.1011 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.52.230.1 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c6de84fd-ece7-4c2a-9f06-8cabe7ab79a0}) (Version: 1.52.230.1 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00001060-0200-1033-84C8-B8D95FA3C8C3}) (Version: 20.60.1 - Intel Corporation) Intel® Integrated Sensor Solution (HKLM-x32\...\{7fb0d71c-0a5d-4a01-8db5-9b9856ebadb2}) (Version: 3.10.100.3920 - Intel Corporation) Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{86ED81C0-A445-4200-9162-2E9E36BA997E}) (Version: 17.2.11.1033 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{bce385e6-0b52-413b-b28e-3b9064ea6cde}) (Version: 20.120.1 - Intel Corporation) Ipswitch WS_Ping ProPack Uninstall (HKLM-x32\...\WS_Ping ProPack) (Version: - ) ISS_Drivers_x64 (HKLM\...\{7E8ACE34-3B99-4F51-B751-8A51B6DE3317}) (Version: 3.10.100.3920 - Intel Corporation) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes) McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R26 - McAfee, LLC) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.102 - McAfee, LLC) Microsoft .NET Core 3.0.0 - Windows Server Hosting (HKLM-x32\...\{b50384d0-fb69-4dec-b407-fa5441ea71df}) (Version: 3.0.0.19465 - Microsoft Corporation) Microsoft .NET Core Runtime - 3.0.0 (x64) (HKLM-x32\...\{4977d0ee-109f-45af-84af-568713d18ce6}) (Version: 3.0.0.28113 - Microsoft Corporation) Microsoft .NET Core Runtime - 3.0.0 (x86) (HKLM-x32\...\{cddad897-5d96-4989-83df-5350b9f0d00d}) (Version: 3.0.0.28113 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\...\Teams) (Version: 1.3.00.15561 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation) Nmap 7.80 (HKLM-x32\...\Nmap) (Version: 7.80 - Nmap Project) Npcap 0.9982 (HKLM-x32\...\NpcapInst) (Version: 0.9982 - Nmap Project) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 24.0.3 - OBS Project) Opera Stable 69.0.3686.49 (HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\...\Opera 69.0.3686.49) (Version: 69.0.3686.49 - Opera Software) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8642 - Realtek Semiconductor Corp.) SketchUp 2020 (HKLM\...\{4c8537c3-c896-1bca-d37f-3a0c4c460134}) (Version: 20.0.373.137 - SketchUp) Hidden SketchUp 2020 (HKLM-x32\...\{522800F1-9FCE-44F2-8D2E-2CEC5B25A9C2}) (Version: 20.0.373 - Trimble, Inc.) Streamlabs OBS 0.20.2 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.20.2 - General Workings, Inc.) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) Packages: ========= Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.39.4.0_x86__kgqvnymyfvs32 [2020-06-25] (king.com) Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1800.1.0_x86__kgqvnymyfvs32 [2020-07-02] (king.com) Dell CinemaColor -> C:\Program Files\WindowsApps\PortraitDisplays.DellCinemaColor_2.1.14.0_x64__2dgmkzkw4h30c [2020-05-13] (Portrait Displays) Dell Customer Connect -> C:\Program Files\WindowsApps\DellInc.DellCustomerConnect_5.2.40.0_x64__htrsf667h5kn2 [2020-05-08] (Dell Inc) Dell Digital Delivery -> C:\Program Files\WindowsApps\DellInc.DellDigitalDelivery_4.0.52.0_x64__htrsf667h5kn2 [2020-06-03] (Dell Inc) Dell Mobile Connect -> C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.0.9346.0_x64__0vhbc3ng4wbp0 [2020-04-13] (Screenovate Technologies) [Startup Task] Dell Power Manager -> C:\Program Files\WindowsApps\DellInc.DellPowerManager_3.6.12.0_x64__htrsf667h5kn2 [2020-02-04] (Dell Inc) Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.5.13.0_x64__htrsf667h5kn2 [2020-05-19] (Dell Inc) Dell Update -> C:\Program Files\WindowsApps\DellInc.DellUpdate_3.1.54.0_x64__htrsf667h5kn2 [2019-12-22] (Dell Inc) Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2020-01-24] (Dropbox Inc.) Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-10-09] (Facebook Inc) Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt [2020-06-15] (INTEL CORP) [Startup Task] Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-17] (INTEL CORP) Lexmark Printer Home -> C:\Program Files\WindowsApps\58539F3C.LexmarkPrinterHome_3.0.73.0_neutral__xyj5e99tmxdva [2019-05-24] (Lexmark International, Inc.) LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-05-03] (LinkedIn) McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.39.0_x64__wafk5atnkzcwy [2020-06-08] (McAfee LLC.) Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.12827.20336.0_x86__8wekyb3d8bbwe [2020-06-22] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-03] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-03] (Microsoft Corporation) [MS Ad] Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.12827.20336.0_x86__8wekyb3d8bbwe [2020-06-22] (Microsoft Corporation) Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.12827.20336.0_x86__8wekyb3d8bbwe [2020-06-22] (Microsoft Corporation) Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.12827.20336.0_x86__8wekyb3d8bbwe [2020-06-22] (Microsoft Corporation) Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.12827.20336.0_x86__8wekyb3d8bbwe [2020-06-22] (Microsoft Corporation) Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.12827.20336.0_x86__8wekyb3d8bbwe [2020-06-22] (Microsoft Corporation) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Studios) [MS Ad] Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.12827.20336.0_x86__8wekyb3d8bbwe [2020-06-22] (Microsoft Corporation) MPEG-2 Video Extension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation) MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad] My Dell -> C:\Program Files\WindowsApps\DellInc.MyDell_1.4.22.0_x64__htrsf667h5kn2 [2020-04-17] (Dell Inc) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.96.725.0_x64__mcm4njqhnhss8 [2020-04-13] (Netflix, Inc.) Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-28] (Microsoft Corporation) SmartByte -> C:\Program Files\WindowsApps\RivetNetworks.SmartByte_3.0.869.0_x64__rh07ty8m5nkag [2020-05-08] (Rivet Networks LLC) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.135.458.0_x86__zpdnekdrzrea0 [2020-06-25] (Spotify AB) [Startup Task] Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-01] (Microsoft Corporation) Waves MaxxAudio Pro for Dell -> C:\Program Files\WindowsApps\WavesAudio.WavesMaxxAudioProforDell_1.1.131.0_x64__fh4rh281wavaa [2019-05-03] (Waves Audio) Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2019-10-05] (Microsoft Corporation) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2845908156-3370841151-2670215384-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Felicia\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2845908156-3370841151-2670215384-1001_Classes\CLSID\{20AC803E-49D4-43E9-90D8-787AFD8E85B0}\InprocServer32 -> C:\Users\Felicia\AppData\Local\easyxplore\Update\1.3.99.0\psuser_64.dll (easyxplore.) [File not signed] CustomCLSID: HKU\S-1-5-21-2845908156-3370841151-2670215384-1001_Classes\CLSID\{8FA6DC22-9574-427B-914B-CD9ACE26E5CB}\InprocServer32 -> C:\Users\Felicia\AppData\Local\easyxplore\Update\1.3.99.0\psuser_64.dll (easyxplore.) [File not signed] CustomCLSID: HKU\S-1-5-21-2845908156-3370841151-2670215384-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Felicia\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-05-07] () [File not signed] [File is in use] ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File ContextMenuHandlers1: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2020-04-06] () [File not signed] ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-06-08] (McAfee, LLC -> McAfee, LLC) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-02] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-05-07] () [File not signed] [File is in use] ContextMenuHandlers6: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2020-04-06] () [File not signed] ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-02] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-06-08] (McAfee, LLC -> McAfee, LLC) ==================== Codecs (Whitelisted) ==================== ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\Felicia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ==================== Loaded Modules (Whitelisted) ============= 2020-07-02 18:41 - 2020-07-02 18:41 - 000160768 _____ () [File not signed] \\?\C:\Users\Felicia\AppData\Local\Temp\167d2211-bab7-4aca-904c-9891aa44e4e4.tmp.node 2020-07-02 18:41 - 2020-07-02 18:41 - 000135168 _____ () [File not signed] \\?\C:\Users\Felicia\AppData\Local\Temp\9df894a1-c3ba-49f4-a898-22e84ed4a6a8.tmp.node 2020-07-02 18:41 - 2020-07-02 18:41 - 000167424 _____ () [File not signed] \\?\C:\Users\Felicia\AppData\Local\Temp\a1c225e9-bf09-48ee-8e16-aced04ae2828.tmp.node 2020-07-02 18:41 - 2020-07-02 18:41 - 000135168 _____ () [File not signed] \\?\C:\Users\Felicia\AppData\Local\Temp\a36bdb72-ea65-4a71-916b-2ae8bffa4111.tmp.node 2020-01-24 18:38 - 2020-01-24 18:38 - 000019456 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll 2020-04-06 16:07 - 2020-04-06 16:07 - 000105984 _____ () [File not signed] C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll 2020-07-02 02:23 - 2020-06-01 11:22 - 001987072 ____N () [File not signed] C:\Users\Felicia\AppData\Local\Programs\easyxplore\ffmpeg.dll 2020-07-02 02:23 - 2020-06-01 11:22 - 000089600 ____N () [File not signed] C:\Users\Felicia\AppData\Local\Programs\easyxplore\libegl.dll 2020-07-02 02:23 - 2020-06-01 11:22 - 004310528 ____N () [File not signed] C:\Users\Felicia\AppData\Local\Programs\easyxplore\libglesv2.dll 2020-07-02 02:23 - 2020-06-01 11:22 - 000075264 ____N () [File not signed] C:\Users\Felicia\AppData\Local\Programs\easyxplore\resources\bin\dockapi32.dll 2019-05-07 23:05 - 2019-05-07 23:05 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll 2020-04-13 00:27 - 2020-04-13 00:33 - 008812032 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.0.9346.0_x64__0vhbc3ng4wbp0\core.uwp.dll 2020-04-13 00:27 - 2020-04-13 00:36 - 045805056 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.0.9346.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.dll 2020-01-13 08:04 - 2020-01-13 08:04 - 001899008 _____ (SQLite Development Team) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\x64\sqlite3.dll ==================== Alternate Data Streams (Whitelisted) ======== ==================== Safe Mode (Whitelisted) ================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service" ==================== Association (Whitelisted) ================= ==================== Internet Explorer trusted/restricted ========== ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2018-09-15 03:31 - 2018-09-15 03:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2019-08-05 14:16 - 2019-08-05 14:42 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\dell\BlueLava_1112000xx_inspiron_wallpaper58095_16x9_72dpi_RGB.jpg DNS Servers: 192.168.219.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Windows Firewall is enabled. Network Binding: ============= Wi-Fi: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) Npcap Loopback Adapter: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) ==================== MSCONFIG/TASK MANAGER disabled items == ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{5BC89BB2-933A-47F2-82EB-6C9B39DD4275}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{10213730-85DC-4824-AB77-4B506BC7CACE}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{B742AC7C-7B11-45E5-843A-822CE1D1338A}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{D6CE9844-1A1A-4748-AF23-806652596963}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{1E3945A5-DF05-4782-A175-EB10A2112F91}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{139DFD08-3172-4937-B814-B4B649D0B346}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> ) FirewallRules: [{FE774534-4B01-4DB9-B36C-70981EE97484}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.0.9346.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) FirewallRules: [{6CCE7BF7-2936-4E5C-80EC-6091DE0983AC}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.0.9346.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) FirewallRules: [{A93FF92D-C269-4593-9047-9DDD1F9A3A2D}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, LLC -> McAfee, LLC) FirewallRules: [{50560A6A-860E-4B13-A415-98AFED0B3005}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC -> McAfee, LLC) FirewallRules: [{D6D56839-2791-4100-9C32-C2D421576420}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, LLC -> McAfee, LLC) FirewallRules: [{0F648027-9AB8-49DE-8295-C5941734AB80}] => (Allow) C:\Program Files\FlightGear 2018.3.5\bin\fgfs.exe () [File not signed] FirewallRules: [{806EE0F1-423E-442E-8D8E-1E4C2507BED0}] => (Allow) C:\Program Files\FlightGear 2018.3.5\bin\fgfs.exe () [File not signed] FirewallRules: [{9F44B862-876A-4AEE-B6CC-8B79950C2BE8}] => (Allow) C:\Program Files\FlightGear 2018.3.5\bin\fgcom.exe () [File not signed] FirewallRules: [{3BD0A2B1-1AF3-4872-8727-1BF1DC5FA2F8}] => (Allow) C:\Program Files\FlightGear 2018.3.5\bin\fgcom.exe () [File not signed] FirewallRules: [{E17974E9-2E4B-4E6B-9ECF-932B67C81C85}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.12827.20336.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C5870EE8-8367-4133-8EBE-FE0297ADC804}] => (Allow) C:\Users\Felicia\AppData\Local\Programs\Opera\68.0.3618.173\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{F821E24A-0539-4C7D-8CAA-DAF44979EEFD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{91E3006A-5B00-4433-AD3A-D395E816AE56}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.135.458.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{9F7C76C8-A7A5-486C-9160-DB03D6523176}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.135.458.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3AC7E641-D03B-42CA-B6EA-AB7212A3C532}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.135.458.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{FDD8C240-FC82-402D-A5B2-6067EB0E0319}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.135.458.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6686B275-2328-409D-B67E-EF6BA8557B5B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.135.458.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{76C05754-E0CC-450F-8325-14047FCB910D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.135.458.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{19E8A6D4-89A3-4F15-AE35-0FB74AE626DF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.135.458.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6B43D5A6-A75C-4FA7-8488-8CF3AE6B9BCE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.135.458.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{5D242EDE-647E-4010-B59F-A0220719BE0A}] => (Allow) C:\Users\Felicia\AppData\Local\Programs\Opera\69.0.3686.49\opera.exe (Opera Software AS -> Opera Software) ==================== Restore Points ========================= ATTENTION: System Restore is disabled (Total:224.33 GB) (Free:143.53 GB) (64%) ==================== Faulty Device Manager Devices ============ ==================== Event log errors: ======================== Application errors: ================== Error: (07/02/2020 06:34:06 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (9644,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/02/2020 06:28:55 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (5352,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/02/2020 05:55:54 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (9544,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/02/2020 05:47:51 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (14920,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/02/2020 05:26:13 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (100,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/02/2020 05:17:52 PM) (Source: SmartByte Network Service) (EventID: 16) (User: ) Description: Event-ID 16 Error: (07/02/2020 05:17:52 PM) (Source: SmartByte Network Service) (EventID: 16) (User: ) Description: Event-ID 16 Error: (07/02/2020 05:17:52 PM) (Source: SmartByte Network Service) (EventID: 16) (User: ) Description: Event-ID 16 System errors: ============= Error: (07/02/2020 06:43:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The McAfee WebAdvisor service failed to start due to the following error: The system cannot find the file specified. Error: (07/02/2020 06:41:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The McAfee WebAdvisor service failed to start due to the following error: The system cannot find the file specified. Error: (07/02/2020 06:40:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The RNDBWM service failed to start due to the following error: The system cannot find the file specified. Error: (07/02/2020 06:40:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The SmartByte Network Service x64 service failed to start due to the following error: The system cannot find the file specified. Error: (07/02/2020 06:40:35 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\WINDOWS\system32\IntelIHVRouter08.dll Error: (07/02/2020 06:40:35 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\WINDOWS\system32\IntelIHVRouter08.dll Error: (07/02/2020 06:40:31 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: The Malwarebytes Service service did not shut down properly after receiving a preshutdown control. Error: (07/02/2020 06:40:15 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\WINDOWS\system32\IntelIHVRouter08.dll Windows Defender: =================================== Date: 2020-06-01 12:58:33.068 Description: Windows Defender Antivirus scan has been stopped before completion. Scan ID: {19C7B19C-63C4-4FC7-A436-BC0E68F41A44} Scan Type: Antimalware Scan Parameters: Quick Scan Date: 2020-05-31 11:53:07.374 Description: Windows Defender Antivirus scan has been stopped before completion. Scan ID: {2B8C61D2-A8C8-43DE-AF30-1E468DB241C6} Scan Type: Antimalware Scan Parameters: Quick Scan Date: 2020-05-27 13:43:49.746 Description: Windows Defender Antivirus has encountered an error trying to update security intelligence. New security intelligence Version: Previous security intelligence Version: 1.285.74.0 Update Source: Microsoft Update Server Security intelligence Type: AntiVirus Update Type: Full Current Engine Version: Previous Engine Version: 1.1.15600.4 Error code: 0x80240022 Error description: The program can't check for definition updates. Date: 2020-05-27 13:43:49.745 Description: Windows Defender Antivirus has encountered an error trying to update security intelligence. New security intelligence Version: Previous security intelligence Version: 1.285.74.0 Update Source: Microsoft Update Server Security intelligence Type: AntiVirus Update Type: Full Current Engine Version: Previous Engine Version: 1.1.15600.4 Error code: 0x80240022 Error description: The program can't check for definition updates. CodeIntegrity: =================================== Date: 2020-07-02 18:44:00.877 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-02 18:44:00.869 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-02 18:44:00.862 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-02 18:44:00.854 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-02 18:44:00.846 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-02 18:44:00.836 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-02 18:44:00.829 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-02 18:44:00.821 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. ==================== Memory info =========================== BIOS: Dell Inc. 1.5.0 05/29/2019 Motherboard: Dell Inc. 0N6YMK Processor: Intel(R) Core(TM) i5-8265U CPU @ 1.60GHz Percentage of memory in use: 65% Total physical RAM: 7967.61 MB Available physical RAM: 2786.24 MB Total Virtual: 17695.61 MB Available Virtual: 11513.31 MB ==================== Drives ================================ Drive 😄 (OS) (Fixed) (Total:224.33 GB) (Free:143.53 GB) NTFS \\?\Volume{56ccbd79-00e0-4087-a1d1-d227090595ae}\ (WINRETOOLS) (Fixed) (Total:0.97 GB) (Free:0.44 GB) NTFS \\?\Volume{6ea17cf8-171c-446a-adcb-542e0937ebd8}\ (Image) (Fixed) (Total:11.27 GB) (Free:0.17 GB) NTFS \\?\Volume{d717a0c1-1ad9-4c7e-929f-9299f9ef3f0b}\ (DELLSUPPORT) (Fixed) (Total:1.13 GB) (Free:0.48 GB) NTFS \\?\Volume{9d872f71-720a-4e1f-896d-08a4c5d1e3a8}\ (ESP) (Fixed) (Total:0.63 GB) (Free:0.56 GB) FAT32 ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: B51F7155) Partition: GPT. ==================== End of Addition.txt =======================
  2. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-06-2020 Ran by Felicia (administrator) on DESKTOP-1PK82LS (Dell Inc. Inspiron 7586) (02-07-2020 18:45:11) Running from C:\Users\Felicia\Downloads Loaded Profiles: Felicia Platform: Windows 10 Home Version 1909 18363.900 (X64) Language: English (United States) Default browser: Opera Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe (Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f3a64c75ee4defb7\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f3a64c75ee4defb7\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bbd2c587f8c21bc5\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bbd2c587f8c21bc5\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_99239023b47c777a\RstMwService.exe (Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_71d5a06748fb983c\aesm_service.exe (Intel(R) Trust Services -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\CSP\3.6.124.0\McCSPServiceHost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\MMSSHost\MMSSHOST.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2> (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ProtectedModuleHost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\PEF\CORE\PEFService.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\VSCore_20_4\mcapexe.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\MfeAV\MfeAVSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Felicia\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\BackgroundTransferHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\drivers\SessionService.exe (Microsoft Windows Hardware Compatibility Publisher -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe (Opera Software AS -> Opera Software) C:\Users\Felicia\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2> (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7106.1428\DSAPI.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3> (Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.0.9346.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.0.9346.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.exe (Tresdox Corporation) [File not signed] C:\Users\Felicia\AppData\Local\Programs\easyxplore\EasyXplore.exe <5> (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_41fad5d37429641d\WavesSvc64.exe (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_41fad5d37429641d\WavesSysSvc64.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [834336 2019-02-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_41fad5d37429641d\WavesSvc64.exe [1319280 2018-09-28] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-02-27] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [313064 2018-10-05] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Felicia\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-15] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\...\Run: [easyxplore Update] => C:\Users\Felicia\AppData\Local\easyxplore\Update\1.3.99.0\easyxploreUpdateCore.exe [592384 2020-07-02] (easyxplore.) [File not signed] HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\...\Run: [electron.app.EasyXplore] => C:\Users\Felicia\AppData\Local\Programs\easyxplore\EasyXplore.exe [79950336 2020-06-01] (Tresdox Corporation) [File not signed] HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\...\Run: [Opera Browser Assistant] => C:\Users\Felicia\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3105304 2020-07-02] (Opera Software AS -> Opera Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-24] (Google LLC -> Google LLC) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {08446D80-8933-4C05-96FC-687C449CDFC7} - System32\Tasks\easyxploreUpdateTaskUserS-1-5-21-2845908156-3370841151-2670215384-1001Core => C:\Users\Felicia\AppData\Local\easyxplore\Update\easyxploreUpdate.exe [102400 2020-07-02] (easyxplore.) [File not signed] Task: {1D86406E-2D3E-49F7-9BF7-B2F44A65024D} - System32\Tasks\easyxplore_run => C:\Users\Felicia\AppData\Local\Programs\easyxplore\EasyXplore.exe [79950336 2020-06-01] (Tresdox Corporation) [File not signed] Task: {1F708B3E-54C0-4C65-AE8F-D0D702027345} - System32\Tasks\Opera scheduled assistant Autoupdate 1585767873 => C:\Users\Felicia\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-02] (Opera Software AS -> Opera Software) Task: {4046E6D8-E9A2-47CA-80C9-01F2217BB130} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [764640 2020-06-08] (McAfee, LLC -> McAfee, LLC) Task: {55214E19-9370-4CB2-BB78-311FEA502886} - System32\Tasks\{0B6D95F7-4C66-C397-60A8-0749E58DAE74} => C:\Users\Felicia\AppData\Roaming\0b6d95f74c66c39760a80749e58dae74\nehutolu.exe [2234368 2013-04-20] () [File not signed] Task: {5D50A3CA-AB3A-4A7C-B72B-73D3BE668459} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1075528 2020-05-14] (McAfee, LLC -> McAfee, LLC) Task: {626C6425-CD55-4A26-A032-5D741109DE96} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [File not signed] Task: {6AA8AD31-7532-48C4-B101-22779208453D} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.9.577\mcdatrep.exe [1826656 2020-06-01] (McAfee, Inc. -> McAfee, LLC.) Task: {86F20813-747F-46AB-A708-606FD08E09AE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-03] (Google Inc -> Google LLC) Task: {92CF109F-F4DB-41AD-8E62-B4CFA829F9D1} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4185384 2020-05-15] (McAfee, LLC -> McAfee, LLC) Task: {99B4B065-BFEE-4A50-832B-1D3C0992B9C3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-03] (Google Inc -> Google LLC) "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" was unlocked. <==== ATTENTION Task: {AC546E88-BD12-40BA-9551-A9A7C50C7E3F} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1075528 2020-05-14] (McAfee, LLC -> McAfee, LLC) Task: {B19BB278-0605-4524-83C2-4CCEF8A156E0} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4592776 2020-05-15] (McAfee, LLC -> McAfee, LLC) Task: {BA9B16AE-3F22-4F69-8740-B3CF23175663} - System32\Tasks\easyxplore_chk => C:\Users\Felicia\AppData\Local\Programs\easyxplore\EasyXplore.exe [79950336 2020-06-01] (Tresdox Corporation) [File not signed] Task: {CC55FF06-6FC0-4407-9F8B-B6856AA633EB} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Felicia\Downloads\adwcleaner_8.0.6.exe [8420016 2020-07-02] (Malwarebytes Inc -> Malwarebytes) Task: {DA9BD2A1-26E9-49AD-A9FC-F9CBD57D0D3E} - System32\Tasks\easyxploreUpdateTaskUserS-1-5-21-2845908156-3370841151-2670215384-1001UA => C:\Users\Felicia\AppData\Local\easyxplore\Update\easyxploreUpdate.exe [102400 2020-07-02] (easyxplore.) [File not signed] Task: {EE5229F8-3519-42C4-86F8-546E9D40B3E7} - System32\Tasks\Opera scheduled Autoupdate 1585767871 => C:\Users\Felicia\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-02] (Opera Software AS -> Opera Software) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\{0B6D95F7-4C66-C397-60A8-0749E58DAE74}.job => C:\Users\Felicia\AppData\Roaming\0B6D95~1\nehutolu.exe <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.219.1 Tcpip\..\Interfaces\{5230bf3b-4422-4054-adcd-559044c80c86}: [DhcpNameServer] 192.168.219.1 Tcpip\..\Interfaces\{94e64a44-5914-4829-bb3d-2ed9e9680678}: [DhcpNameServer] 172.4.1.173 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2845908156-3370841151-2670215384-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE SearchScopes: HKLM -> DefaultScope value is missing SearchScopes: HKLM-x32 -> DefaultScope value is missing SearchScopes: HKU\S-1-5-21-2845908156-3370841151-2670215384-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = SearchScopes: HKU\S-1-5-21-2845908156-3370841151-2670215384-1001 -> {C5CB7C6E-5FB0-4273-9783-4D2106B0186D} URL = Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2020-06-08] (McAfee, LLC -> McAfee, LLC) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2020-06-08] (McAfee, LLC -> McAfee, LLC) Edge: ====== DownloadDir: C:\Users\Felicia\Downloads Edge Notifications: HKU\S-1-5-21-2845908156-3370841151-2670215384-1001 -> hxxps://mail.yahoo.com FireFox: ======== FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2020-06-08] (McAfee, LLC -> ) FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2020-06-08] (McAfee, LLC -> ) FF Plugin HKU\S-1-5-21-2845908156-3370841151-2670215384-1001: @easyxplor.com.com/easyxplore Update;version=3 -> C:\Users\Felicia\AppData\Local\easyxplore\Update\1.3.99.0\npeasyxploreUpdate3.dll [2020-07-02] (easyxplore.) [File not signed] FF Plugin HKU\S-1-5-21-2845908156-3370841151-2670215384-1001: @easyxplor.com.com/easyxplore Update;version=9 -> C:\Users\Felicia\AppData\Local\easyxplore\Update\1.3.99.0\npeasyxploreUpdate3.dll [2020-07-02] (easyxplore.) [File not signed] Chrome: ======= CHR Profile: C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default [2020-07-02] CHR Extension: (Slides) - C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-03] CHR Extension: (Docs) - C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-03] CHR Extension: (Google Drive) - C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-03] CHR Extension: (YouTube) - C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-03] CHR Extension: (Sheets) - C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-03] CHR Extension: (Google Docs Offline) - C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-28] CHR Extension: (Chrome Web Store Payments) - C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-20] CHR Extension: (Gmail) - C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-03] CHR Extension: (Chrome Media Router) - C:\Users\Felicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AESMService; C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_71d5a06748fb983c\aesm_service.exe [3368944 2019-02-26] (Intel(R) Software Development Products -> Intel Corporation) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [248376 2020-01-22] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3359288 2020-01-22] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [271416 2020-01-22] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [38096 2020-01-24] (Dell Inc -> ) R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7106.1428\DSAPI.exe [965104 2020-05-19] (PC-Doctor, Inc. -> PC-Doctor, Inc.) R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [293528 2018-10-20] (Dell Inc -> Dell Inc.) S3 Dell.CommandPowerManager.Service; C:\Windows\system32\dllhost.exe /Processid:{2E8DBEA3-2F70-4907-8E0B-989861AA79DD} [21304 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 Dell.CommandPowerManager.Service; C:\Windows\system32\dllhost.exe /Processid:{2E8DBEA3-2F70-4907-8E0B-989861AA79DD} [21304 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [36544 2020-04-17] (Dell Inc -> ) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-02] (Malwarebytes Inc -> Malwarebytes) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_20_4\McApExe.exe [768256 2020-06-08] (McAfee, LLC -> McAfee, LLC) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.6.124.0\\McCSPServiceHost.exe [2726312 2020-05-28] (McAfee, LLC -> McAfee, LLC) S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [644200 2020-03-27] (McAfee, Inc. -> McAfee, LLC) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [644200 2020-03-27] (McAfee, Inc. -> McAfee, LLC) R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [644200 2020-03-27] (McAfee, Inc. -> McAfee, LLC) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1742272 2020-05-15] (McAfee, LLC -> McAfee, LLC) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2019-02-13] (Intel Corporation -> ) R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4212808 2020-05-27] (McAfee, LLC -> McAfee, LLC) S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R2 SessionSvc; C:\WINDOWS\System32\drivers\SessionService.exe [28664 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> ) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [38360 2020-05-03] (Dell Inc. -> Dell Inc.) R2 WavesSysSvc; C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_41fad5d37429641d\WavesSysSvc64.exe [1036144 2018-09-28] (Waves Inc -> Waves Audio Ltd.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-27] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-27] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4107360 2019-02-13] (Intel Corporation -> Intel® Corporation) S3 dcpm-notify; "C:\Program Files\Dell\CommandPowerManager\NotifyService.exe" [X] S2 McAfee WebAdvisor; "C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe" [X] S2 RNDBWM; "C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe" [X] S2 SmartByte Network Service x64; "C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe" [X] ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 BrSerIb; C:\WINDOWS\system32\DRIVERS\BrSerIb.sys [284160 2012-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries Ltd.) S3 BrUsbSIb; C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys [15360 2011-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries Ltd.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2020-03-07] (Microsoft Corporation) [File not signed] R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [75704 2020-04-09] (McAfee, Inc. -> McAfee, LLC) R4 DBUtil_2_3; C:\WINDOWS\TEMP\DBUtil_2_3.Sys [14840 2020-07-02] (Dell Inc. -> ) R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [35704 2020-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-07-02] (Malwarebytes Corporation -> Malwarebytes) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [218960 2020-05-26] (McAfee, LLC -> McAfee, Inc.) R3 IntcAudioBus; C:\WINDOWS\System32\drivers\IntcAudioBus.sys [300232 2019-01-24] (Intel(R) Smart Sound Technology -> Intel(R) Corporation) R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-07-02] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [196456 2020-07-02] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73368 2020-07-02] (Malwarebytes Inc -> Malwarebytes) R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-07-02] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [131728 2020-07-02] (Malwarebytes Inc -> Malwarebytes) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [528824 2020-04-09] (McAfee, Inc. -> McAfee, LLC) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [382392 2020-04-09] (McAfee, Inc. -> McAfee, LLC) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85928 2020-04-09] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [521648 2020-04-09] (McAfee, Inc. -> McAfee, LLC) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [1000880 2020-04-09] (McAfee, Inc. -> McAfee, LLC) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [595592 2020-05-01] (McAfee, Inc. -> McAfee LLC.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108168 2020-05-01] (McAfee, Inc. -> McAfee LLC.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [116664 2020-04-09] (McAfee, Inc. -> McAfee, LLC) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252336 2020-04-09] (McAfee, Inc. -> McAfee, LLC) R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [80192 2019-07-30] (Insecure.Com LLC -> Insecure.Com LLC.) R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [120008 2018-04-25] (Rivet Networks LLC -> Rivet Networks, LLC.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-05-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [394680 2020-05-27] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-27] (Microsoft Windows -> Microsoft Corporation) U3 aswbdisk; no ImagePath S3 mfeavfk01; \Device\mfeavfk01.sys [X] U4 npcap_wifi; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) =================== (If an entry is included in the fixlist, the file/folder will be moved.) 2020-07-02 18:45 - 2020-07-02 18:45 - 000026449 _____ C:\Users\Felicia\Downloads\FRST.txt 2020-07-02 18:41 - 2020-07-02 18:41 - 000196456 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2020-07-02 18:41 - 2020-07-02 18:41 - 000073368 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2020-07-02 18:39 - 2020-07-02 18:39 - 000001229 _____ C:\Users\Felicia\Documents\malware results.txt 2020-07-02 18:30 - 2020-07-02 18:41 - 000000000 ____D C:\ProgramData\McInstTemp0052681593729017 2020-07-02 17:39 - 2020-07-02 18:12 - 002356560 _____ C:\Users\Felicia\Desktop\mbst-grab-results.zip 2020-07-02 17:37 - 2020-07-02 18:45 - 000000000 ____D C:\FRST 2020-07-02 17:36 - 2020-07-02 18:10 - 002291712 _____ (Farbar) C:\Users\Felicia\Downloads\FRSTEnglish.exe 2020-07-02 17:36 - 2020-07-02 17:36 - 009158192 _____ C:\Users\Felicia\Downloads\mb-support-1.6.2.802.exe 2020-07-02 17:17 - 2020-07-02 18:40 - 000003178 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot 2020-07-02 17:17 - 2020-07-02 17:17 - 000131728 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2020-07-02 17:15 - 2020-07-02 17:17 - 000000000 ____D C:\AdwCleaner 2020-07-02 17:15 - 2020-07-02 17:15 - 008420016 _____ (Malwarebytes) C:\Users\Felicia\Downloads\adwcleaner_8.0.6.exe 2020-07-02 11:42 - 2020-07-02 11:42 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-07-02 11:42 - 2020-07-02 11:42 - 000216056 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-07-02 11:42 - 2020-07-02 11:42 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-07-02 11:42 - 2020-07-02 11:42 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-07-02 11:42 - 2020-07-02 11:42 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-07-02 11:42 - 2020-07-02 11:42 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-07-02 11:42 - 2020-07-02 11:42 - 000002023 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2020-07-02 11:42 - 2020-07-02 11:42 - 000000000 ____D C:\Users\Felicia\AppData\Local\mbam 2020-07-02 11:42 - 2020-07-02 11:42 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-07-02 11:41 - 2020-07-02 11:41 - 002012560 _____ (Malwarebytes) C:\Users\Felicia\Downloads\MBSetup.exe 2020-07-02 11:41 - 2020-07-02 11:41 - 000000000 ____D C:\Program Files\Malwarebytes 2020-07-02 02:29 - 2020-07-02 18:41 - 000000000 ____D C:\Users\Felicia\AppData\Roaming\EasyXplore 2020-07-02 02:28 - 2020-07-02 02:28 - 000003594 _____ C:\WINDOWS\system32\Tasks\easyxplore_chk 2020-07-02 02:28 - 2020-07-02 02:28 - 000002982 _____ C:\WINDOWS\system32\Tasks\easyxplore_run 2020-07-02 02:24 - 2020-07-02 11:25 - 000000312 _____ C:\WINDOWS\Tasks\{0B6D95F7-4C66-C397-60A8-0749E58DAE74}.job 2020-07-02 02:24 - 2020-07-02 02:24 - 000002852 _____ C:\WINDOWS\system32\Tasks\{0B6D95F7-4C66-C397-60A8-0749E58DAE74} 2020-07-02 02:24 - 2020-07-02 02:24 - 000000000 ____D C:\Users\Felicia\AppData\Roaming\0b6d95f74c66c39760a80749e58dae74 2020-07-02 02:23 - 2020-07-02 02:24 - 000000000 ____D C:\ProgramData\{4E8972B5-66A1-0ACD-3EF9-22E5D611FA3D} 2020-07-02 02:23 - 2020-07-02 02:23 - 000003732 _____ C:\WINDOWS\system32\Tasks\easyxploreUpdateTaskUserS-1-5-21-2845908156-3370841151-2670215384-1001UA 2020-07-02 02:23 - 2020-07-02 02:23 - 000003464 _____ C:\WINDOWS\system32\Tasks\easyxploreUpdateTaskUserS-1-5-21-2845908156-3370841151-2670215384-1001Core 2020-07-02 02:23 - 2020-07-02 02:23 - 000000000 ____D C:\Users\Felicia\AppData\Local\easyxplore 2020-07-02 02:23 - 2020-07-02 02:23 - 000000000 ____D C:\Program Files (x86)\easyxplore 2020-07-02 00:02 - 2020-03-29 21:53 - 001789440 _____ (Psycho Coding) C:\Users\Felicia\Documents\LANC_Remastered.exe 2020-07-02 00:01 - 2020-03-29 21:53 - 001789440 _____ (Psycho Coding) C:\Users\Felicia\Desktop\LANC_Remastered.exe 2020-07-02 00:00 - 2020-07-02 00:00 - 001011689 _____ C:\Users\Felicia\Downloads\LANC_Remastered (1).zip 2020-07-01 23:57 - 2020-07-01 23:57 - 000000000 ____D C:\Users\Felicia\AppData\Roaming\RGH Controller 2020-07-01 23:57 - 2020-07-01 23:57 - 000000000 ____D C:\Users\Felicia\AppData\Local\Psycho_Coding 2020-07-01 23:57 - 2020-07-01 23:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap 2020-07-01 23:57 - 2020-07-01 23:57 - 000000000 ____D C:\Program Files (x86)\WinPcap 2020-07-01 23:56 - 2020-07-01 23:56 - 000915128 _____ (Riverbed Technology, Inc.) C:\Users\Felicia\Downloads\WinPcap_4_1_3.exe 2020-07-01 23:55 - 2019-12-28 23:48 - 000000199 _____ C:\Users\Felicia\Documents\readme.txt 2020-07-01 23:55 - 2019-11-03 23:48 - 000098816 _____ () C:\Users\Felicia\Documents\PsychoCoding Theme.dll 2020-07-01 23:55 - 2019-11-03 09:42 - 000030720 _____ (Monfort Software Engineering) C:\Users\Felicia\Documents\ManagedWifi.dll 2020-07-01 23:55 - 2019-11-03 07:14 - 000157184 _____ (Pcap.Net) C:\Users\Felicia\Documents\PcapDotNet.Packets.dll 2020-07-01 23:55 - 2019-11-03 07:14 - 000071168 _____ C:\Users\Felicia\Documents\PcapDotNet.Core.dll 2020-07-01 23:55 - 2019-11-03 07:14 - 000011264 _____ (Pcap.Net) C:\Users\Felicia\Documents\PcapDotNet.Core.Extensions.dll 2020-07-01 23:55 - 2019-11-03 07:13 - 000012800 _____ (Pcap.Net) C:\Users\Felicia\Documents\PcapDotNet.Base.dll 2020-07-01 23:55 - 2019-11-03 05:48 - 000094720 _____ (Pcap.Net) C:\Users\Felicia\Documents\PcapDotNet.Analysis.dll 2020-07-01 23:53 - 2020-07-01 23:53 - 001011689 _____ C:\Users\Felicia\Downloads\LANC_Remastered.zip 2020-06-30 13:44 - 2020-06-30 13:44 - 000239197 _____ C:\Users\Felicia\Downloads\Sienna - Fish Digestive System.pdf 2020-06-30 12:59 - 2020-07-02 16:25 - 000000000 ____D C:\Users\Felicia\Downloads\opera autoupdate 2020-06-27 00:03 - 2020-07-02 02:30 - 000000000 ____D C:\Users\Felicia\.zenmap 2020-06-27 00:02 - 2020-06-27 00:02 - 000003194 _____ C:\WINDOWS\system32\Tasks\npcapwatchdog 2020-06-27 00:02 - 2020-06-27 00:02 - 000001038 _____ C:\Users\Felicia\Desktop\Nmap - Zenmap GUI.lnk 2020-06-27 00:02 - 2020-06-27 00:02 - 000000000 ____D C:\Users\Felicia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nmap 2020-06-27 00:01 - 2020-06-27 00:02 - 000000000 ____D C:\Program Files\Npcap 2020-06-27 00:01 - 2020-06-27 00:02 - 000000000 ____D C:\Program Files (x86)\Nmap 2020-06-27 00:01 - 2020-06-27 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Npcap 2020-06-27 00:01 - 2020-06-27 00:01 - 000000000 ____D C:\WINDOWS\system32\Npcap 2020-06-26 23:15 - 2020-06-26 23:15 - 000000000 ____D C:\Program Files\WSPingPR 2020-06-26 23:14 - 2020-06-26 23:15 - 000000000 ____D C:\Users\Felicia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WS_Ping ProPack 2020-06-26 20:53 - 2020-06-26 21:15 - 000213843 _____ C:\Users\Felicia\Desktop\Art exam.pdf 2020-06-26 16:27 - 2020-06-26 16:27 - 000052569 _____ C:\Users\Felicia\Desktop\Invoice_2067_from_LEAF_Weight_Management_Clinic.pdf 2020-06-24 14:16 - 2020-06-24 14:20 - 000000000 ____D C:\Users\Felicia\Downloads\Sienna's Stuff 2020-06-24 14:13 - 2020-07-02 03:35 - 000000000 ____D C:\Users\Felicia\Downloads\Softwares 2020-06-24 14:02 - 2020-06-24 14:04 - 000000000 ____D C:\Users\Felicia\Downloads\Random Stuff 2020-06-24 14:00 - 2020-06-24 14:02 - 000000000 ____D C:\Users\Felicia\Downloads\PNG Templates 2020-06-24 13:57 - 2020-06-26 22:48 - 000000000 ____D C:\Users\Felicia\Downloads\Tvo ilc 2020-06-24 13:56 - 2020-06-24 13:57 - 000000000 ____D C:\Users\Felicia\Downloads\Photoshop 2020-06-24 13:51 - 2020-06-24 13:52 - 000000000 ____D C:\Users\Felicia\Downloads\JDOGG Youtube 2020-06-24 13:48 - 2020-06-24 13:55 - 000000000 ____D C:\Users\Felicia\Downloads\Zelick Live 2020-06-24 13:35 - 2020-06-24 13:39 - 000000000 ____D C:\Users\Felicia\Downloads\Sienna's Spotify images 2020-06-23 20:49 - 2020-06-23 20:49 - 002510856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll 2020-06-23 20:43 - 2020-06-23 20:43 - 000081448 _____ C:\Users\Felicia\Desktop\geography exam.pdf 2020-06-21 20:17 - 2020-06-21 20:17 - 000759230 _____ C:\Users\Felicia\Desktop\Prescription receipt Felicia Vaile.pdf 2020-06-21 20:16 - 2020-06-21 20:16 - 000759230 _____ C:\Users\Felicia\Downloads\2020-06-21 20-04.pdf 2020-06-16 17:20 - 2020-06-16 17:20 - 006824628 _____ C:\Users\Felicia\Desktop\Science Unit 3 Jensen Vaile Work.pdf 2020-06-15 23:50 - 2020-06-17 11:29 - 000002372 _____ C:\Users\Felicia\Desktop\Microsoft Teams.lnk 2020-06-15 23:50 - 2020-06-15 23:50 - 000002380 _____ C:\Users\Felicia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2020-06-15 23:50 - 2020-06-15 23:50 - 000000000 ____D C:\Users\Felicia\AppData\Roaming\Microsoft Teams 2020-06-15 23:50 - 2020-06-15 23:50 - 000000000 ____D C:\Users\Felicia\AppData\Local\SquirrelTemp 2020-06-15 16:07 - 2019-10-16 11:40 - 001082680 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2020-06-15 16:07 - 2019-10-16 11:40 - 001082680 _____ C:\WINDOWS\system32\vulkan-1.dll 2020-06-15 16:07 - 2019-10-16 11:40 - 000940344 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2020-06-15 16:07 - 2019-10-16 11:40 - 000940344 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2020-06-15 16:07 - 2019-10-16 11:40 - 000853560 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2020-06-15 16:07 - 2019-10-16 11:40 - 000853560 _____ C:\WINDOWS\system32\vulkaninfo.exe 2020-06-15 16:07 - 2019-10-16 11:40 - 000711224 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2020-06-15 16:07 - 2019-10-16 11:40 - 000711224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2020-06-15 16:07 - 2019-10-16 11:13 - 000071956 _____ C:\WINDOWS\SysWOW64\vp9e_32.vp 2020-06-15 16:07 - 2019-10-16 11:13 - 000013992 _____ C:\WINDOWS\system32\vp9e_64.vp 2020-06-15 16:06 - 2019-10-16 11:41 - 021092352 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 019993216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 003195968 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_h265ve_64.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 003189168 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_vp9ve_64.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 003175640 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_h264ve_64.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 002971920 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_encrypt_64.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 002585928 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_h265ve_32.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 002580736 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_vp9ve_32.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 002572232 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_h264ve_32.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 002415016 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_encrypt_32.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 000212464 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2020-06-15 16:06 - 2019-10-16 11:41 - 000184144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2020-06-15 16:06 - 2019-10-16 11:40 - 025056264 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2020-06-15 16:06 - 2019-10-16 11:40 - 011902480 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2020-06-15 16:06 - 2019-10-16 11:40 - 003007504 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_mjpgvd_64.dll 2020-06-15 16:06 - 2019-10-16 11:40 - 002437136 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_mjpgvd_32.dll 2020-06-15 16:06 - 2019-10-16 11:40 - 000168976 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll 2020-06-15 16:06 - 2019-10-16 11:40 - 000141840 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll 2020-06-15 16:06 - 2019-10-16 11:40 - 000136504 _____ C:\WINDOWS\SysWOW64\libEGL.dll 2020-06-15 16:06 - 2019-10-16 11:40 - 000121144 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2020-06-15 16:06 - 2019-10-16 11:40 - 000107832 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2020-06-15 16:06 - 2019-10-16 11:13 - 000065805 _____ C:\WINDOWS\SysWOW64\mj_32.vp 2020-06-15 16:06 - 2019-10-16 11:13 - 000013317 _____ C:\WINDOWS\system32\mj_64.vp 2020-06-15 16:05 - 2019-10-16 11:13 - 000072361 _____ C:\WINDOWS\SysWOW64\h265e_32.vp 2020-06-15 16:05 - 2019-10-16 11:13 - 000070721 _____ C:\WINDOWS\SysWOW64\he_32.vp 2020-06-15 16:05 - 2019-10-16 11:13 - 000057143 _____ C:\WINDOWS\SysWOW64\dev_32.vp 2020-06-15 16:05 - 2019-10-16 11:13 - 000056359 _____ C:\WINDOWS\system32\dev_64.vp 2020-06-15 16:05 - 2019-10-16 11:13 - 000014145 _____ C:\WINDOWS\system32\h265e_64.vp 2020-06-15 16:05 - 2019-10-16 11:13 - 000013585 _____ C:\WINDOWS\system32\he_64.vp 2020-06-15 16:05 - 2019-10-16 11:13 - 000001125 _____ C:\WINDOWS\SysWOW64\cpa_32.vp 2020-06-15 16:05 - 2019-10-16 11:13 - 000001125 _____ C:\WINDOWS\system32\cpa_64.vp 2020-06-12 20:49 - 2020-06-12 20:49 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 011608064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 009712640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 008015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 007760384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 007604592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 007268864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 007266080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 006292480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 006091048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 005909504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 005765144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 005195432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 005004344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 004610560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 003726848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-06-12 20:49 - 2020-06-12 20:49 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 003515392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 003398656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 003368104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 002831872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-06-12 20:49 - 2020-06-12 20:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-06-12 20:49 - 2020-06-12 20:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-06-12 20:49 - 2020-06-12 20:49 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 002281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 002204160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 002184504 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001704448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001683968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001654960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001649152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 001467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 001416224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 001393952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001261568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001260744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 001193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001100288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001099608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001055184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 001003832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi3.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000894024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000892048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi3.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdosys.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000797464 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000760296 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkObjCore.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000684856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000628408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000593424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000575488 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\system32\wvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000571904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2020-06-12 20:49 - 2020-06-12 20:49 - 000564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2020-06-12 20:49 - 2020-06-12 20:49 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-06-12 20:49 - 2020-06-12 20:49 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000508216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2020-06-12 20:49 - 2020-06-12 20:49 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000478208 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\SysWOW64\wvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassdo.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000451864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\termmgr.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000407864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000405936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\termmgr.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassdo.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000357176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswmdm.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpviewerax.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-06-12 20:49 - 2020-06-12 20:49 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2020-06-12 20:49 - 2020-06-12 20:49 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000280376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpviewerax.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wavemsp.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax 2020-06-12 20:49 - 2020-06-12 20:49 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\psr.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wavemsp.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax 2020-06-12 20:49 - 2020-06-12 20:49 - 000204008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmidx.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psr.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrecst.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2020-06-12 20:49 - 2020-06-12 20:49 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaatext.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000165296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000165192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidx.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrecst.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000132424 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000129600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaatext.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000093448 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000090952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwanRadioManager.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2020-06-12 20:49 - 2020-06-12 20:49 - 000083600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasads.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2020-06-12 20:49 - 2020-06-12 20:49 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasads.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000041864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBrokerPS.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2020-06-12 20:49 - 2020-06-12 20:49 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000028368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SecurityCenterBrokerPS.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-06-12 20:49 - 2020-06-12 20:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-06-12 20:48 - 2020-06-12 20:49 - 000716320 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 007911176 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 006066808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 005283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-06-12 20:48 - 2020-06-12 20:48 - 003187200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-06-12 20:48 - 2020-06-12 20:48 - 002656256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 002289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 002235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 001583104 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 001155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2020-06-12 20:48 - 2020-06-12 20:48 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkObjCore.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-06-12 20:48 - 2020-06-12 20:48 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe 2020-06-12 20:48 - 2020-06-12 20:48 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000548984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2020-06-12 20:48 - 2020-06-12 20:48 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-06-12 20:48 - 2020-06-12 20:48 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000425056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtp.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtpUS.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe 2020-06-12 20:48 - 2020-06-12 20:48 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2020-06-12 20:48 - 2020-06-12 20:48 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanRadioManager.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxGipRadioManager.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe 2020-06-12 20:48 - 2020-06-12 20:48 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll 2020-06-12 20:48 - 2020-06-12 20:48 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2020-06-12 20:42 - 2020-05-15 00:29 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-06-12 20:42 - 2020-05-15 00:10 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-06-12 19:52 - 2020-06-12 19:52 - 006083307 _____ C:\Users\Felicia\Desktop\Science Unit 4 course.pdf 2020-06-07 11:08 - 2020-06-07 11:08 - 005259010 _____ C:\Users\Felicia\Downloads\snc1pb_unit_3.pdf 2020-06-07 11:08 - 2020-06-07 11:08 - 005259010 _____ C:\Users\Felicia\Desktop\Science course unit 3.pdf 2020-06-02 15:03 - 2020-06-02 15:03 - 000000000 ____D C:\Users\Felicia\AppData\Local\FlightGear 2020-06-02 15:03 - 2020-06-02 15:03 - 000000000 ____D C:\Users\Felicia\AppData\Local\cache 2020-06-02 15:02 - 2020-06-04 13:44 - 000000000 ____D C:\Users\Felicia\AppData\Roaming\flightgear.org 2020-06-02 15:02 - 2020-06-02 15:02 - 000000000 ____D C:\Users\Felicia\AppData\Local\CrashRpt 2020-06-02 14:59 - 2020-06-02 14:59 - 000001026 _____ C:\Users\Felicia\Desktop\FlightGear 2018.3.5.lnk 2020-06-02 14:59 - 2020-06-02 14:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlightGear 2018.3.5 2020-06-02 14:55 - 2020-06-02 14:55 - 000000000 ____D C:\Users\Felicia\Documents\FlightGear 2020-06-02 14:55 - 2020-06-02 14:55 - 000000000 ____D C:\Program Files\FlightGear 2018.3.5 ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2020-07-02 18:45 - 2020-03-07 19:45 - 000797848 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-07-02 18:45 - 2019-03-19 00:50 - 000000000 ____D C:\WINDOWS\INF 2020-07-02 18:43 - 2019-04-18 19:35 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services 2020-07-02 18:43 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\Registration 2020-07-02 18:42 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-07-02 18:41 - 2019-04-25 15:14 - 000000000 ___RD C:\Users\Felicia\OneDrive 2020-07-02 18:41 - 2019-04-25 15:12 - 000000000 __SHD C:\Users\Felicia\IntelGraphicsProfiles 2020-07-02 18:41 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-07-02 18:40 - 2020-03-07 19:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-07-02 18:40 - 2019-04-18 19:34 - 000000000 ____D C:\ProgramData\Goodix 2020-07-02 18:40 - 2019-03-19 00:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-07-02 18:34 - 2019-04-18 19:37 - 000000000 ____D C:\Program Files\Common Files\mcafee 2020-07-02 18:32 - 2020-06-01 13:19 - 000003316 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon 2020-07-02 18:30 - 2020-06-01 13:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2020-07-02 18:29 - 2020-03-07 19:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-07-02 18:29 - 2019-03-19 00:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-07-02 18:17 - 2020-06-01 13:19 - 000003706 _____ C:\WINDOWS\system32\Tasks\McAfee Remediation (Prepare) 2020-07-02 17:47 - 2020-03-07 19:43 - 000004172 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D1646BDB-84DD-4D17-BA23-C99955BC6570} 2020-07-02 17:17 - 2019-04-18 19:43 - 000000000 ____D C:\ProgramData\Dell 2020-07-02 16:57 - 2020-04-01 15:04 - 000004226 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1585767871 2020-07-02 16:57 - 2020-04-01 15:04 - 000001411 _____ C:\Users\Felicia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk 2020-07-02 11:48 - 2019-06-20 12:39 - 000000000 ____D C:\Users\Felicia\AppData\Local\D3DSCache 2020-07-02 11:34 - 2020-04-01 15:04 - 000004484 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1585767873 2020-07-02 11:29 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-07-02 11:27 - 2020-03-07 19:37 - 000000000 ____D C:\Users\Felicia 2020-07-02 11:25 - 2020-03-07 19:36 - 000276608 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-07-02 03:05 - 2020-04-06 16:08 - 000000000 ____D C:\Users\Felicia\AppData\Local\CrashDumps 2020-07-02 00:39 - 2019-04-25 15:12 - 000000000 ____D C:\Users\Felicia\AppData\Local\Packages 2020-06-30 22:11 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-06-27 17:28 - 2019-03-19 00:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2020-06-27 00:01 - 2019-04-18 19:31 - 000000000 ____D C:\ProgramData\Package Cache 2020-06-26 23:15 - 2018-09-15 03:31 - 000000256 _____ C:\WINDOWS\win.ini 2020-06-26 23:14 - 2019-04-25 15:12 - 000000000 ____D C:\Users\Felicia\AppData\Local\VirtualStore 2020-06-24 13:31 - 2019-05-03 12:48 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-06-23 21:58 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\NDF 2020-06-23 20:49 - 2019-03-19 00:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-06-16 15:07 - 2020-06-01 13:18 - 000000000 ____D C:\Program Files (x86)\McAfee 2020-06-15 22:39 - 2019-04-25 15:12 - 000000000 ____D C:\Users\Felicia\AppData\Local\Publishers 2020-06-15 22:39 - 2019-04-18 19:53 - 000000000 ____D C:\ProgramData\Packages 2020-06-12 20:54 - 2019-04-25 15:12 - 000000000 ___RD C:\Users\Felicia\3D Objects 2020-06-12 20:54 - 2019-04-18 19:58 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-06-12 20:53 - 2019-03-19 02:20 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2020-06-12 20:53 - 2019-03-19 02:20 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ___SD C:\WINDOWS\system32\F12 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Com 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-06-12 20:53 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-06-12 20:48 - 2020-03-07 19:37 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2020-06-12 18:45 - 2020-03-07 19:43 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2845908156-3370841151-2670215384-1001 2020-06-12 18:45 - 2020-03-07 19:37 - 000002375 _____ C:\Users\Felicia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-06-05 17:03 - 2019-03-19 00:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2020-06-05 17:03 - 2019-03-19 00:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2020-06-02 17:01 - 2019-04-18 19:37 - 000000000 ____D C:\ProgramData\McAfee ==================== Files in the root of some directories ======== 2020-06-27 00:03 - 2020-07-02 00:46 - 000000143 _____ () C:\Users\Felicia\AppData\Local\zenmap.exe.log ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================
  3. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 7/2/20 Scan Time: 6:32 PM Log File: e10e7ea8-bcb3-11ea-a42f-02004c4f4f50.json -Software Information- Version: 4.1.2.73 Components Version: 1.0.972 Update Package Version: 1.0.26315 License: Trial -System Information- OS: Windows 10 (Build 18362.900) CPU: x64 File System: NTFS User: DESKTOP-1PK82LS\Felicia -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 277304 Threats Detected: 0 Threats Quarantined: 0 Time Elapsed: 2 min, 2 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)
  4. I was recently on opera and noticed a search bar pop up on the top of the screen, when you click on the search bar it takes you to a fake search engine and whenever you search something it takes you to a yahoo page I figured it was malware so I even downloaded Malwarebytes right off the bat and ran a scan. Nothing was found. I found the malware in control panel and deleted it but it is still there. I've re-ran Malwarebytes and nothing is found but I can't find a way to prevent this search bar from appearing on the top of my screen. Any thoughts on what I need to do?
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.