Jump to content

hiddensecret

Members
  • Content Count

    10
  • Joined

  • Last visited

About hiddensecret

  • Rank
    New Member
  1. Hi Kevin, Sorry for the delayed update, but it was a crazy day at work. When I restarted my laptop tonight (after yesterday's actions) the redirects stopped. I am not sure why, but everything seems to be working fine today after using the Kaspersky removal tool process. I truly appreciate all of your help. I was about to give up on it. You are awesome!!
  2. The issue is not resolved. Fix result of Farbar Recovery Scan Tool (x64) Version: 02-08-2020 Ran by hidde (02-08-2020 12:32:59) Run:3 Running from C:\Users\hidde\OneDrive\Documents\_virus\2 Loaded Profiles: hidde Boot Mode: Normal ============================================== fixlist content: ***************** CloseProcesses: SystemRestore: On CreateRestorePoint: Task: {5100A477-348F-48CA-A0F9-BA0C7018AC24} - no filepath Task: {D7FF19CE-FA5C-47AC-93BB-02DBD9E5C390} - no filepath Task: {DF59B807-9ACD-4C7C-AF94-907D1921F1E5} - no filepath S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X] S2 WildTangentHelper; "C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe" [X] S3 mfeavfk01; \Device\mfeavfk01.sys [X] U0 Partizan; system32\drivers\Partizan.sys [X] S3 WinRing0_1_2_0; \??\C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\OpenHardwareMonitorLib.sys [X] S1 ZAM; \??\C:\windows\System32\drivers\zam64.sys [X] AlternateDataStreams: C:\Users\hidde\Downloads\HitmanPro_x64.exe:SmartScreen [7] AlternateDataStreams: C:\Users\hidde\Downloads\MBSetup-009996.009996-consumer.exe:SmartScreen [7] AlternateDataStreams: C:\Users\hidde\Downloads\SUPERAntiSpyware.exe:SmartScreen [7] FirewallRules: [{E79A9B39-40AB-4370-9A40-B2318CF94F39}] => (Allow) LPort=810 FirewallRules: [{35617F2C-7EA4-414C-BD75-4E608332FFD8}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File FirewallRules: [{FCC6FA85-596F-4BDC-ABD4-601F85952AA2}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File FirewallRules: [{BB15C99D-C788-4E79-BA28-7574706F12F5}] => (Allow) C:\Users\hidde\AppData\Roaming\Zoom\bin\airhost.exe => No File CMD: winmgmt /verifyrepository Hosts: EmptyTemp: ***************** Processes closed successfully. SystemRestore: On => completed Restore point was successfully created. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5100A477-348F-48CA-A0F9-BA0C7018AC24}" => not found "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D7FF19CE-FA5C-47AC-93BB-02DBD9E5C390}" => not found "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF59B807-9ACD-4C7C-AF94-907D1921F1E5}" => not found HP Comm Recover => service not found. WildTangentHelper => service not found. mfeavfk01 => service not found. Partizan => service not found. WinRing0_1_2_0 => service not found. ZAM => service not found. "C:\Users\hidde\Downloads\HitmanPro_x64.exe" => ":SmartScreen" ADS not found. "C:\Users\hidde\Downloads\MBSetup-009996.009996-consumer.exe" => ":SmartScreen" ADS not found. "C:\Users\hidde\Downloads\SUPERAntiSpyware.exe" => ":SmartScreen" ADS not found. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E79A9B39-40AB-4370-9A40-B2318CF94F39}" => not found "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{35617F2C-7EA4-414C-BD75-4E608332FFD8}" => not found "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FCC6FA85-596F-4BDC-ABD4-601F85952AA2}" => not found "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BB15C99D-C788-4E79-BA28-7574706F12F5}" => not found ========= winmgmt /verifyrepository ========= WMI repository is consistent ========= End of CMD: ========= C:\Windows\System32\Drivers\etc\hosts => moved successfully Hosts restored successfully. =========== EmptyTemp: ========== BITS transfer queue => 10510336 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8440832 B Java, Flash, Steam htmlcache => 0 B Windows/system/drivers => 98584 B Edge => 0 B Chrome => 0 B Firefox => 0 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 11410 B NetworkService => 11410 B hidde => 21096 B RecycleBin => 5263 B EmptyTemp: => 18.2 MB temporary data Removed. ================================ The system needed a reboot. ==== End of Fixlog 12:33:24 ==== 2020-08-02 16:38:22.882 Sophos Virus Removal Tool version 2.8.0 2020-08-02 16:38:22.884 Copyright (c) 2009-2020 Sophos Limited. All rights reserved. 2020-08-02 16:38:22.885 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them. 2020-08-02 16:38:22.885 Windows version 6.2 SP 0.0 build 9200 SM=0x300 PT=0x1 WOW64 2020-08-02 16:38:22.885 Checking for updates... 2020-08-02 16:38:22.899 Update progress: proxy server not available 2020-08-02 16:38:30.923 Downloading updates... 2020-08-02 16:38:30.924 Update progress: [I96736] sdds.svrt_v1.18: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1 2020-08-02 16:38:30.924 Update progress: [I95020] sdds.svrt_v1.18: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path= 2020-08-02 16:38:30.924 Update progress: [I22529] sdds.svrt_v1.18: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path= 2020-08-02 16:38:30.924 Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS 2020-08-02 16:38:30.925 Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file 2020-08-02 16:38:30.925 Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file 2020-08-02 16:38:30.925 Update progress: [V81533] SU::createCachedPackageSource creating cached package source 2020-08-02 16:38:30.925 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml 2020-08-02 16:38:30.925 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 94 ms 2020-08-02 16:38:30.925 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4ae84629b1940c826c644d1534166ae5x000.xml: 3817 bytes 2020-08-02 16:38:30.925 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4ae84629b1940c826c644d1534166ae5x000.xml: 47 ms 2020-08-02 16:38:30.925 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5e0e04bd3fb237111ac812b28906092ex000.xml: 8673 bytes 2020-08-02 16:38:30.925 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5e0e04bd3fb237111ac812b28906092ex000.xml: 31 ms 2020-08-02 16:38:30.926 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE579/be72557af274465f55bb90d707222bcex000.xml: 590 bytes 2020-08-02 16:38:30.926 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE579/be72557af274465f55bb90d707222bcex000.xml: 47 ms 2020-08-02 16:38:30.926 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 598 bytes 2020-08-02 16:38:30.926 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 47 ms 2020-08-02 16:38:30.926 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 601 bytes 2020-08-02 16:38:30.926 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 47 ms 2020-08-02 16:38:30.926 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 601 bytes 2020-08-02 16:38:30.926 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 47 ms 2020-08-02 16:38:30.926 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 601 bytes 2020-08-02 16:38:30.926 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 47 ms 2020-08-02 16:38:30.926 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 601 bytes 2020-08-02 16:38:30.927 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 78 ms 2020-08-02 16:38:30.927 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 601 bytes 2020-08-02 16:38:30.927 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 94 ms 2020-08-02 16:38:30.927 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE573/7ba8e288e69480f63603dae9299d2bbfx000.xml: 601 bytes 2020-08-02 16:38:30.927 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE573/7ba8e288e69480f63603dae9299d2bbfx000.xml: 78 ms 2020-08-02 16:38:30.927 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 601 bytes 2020-08-02 16:38:30.927 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 62 ms 2020-08-02 16:38:30.927 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 601 bytes 2020-08-02 16:38:30.927 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 141 ms 2020-08-02 16:38:30.927 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE570/c4215464d25d3865903108d821935879x000.xml: 601 bytes 2020-08-02 16:38:30.927 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE570/c4215464d25d3865903108d821935879x000.xml: 31 ms 2020-08-02 16:38:30.927 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE574/ccfbc65ac586329407a2efa32e204976x000.xml: 601 bytes 2020-08-02 16:38:30.927 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE574/ccfbc65ac586329407a2efa32e204976x000.xml: 125 ms 2020-08-02 16:38:30.927 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 601 bytes 2020-08-02 16:38:30.928 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 78 ms 2020-08-02 16:38:30.928 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 601 bytes 2020-08-02 16:38:30.928 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 94 ms 2020-08-02 16:38:30.928 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 601 bytes 2020-08-02 16:38:30.928 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 78 ms 2020-08-02 16:38:30.928 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE578/3045ee2115c99d8d17a37784dfeae28ax000.xml: 4520 bytes 2020-08-02 16:38:30.928 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE578/3045ee2115c99d8d17a37784dfeae28ax000.xml: 31 ms 2020-08-02 16:38:30.928 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 155b3a95d5b0e4846854a9243c74ddcdx000.xml: 615 bytes 2020-08-02 16:38:30.928 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 155b3a95d5b0e4846854a9243c74ddcdx000.xml: 47 ms 2020-08-02 16:38:30.928 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7053105889eb8d37f0ff3e14e00cb32ex000.xml: 320 bytes 2020-08-02 16:38:30.928 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7053105889eb8d37f0ff3e14e00cb32ex000.xml: 62 ms 2020-08-02 16:38:30.928 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 753 bytes 2020-08-02 16:38:30.929 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 32 ms 2020-08-02 16:38:30.929 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 331 bytes 2020-08-02 16:38:30.929 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 47 ms 2020-08-02 16:38:30.929 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 32f2c03993b8d3414be5d9d714792de3x000.xml: 1027 bytes 2020-08-02 16:38:30.929 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 32f2c03993b8d3414be5d9d714792de3x000.xml: 47 ms 2020-08-02 16:38:30.929 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 13ff2225063d88f220fa6841f37c8371x000.xml: 338 bytes 2020-08-02 16:38:30.929 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 13ff2225063d88f220fa6841f37c8371x000.xml: 31 ms 2020-08-02 16:38:30.929 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 1027 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 47 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 76f3567164278171cca28fc8121461d1x000.xml: 338 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 76f3567164278171cca28fc8121461d1x000.xml: 31 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 1027 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 110 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 85126464fb11fca22421b7a21742a6adx000.xml: 338 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 85126464fb11fca22421b7a21742a6adx000.xml: 31 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d48b68b7041bde7c1484c5cb94897672x000.xml: 1027 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d48b68b7041bde7c1484c5cb94897672x000.xml: 47 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 28bb8eb241a254452f85129686b027e5x000.xml: 338 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 28bb8eb241a254452f85129686b027e5x000.xml: 47 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 1027 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 31 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2302ad75630d4b58cca278062b8b5de4x000.xml: 338 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2302ad75630d4b58cca278062b8b5de4x000.xml: 47 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 985d7fdf3a8062434d72516f5baed879x000.xml: 1027 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 985d7fdf3a8062434d72516f5baed879x000.xml: 63 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa703f2a2b1a92c90674ad451a16034cx000.xml: 338 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa703f2a2b1a92c90674ad451a16034cx000.xml: 47 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 1027 bytes 2020-08-02 16:38:30.930 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 31 ms 2020-08-02 16:38:30.930 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9bb8aeca1b234665832ec72c609610cex000.xml: 338 bytes 2020-08-02 16:38:30.931 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9bb8aeca1b234665832ec72c609610cex000.xml: 31 ms 2020-08-02 16:38:30.931 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa6f963652fadc6cdeff28b207423ccbx000.xml: 1027 bytes 2020-08-02 16:38:30.931 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa6f963652fadc6cdeff28b207423ccbx000.xml: 47 ms 2020-08-02 16:38:30.931 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2604e1b742f72c5b2358230ceb552befx000.xml: 338 bytes 2020-08-02 16:38:30.931 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2604e1b742f72c5b2358230ceb552befx000.xml: 94 ms 2020-08-02 16:38:30.931 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 87666e9540b89546868b55d119c7b029x000.xml: 1027 bytes 2020-08-02 16:38:30.932 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 87666e9540b89546868b55d119c7b029x000.xml: 47 ms 2020-08-02 16:38:30.932 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 332f16f3f32467ddbe44773d18577bccx000.xml: 338 bytes 2020-08-02 16:38:30.932 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 332f16f3f32467ddbe44773d18577bccx000.xml: 219 ms 2020-08-02 16:38:30.932 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d237963bb731cbdbc601999032c52b9fx000.xml: 1027 bytes 2020-08-02 16:38:30.932 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d237963bb731cbdbc601999032c52b9fx000.xml: 46 ms 2020-08-02 16:38:30.932 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f69ad668e95e36fbcf54a28cc37044bax000.xml: 338 bytes 2020-08-02 16:38:30.932 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f69ad668e95e36fbcf54a28cc37044bax000.xml: 63 ms 2020-08-02 16:38:30.932 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f22440c76fa98b33be36804ffa922b99x000.xml: 1027 bytes 2020-08-02 16:38:30.932 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f22440c76fa98b33be36804ffa922b99x000.xml: 47 ms 2020-08-02 16:38:30.932 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 338 bytes 2020-08-02 16:38:30.932 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 78 ms 2020-08-02 16:38:30.932 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a13db9de3890166bfd908f854b655c37x000.xml: 1027 bytes 2020-08-02 16:38:30.932 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a13db9de3890166bfd908f854b655c37x000.xml: 31 ms 2020-08-02 16:38:30.932 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 338 bytes 2020-08-02 16:38:30.932 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 94 ms 2020-08-02 16:38:30.932 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7009c81b29e1d232da816176e143ae49x000.xml: 1027 bytes 2020-08-02 16:38:30.933 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7009c81b29e1d232da816176e143ae49x000.xml: 78 ms 2020-08-02 16:38:30.933 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 338 bytes 2020-08-02 16:38:30.933 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 78 ms 2020-08-02 16:38:30.933 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6a4dbd479797e9c84995bda5021edca2x000.xml: 877 bytes 2020-08-02 16:38:30.933 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6a4dbd479797e9c84995bda5021edca2x000.xml: 31 ms 2020-08-02 16:38:30.933 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ab0f4d9f097ae5257cdc66d89cf8ae45x000.xml: 336 bytes 2020-08-02 16:38:30.933 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ab0f4d9f097ae5257cdc66d89cf8ae45x000.xml: 32 ms 2020-08-02 16:38:30.933 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 39d5f3cd129f1e56c473cd8dee55185cx000.xml: 877 bytes 2020-08-02 16:38:30.933 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 39d5f3cd129f1e56c473cd8dee55185cx000.xml: 31 ms 2020-08-02 16:38:30.933 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 241ac14c8c9e3e517ad2928dcc084babx000.xml: 336 bytes 2020-08-02 16:38:30.933 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 241ac14c8c9e3e517ad2928dcc084babx000.xml: 32 ms 2020-08-02 16:38:30.933 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1a75ff8ea76de557a60f568b54ca44c2x000.xml: 877 bytes 2020-08-02 16:38:30.933 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1a75ff8ea76de557a60f568b54ca44c2x000.xml: 31 ms 2020-08-02 16:38:30.933 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c883b31b0e1ab23671c133d6e3abdb1x000.xml: 336 bytes 2020-08-02 16:38:30.933 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c883b31b0e1ab23671c133d6e3abdb1x000.xml: 31 ms 2020-08-02 16:38:30.933 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 82685b34616812b1476c9a0d428bcdd3x000.xml: 877 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 82685b34616812b1476c9a0d428bcdd3x000.xml: 31 ms 2020-08-02 16:38:30.934 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9052615c646f80ae286397be2fdd11bex000.xml: 336 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9052615c646f80ae286397be2fdd11bex000.xml: 31 ms 2020-08-02 16:38:30.934 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 53d76a3f3f0363dc0dcec8deb5df0821x000.xml: 877 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 53d76a3f3f0363dc0dcec8deb5df0821x000.xml: 32 ms 2020-08-02 16:38:30.934 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b2532ed50924a5c705ed5fdd110900c7x000.xml: 336 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b2532ed50924a5c705ed5fdd110900c7x000.xml: 31 ms 2020-08-02 16:38:30.934 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0039a46e8d89e6f43d1bde25d14576bdx000.xml: 877 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0039a46e8d89e6f43d1bde25d14576bdx000.xml: 32 ms 2020-08-02 16:38:30.934 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d5ff1afb30e8819002be7f1cfd202b74x000.xml: 336 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d5ff1afb30e8819002be7f1cfd202b74x000.xml: 31 ms 2020-08-02 16:38:30.934 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8a7503358977cc6cff1b7375e9a71c6ax000.xml: 877 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8a7503358977cc6cff1b7375e9a71c6ax000.xml: 31 ms 2020-08-02 16:38:30.934 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c3f5abd0851d2738711cd2954c83af6ax000.xml: 336 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c3f5abd0851d2738711cd2954c83af6ax000.xml: 31 ms 2020-08-02 16:38:30.934 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e1a25cb17ed2206d1ea7816af9af6c83x000.xml: 877 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e1a25cb17ed2206d1ea7816af9af6c83x000.xml: 31 ms 2020-08-02 16:38:30.934 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fc8c952f7e10a7e0c9778a58328f738cx000.xml: 336 bytes 2020-08-02 16:38:30.934 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fc8c952f7e10a7e0c9778a58328f738cx000.xml: 32 ms 2020-08-02 16:38:30.935 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2ca6eb5ee4d7920c04f83d4f862cf679x000.xml: 1027 bytes 2020-08-02 16:38:30.935 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2ca6eb5ee4d7920c04f83d4f862cf679x000.xml: 31 ms 2020-08-02 16:38:30.935 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: dfa689c02884be7caf653783772890ebx000.xml: 336 bytes 2020-08-02 16:38:30.935 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: dfa689c02884be7caf653783772890ebx000.xml: 32 ms 2020-08-02 16:38:30.935 Update progress: [I49502] sdds.data0910.xml: found supplement IDE577 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=] 2020-08-02 16:38:30.935 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE577 LATEST path= 2020-08-02 16:38:30.935 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE577 LATEST path= 2020-08-02 16:38:30.935 Update progress: [I49502] sdds.data0910.xml: found supplement IDE578 LATEST path= baseVersion= [included from product IDE577 LATEST path=] 2020-08-02 16:38:30.935 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE578 LATEST path= 2020-08-02 16:38:30.935 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE578 LATEST path= 2020-08-02 16:38:30.935 Update progress: [I49502] sdds.data0910.xml: found supplement IDE579 LATEST path= baseVersion= [included from product IDE578 LATEST path=] 2020-08-02 16:38:30.935 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE579 LATEST path= 2020-08-02 16:38:30.935 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE579 LATEST path= 2020-08-02 16:38:30.935 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path= 2020-08-02 16:38:30.935 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 66576692d59fc6bca90a40009920c658x000.xml: 57194 bytes 2020-08-02 16:38:30.935 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 66576692d59fc6bca90a40009920c658x000.xml: 172 ms 2020-08-02 16:38:30.935 Update progress: [I19463] Product download size 172271185 bytes 2020-08-02 16:38:32.018 Option all = no 2020-08-02 16:38:32.018 Option recurse = yes 2020-08-02 16:38:32.018 Option archive = no 2020-08-02 16:38:32.018 Option service = yes 2020-08-02 16:38:32.018 Option confirm = yes 2020-08-02 16:38:32.018 Option sxl = yes 2020-08-02 16:38:32.018 Option max-data-age = 35 2020-08-02 16:38:32.018 Option vdl-logging = yes 2020-08-02 16:38:32.024 Customer ID: 094260ca9b3af99f9d4a3909fc47a743 2020-08-02 16:38:32.024 Machine ID: 3f91c280386d413b813df0001aee7f06 2020-08-02 16:38:32.032 Component SVRTcli.exe version 2.8.0 2020-08-02 16:38:32.033 Component control.dll version 2.8.0 2020-08-02 16:38:32.033 Component SVRTservice.exe version 2.8.0 2020-08-02 16:38:32.033 Component engine\osdp.dll version 1.44.1.2490 2020-08-02 16:38:32.033 Component engine\veex.dll version 3.79.0.2490 2020-08-02 16:38:32.033 Component engine\savi.dll version 9.0.20.2490 2020-08-02 16:38:32.034 Component rkdisk.dll version 1.5.33.1 2020-08-02 16:38:32.035 Version info: Product version 2.8.0 2020-08-02 16:38:32.035 Version info: Detection engine 3.79.0 2020-08-02 16:38:32.035 Version info: Detection data 5.76 2020-08-02 16:38:32.035 Version info: Build date 6/23/2020 2020-08-02 16:38:32.035 Version info: Data files added 264 2020-08-02 16:38:32.035 Version info: Last successful update (not yet updated) 2020-08-02 16:38:39.853 Update progress: [I19463] Syncing product IDE577 LATEST path= 2020-08-02 16:38:39.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: de685a791066b4c3c2aad0c0f5ee0a97x000.xml: 41318 bytes 2020-08-02 16:38:39.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: de685a791066b4c3c2aad0c0f5ee0a97x000.xml: 125 ms 2020-08-02 16:38:39.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2f2c1f0c9eca07e699c7fa437d8e2a31x000.xml: 397 bytes 2020-08-02 16:38:39.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2f2c1f0c9eca07e699c7fa437d8e2a31x000.xml: 31 ms 2020-08-02 16:38:39.853 Update progress: [I19463] Product download size 2065013 bytes 2020-08-02 16:38:40.488 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 702ee878deb92e8f0d0b72869db68896x000.xml: 4823 bytes 2020-08-02 16:38:40.488 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 702ee878deb92e8f0d0b72869db68896x000.xml: 31 ms 2020-08-02 16:38:40.571 Update progress: [I19463] Syncing product IDE578 LATEST path= 2020-08-02 16:38:40.571 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a419d1a5818942950a68d3b52ff7689ax000.xml: 24717 bytes 2020-08-02 16:38:40.571 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a419d1a5818942950a68d3b52ff7689ax000.xml: 47 ms 2020-08-02 16:38:40.571 Update progress: [I19463] Product download size 1465400 bytes 2020-08-02 16:38:40.981 Update progress: [I19463] Syncing product IDE579 LATEST path= 2020-08-02 16:38:40.981 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f430c089bf466bb070b959d79391e4c2x000.xml: 124 bytes 2020-08-02 16:38:40.981 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f430c089bf466bb070b959d79391e4c2x000.xml: 62 ms 2020-08-02 16:38:41.053 Installing updates... 2020-08-02 16:38:41.678 Error level 1 2020-08-02 16:38:51.215 Update successful 2020-08-02 16:38:57.501 Option all = no 2020-08-02 16:38:57.501 Option recurse = yes 2020-08-02 16:38:57.501 Option archive = no 2020-08-02 16:38:57.501 Option service = yes 2020-08-02 16:38:57.501 Option confirm = yes 2020-08-02 16:38:57.502 Option sxl = yes 2020-08-02 16:38:57.503 Option max-data-age = 35 2020-08-02 16:38:57.503 Option vdl-logging = yes 2020-08-02 16:38:57.509 Customer ID: 094260ca9b3af99f9d4a3909fc47a743 2020-08-02 16:38:57.509 Machine ID: 3f91c280386d413b813df0001aee7f06 2020-08-02 16:38:57.510 Component SVRTcli.exe version 2.8.0 2020-08-02 16:38:57.510 Component control.dll version 2.8.0 2020-08-02 16:38:57.510 Component SVRTservice.exe version 2.8.0 2020-08-02 16:38:57.511 Component engine\osdp.dll version 1.44.1.2490 2020-08-02 16:38:57.511 Component engine\veex.dll version 3.79.0.2490 2020-08-02 16:38:57.511 Component engine\savi.dll version 9.0.20.2490 2020-08-02 16:38:57.511 Component rkdisk.dll version 1.5.33.1 2020-08-02 16:38:57.512 Version info: Product version 2.8.0 2020-08-02 16:38:57.512 Version info: Detection engine 3.79.0 2020-08-02 16:38:57.512 Version info: Detection data 5.76 2020-08-02 16:38:57.512 Version info: Build date 6/23/2020 2020-08-02 16:38:57.512 Version info: Data files added 265 2020-08-02 16:38:57.512 Version info: Last successful update 8/2/2020 12:38:51 PM 2020-08-02 16:43:48.603 Could not open C:\hiberfil.sys 2020-08-02 16:43:54.563 Could not open C:\pagefile.sys 2020-08-02 16:46:50.533 Could not open C:\swapfile.sys 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597dd98-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597ddb1-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597dddb-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de03-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de15-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de21-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de31-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de40-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de57-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de69-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de7a-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de89-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597de98-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597dead-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597debc-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{0597deca-d4d9-11ea-81aa-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{11c05ae0-d388-11ea-819d-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{208bdb13-d09b-11ea-8198-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{246ab19c-cb8c-11ea-8197-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{48f34dfe-d4db-11ea-81ab-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{6f73a0d3-d45f-11ea-81a6-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{6f73aa36-d45f-11ea-81a6-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{6f73aa4a-d45f-11ea-81a6-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{6f73aa5d-d45f-11ea-81a6-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{95d52300-d4d7-11ea-81a7-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{a0c68492-c8a3-11ea-8196-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{c06ba714-d42f-11ea-81a5-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{d409f21d-d2e3-11ea-819b-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{d409f28e-d2e3-11ea-819b-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{d409fd52-d2e3-11ea-819b-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{e13dffe1-d4dc-11ea-81ac-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{e13e0016-d4dc-11ea-81ac-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{fbc1ab54-d4d7-11ea-81a8-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{fbc1ab90-d4d7-11ea-81a8-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:46:51.001 Could not open C:\System Volume Information\{fbc1abcc-d4d7-11ea-81a8-e86f38d7ad9a}{3808876b-c176-4e48-b7ae-04046e6cc752} 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\AD2F1837.HPJumpStarts_v10z8vjag6ke6\HP.JumpStarts.exe 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\AppleInc.Defaults.exe 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\AppleInc.iTunes_nzyj5cx40ttqa\AppleInc.Defaults.exe 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\AppleInc.iTunes_nzyj5cx40ttqa\AppleInc.MDCrashReportTool.exe 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\AppleInc.iTunes_nzyj5cx40ttqa\iTunes.exe 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\AppleInc.MDCrashReportTool.exe 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\HP.JumpStarts.exe 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\iTunes.exe 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python.exe 2020-08-02 16:48:47.010 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.exe 2020-08-02 16:48:47.025 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe 2020-08-02 16:48:47.025 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\Microsoft.SkypeApp_kzf8qxf38zg5c\Skype.exe 2020-08-02 16:48:47.025 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe 2020-08-02 16:48:47.025 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\python.exe 2020-08-02 16:48:47.025 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\python3.exe 2020-08-02 16:48:47.025 Could not open C:\Users\hidde\AppData\Local\Microsoft\WindowsApps\Skype.exe 2020-08-02 16:53:08.437 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb 2020-08-02 16:53:08.437 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb 2020-08-02 16:53:09.734 Could not open C:\Windows\System32\config\BBI 2020-08-02 17:06:14.209 Error level 0 2020-08-02 17:26:59.856 Scan completed. 2020-08-02 17:26:59.856 ------------------------------------------------------------
  3. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 8/1/20 Scan Time: 9:20 PM Log File: 6bc34fc6-d45e-11ea-b927-e86f38d7ad9a.json -Software Information- Version: 4.1.2.73 Components Version: 1.0.990 Update Package Version: 1.0.27799 License: Trial -System Information- OS: Windows 10 (Build 18362.959) CPU: x64 File System: NTFS User: LAPTOP-HEHR1P5A\hidde -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 350681 Threats Detected: 0 Threats Quarantined: 0 Time Elapsed: 2 min, 50 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) # ------------------------------- # Malwarebytes AdwCleaner 8.0.7.0 # ------------------------------- # Build: 07-22-2020 # Database: 2020-07-20.1 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Clean # ------------------------------- # Start: 08-01-2020 # Duration: 00:00:02 # OS: Windows 10 Home # Cleaned: 22 # Failed: 0 ***** [ Services ] ***** No malicious services cleaned. ***** [ Folders ] ***** No malicious folders cleaned. ***** [ Files ] ***** No malicious files cleaned. ***** [ DLL ] ***** No malicious DLLs cleaned. ***** [ WMI ] ***** No malicious WMI cleaned. ***** [ Shortcuts ] ***** No malicious shortcuts cleaned. ***** [ Tasks ] ***** No malicious tasks cleaned. ***** [ Registry ] ***** No malicious registry entries cleaned. ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries cleaned. ***** [ Chromium URLs ] ***** No malicious Chromium URLs cleaned. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries cleaned. ***** [ Firefox URLs ] ***** No malicious Firefox URLs cleaned. ***** [ Hosts File Entries ] ***** No malicious hosts file entries cleaned. ***** [ Preinstalled Software ] ***** Deleted Preinstalled.HPAudioSwitch Folder C:\Program Files (x86)\HP\HPAUDIOSWITCH Deleted Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4D89A4FF-B039-4DC8-826A-EFB0DF1DFC37} Deleted Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPAudioSwitch Deleted Preinstalled.HPAudioSwitch Task C:\Windows\System32\Tasks\HPAUDIOSWITCH Deleted Preinstalled.HPCleanFLC Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|HPSEU_Host_Launcher Deleted Preinstalled.HPCleanFLC Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Run|HPSEU_Host_Launcher Deleted Preinstalled.HPRegistrationService Folder C:\ProgramData\HP\HP REGISTRATION SERVICE Deleted Preinstalled.HPSupportAssistant Folder C:\HP\SUPPORT Deleted Preinstalled.HPSupportAssistant Folder C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK Deleted Preinstalled.HPSupportAssistant Folder C:\Users\hidde\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK Deleted Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} Deleted Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} Deleted Preinstalled.HPSureConnect Folder C:\Program Files\HPCOMMRECOVERY Deleted Preinstalled.HPSureConnect Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6468C4A5-E47E-405F-B675-A70A70983EA6} Deleted Preinstalled.HPTouchpointAnalyticsClient Folder C:\ProgramData\HP\HP TOUCHPOINT ANALYTICS CLIENT Deleted Preinstalled.HPTouchpointAnalyticsClient Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F} Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDTANGENT GAMES Deleted Preinstalled.WildTangentGamesBundle Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WILDTANGENT GAMES ************************* [+] Delete Tracing Keys [+] Reset Winsock ************************* AdwCleaner[S00].txt - [4653 octets] - [30/07/2020 20:07:51] AdwCleaner[S01].txt - [4714 octets] - [30/07/2020 20:17:55] AdwCleaner[S02].txt - [4775 octets] - [30/07/2020 23:57:01] AdwCleaner[S03].txt - [4167 octets] - [01/08/2020 21:25:40] AdwCleaner[S04].txt - [4228 octets] - [01/08/2020 21:27:10] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C04].txt ########## Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-07-2020 Ran by hidde (administrator) on LAPTOP-HEHR1P5A (HP HP Laptop 15-dy1xxx) (01-08-2020 21:30:30) Running from C:\Users\hidde\OneDrive\Documents\_virus\2 Loaded Profiles: hidde Platform: Windows 10 Home Version 1903 18362.959 (X64) Language: English (United States) Default browser: Edge Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Adlice -> ) C:\Program Files\RogueKiller\RogueKiller64.exe (Adlice -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (ELAN Microelectronics Corporation -> ) C:\Windows\System32\ELAN_MOC_IAP_Service.exe (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe (Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\UnHackMe\hackmon.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_2576de2e12637a57\x64\TouchpointAnalyticsClient.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_2576de2e12637a57\x64\TouchpointAnalyticsClientService.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\AppHelperCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\NetworkCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\SysInfoCap.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_31a8dbbf39dcdc3b\jhi_service.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_3ef70b9d5cc0699f\LMS.exe (Intel(R) pGFX 2020 -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_dc7a0fe3ada1cbf5\OneApp.IGCC.WinService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_dc2a57d591329a30\igfxCUIServiceN.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_dc2a57d591329a30\igfxEMN.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ada2367baaae74c0\IntelCpHDCPSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6ca78a08b838e305\RstMwService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\hidde\AppData\Local\Microsoft\OneDrive\20.124.0621.0006\FileCoAuth.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\hidde\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (Safer Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe (Support.com Inc -> SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SurfRight B.V. -> SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe (Zemana D.O.O. Sarajevo -> Zemana Ltd.) C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\windows\System32\RtkAudUService64.exe [881168 2019-07-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-14] (Logitech -> Logitech, Inc.) HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [165120 2019-10-16] (Panda Security S.L. -> Panda Security, S.L.) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) HKU\S-1-5-21-3860533627-3667802152-3241097522-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [28990136 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3860533627-3667802152-3241097522-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [9230256 2020-03-13] (Support.com Inc -> SUPERAntiSpyware) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-27] (Google LLC -> Google LLC) BootExecute: autocheck autochk * sdnclean64.exe ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {07200EBA-5B0D-4800-8C90-9963A32A5C5E} - System32\Tasks\AMSkipUAC => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [658808 2020-07-29] (Zemana D.O.O. Sarajevo -> Zemana Ltd.) Task: {217481E7-1D49-44AB-81A8-4AF16EABC4F2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1099640 2020-02-23] (HP Inc. -> HP Inc.) Task: {26E4B0C6-F2E7-4223-9D53-BA828EB7E31D} - System32\Tasks\SUPERAntiSpyware Scheduled Task c50424c8-0df0-49a3-8d10-2ea52919f08a => C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944 2013-11-07] (SUPERAntiSpyware.com -> SUPERAdBlocker.com) Task: {3A72ED7D-0BA0-4575-BEAA-46B45A5DFCCB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd) Task: {3AC6B6DC-BEB6-48B3-BBA5-222F966FF8E7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5753752 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed] Task: {443018E2-72A8-4E18-AB95-F2758C366F54} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6193080 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed] Task: {44D895C1-68C8-4B3A-A1B3-3E716987667F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [147320 2020-02-23] (HP Inc. -> HP Inc.) Task: {4E940697-10DA-4B30-9469-AE6EF52D9D25} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24584376 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd) Task: {5100A477-348F-48CA-A0F9-BA0C7018AC24} - no filepath Task: {516A52FF-7751-4460-ABE6-2B2B1678A37F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation) Task: {5EDB0A0A-DF8B-4D3C-ADE5-602D6086FCCF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [170856 2020-07-20] (Microsoft Corporation -> Microsoft Corporation) Task: {5F6F07BE-776D-4212-BE10-11DBA5CB9F9A} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [658808 2020-07-29] (Zemana D.O.O. Sarajevo -> Zemana Ltd.) Task: {89193CA6-895D-4C3F-BD2F-23F4BD26541B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1099640 2020-02-23] (HP Inc. -> HP Inc.) Task: {8EE63345-02D6-40C1-B201-431117AE4169} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [4596296 2020-07-31] (Greatis Software LLC -> Greatis Software) Task: {B047202B-46E7-41EA-B438-0128BBEF7FC3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [170856 2020-07-20] (Microsoft Corporation -> Microsoft Corporation) Task: {B8AC5AEA-266E-46CD-BC8C-848BB041DA9D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation) Task: {C13FAE44-C8D4-45B6-B73F-179AA692A344} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [4747720 2014-06-27] (Safer Networking Ltd. -> Safer-Networking Ltd.) Task: {D5528AAC-6C81-402B-973A-D14CFF35A805} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-01] (Google LLC -> Google LLC) Task: {D7FF19CE-FA5C-47AC-93BB-02DBD9E5C390} - no filepath Task: {DD7D44D3-BC80-4A62-910A-69C707C31BC4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-01] (Google LLC -> Google LLC) Task: {DEE19C57-0AE8-4D5A-B30F-684B15AB836D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.) Task: {DF59B807-9ACD-4C7C-AF94-907D1921F1E5} - no filepath Task: {E3669076-4ABC-4DCA-BBCA-B473EFB77845} - System32\Tasks\SUPERAntiSpyware Scheduled Task b790e487-16d4-4701-ab4e-2feaaead77e9 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944 2013-11-07] (SUPERAntiSpyware.com -> SUPERAdBlocker.com) Task: {F44F82F5-EA1B-49B7-A29B-6783745C3320} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\windows\explorer.exe Task: C:\windows\Tasks\SUPERAntiSpyware Scheduled Task b790e487-16d4-4701-ab4e-2feaaead77e9.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe Task: C:\windows\Tasks\SUPERAntiSpyware Scheduled Task c50424c8-0df0-49a3-8d10-2ea52919f08a.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: Hosts file not detected in the default directory Tcpip\Parameters: [DhcpNameServer] 209.18.47.62 209.18.47.61 Tcpip\..\Interfaces\{65d24db0-0750-4d94-a25d-9f88c21760d5}: [DhcpNameServer] 40.23.1.12 Tcpip\..\Interfaces\{89c8c1ce-dd1e-4220-a883-1a22d6d756da}: [DhcpNameServer] 209.18.47.62 209.18.47.61 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-3860533627-3667802152-3241097522-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE SearchScopes: HKLM -> {FDE4E059-6C33-4FC6-96E1-364BAD9D9DC1} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {FDE4E059-6C33-4FC6-96E1-364BAD9D9DC1} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKU\S-1-5-21-3860533627-3667802152-3241097522-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04 SearchScopes: HKU\S-1-5-21-3860533627-3667802152-3241097522-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04 SearchScopes: HKU\S-1-5-21-3860533627-3667802152-3241097522-1001 -> {FDE4E059-6C33-4FC6-96E1-364BAD9D9DC1} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms} BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.50\BHO\ie_to_edge_bho_64.dll [2020-07-31] (Microsoft Corporation -> Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.50\BHO\ie_to_edge_bho.dll [2020-07-31] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-02-24] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation) Edge: ====== DownloadDir: C:\Users\hidde\Downloads Edge DefaultProfile: Default Edge Profile: C:\Users\hidde\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-01] Edge DownloadDir: C:\Users\hidde\Downloads Edge StartupUrls: Default -> "hxxps://www.google.com/?gws_rd=ssl" FireFox: ======== FF ProfilePath: C:\Users\hidde\AppData\Roaming\kompozer.net\KompoZer\Profiles\nsu2a9ko.default [2020-07-02] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-02-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-02-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default [2020-08-01] CHR Extension: (Slides) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-01] CHR Extension: (Docs) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-01] CHR Extension: (Google Drive) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-03-01] CHR Extension: (YouTube) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-01] CHR Extension: (Adobe Acrobat) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-07-30] CHR Extension: (Sheets) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-01] CHR Extension: (Google Docs Offline) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-27] CHR Extension: (AdBlock — best ad blocker) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-07-31] CHR Extension: (Chrome Web Store Payments) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-01] CHR Extension: (Gmail) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-03-01] CHR Extension: (Chrome Media Router) - C:\Users\hidde\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-20] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-30] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10574712 2020-07-02] (Microsoft Corporation -> Microsoft Corporation) S4 ELANFPService; C:\windows\system32\ELANFPService.exe [193264 2019-10-11] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) R2 ELAN_MOC_IAP_Service; C:\windows\System32\ELAN_MOC_IAP_Service.exe [41512 2020-04-28] (ELAN Microelectronics Corporation -> ) R2 ETDService; C:\windows\System32\ETDService.exe [196032 2019-07-30] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [162392 2020-07-31] (SurfRight B.V. -> SurfRight B.V.) R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\AppHelperCap.exe [613136 2020-06-15] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\NetworkCap.exe [612112 2020-06-15] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f81da7794b7c4a41\x64\SysInfoCap.exe [612112 2020-06-15] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_2576de2e12637a57\x64\TouchpointAnalyticsClientService.exe [445184 2020-06-14] (HP Inc. -> HP Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-30] (Malwarebytes Inc -> Malwarebytes) R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [109536 2019-10-16] (Panda Security S.L. -> Panda Security, S.L.) S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> ) R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.) R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [189448 2018-07-25] (Panda Security S.L. -> Panda Security S.L.) R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48784 2019-10-16] (Panda Security S.L. -> Panda Security, S.L.) R2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13587000 2020-07-27] (Adlice -> ) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed] S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed] R2 SECOMNService; C:\windows\System32\SECOMN64.exe [169680 2019-07-01] (Sound Research Corporation -> Sound Research, Corp.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X] S2 WildTangentHelper; "C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe" [X] ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 aftap0901; C:\windows\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project) R1 amsdk; C:\windows\system32\drivers\amsdk.sys [232792 2020-07-31] (Zemana D.O.O. Sarajevo -> Copyright 2018.) S3 AmUStor; C:\windows\system32\drivers\AmUStorU.sys [127936 2019-07-02] (Alcorlink Corp. -> ) S3 AppleKmdfFilter; C:\windows\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 BthA2dp; C:\windows\System32\drivers\BthA2dp.sys [231936 2020-02-24] (Microsoft Corporation) [File not signed] R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [153312 2020-07-30] (Malwarebytes Corporation -> Malwarebytes) R3 ETDHCF; C:\windows\System32\drivers\ETDHCF.sys [29632 2019-07-30] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.) R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [216056 2020-08-01] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [19912 2020-07-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [197264 2020-08-01] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [73368 2020-08-01] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-01] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [131232 2020-08-01] (Malwarebytes Inc -> Malwarebytes) R3 MEIx64; C:\windows\System32\DriverStore\FileRepository\heci.inf_amd64_d01e7c2e2b4c1b72\x64\TeeDriverW10x64.sys [298480 2020-01-12] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) R1 NNSALPC; C:\windows\system32\DRIVERS\NNSALPC.sys [111384 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSDNS; C:\windows\system32\DRIVERS\NNSDNS.sys [104728 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTP; C:\windows\system32\DRIVERS\NNSHTTP.sys [211736 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTPS; C:\windows\system32\DRIVERS\NNSHTTPS.sys [125720 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSIDS; C:\windows\system32\DRIVERS\NNSIDS.sys [132888 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSNAHSL; C:\windows\system32\DRIVERS\NNSNAHSL.sys [95472 2018-07-16] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPICC; C:\windows\system32\DRIVERS\NNSPICC.sys [149784 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPIHSW; C:\windows\system32\DRIVERS\NNSPIHSW.sys [95000 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPOP3; C:\windows\system32\DRIVERS\NNSPOP3.sys [135448 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPROT; C:\windows\system32\DRIVERS\NNSPROT.sys [346392 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPRV; C:\windows\system32\DRIVERS\NNSPRV.sys [290584 2019-05-30] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSMTP; C:\windows\system32\DRIVERS\NNSSMTP.sys [123160 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSTRM; C:\windows\system32\DRIVERS\NNSSTRM.sys [295192 2019-05-30] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSTLSC; C:\windows\system32\DRIVERS\NNSTLSC.sys [132376 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINAflt; C:\windows\system32\DRIVERS\PSINAflt.sys [198424 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) S0 psinelam; C:\windows\System32\DRIVERS\psinelam.sys [21952 2019-01-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.) R2 PSINFile; C:\windows\System32\DRIVERS\PSINFile.sys [160536 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) R1 PSINKNC; C:\windows\system32\DRIVERS\PSINKNC.sys [215320 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProc; C:\windows\System32\DRIVERS\PSINProc.sys [147224 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProt; C:\windows\system32\DRIVERS\PSINProt.sys [159512 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINReg; C:\windows\system32\DRIVERS\PSINReg.sys [129304 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) U3 PSKMAD; C:\windows\System32\DRIVERS\PSKMAD.sys [72648 2017-05-22] (Panda Security S.L. -> Panda Security, S.L.) R3 PTPFilter; C:\windows\System32\drivers\PTPFilter.sys [46232 2019-07-30] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.) R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2020-08-01] (Adlice -> ) S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\windows\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP) R1 ZAM_Guard; C:\windows\System32\drivers\zamguard64.sys [203680 2020-07-31] (Zemana Ltd. -> Zemana Ltd.) S3 mfeavfk01; \Device\mfeavfk01.sys [X] U0 Partizan; system32\drivers\Partizan.sys [X] S3 WinRing0_1_2_0; \??\C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\OpenHardwareMonitorLib.sys [X] S1 ZAM; \??\C:\windows\System32\drivers\zam64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) =================== (If an entry is included in the fixlist, the file/folder will be moved.) 2020-08-01 21:28 - 2020-08-01 21:28 - 000216056 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys 2020-08-01 21:28 - 2020-08-01 21:28 - 000197264 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys 2020-08-01 21:28 - 2020-08-01 21:28 - 000131232 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys 2020-08-01 21:28 - 2020-08-01 21:28 - 000073368 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys 2020-08-01 15:42 - 2020-08-01 15:42 - 000325598 _____ C:\TDSSKiller.3.1.0.28_01.08.2020_15.42.09_log.txt 2020-08-01 15:31 - 2020-08-01 21:28 - 000038032 _____ C:\windows\system32\Drivers\truesight.sys 2020-08-01 15:30 - 2020-08-01 15:46 - 000376968 _____ C:\windows\ntbtlog.txt 2020-08-01 15:30 - 2020-08-01 15:30 - 000000214 _____ C:\windows\Tasks\CreateExplorerShellUnelevatedTask.job 2020-08-01 15:27 - 2020-08-01 15:27 - 005054744 _____ (AO Kaspersky Lab) C:\Users\hidde\Downloads\tdsskiller (1).exe 2020-08-01 15:27 - 2020-08-01 15:27 - 000006040 _____ C:\TDSSKiller.3.1.0.28_01.08.2020_15.27.13_log.txt 2020-08-01 15:12 - 2020-08-01 15:13 - 000004224 _____ C:\Users\hidde\Desktop\Rkill.txt 2020-08-01 15:12 - 2020-08-01 15:12 - 000000000 ____D C:\Users\hidde\Desktop\rkill 2020-08-01 10:33 - 2020-08-01 11:08 - 000000280 _____ C:\Users\hidde\OneDrive\Documents\pc.txt 2020-08-01 09:57 - 2019-03-19 00:49 - 000000824 _____ C:\windows\system32\Drivers\etc\hosts.old 2020-08-01 09:47 - 2020-08-01 19:19 - 000000000 ____D C:\Users\hidde\OneDrive\Documents\RegRun2 2020-08-01 09:47 - 2020-08-01 15:50 - 000000000 ____D C:\Program Files (x86)\UnHackMe 2020-08-01 09:47 - 2020-08-01 09:47 - 000003420 _____ C:\windows\system32\Tasks\UnHackMe Task Scheduler 2020-08-01 09:47 - 2020-08-01 09:47 - 000001047 _____ C:\Users\hidde\Desktop\UnHackMe.lnk 2020-08-01 09:47 - 2020-08-01 09:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UnHackMe 2020-08-01 09:47 - 2020-06-23 14:24 - 000016184 _____ (Greatis Software, LLC.) C:\windows\SysWOW64\Drivers\UnHackMeDrv.sys 2020-08-01 09:47 - 2015-12-28 11:32 - 000049968 _____ (Greatis Software) C:\windows\system32\partizan.exe 2020-08-01 09:44 - 2020-08-01 09:45 - 025427826 _____ C:\Users\hidde\Downloads\unhackme-beta.zip 2020-07-31 21:25 - 2020-08-01 15:27 - 000000542 _____ C:\windows\Tasks\SUPERAntiSpyware Scheduled Task c50424c8-0df0-49a3-8d10-2ea52919f08a.job 2020-07-31 21:25 - 2020-08-01 15:27 - 000000542 _____ C:\windows\Tasks\SUPERAntiSpyware Scheduled Task b790e487-16d4-4701-ab4e-2feaaead77e9.job 2020-07-31 21:25 - 2020-07-31 21:25 - 044996336 _____ (SUPERAntiSpyware) C:\Users\hidde\Downloads\SUPERAntiSpyware.exe 2020-07-31 21:25 - 2020-07-31 21:25 - 000003782 _____ C:\windows\system32\Tasks\SUPERAntiSpyware Scheduled Task b790e487-16d4-4701-ab4e-2feaaead77e9 2020-07-31 21:25 - 2020-07-31 21:25 - 000003700 _____ C:\windows\system32\Tasks\SUPERAntiSpyware Scheduled Task c50424c8-0df0-49a3-8d10-2ea52919f08a 2020-07-31 21:25 - 2020-07-31 21:25 - 000001856 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk 2020-07-31 21:25 - 2020-07-31 21:25 - 000001856 _____ C:\ProgramData\Desktop\SUPERAntiSpyware Free Edition.lnk 2020-07-31 21:25 - 2020-07-31 21:25 - 000000000 ____D C:\Users\hidde\AppData\Roaming\SUPERAntiSpyware.com 2020-07-31 21:25 - 2020-07-31 21:25 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com 2020-07-31 21:25 - 2020-07-31 21:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware 2020-07-31 21:25 - 2020-07-31 21:25 - 000000000 ____D C:\Program Files\SUPERAntiSpyware 2020-07-31 20:58 - 2020-07-31 20:59 - 006455520 _____ (EnigmaSoft Limited) C:\Users\hidde\Downloads\SpyHunter-Installer.exe 2020-07-31 20:47 - 2020-07-31 20:47 - 000000000 ____D C:\ProgramData\WildTangent 2020-07-31 20:21 - 2020-07-31 20:21 - 000001973 _____ C:\Users\Public\Desktop\HitmanPro.lnk 2020-07-31 20:21 - 2020-07-31 20:21 - 000001973 _____ C:\ProgramData\Desktop\HitmanPro.lnk 2020-07-31 20:21 - 2020-07-31 20:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro 2020-07-31 20:21 - 2020-07-31 20:21 - 000000000 ____D C:\Program Files\HitmanPro 2020-07-31 20:20 - 2020-07-31 20:32 - 000000000 ____D C:\ProgramData\HitmanPro 2020-07-31 20:20 - 2020-07-31 20:20 - 011429976 _____ (SurfRight B.V.) C:\Users\hidde\Downloads\HitmanPro_x64.exe 2020-07-31 00:23 - 2020-07-31 00:23 - 000030852 _____ C:\Users\hidde\Downloads\Addition.txt 2020-07-31 00:22 - 2020-07-31 00:23 - 000107250 _____ C:\Users\hidde\Downloads\FRST.txt 2020-07-31 00:21 - 2020-08-01 21:30 - 000000000 ____D C:\FRST 2020-07-31 00:21 - 2020-07-31 00:21 - 000000000 ____D C:\Users\hidde\Downloads\FRST-OlderVersion 2020-07-31 00:20 - 2020-07-31 00:21 - 002296832 _____ (Farbar) C:\Users\hidde\Downloads\FRST64.exe 2020-07-31 00:17 - 2020-07-31 00:17 - 000000000 ____D C:\ProgramData\Emsisoft 2020-07-31 00:16 - 2020-07-31 00:22 - 000000000 ____D C:\EEK 2020-07-31 00:15 - 2020-07-31 00:16 - 322001728 _____ C:\Users\hidde\Downloads\EmsisoftEmergencyKit.exe 2020-07-31 00:11 - 2020-07-31 00:11 - 000002680 _____ C:\windows\system32\Tasks\AMSkipUAC 2020-07-31 00:08 - 2020-08-01 21:28 - 000000000 ____D C:\Users\hidde\AppData\Local\AMSDK 2020-07-31 00:08 - 2020-07-31 00:12 - 000003558 _____ C:\windows\system32\Tasks\AMHelper 2020-07-31 00:08 - 2020-07-31 00:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware 2020-07-31 00:08 - 2020-07-31 00:08 - 000232792 _____ (Copyright 2018.) C:\windows\system32\Drivers\amsdk.sys 2020-07-31 00:08 - 2020-07-31 00:08 - 000000000 ____D C:\Program Files (x86)\Zemana 2020-07-31 00:07 - 2020-08-01 21:31 - 000163758 _____ C:\windows\ZAM.krnl.trace 2020-07-31 00:07 - 2020-08-01 21:30 - 000038760 _____ C:\windows\ZAM_Guard.krnl.trace 2020-07-31 00:07 - 2020-07-31 00:12 - 000001340 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk 2020-07-31 00:07 - 2020-07-31 00:12 - 000001340 _____ C:\ProgramData\Desktop\Zemana AntiMalware.lnk 2020-07-31 00:07 - 2020-07-31 00:08 - 000000000 ____D C:\Users\hidde\AppData\Local\Zemana 2020-07-31 00:07 - 2020-07-31 00:07 - 005765792 _____ (Zemana Ltd. ) C:\Users\hidde\Downloads\Zemana.AntiMalware.Setup.exe 2020-07-31 00:07 - 2020-07-31 00:07 - 000203680 _____ (Zemana Ltd.) C:\windows\system32\Drivers\zamguard64.sys 2020-07-30 20:56 - 2020-08-01 21:24 - 000000000 ____D C:\Users\hidde\OneDrive\Documents\_virus 2020-07-30 20:53 - 2020-08-01 15:47 - 000248968 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys 2020-07-30 20:53 - 2020-07-30 20:53 - 000019912 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamElam.sys 2020-07-30 20:52 - 2020-07-30 20:52 - 002025944 _____ (Malwarebytes) C:\Users\hidde\Downloads\MBSetup.exe 2020-07-30 20:37 - 2020-07-30 20:37 - 000000906 _____ C:\Users\Public\Desktop\RogueKiller.lnk 2020-07-30 20:37 - 2020-07-30 20:37 - 000000906 _____ C:\ProgramData\Desktop\RogueKiller.lnk 2020-07-30 20:37 - 2020-07-30 20:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller 2020-07-30 20:37 - 2020-07-30 20:37 - 000000000 ____D C:\Program Files\RogueKiller 2020-07-30 20:36 - 2020-07-30 20:42 - 000000000 ____D C:\ProgramData\RogueKiller 2020-07-30 20:36 - 2020-07-30 20:36 - 040314800 _____ (Adlice Software ) C:\Users\hidde\Downloads\RogueKiller_setup.exe 2020-07-30 20:07 - 2020-08-01 21:27 - 000000000 ____D C:\AdwCleaner 2020-07-30 19:55 - 2020-07-30 20:54 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-07-30 19:55 - 2020-07-30 20:54 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-07-30 19:55 - 2020-07-30 20:54 - 000002028 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2020-07-30 19:55 - 2020-07-30 20:53 - 000153312 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys 2020-07-30 19:55 - 2020-07-30 19:55 - 001988280 _____ (Malwarebytes) C:\Users\hidde\Downloads\MBSetup-009996.009996-consumer.exe 2020-07-30 19:55 - 2020-07-30 19:55 - 000000000 ____D C:\Users\hidde\AppData\Local\mbam 2020-07-30 19:55 - 2020-07-30 19:55 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-07-30 19:55 - 2020-07-30 19:55 - 000000000 ____D C:\Program Files\Malwarebytes 2020-07-30 19:55 - 2020-07-30 19:55 - 000000000 ____D C:\Malwarebytes 2020-07-28 20:51 - 2020-07-28 20:51 - 000102037 _____ C:\Users\hidde\OneDrive\Documents\WISH.xcf 2020-07-28 20:51 - 2020-07-28 20:51 - 000008654 _____ C:\Users\hidde\AppData\Local\recently-used.xbel 2020-07-24 19:31 - 2020-07-29 16:06 - 000000000 ____D C:\Users\hidde\AppData\LocalLow\Adobe 2020-07-23 18:23 - 2020-07-24 19:32 - 000004562 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task 2020-07-23 18:23 - 2020-07-24 19:32 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-07-23 18:23 - 2020-07-23 18:23 - 000002131 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2020-07-23 18:23 - 2020-07-23 18:23 - 000002131 _____ C:\ProgramData\Desktop\Acrobat Reader DC.lnk 2020-07-23 18:22 - 2020-07-24 19:31 - 000000000 ____D C:\ProgramData\Adobe 2020-07-23 18:22 - 2020-07-23 18:22 - 000000000 ____D C:\Program Files (x86)\Adobe 2020-07-23 18:21 - 2020-07-24 19:31 - 000000000 ____D C:\Users\hidde\AppData\Local\Adobe 2020-07-20 13:57 - 2020-07-20 13:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2020-07-16 19:11 - 2020-07-16 19:11 - 000000000 ____D C:\Users\hidde\Apple 2020-07-16 19:09 - 2020-07-16 19:09 - 000000000 ____D C:\ProgramData\Apple Computer 2020-07-16 19:09 - 2020-07-16 19:09 - 000000000 ____D C:\ProgramData\Apple 2020-07-16 15:23 - 2020-07-16 15:23 - 000000000 ____D C:\Users\hidde\AppData\Roaming\Skype 2020-07-14 19:58 - 2020-07-14 19:58 - 025902592 _____ (Microsoft Corporation) C:\windows\system32\edgehtml.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 025444352 _____ (Microsoft Corporation) C:\windows\system32\Hydrogen.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 022641664 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 019851776 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 019812864 _____ (Microsoft Corporation) C:\windows\system32\HologramWorld.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 018031104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 017792512 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 014820352 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 009931576 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 008015872 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 007917408 _____ (Microsoft Corporation) C:\windows\system32\windows.storage.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 007850288 _____ (Microsoft Corporation) C:\windows\system32\OneCoreUAPCommonProxyStub.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 007823912 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 007604584 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Protection.PlayReady.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 007297536 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 007269376 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 007268640 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 007012864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 006523856 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 006437376 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 006292992 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 006233080 _____ (Microsoft Corporation) C:\windows\system32\StartTileData.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 006169088 _____ (Microsoft Corporation) C:\windows\system32\twinui.pcshell.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 006089512 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.storage.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 005946368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 005765648 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 005111808 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 005099384 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 004625192 _____ (Microsoft Corporation) C:\windows\explorer.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 004565264 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 004129424 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 004014592 _____ (Microsoft Corporation) C:\windows\system32\Microsoft.Bluetooth.Service.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 003974368 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 003800576 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 003748352 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_nt.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 003743048 _____ (Microsoft Corporation) C:\windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 003727360 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys 2020-07-14 19:58 - 2020-07-14 19:58 - 003712000 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 003084800 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002799104 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32kfull.sys 2020-07-14 19:58 - 2020-07-14 19:58 - 002768984 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002737664 _____ (Microsoft Corporation) C:\windows\system32\WebRuntimeManager.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002716672 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys 2020-07-14 19:58 - 2020-07-14 19:58 - 002576896 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002552120 _____ (Microsoft Corporation) C:\windows\system32\UpdateAgent.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002505496 _____ (Microsoft Corporation) C:\windows\system32\twinapi.appcore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002494744 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002467840 _____ (Microsoft Corporation) C:\windows\system32\InstallService.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002448712 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002357248 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Perception.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002285056 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.3D.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002264064 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Bluetooth.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002237096 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002161664 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.PointOfService.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002087168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002074112 _____ (Microsoft Corporation) C:\windows\system32\ISM.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 002060288 _____ (Microsoft Corporation) C:\windows\system32\cdprt.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001991592 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.appcore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001952880 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001946144 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001918464 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001885184 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001877504 _____ (Microsoft Corporation) C:\windows\system32\LocationFramework.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001827328 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Speech.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001821696 _____ (Microsoft Corporation) C:\windows\system32\CoreShell.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001787392 _____ (Microsoft Corporation) C:\windows\system32\Windows.Globalization.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001764336 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001745728 _____ (Microsoft Corporation) C:\windows\system32\ContentDeliveryManager.Utilities.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001743680 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001737728 _____ (Microsoft Corporation) C:\windows\SysWOW64\InstallService.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001723392 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001697792 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001665728 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001658368 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001656904 _____ (Microsoft Corporation) C:\windows\system32\user32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001655472 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001654304 _____ (Microsoft Corporation) C:\windows\system32\gdi32full.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001640448 _____ (Microsoft Corporation) C:\windows\system32\TaskFlowDataEngine.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001612800 _____ (Microsoft Corporation) C:\windows\system32\wpncore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001610240 _____ (Microsoft Corporation) C:\windows\system32\HologramCompositor.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001604608 _____ (Microsoft Corporation) C:\windows\system32\dosvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001581568 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Perception.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001550336 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.3D.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001540608 _____ (Microsoft Corporation) C:\windows\system32\WindowManagement.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001512960 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdprt.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001500160 _____ (Microsoft Corporation) C:\windows\system32\TokenBroker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001495040 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Bluetooth.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001486848 _____ (Microsoft Corporation) C:\windows\system32\usocoreworker.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 001484384 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001477632 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001463808 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.PointOfService.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001458688 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001420328 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32full.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001397568 _____ (Microsoft Corporation) C:\windows\system32\hvix64.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 001392128 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.FaceAnalysis.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001385696 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001374208 _____ (Microsoft Corporation) C:\windows\system32\NotificationController.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001371136 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001357824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Globalization.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001346048 _____ (Microsoft Corporation) C:\windows\system32\HoloSI.PCShell.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001344512 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Audio.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001337856 _____ (Microsoft Corporation) C:\windows\system32\wpnapps.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001335296 _____ (Microsoft Corporation) C:\windows\system32\MiracastReceiver.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001312256 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001307136 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Audio.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001306944 _____ (Microsoft Corporation) C:\windows\SysWOW64\ContentDeliveryManager.Utilities.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001290192 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Sensors.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001284608 _____ (Microsoft Corporation) C:\windows\system32\werconcpl.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001284608 _____ (Microsoft Corporation) C:\windows\system32\usermgr.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001271296 _____ (Microsoft Corporation) C:\windows\system32\SEMgrSvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001265152 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Speech.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001247232 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBroker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001223168 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.FaceAnalysis.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001195008 _____ (Microsoft Corporation) C:\windows\system32\sdengin2.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001183744 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Web.Core.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001159168 _____ (Microsoft Corporation) C:\windows\system32\MbaeApiPublic.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001151816 _____ (Microsoft Corporation) C:\windows\system32\mfmpeg2srcsnk.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001151304 _____ (Microsoft Corporation) C:\windows\system32\InputHost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001149712 _____ (Microsoft Corporation) C:\windows\system32\ApplyTrustOffline.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 001125376 _____ (Microsoft Corporation) C:\windows\system32\CBDHSvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001121792 _____ (Microsoft Corporation) C:\windows\system32\MrmCoreR.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001100800 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Immersive.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001086776 _____ (Microsoft Corporation) C:\windows\system32\Windows.Services.TargetedContent.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001081344 _____ (Microsoft Corporation) C:\windows\system32\ShareHost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001077048 _____ (Microsoft Corporation) C:\windows\system32\hvax64.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 001068544 _____ (Microsoft Corporation) C:\windows\system32\SettingSyncCore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001059840 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.BackgroundTransfer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001055232 _____ (Microsoft Corporation) C:\windows\system32\Windows.AccountsControl.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001048992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001028336 _____ (Microsoft Corporation) C:\windows\system32\Windows.Perception.Stub.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001014784 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnapps.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001009152 _____ (Microsoft Corporation) C:\windows\system32\StorSvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001008960 _____ (Microsoft Corporation) C:\windows\system32\CloudExperienceHostCommon.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 001007616 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000995840 _____ (Microsoft Corporation) C:\windows\system32\EdgeManager.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000967680 _____ (Microsoft Corporation) C:\windows\system32\WebcamUi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000958608 _____ (Microsoft Corporation) C:\windows\system32\AppContracts.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000950272 _____ (Microsoft Corporation) C:\windows\system32\rasapi32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000949760 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Ocr.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000945176 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Sensors.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000931840 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Management.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000922624 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Service.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000919880 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000917504 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.OnlineId.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000913408 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Search.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000912896 _____ (Microsoft Corporation) C:\windows\SysWOW64\MiracastReceiver.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000904192 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SmartCards.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000899584 _____ (Microsoft Corporation) C:\windows\system32\MdmDiagnostics.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000898048 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Immersive.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000895600 _____ (Microsoft Corporation) C:\windows\SysWOW64\MrmCoreR.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000892928 _____ (Microsoft Corporation) C:\windows\SysWOW64\MbaeApiPublic.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000891392 _____ (Microsoft Corporation) C:\windows\system32\HolographicExtensions.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000889416 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Shell.Broker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000882184 _____ (Microsoft Corporation) C:\windows\system32\wer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000882176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ShareHost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000875008 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasapi32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000867840 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000865280 _____ (Microsoft Corporation) C:\windows\system32\efswrt.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000848384 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000844096 _____ (Microsoft Corporation) C:\windows\SysWOW64\CloudExperienceHostCommon.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000827904 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Import.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000822200 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000821232 _____ (Microsoft Corporation) C:\windows\system32\windows.applicationmodel.datatransfer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000815616 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebcamUi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000814080 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSyncCore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000809984 _____ (Microsoft Corporation) C:\windows\system32\Windows.Gaming.Input.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000797448 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000793320 _____ (Microsoft Corporation) C:\windows\SysWOW64\InputHost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000783488 _____ (Microsoft Corporation) C:\windows\system32\tcblaunch.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000782848 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000779080 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Services.TargetedContent.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000778872 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppContracts.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000750592 _____ (Microsoft Corporation) C:\windows\system32\ActivationManager.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000750080 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000742712 _____ (Microsoft Corporation) C:\windows\system32\LicensingWinRT.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000737792 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Launcher.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\windows.immersiveshell.serviceprovider.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000727040 _____ (Microsoft Corporation) C:\windows\system32\agentactivationruntime.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000722072 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000717824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.AccountsControl.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000716288 _____ (Microsoft Corporation) C:\windows\system32\agentactivationruntimewindows.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Mirage.Internal.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000695208 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000692224 _____ (Microsoft Corporation) C:\windows\system32\LockController.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000689664 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Search.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000687104 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Ocr.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000685384 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000684864 _____ (Microsoft Corporation) C:\windows\system32\SHCore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000678720 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000673448 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000669184 _____ (Microsoft Corporation) C:\windows\SysWOW64\EdgeManager.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000656696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys 2020-07-14 19:58 - 2020-07-14 19:58 - 000653824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Management.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000651264 _____ (Microsoft Corporation) C:\windows\system32\DevicesFlowBroker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000639488 _____ (Microsoft Corporation) C:\windows\system32\twinapi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000638464 _____ (Microsoft Corporation) C:\windows\system32\twinui.appcore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000630784 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.AllJoyn.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000628416 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000628024 _____ (Microsoft Corporation) C:\windows\SysWOW64\LicensingWinRT.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000624640 _____ (Microsoft Corporation) C:\windows\system32\TileDataRepository.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000616960 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.LowLevel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000614912 _____ (Microsoft Corporation) C:\windows\SysWOW64\efswrt.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000614912 _____ (Microsoft Corporation) C:\windows\system32\netprofmsvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000608256 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SmartCards.Phone.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000605896 _____ (Microsoft Corporation) C:\windows\system32\sechost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000602112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Payments.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000600064 _____ (Microsoft Corporation) C:\windows\SysWOW64\ActivationManager.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000596992 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000594992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Perception.Stub.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000593408 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000584704 _____ (Microsoft Corporation) C:\windows\system32\PlayToManager.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000582056 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.applicationmodel.datatransfer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000570368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Import.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000565248 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Gaming.Input.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000550400 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys 2020-07-14 19:58 - 2020-07-14 19:58 - 000549048 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.MediaControl.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000544256 _____ (Microsoft Corporation) C:\windows\system32\usosvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000542288 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000540672 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SmartCards.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000538664 _____ (Microsoft Corporation) C:\windows\SysWOW64\SHCore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000534016 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000533504 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000526848 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000524784 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Enumeration.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000522240 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Launcher.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000521728 _____ (Microsoft Corporation) C:\windows\system32\WinBioDataModel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000518656 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000518464 _____ (Microsoft Corporation) C:\windows\system32\WerFault.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000513024 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000513024 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Activities.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000512000 _____ (Microsoft Corporation) C:\windows\system32\Windows.Cortana.Desktop.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000502784 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.appcore.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000502784 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.WiFiDirect.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000501760 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.LockScreen.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\werui.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000495616 _____ (Microsoft Corporation) C:\windows\system32\RTMediaFrame.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000490496 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000484352 _____ (Microsoft Corporation) C:\windows\system32\MixedReality.Broker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000478296 _____ (Microsoft Corporation) C:\windows\SysWOW64\sechost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000477184 _____ (Microsoft Corporation) C:\windows\system32\CloudDomainJoinDataModelServer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000476160 _____ (Microsoft Corporation) C:\windows\system32\MicrosoftAccountWAMExtension.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000475136 _____ (Microsoft Corporation) C:\windows\system32\Geolocation.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000467960 _____ (Microsoft Corporation) C:\windows\system32\Faultrep.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000467456 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Picker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000467456 _____ (Microsoft Corporation) C:\windows\system32\modernexecserver.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000466432 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.Workflow.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000462848 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000461112 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000458240 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.ConversationalAgent.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000456704 _____ (Microsoft Corporation) C:\windows\system32\upnphost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000453944 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFault.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000452096 _____ (Microsoft Corporation) C:\windows\SysWOW64\TileDataRepository.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000444416 _____ (Microsoft Corporation) C:\windows\system32\fhsettingsprovider.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000444416 _____ (Microsoft Corporation) C:\windows\system32\edgeIso.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.AllJoyn.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000442096 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.MediaControl.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000434176 _____ (Microsoft Corporation) C:\windows\system32\MicrosoftAccountExtension.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000432128 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Midi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000432128 _____ (Microsoft Corporation) C:\windows\system32\WalletService.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000430592 _____ (Microsoft Corporation) C:\windows\SysWOW64\werui.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000419328 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000419328 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.NetworkOperators.ESim.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000416768 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Usb.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000416768 _____ (Microsoft Corporation) C:\windows\system32\RDXTaskFactory.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000412672 _____ (Microsoft Corporation) C:\windows\system32\AboveLockAppHost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000411640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Devices.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000411136 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToManager.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000410112 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SmartCards.Phone.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000406992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Enumeration.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000406992 _____ (Microsoft Corporation) C:\windows\system32\tsmf.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000405944 _____ (Microsoft Corporation) C:\windows\SysWOW64\Faultrep.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000403968 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Payments.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000399672 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.DataModel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000397824 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Lights.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000395264 _____ (Microsoft Corporation) C:\windows\system32\Windows.Gaming.Preview.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000392504 _____ (Microsoft Corporation) C:\windows\system32\CloudExperienceHost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000388096 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.LowLevel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000387584 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000382976 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000381152 _____ (Microsoft Corporation) C:\windows\system32\CredentialEnrollmentManager.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000380224 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000375296 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Diagnostics.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000374272 _____ (Microsoft Corporation) C:\windows\system32\PickerPlatform.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000371712 _____ (Microsoft Corporation) C:\windows\SysWOW64\Geolocation.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000361472 _____ (Microsoft Corporation) C:\windows\system32\vaultsvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000361472 _____ (Microsoft Corporation) C:\windows\system32\QuickActionsDataModel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000358912 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.WiFiDirect.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000355840 _____ (Microsoft Corporation) C:\windows\system32\wpnclient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000355840 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicSvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000355328 _____ (Microsoft Corporation) C:\windows\system32\ConsoleLogon.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\RTMediaFrame.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000353792 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000352256 _____ (Microsoft Corporation) C:\windows\system32\APHostService.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000345560 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsmf.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\AboveLockAppHost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000340328 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.ApplicationData.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000338944 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Picker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000335360 _____ (Microsoft Corporation) C:\windows\SysWOW64\MicrosoftAccountWAMExtension.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000334336 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Cortana.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000329728 _____ (Microsoft Corporation) C:\windows\SysWOW64\upnphost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000328192 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgeIso.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000327168 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000327168 _____ (Microsoft Corporation) C:\windows\system32\windows.internal.shellcommon.shareexperience.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32k.sys 2020-07-14 19:58 - 2020-07-14 19:58 - 000317440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Midi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\SyncSettings.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000311608 _____ (Microsoft Corporation) C:\windows\system32\CloudExperienceHostBroker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000311440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Devices.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000306688 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.CredDialogController.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\TDLMigration.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000293888 _____ (Microsoft Corporation) C:\windows\system32\CXHProvisioningServer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnclient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000292864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Diagnostics.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000290304 _____ (Microsoft Corporation) C:\windows\system32\vaultcli.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000287744 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Gaming.Preview.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000285184 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicCapsule.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000283648 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000283136 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.AppDefaults.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000281600 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.HumanInterfaceDevice.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000280576 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Usb.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Lights.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000274432 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Identity.Provider.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000272384 _____ (Microsoft Corporation) C:\windows\SysWOW64\PickerPlatform.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000268552 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.ApplicationData.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000266552 _____ (Microsoft Corporation) C:\windows\SysWOW64\SystemSettings.DataModel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000265728 _____ (Microsoft Corporation) C:\windows\system32\netman.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000261632 _____ (Microsoft Corporation) C:\windows\system32\bthprops.cpl 2020-07-14 19:58 - 2020-07-14 19:58 - 000260288 _____ (Microsoft Corporation) C:\windows\system32\logoncli.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000256000 _____ (Microsoft Corporation) C:\windows\SysWOW64\ConsoleLogon.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000248832 _____ (Microsoft Corporation) C:\windows\system32\PasswordEnrollmentManager.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000247864 _____ (Microsoft Corporation) C:\windows\system32\weretw.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000243200 _____ (Microsoft Corporation) C:\windows\system32\SystemEventsBrokerServer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000242688 _____ (Microsoft Corporation) C:\windows\system32\CapabilityAccessManagerClient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000241152 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.CredDialogController.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000240640 _____ (Microsoft Corporation) C:\windows\system32\dialclient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000239928 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Workplace.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.CapturePicker.Desktop.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\psmsrv.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000231424 _____ (Microsoft Corporation) C:\windows\system32\HoloShellRuntime.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\wersvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\netprofm.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000227840 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncSettings.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000224768 _____ (Microsoft Corporation) C:\windows\system32\DWWIN.EXE 2020-07-14 19:58 - 2020-07-14 19:58 - 000220992 _____ (Microsoft Corporation) C:\windows\system32\wermgr.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000220672 _____ (Microsoft Corporation) C:\windows\system32\MtcModel.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000219136 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000217600 _____ (Microsoft Corporation) C:\windows\SysWOW64\bthprops.cpl 2020-07-14 19:58 - 2020-07-14 19:58 - 000217600 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Core.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\UserDeviceRegistration.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000215040 _____ (Microsoft Corporation) C:\windows\system32\PeopleBand.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000215040 _____ (Microsoft Corporation) C:\windows\system32\DiagSvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000211256 _____ (Microsoft Corporation) C:\windows\system32\tcbloader.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000210944 _____ (Microsoft Corporation) C:\windows\system32\ErrorDetails.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000206336 _____ (Microsoft Corporation) C:\windows\system32\useractivitybroker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000204608 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spacedump.sys 2020-07-14 19:58 - 2020-07-14 19:58 - 000200704 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Internal.Input.ExpressiveInput.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000199496 _____ (Microsoft Corporation) C:\windows\SysWOW64\wermgr.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000196096 _____ (Microsoft Corporation) C:\windows\SysWOW64\pku2u.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000195584 _____ (Microsoft Corporation) C:\windows\system32\AarSvc.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000193600 _____ (Microsoft Corporation) C:\windows\SysWOW64\weretw.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000190056 _____ (Microsoft Corporation) C:\windows\SysWOW64\logoncli.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000188928 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000188928 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000186880 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWWIN.EXE 2020-07-14 19:58 - 2020-07-14 19:58 - 000186368 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000183808 _____ (Microsoft Corporation) C:\windows\system32\Windows.Energy.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000180224 _____ (Microsoft Corporation) C:\windows\system32\dialserver.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000179712 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Clipboard.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000179512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys 2020-07-14 19:58 - 2020-07-14 19:58 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\PrintWorkflowService.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\easwrt.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\AppExtension.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000178688 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000176952 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Management.Workplace.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\HoloShellRuntime.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\dialclient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000172032 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.CapturePicker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000165840 _____ (Microsoft Corporation) C:\windows\system32\WerFaultSecure.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000165376 _____ (Microsoft Corporation) C:\windows\splwow64.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000162816 _____ (Microsoft Corporation) C:\windows\SysWOW64\ErrorDetails.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000162304 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserDeviceRegistration.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000160768 _____ (Microsoft Corporation) C:\windows\SysWOW64\CapabilityAccessManagerClient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000159744 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Core.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000157184 _____ (Microsoft Corporation) C:\windows\system32\PrintWSDAHost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000152064 _____ (Microsoft Corporation) C:\windows\SysWOW64\useractivitybroker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\fdWSD.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000151040 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SerialCommunication.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000150336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFaultSecure.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000147968 _____ (Microsoft Corporation) C:\windows\system32\Family.Client.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000146232 _____ (Microsoft Corporation) C:\windows\system32\ResourcePolicyServer.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\AppointmentActivation.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000143360 _____ (Microsoft Corporation) C:\windows\SysWOW64\easwrt.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintWorkflowService.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000140800 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Energy.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000133632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000133632 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppExtension.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000132608 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Storage.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000132408 _____ (Microsoft Corporation) C:\windows\system32\offlinelsa.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000131584 _____ (Microsoft Corporation) C:\windows\system32\DevicePairingExperienceMEM.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000131072 _____ (Microsoft Corporation) C:\windows\system32\CredDialogBroker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000130560 _____ (Microsoft Corporation) C:\windows\system32\StorageUsage.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\CameraCaptureUI.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000128512 _____ (Microsoft Corporation) C:\windows\system32\CaptureService.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\fdWSD.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000127064 _____ (Microsoft Corporation) C:\windows\system32\win32u.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000124928 _____ (Microsoft Corporation) C:\windows\system32\wercplsupport.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintWSDAHost.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000118784 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000118272 _____ (Microsoft Corporation) C:\windows\system32\EaseOfAccessDialog.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppointmentActivation.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000112128 _____ (Microsoft Corporation) C:\windows\system32\AxInstSv.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000110040 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000107520 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SerialCommunication.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000105984 _____ (Microsoft Corporation) C:\windows\system32\utcutil.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000100864 _____ (Microsoft Corporation) C:\windows\system32\sethc.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000100864 _____ (Microsoft Corporation) C:\windows\system32\Family.Authentication.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000100352 _____ (Microsoft Corporation) C:\windows\system32\DiagnosticInvoker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000094720 _____ (Microsoft Corporation) C:\windows\SysWOW64\CameraCaptureUI.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000094208 _____ (Microsoft Corporation) C:\windows\SysWOW64\EaseOfAccessDialog.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000093184 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000092672 _____ (Microsoft Corporation) C:\windows\system32\wsqmcons.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000091648 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000090624 _____ (Microsoft Corporation) C:\windows\system32\keyiso.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000089600 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000089328 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32u.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000089088 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicAgent.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000086272 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000083456 _____ (Microsoft Corporation) C:\windows\system32\SystemUWPLauncher.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000082432 _____ (Microsoft Corporation) C:\windows\system32\LocationFrameworkInternalPS.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000081408 _____ (Microsoft Corporation) C:\windows\system32\Print.Workflow.Source.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000079360 _____ (Microsoft Corporation) C:\windows\SysWOW64\sethc.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000076952 _____ (Microsoft Corporation) C:\windows\system32\CredentialEnrollmentManagerForUser.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000075776 _____ (Microsoft Corporation) C:\windows\SysWOW64\DiagnosticInvoker.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000071168 _____ (Microsoft Corporation) C:\windows\system32\MiracastReceiverExt.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000070248 _____ (Microsoft Corporation) C:\windows\system32\ResourcePolicyClient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000068096 _____ (Microsoft Corporation) C:\windows\system32\udhisapi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000066560 _____ (Microsoft Corporation) C:\windows\SysWOW64\keyiso.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000066048 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000065536 _____ (Microsoft Corporation) C:\windows\system32\iemigplugin.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000064512 _____ (Microsoft Corporation) C:\windows\SysWOW64\SystemUWPLauncher.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000063488 _____ (Microsoft Corporation) C:\windows\SysWOW64\iemigplugin.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\Print.Workflow.Source.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\mf3216.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\AxInstUI.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000058368 _____ (Microsoft Corporation) C:\windows\SysWOW64\udhisapi.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000058368 _____ (Microsoft Corporation) C:\windows\SysWOW64\MiracastReceiverExt.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000052152 _____ (Microsoft Corporation) C:\windows\SysWOW64\ResourcePolicyClient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000046080 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf3216.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\npmproxy.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\werdiagcontroller.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000040960 _____ (Microsoft Corporation) C:\windows\system32\upnpcont.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000040248 _____ (Microsoft Corporation) C:\windows\system32\LocationFrameworkPS.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000038912 _____ (Microsoft Corporation) C:\windows\SysWOW64\werdiagcontroller.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\UIMgrBroker.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\upnpcont.exe 2020-07-14 19:58 - 2020-07-14 19:58 - 000029696 _____ (Microsoft Corporation) C:\windows\system32\SystemEventsBrokerClient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000029696 _____ (Microsoft Corporation) C:\windows\system32\nlmproxy.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicPS.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\PrintWorkflowProxy.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000024064 _____ (Microsoft Corporation) C:\windows\system32\CSystemEventsBrokerClient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000021504 _____ (Microsoft Corporation) C:\windows\SysWOW64\SystemEventsBrokerClient.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\nlmsprep.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000016896 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintWorkflowProxy.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000016896 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.Workflow.Native.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000013824 _____ (Microsoft Corporation) C:\windows\system32\UIManagerBrokerps.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000012288 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000011776 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\msimg32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimg32.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000003072 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000002560 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth9.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth8.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth7.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth6.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth5.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth4.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth3.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth2.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth12.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth11.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth10.bin 2020-07-14 19:58 - 2020-07-14 19:58 - 000000315 _____ C:\windows\system32\DrtmAuth1.bin 2020-07-14 19:54 - 2020-06-30 00:32 - 000390656 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe 2020-07-14 19:54 - 2020-06-30 00:26 - 000492544 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe 2020-07-12 23:24 - 2020-08-01 15:45 - 000000000 ____D C:\Users\hidde\AppData\Local\CrashDumps 2020-07-08 20:30 - 2020-07-08 20:30 - 000003936 _____ C:\windows\system32\Tasks\CCleaner Update 2020-07-08 20:30 - 2020-07-08 20:30 - 000002888 _____ C:\windows\system32\Tasks\CCleanerSkipUAC 2020-07-08 20:30 - 2020-07-08 20:30 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk 2020-07-08 20:30 - 2020-07-08 20:30 - 000000870 _____ C:\ProgramData\Desktop\CCleaner.lnk 2020-07-08 20:30 - 2020-07-08 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2020-07-08 20:29 - 2020-07-08 20:30 - 000000000 ____D C:\Program Files\CCleaner 2020-07-07 02:45 - 2020-07-31 21:10 - 000000000 ____D C:\Users\hidde\OneDrive\Documents\Bandicam 2020-07-05 21:09 - 2020-08-01 09:46 - 000000803 _____ C:\Users\hidde\AppData\Roaming\mainhst.zgh 2020-07-05 20:39 - 2020-07-22 02:03 - 000000000 ____D C:\Users\hidde\AppData\Roaming\ZipGenius 2020-07-05 20:39 - 2020-07-05 20:39 - 000001239 _____ C:\Users\Public\Desktop\ZipGenius 6.lnk 2020-07-05 20:39 - 2020-07-05 20:39 - 000001239 _____ C:\ProgramData\Desktop\ZipGenius 6.lnk 2020-07-05 20:39 - 2020-07-05 20:39 - 000001101 _____ C:\Users\Public\Desktop\CZIP 2 Opener.lnk 2020-07-05 20:39 - 2020-07-05 20:39 - 000001101 _____ C:\ProgramData\Desktop\CZIP 2 Opener.lnk 2020-07-05 20:39 - 2020-07-05 20:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZipGenius 6 2020-07-05 20:38 - 2020-07-05 20:39 - 000000000 ____D C:\Program Files (x86)\ZipGenius 6 2020-07-02 21:32 - 2020-07-02 21:32 - 000000000 ___SD C:\Users\hidde\OneDrive\Documents\My Web Sites 2020-07-02 21:31 - 2020-07-02 21:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression 2020-07-02 21:31 - 2020-07-02 21:31 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8 2020-07-02 21:31 - 2008-07-12 08:18 - 003851784 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_39.dll 2020-07-02 21:30 - 2020-07-02 21:31 - 000000000 ____D C:\Program Files (x86)\Microsoft Expression 2020-07-02 19:03 - 2020-07-31 20:12 - 000000000 ____D C:\Users\hidde\AppData\Roaming\IDMComp 2020-07-02 19:03 - 2020-07-02 19:03 - 000000000 ____D C:\Users\hidde\OneDrive\Documents\IDM Computer Solutions 2020-07-02 19:03 - 2020-07-02 19:03 - 000000000 ____D C:\ProgramData\IDMComp 2020-07-02 18:36 - 2020-07-02 19:37 - 000000000 ____D C:\Users\hidde\AppData\Local\TextCrawler 2020-07-02 18:36 - 2020-07-02 18:36 - 000000000 ____D C:\Users\hidde\AppData\Roaming\IsolatedStorage 2020-07-02 18:36 - 2020-07-02 18:36 - 000000000 ____D C:\ProgramData\IsolatedStorage 2020-07-02 18:21 - 2020-07-02 18:21 - 000000000 ____D C:\Users\hidde\AppData\Local\ZZZ_Projects 2020-07-02 17:59 - 2020-07-02 18:33 - 000000000 ____D C:\Program Files\Notepad++ 2020-07-02 12:04 - 2020-07-30 20:39 - 000000000 ____D C:\_MyStuff 2020-07-02 12:00 - 2020-07-02 12:00 - 000001550 _____ C:\Users\hidde\Desktop\Where are my files.lnk 2020-07-02 02:46 - 2020-07-02 02:48 - 000000013 _____ C:\windows\SysWOW64\WinSys32.crc 2020-07-02 02:44 - 2020-07-02 18:34 - 000000000 ____D C:\Users\hidde\AppData\Roaming\CoffeeCup Software 2020-07-02 02:15 - 2020-07-02 02:15 - 000000000 ____D C:\Users\hidde\AppData\Roaming\Mozilla 2020-07-02 02:15 - 2020-07-02 02:15 - 000000000 ____D C:\Users\hidde\AppData\Roaming\kompozer.net 2020-07-02 02:15 - 2020-07-02 02:15 - 000000000 ____D C:\Users\hidde\AppData\Local\kompozer.net 2020-07-02 01:37 - 2020-07-08 20:31 - 000000000 ____D C:\Users\hidde\AppData\Roaming\CoreFTP 2020-07-02 01:36 - 2020-07-02 01:36 - 000000000 ____D C:\Users\hidde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Core FTP (x64) 2020-07-02 01:36 - 2020-07-02 01:36 - 000000000 ____D C:\Program Files\CoreFTP ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2020-08-01 21:29 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-08-01 21:28 - 2020-02-23 15:39 - 000000000 ___RD C:\Users\hidde\OneDrive 2020-08-01 21:28 - 2020-02-23 15:37 - 000000000 __SHD C:\Users\hidde\IntelGraphicsProfiles 2020-08-01 21:28 - 2020-01-18 00:37 - 000000000 ____D C:\Intel 2020-08-01 21:28 - 2019-07-26 10:01 - 000000000 ____D C:\ProgramData\HP 2020-08-01 21:28 - 2019-04-15 11:38 - 000000006 ____H C:\windows\Tasks\SA.DAT 2020-08-01 21:28 - 2019-03-19 00:37 - 000786432 _____ C:\windows\system32\config\BBI 2020-08-01 21:27 - 2020-02-23 15:54 - 000000000 ____D C:\Users\hidde\AppData\Roaming\Hewlett-Packard 2020-08-01 21:27 - 2020-01-18 01:40 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2020-08-01 21:27 - 2019-07-26 10:01 - 000000000 ____D C:\Program Files (x86)\HP 2020-08-01 21:27 - 2019-07-16 14:46 - 000000000 ___HD C:\hp 2020-08-01 21:22 - 2020-05-13 22:16 - 000004168 _____ C:\windows\system32\Tasks\User_Feed_Synchronization-{C9F59EDC-3835-4392-9A6B-E6DA4D0B6E37} 2020-08-01 21:22 - 2019-03-19 00:52 - 000000000 ____D C:\windows\AppReadiness 2020-08-01 21:19 - 2019-04-15 11:38 - 000000000 ____D C:\windows\system32\SleepStudy 2020-08-01 15:53 - 2019-07-26 10:05 - 000846050 _____ C:\windows\system32\PerfStringBackup.INI 2020-08-01 15:53 - 2019-03-19 00:50 - 000000000 ____D C:\windows\INF 2020-07-31 21:10 - 2020-04-25 02:33 - 000000000 ____D C:\Users\hidde\AppData\Roaming\vlc 2020-07-31 20:38 - 2020-05-22 15:12 - 000000000 ____D C:\Users\hidde\AppData\Local\D3DSCache 2020-07-31 19:25 - 2020-04-28 12:11 - 000000000 ____D C:\Users\hidde\AppData\LocalLow\Temp 2020-07-31 19:23 - 2020-03-27 16:11 - 000002428 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-07-31 19:23 - 2020-03-27 16:11 - 000002266 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2020-07-31 19:23 - 2020-03-27 16:11 - 000002266 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk 2020-07-31 00:11 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-07-30 20:53 - 2019-03-19 00:52 - 000000000 ___HD C:\windows\ELAMBKUP 2020-07-30 20:09 - 2020-02-23 20:09 - 000000000 ____D C:\Users\hidde\AppData\Local\HP_Inc 2020-07-30 19:44 - 2020-02-23 15:31 - 000000000 ____D C:\Users\hidde\AppData\Local\Packages 2020-07-30 06:04 - 2020-02-23 15:31 - 000002374 _____ C:\Users\hidde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-07-29 15:58 - 2020-02-23 16:04 - 000000000 ____D C:\Users\hidde\OneDrive\Documents\Global 2020-07-28 20:51 - 2020-04-30 17:09 - 000000000 ____D C:\Users\hidde\AppData\Local\gtk-2.0 2020-07-28 20:51 - 2020-04-30 17:08 - 000000000 ____D C:\Users\hidde\AppData\Local\babl-0.1 2020-07-27 18:40 - 2020-03-01 20:19 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-07-27 18:40 - 2020-03-01 20:19 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-07-27 18:40 - 2020-03-01 20:19 - 000002267 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2020-07-24 19:31 - 2020-02-23 15:37 - 000000000 ____D C:\Users\hidde\AppData\Roaming\Adobe 2020-07-22 02:19 - 2020-02-23 15:31 - 000000000 ____D C:\Users\hidde 2020-07-21 15:55 - 2019-04-15 11:38 - 000520720 _____ C:\windows\system32\FNTCACHE.DAT 2020-07-20 13:57 - 2019-07-26 10:06 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2020-07-20 13:57 - 2019-07-26 10:06 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2020-07-20 13:57 - 2019-07-26 10:06 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2020-07-20 13:57 - 2019-07-26 10:06 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2020-07-20 13:57 - 2019-07-26 10:06 - 000002414 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2020-07-20 13:57 - 2019-07-26 10:06 - 000002408 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2020-07-20 13:56 - 2019-07-26 10:03 - 000000000 ____D C:\Program Files\Microsoft Office 2020-07-19 13:35 - 2019-03-19 00:52 - 000000000 ____D C:\windows\LiveKernelReports 2020-07-16 19:11 - 2019-03-19 00:52 - 000000000 ____D C:\windows\ServiceState 2020-07-16 19:09 - 2020-02-23 15:54 - 000000000 ____D C:\Users\hidde\AppData\Local\Publishers 2020-07-16 19:09 - 2020-02-23 15:42 - 000000000 ____D C:\Users\hidde\AppData\Local\PlaceholderTileLogoFolder 2020-07-16 19:09 - 2020-01-18 01:42 - 000000000 ____D C:\ProgramData\Packages 2020-07-14 20:04 - 2020-02-23 15:37 - 000000000 ___RD C:\Users\hidde\3D Objects 2020-07-14 20:04 - 2019-04-15 11:39 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-07-14 20:03 - 2019-03-19 00:52 - 000000000 ___SD C:\windows\system32\DiagSvcs 2020-07-14 20:03 - 2019-03-19 00:52 - 000000000 ____D C:\windows\SystemResources 2020-07-14 20:03 - 2019-03-19 00:52 - 000000000 ____D C:\windows\system32\oobe 2020-07-14 20:03 - 2019-03-19 00:52 - 000000000 ____D C:\windows\ShellExperiences 2020-07-14 20:03 - 2019-03-19 00:52 - 000000000 ____D C:\windows\bcastdvr 2020-07-14 20:03 - 2019-03-19 00:52 - 000000000 ____D C:\Program Files\Common Files\System 2020-07-14 20:00 - 2019-03-19 00:37 - 000000000 ____D C:\windows\CbsTemp 2020-07-12 00:27 - 2020-03-27 16:11 - 000003478 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-07-12 00:27 - 2020-03-27 16:11 - 000003354 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-07-11 12:17 - 2019-03-19 00:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2020-07-02 23:58 - 2020-05-16 18:22 - 000000000 ____D C:\Users\hidde\OneDrive\Documents\MISC 2020-07-02 15:50 - 2020-02-23 15:37 - 000000000 ____D C:\Users\hidde\AppData\Local\VirtualStore 2020-07-02 11:50 - 2020-04-25 02:16 - 000000000 ____D C:\Users\hidde\OneDrive\Documents\Cam ==================== Files in the root of some directories ======== 2020-07-05 21:09 - 2020-08-01 09:46 - 000000803 _____ () C:\Users\hidde\AppData\Roaming\mainhst.zgh 2020-07-28 20:51 - 2020-07-28 20:51 - 000008654 _____ () C:\Users\hidde\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ======================== Addition.txt
  4. The other night I tried to visit a site, but Panda Dome would not let it display and reported it as a virus because of a redirect (see attached items). Now I am getting the issues on other pages. I thought it might be malware and have used all the apps, but am unable to find anything on my system. Do you know what could be causing this issue? Blocked Items.txt
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.